<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Bugtraq: AW: phpBB2 2.0.22 Cross Site Scripting Vulnerability

AW: phpBB2 2.0.22 Cross Site Scripting Vulnerability

From: Aufmuth Andreas <Andreas_Aufmuth_at_vogel-medien.de>
Date: Fri, 4 Jan 2008 07:53:58 +0100

Why don't you just fix it?
The fact, that this field ist not properly sanitised means that u don't check all fields by default.

so it may not be an exploitable software bug, but it is a development error...

-----Ursprüngliche Nachricht-----
Von: neothermic_at_phpbb.com [mailto:neothermic_at_phpbb.com]
Gesendet: Donnerstag, 3. Januar 2008 23:29
An: bugtraq_at_securityfocus.com
Betreff: Re: phpBB2 2.0.22 Cross Site Scripting Vulnerability

This is why browsers block cross-domain AJAX by default. Added to the fact that any action in the ACP requires the SID means that your attack via AJAX would fail.

NeoThermic

phpBB Support Team, Audit Team and Incident Investigation Team Leader
Received on Jan 04 2008

This message: [ Message body ]
Next message: Dominic Hargreaves: "Re: rPSA-2008-0001-1 dovecot"
Previous message: s f: "Re: Latest round of web hacking incidents for 2007 & Project news"
In reply to: neothermic_at_phpbb.com: "Re: phpBB2 2.0.22 Cross Site Scripting Vulnerability"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]