violation.php3 in Phorum 3.0.7 allows remote attackers to send e-mails to arbitrary addresses and possibly use Phorum as a spam proxy by setting the Mod and ForumName parameters.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Phorum |
Phorum |
3.0.7 (including) |
3.0.7 (including) |
References