Bugtraq mailing list archives

Re: phpBB "charts.php" XSS and SQL-Injection

From: g30rg3x () gmail com
Date: 12 May 2006 04:08:07 -0000

This Advisorie is incorrect its not a phpBB security flaw, its a MOD of phpBB called "Charts MOD".

That allows users to vote, rate music and related stuff..
url: http://www.phpbb2.de/dload.php?action=file&file_id=670

so please review and correct your advisorie...

grettings from mexico

g30rg3_x

Current thread:

phpBB "charts.php" XSS and SQL-Injection sn4k3 . 23 (May 11)
- <Possible follow-ups>
- Re: phpBB "charts.php" XSS and SQL-Injection g30rg3x (May 12)
- Re: phpBB "charts.php" XSS and SQL-Injection phpbb (May 18)