<<< Date Index >>>     <<< Thread Index >>>

Re: XSS vulnerability in phpBB (an other ;-)



Hi.

John Smith wrote:
[url=http://www.izhal.com"; onclick=alert("bug");"]test[/url]

Checked that variant with phpBB 2.0.1 again, and it didn't work as well. Seems as this version is not vulnerable.

Bye, Mike