Vulnerabilities > CVE-2004-0339 - Cross-Site Scripting vulnerability in PHPBB
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL network
phpbb-group
Summary
Cross-site scripting (XSS) vulnerability in ViewTopic.php in phpBB, possibly 2.0.6c and earlier, allows remote attackers to execute arbitrary script or HTML as other users via the postorder parameter. This vulnerability is addressed in the following product release: phpBB Group, phpBB, 2.0.7
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 9 |