add_bookmark.php in Active PHP Bookmarks (APB) 1.1.01 allows remote attackers to add arbitrary bookmarks as other users using a modified auth_user_id parameter.Referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/11011http://archives.neohapsis.com/archives/bugtraq/2003-01/0049.htmlhttp://www.securityfocus.com/bid/6546
