Brandon Posted December 19, 2005 Report Share Posted December 19, 2005 Story published by SecuniaSource: Maksymilian ArciemowiczMaksymilian Arciemowicz has discovered a security issue in phpBB, which can be exploited by malicious people to conduct script insertion attacks.Input passed in the message body when posting isn't properly sanitised before being used. This can be exploited to inject arbitrary JavaScript code, which will be executed in a user's browser session in context of an affected site when the malicious post is viewed.Example:<B C=">" onmouseover="" X="<B "> H E L O </B>Successful exploitation requires that "Allow HTML" is enabled (not default setting).It is also possible to disclose the full path to "admin/admin_disallow.php" by accessing it directly with the "setmodules" parameter set to "1" (requires that "register_globals" is enabled).The security issue has been confirmed in version 2.0.18. Other versions may also be affected.[b]Solution:[/b]Set "Allow HTML" to "No".Secunia Advisory Quote Link to post Share on other sites
Pierce Posted December 22, 2005 Report Share Posted December 22, 2005 Yet another possible security vunrability in phpbb, thank god this forum uses invision boardPierce Quote Link to post Share on other sites
Brandon Posted December 22, 2005 Author Report Share Posted December 22, 2005 Yet another possible security vunrability in phpbb, thank god this forum uses invision boardPierceAgreed Quote Link to post Share on other sites
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.