← CVECheck
HomeVulnerabilities

CVE-2002-0352 — MEDIUM severity vulnerability (Phorum 3.3.2 allows remote attackers to determine the email)

Phorum 3.3.2 allows remote attackers to determine the email addresses of the 10 most active users via a direct HTTP request to the stats.php program, which does not require authentication.

CVE IDCVE-2002-0352
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:N/I:P/A:N
CWENVD-CWE-Other
StatusModified
Published2002-06-25
Last modified2026-04-16
DescriptionPhorum 3.3.2 allows remote attackers to determine the email addresses of the 10 most active users via a direct HTTP request to the stats.php program, which does not require authentication.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →