Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:18036
HistorySep 21, 2007 - 12:00 a.m.

PhpBB Xs 2 profile.php Permanent Xss Vulnerability

2007-09-2100:00:00
vulners.com
80

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

PhpBB Xs 2 profile.php Permanent Xss Vulnerability

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

#Found By Seph1roth

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

[POST METHOD]

Corrupted page: profile.php?mode=editprofile&cpl_mode=profile_info

Bugged Variable: "selfdes" (Campo "Altre informazioni")

Xss: </textarea>[XSS STRING]