source: http://www.securityfocus.com/bid/7594/infoA vulnerability has been reported in vBulletin 3.0.0 beta 2. The problem is said to occur due to insufficient sanitization of private messages. As a result, an attacker may be capable of embedding malicious HTML or script code within a private message. This code may be interpreted by a legitimate user when previewing the message. |
Không có nhận xét nào:
Đăng nhận xét