Vulnerabilities

CVE-2005-3418

by Fred · 01/11/2005

Multiple cross-site scripting (XSS) vulnerabilities in phpBB 2.0.17 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) error_msg parameter to usercp_register.php, (2) forward_page parameter to login.php, and (3) list_cat parameter to search.php, which are not initialized as variables.

Date published : 2005-11-01

http://www.securityfocus.com/bid/15243

http://marc.info/?l=bugtraq&m=113081113317600&w=2

Similar

Tags: Cybersecurity Alert