DeluxeBB pm.php Multiple Variable XSS

2006-06-25T12:49:05
ID OSVDB:26840
Type osvdb
Reporter r0t(krustevs@googlemail.com)
Modified 2006-06-25T12:49:05

Description

Solution Description

Upgrade to version 1.07 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Vendor URL: http://www.deluxebb.com/ Security Tracker: 1016380 Secunia Advisory ID:20813 Related OSVDB ID: 26841 Other Advisory URL: http://pridels.blogspot.com/2006/06/deluxebb-107-xss-vuln.html ISS X-Force ID: 27359 CVE-2006-3303