PHP-Post allows remote attackers to spoof the names of other users by registering with a username containing hex-encoded characters.
Software | From | Fixed in |
---|---|---|
php-post / php-post_web_forum | 0.1 | 0.1.x |
php-post / php-post_web_forum | 0.2 | 0.2.x |
php-post / php-post_web_forum | 0.21 | 0.21.x |
php-post / php-post_web_forum | 0.22 | 0.22.x |
php-post / php-post_web_forum | 0.3 | 0.3.x |
php-post / php-post_web_forum | 0.32 | 0.32.x |