[prev in list] [next in list] [prev in thread] [next in thread]
List: bugtraq
Subject: Re:[Advisory] phpBB 1.4.4 still suffers from Cross Site Scripting
From: altomo <altomo () digitalgangsters ! net>
Date: 2002-03-29 3:51:44
[Download RAW message or body]
Zeroforum is vuln to this as well. Notified a few weeks ago and heard
nothing back.
>>After a similar bug was discovered in phpBB 1.4.2, the authors fixed the
>>bug
>>with which JavaScript could inserted by using an [IMG] tag like:
>>
>>[img]javascript:alert('bla')[/img]
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic