CVE-2005-3310
The CVE-2005-3310 issue affects phpBB2 (v2.0.17) where remote authenticated users can inject arbitrary web script/HTML via HTML files with a GIF/JPEG extension when remote avatars and avatar uploads are enabled, leading to cross-site scripting on viewed pages. Root cause: interpretation errors in...