[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
phpBB2 2.0.22 Cross Site Scripting Vulnerability
- To: bugtraq@xxxxxxxxxxxxxxxxx
- Subject: phpBB2 2.0.22 Cross Site Scripting Vulnerability
- From: bugtraq@xxxxxxxxxxxxx
- Date: 2 Jan 2008 19:54:30 -0000
Opencosmo Security
http://www.opencosmo.com
Author: Alfredo Panzera, Opencosmo Security
Vendor: phpBB.com
Version: 2.0.22
Exploit:
Go to http://[website]/forum/admin/admin_groups.php and into 'Group
description:' insert your XSS.