Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The bbencode_second_pass and make_clickable functions in bbcode.php for phpBB before 2.0.15, as used in viewtopic.php, privmsg.php, and other scripts, allow remote attackers to execute arbitrary script via a BBcode tag with a (1) javascript:, (2) applet:, (3) about:, (4) activex:, (5) chrome:, or (6) script: URI scheme, as demonstrated using the URL tag.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
PHPBB URL Tag BBCode.PHP漏洞
Vulnerability Description
phpBB的2.0.15之前版本的bbcode.php中的bbencode_second_pass和make_clickable函数,当用于viewtopic.php、privmsg.php和其他脚本时,允许远程攻击者通过一个带有(1)javascript:,(2)applet:,(3)about:,(4)activex:,(5)chrome:或(6)script: URI 模式的BBcode标签来执行任意脚本,如使用URL标签。
CVSS Information
N/A
Vulnerability Type
N/A