phpBB Styles Demo Module Multiples Vulnerability

September 19, 2007 in Cross Site SCripting, Discussion Boards, SQL Injection
Tags: PhpBB, SQL, XSS

• Application: PhpBB
• Affected Version: Styles Demo Module 1.x
• Vendor’s URL: http://www.phpbb.com/
• Bug Type: SQL Injection & Cross Site Scripting
• Risk Level: Critical
• Solution: Edit the source code & contact to developer.