Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

PHPBB2 < 2.0.14 Multiple Vulnerabilities

Medium

Synopsis

The remote host is running phpBB2, a web-based bulletin board written in PHP.

Description

The remote host is running phpBB2, a web-based bulletin board written in PHP. This version of phpBB2 is vulnerable to multiple Cross-Site Scripting (XSS) attacks. An attacker exploiting this flaw would need to be able to entice a user into browsing a malicious URI. Successful exploitation would lead to the attacker executing code within the client browser possibly resulting in the theft of confidential data.

Solution

Upgrade to version 2.0.14 or higher.