PHPBB Viewtopic.PHP Cross-Site Scripting Vulnerability
BID:13345
Info
PHPBB Viewtopic.PHP Cross-Site Scripting Vulnerability
| Bugtraq ID: | 13345 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 23 2005 12:00AM |
| Updated: | Apr 23 2005 12:00AM |
| Credit: | HaCkZaTaN <[email protected]> is credited with the discovery of this vulnerability. |
| Vulnerable: |
phpBB Group phpBB 2.0.14 phpBB Group phpBB 2.0.13 phpBB Group phpBB 2.0.12 phpBB Group phpBB 2.0.11 phpBB Group phpBB 2.0.10 phpBB Group phpBB 2.0.9 phpBB Group phpBB 2.0.8 a phpBB Group phpBB 2.0.8 phpBB Group phpBB 2.0.7 a phpBB Group phpBB 2.0.7 phpBB Group phpBB 2.0.6 d phpBB Group phpBB 2.0.6 c phpBB Group phpBB 2.0.6 phpBB Group phpBB 2.0.5 phpBB Group phpBB 2.0.4 phpBB Group phpBB 2.0.3 phpBB Group phpBB 2.0.2 phpBB Group phpBB 2.0.1 phpBB Group phpBB 2.0 .0 phpBB Group phpBB 2.0 RC4 phpBB Group phpBB 2.0 RC3 phpBB Group phpBB 2.0 RC2 phpBB Group phpBB 2.0 RC1 phpBB Group phpBB 2.0 Beta 1 |
| Not Vulnerable: |
phpBB Group phpBB 2.0.16 |
Discussion
PHPBB Viewtopic.PHP Cross-Site Scripting Vulnerability
phpBB is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input.
An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user. This may facilitate the theft of cookie-based authentication credentials as well as other attacks.
phpBB is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input.
An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user. This may facilitate the theft of cookie-based authentication credentials as well as other attacks.
Exploit / POC
PHPBB Viewtopic.PHP Cross-Site Scripting Vulnerability
No exploit is required.
The following proof of concept URI is available:
http://www.example.com/phpBB2/viewtopic.php?p=3&highlight=\[]\
No exploit is required.
The following proof of concept URI is available:
http://www.example.com/phpBB2/viewtopic.php?p=3&highlight=\[]\
Solution / Fix
PHPBB Viewtopic.PHP Cross-Site Scripting Vulnerability
Solution:
The vendor has addressed this issue in phpBB version 2.0.16:
phpBB Group phpBB 2.0 RC1
phpBB Group phpBB 2.0 RC3
phpBB Group phpBB 2.0 RC4
phpBB Group phpBB 2.0 Beta 1
phpBB Group phpBB 2.0 RC2
phpBB Group phpBB 2.0 .0
phpBB Group phpBB 2.0.1
phpBB Group phpBB 2.0.10
phpBB Group phpBB 2.0.11
phpBB Group phpBB 2.0.12
phpBB Group phpBB 2.0.13
phpBB Group phpBB 2.0.14
phpBB Group phpBB 2.0.2
phpBB Group phpBB 2.0.3
phpBB Group phpBB 2.0.4
phpBB Group phpBB 2.0.5
phpBB Group phpBB 2.0.6
phpBB Group phpBB 2.0.6 c
phpBB Group phpBB 2.0.6 d
phpBB Group phpBB 2.0.7
phpBB Group phpBB 2.0.7 a
phpBB Group phpBB 2.0.8 a
phpBB Group phpBB 2.0.8
phpBB Group phpBB 2.0.9
Solution:
The vendor has addressed this issue in phpBB version 2.0.16:
phpBB Group phpBB 2.0 RC1
-
phpBB Group phpBB-2.0.16.zip
