Description

An issue in the delete_post() function of Online Discussion Forum Site 1 allows unauthenticated attackers to arbitrarily delete posts.

Related CPE's

a

online_discussion_forum_site_project

online_discussion_forum_site

1.0

Vulnerable

References

https://github.com/bigzooooz/CVE-2022-31295

ExploitThird Party Advisory

https://www.sourcecodester.com/php/15337/online-discussion-forum-site-phpoop-free-source-code.html

ProductThird Party Advisory

Weaknesses

[email protected]

Primary
CWE-639

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

7.5 · High

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2022-06-16T20:15:08.093

3 years ago

Last modified

2022-06-28T16:50:13.697

3 years ago