VULHUB ™

A cross site scripting vulnerability has been discovered in some scripts included with phpBB2. An attacker may exploit this vulnerability by enticing a victim user to follow a malicious link. Attacker-supplied HTML and script code may be executed on a web client in the context of the site hosting the web forum. This may allow for theft of cookie-based authentication credentials and other attacks.

A cross site scripting vulnerability has been discovered in some scripts included with phpBB2. An attacker may exploit this vulnerability by enticing a victim user to follow a malicious link. Attacker-supplied HTML and script code may be executed on a web client in the context of the site hosting the web forum. This may allow for theft of cookie-based authentication credentials and other attacks.