http://www.phpbb.com/files/releases/phpBB-2.0.16.zip
phpBB Group phpBB 2.0 RC3
-
phpBB Group phpBB-2.0.16.zip
http://www.phpbb.com/files/releases/phpBB-2.0.16.zip
phpBB Group phpBB 2.0 RC4
-
phpBB Group phpBB-2.0.16.zip
http://www.phpbb.com/files/releases/phpBB-2.0.16.zip
phpBB Group phpBB 2.0 Beta 1
-
phpBB Group phpBB-2.0.16.zip
http://www.phpbb.com/files/releases/phpBB-2.0.16.zip
phpBB Group phpBB 2.0 RC2
-
phpBB Group phpBB-2.0.16.zip
http://www.phpbb.com/files/releases/phpBB-2.0.16.zip
phpBB Group phpBB 2.0 .0
-
phpBB Group phpBB-2.0.16.zip
http://www.phpbb.com/files/releases/phpBB-2.0.16.zip
phpBB Group phpBB 2.0.1
-
phpBB Group phpBB-2.0.16.zip
http://www.phpbb.com/files/releases/phpBB-2.0.16.zip
phpBB Group phpBB 2.0.10
-
phpBB Group phpBB-2.0.16.zip
http://www.phpbb.com/files/releases/phpBB-2.0.16.zip
phpBB Group phpBB 2.0.11
-
phpBB Group phpBB-2.0.16.zip
http://www.phpbb.com/files/releases/phpBB-2.0.16.zip
phpBB Group phpBB 2.0.12
-
phpBB Group phpBB-2.0.16.zip
http://www.phpbb.com/files/releases/phpBB-2.0.16.zip
phpBB Group phpBB 2.0.13
-
phpBB Group phpBB-2.0.16.zip
http://www.phpbb.com/files/releases/phpBB-2.0.16.zip
phpBB Group phpBB 2.0.14
-
phpBB Group phpBB-2.0.16.zip
http://www.phpbb.com/files/releases/phpBB-2.0.16.zip
phpBB Group phpBB 2.0.2
-
phpBB Group phpBB-2.0.16.zip
http://www.phpbb.com/files/releases/phpBB-2.0.16.zip
phpBB Group phpBB 2.0.3
-
phpBB Group phpBB-2.0.16.zip
http://www.phpbb.com/files/releases/phpBB-2.0.16.zip
phpBB Group phpBB 2.0.4
-
phpBB Group phpBB-2.0.16.zip
http://www.phpbb.com/files/releases/phpBB-2.0.16.zip
phpBB Group phpBB 2.0.5
-
phpBB Group phpBB-2.0.16.zip
http://www.phpbb.com/files/releases/phpBB-2.0.16.zip
phpBB Group phpBB 2.0.6
-
phpBB Group phpBB-2.0.16.zip
http://www.phpbb.com/files/releases/phpBB-2.0.16.zip
phpBB Group phpBB 2.0.6 c
-
phpBB Group phpBB-2.0.16.zip
http://www.phpbb.com/files/releases/phpBB-2.0.16.zip
phpBB Group phpBB 2.0.6 d
-
phpBB Group phpBB-2.0.16.zip
http://www.phpbb.com/files/releases/phpBB-2.0.16.zip
phpBB Group phpBB 2.0.7
-
phpBB Group phpBB-2.0.16.zip
http://www.phpbb.com/files/releases/phpBB-2.0.16.zip
phpBB Group phpBB 2.0.7 a
-
phpBB Group phpBB-2.0.16.zip
http://www.phpbb.com/files/releases/phpBB-2.0.16.zip
phpBB Group phpBB 2.0.8 a
-
phpBB Group phpBB-2.0.16.zip
http://www.phpbb.com/files/releases/phpBB-2.0.16.zip
phpBB Group phpBB 2.0.8
-
phpBB Group phpBB-2.0.16.zip
http://www.phpbb.com/files/releases/phpBB-2.0.16.zip
phpBB Group phpBB 2.0.9
-
phpBB Group phpBB-2.0.16.zip
http://www.phpbb.com/files/releases/phpBB-2.0.16.zip
References
PHPBB Viewtopic.PHP Cross-Site Scripting Vulnerability
References:
References:
- phpBB 2.0.16 released (phpBB Group)
- phpBB Homepage (phpBB)
- -==phpBB 2.0.14 Multiple Vulnerabilities==- (HaCkZaTaN