CVE-2002-2255

Cross-site scripting (XSS) vulnerability in search.php in phpBB 2.0.3 and possibly earlier versions allows remote attackers to inject arbitrary web script or HTML via the search_username parameter in searchuser mode.

Date published : 2007-10-14

http://www.securityfocus.com/bid/6311

http://archives.neohapsis.com/archives/bugtraq/2002-12/0053.html