Bugtraq mailing list archives

Re: Fw: phpBB privmsg.php XSS vulnerability patch.

From: Truthless <nospam () spamcop org>
Date: Wed, 04 Feb 2004 01:23:43 +0000

This is a previously published Vulnerability and not something that isyet to be reported.

Shaun was referring to the patch itself.

Truthless.

--

Micheal Cottingham wrote:

If you think you have found a security hole with phpBB, contact thesecurity email address ... I assure you they won't bite your head offfor notifying them, even if it turns out to be a false alarm.


International Veneer Co., Inc. wrote:

----- Original Message ----- From: "Shaun Colley" <shaunige () yahoo co uk>
To: <bugtraq () securityfocus com>
Sent: Wednesday, January 28, 2004 10:39 AM
Subject: phpBB privmsg.php XSS vulnerability patch.


For those who have not yet installed the phpBB
packages fixing the XSS vulnerability in privmsg.php
documented at <http://www.securityfocus.com/bid/9290>
<snip>


Thank you for your time.
Shaun.

Current thread:

Re: Fw: phpBB privmsg.php XSS vulnerability patch. Micheal Cottingham (Feb 02)
- Re: Fw: phpBB privmsg.php XSS vulnerability patch. Truthless (Feb 04)