phpBB2 2.0.22 Cross Site Scripting Vulnerability

bugtraq Wed, 02 Jan 2008 12:48:29 -0800

Opencosmo Security

http://www.opencosmo.com



Author: Alfredo Panzera, Opencosmo Security

Vendor: phpBB.com

Version: 2.0.22


Exploit: 

Go to http://[website]/forum/admin/admin_groups.php and into 'Group 
description:' insert your XSS.

phpBB2 2.0.22 Cross Site Scripting Vulnerability

Reply via email to