CVE-2005-3537

Name of the Vulnerable Software and Affected Versions phpBB versions prior to 2.0.18

Description A "missing request validation" error allows remote attackers to edit private messages of other users, probably by modifying certain parameters or other inputs.

Recommendations For versions prior to 2.0.18, update to version 2.0.18 or later to resolve the issue. As a temporary workaround, consider restricting access to private message editing functionality until a patch is available.