CVE-2008-4125

The search function in phpBB 2.x provides a search_id value that leaks the state of PHP's PRNG, which allows remote attackers to obtain potentially sensitive information, as demonstrated by a cross-application attack against WordPress, a different vulnerability than CVE-2006-0632.
Configurations

Configuration 1

cpe:2.3:a:phpbb:phpbb:2:*:*:*:*:*:*:*

Information

Published : 2008-09-18 05:59

Updated : 2017-08-08 01:32


NVD link : CVE-2008-4125

Mitre link : CVE-2008-4125

Products Affected
No products.