Bugtraq mailing list archives
Re: Fw: phpBB privmsg.php XSS vulnerability patch.
From: Truthless <nospam () spamcop org>
Date: Wed, 04 Feb 2004 01:23:43 +0000
This is a previously published Vulnerability and not something that is yet to be reported.
Shaun was referring to the patch itself. Truthless. -- Micheal Cottingham wrote:
If you think you have found a security hole with phpBB, contact the security email address ... I assure you they won't bite your head off for notifying them, even if it turns out to be a false alarm.International Veneer Co., Inc. wrote:----- Original Message ----- From: "Shaun Colley" <shaunige () yahoo co uk> To: <bugtraq () securityfocus com> Sent: Wednesday, January 28, 2004 10:39 AM Subject: phpBB privmsg.php XSS vulnerability patch. For those who have not yet installed the phpBB packages fixing the XSS vulnerability in privmsg.php documented at <http://www.securityfocus.com/bid/9290> <snip> Thank you for your time. Shaun.
Current thread:
- Re: Fw: phpBB privmsg.php XSS vulnerability patch. Micheal Cottingham (Feb 02)
- Re: Fw: phpBB privmsg.php XSS vulnerability patch. Truthless (Feb 04)