Home page logo

bugtraq logo Bugtraq mailing list archives

Re: XSS vulnerability in phpBB (an other ;-)
From: Michael Renzmann <security () dylanic de>
Date: Tue, 09 Sep 2003 18:39:21 +0200


John Smith wrote:
[url=http://www.izhal.com"; onclick=alert("bug");"]test[/url]

Checked that variant with phpBB 2.0.1 again, and it didn't work as well. Seems as this version is not vulnerable.

Bye, Mike

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]