phpBB profile.php avatarselect Cross-Site Scripting Vulnerability

Bugtraq ID:	9938
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	Mar 22 2004 12:00AM
Updated:	Mar 22 2004 12:00AM
Credit:	Discovery is credited to Cheng Peng Su <[email protected]>.
Vulnerable:	phpBB Group phpBB 2.0.6 d
Not Vulnerable:	phpBB Group phpBB 2.0.8

phpBB profile.php avatarselect Cross-Site Scripting Vulnerability

It has been reported that phpBB may be prone to a cross-site scripting vulnerability that may allow an attacker to execute arbitrary HTML or script code in a user's browser. The issue exists due to insufficient sanitization of user-supplied input via the 'avatarselect' form parameter of 'profile.php' script.

phpBB 2.0.6d has been reported to be prone to this issue, however, other versions could be affected as well.

phpBB profile.php avatarselect Cross-Site Scripting Vulnerability

No exploit is required.

phpBB profile.php avatarselect Cross-Site Scripting Vulnerability

Solution:
An upgrade has been released that corrects this issue.


phpBB Group phpBB 2.0.6 d

• phpBB Group phpBB-2.0.8.zip
  http://prdownloads.sourceforge.net/phpbb/phpBB-2.0.8.zip?download

phpBB profile.php avatarselect Cross-Site Scripting Vulnerability

References:

• phpBB Homepage (phpBB)
  
• phpBB profile.php Cross Site Scripting Vulnerability (Cheng Peng Su )