[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: New post Topic Hijacking XSS All vBulletin v 3.x.x (2)

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: New post Topic Hijacking XSS All vBulletin v 3.x.x (2)
From: scott-REMOVE-@xxxxxxxxxxxxx
Date: 21 Jun 2007 15:10:03 -0000

There is a much more significant issue than executing an XSS if you can upload 
a file to a remote site...

If this is how you plan to execute the XSS then there is nothing to fix or even 
do here on our part.

Scott MacVicar
Development Team, vBulletin

Prev by Date: Re: New Include Redirect Bug XSS All vBulletin v 3.x.x
Next by Date: VLC 0.8.6b format string vulnerability & integer overflow
Previous by thread: New post Topic Hijacking XSS All vBulletin v 3.x.x (2)
Next by thread: Comersus Shop Cart 7.07 SQL Injection & XSS
Index(es):
- Date
- Thread