[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Tue, 09 Sep 2003 18:39:21 +0200
From: Michael Renzmann <security@...anic.de>
To: John Smith <sgaesux@...eaker.net>
Cc: bugtraq@...urityfocus.com
Subject: Re: XSS vulnerability in phpBB (an other ;-)
Hi.
John Smith wrote:
> [url=http://www.izhal.com" onclick=alert("bug");"]test[/url]
Checked that variant with phpBB 2.0.1 again, and it didn't work as well.
Seems as this version is not vulnerable.
Bye, Mike
Powered by blists - more mailing lists