MyBulletinBoard (MyBB) HTML Attachment Content Disposition XSS

2006-04-14T05:32:38
ID OSVDB:24709
Type osvdb
Reporter OSVDB
Modified 2006-04-14T05:32:38

Description

Solution Description

Upgrade to version 1.1.1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Vendor URL: http://www.mybboard.com/ Vendor Specific News/Changelog Entry: http://community.mybboard.net/showthread.php?tid=8232 Secunia Advisory ID:19668 FrSIRT Advisory: ADV-2006-1381 CVE-2006-1911