|
 phpBB is a
PHP-based bulletin board application. The application is
exposed to an HTML injection issue because it fails to
properly sanitize user-supplied input to the "[flash=]
BBCode" parameter in the "includes/message_parser.php"
script. phpBB versions prior to 3.0.8 are affected.
Ref:
http://www.phpbb.com/support/documents.php?mode=changelog&version=3#v307-PL1
10.48.34 - CVE: Not Available
Platform: Web Application |
