info
discussion
exploit
solution
references
phpBB profile.php avatarselect Cross-Site Scripting Vulnerability
Solution:
An upgrade has been released that corrects this issue.
phpBB Group phpBB 2.0.6 d
phpBB Group phpBB-2.0.8.zip
http://prdownloads.sourceforge.net/phpbb/phpBB-2.0.8.zip?download
Privacy Statement
Copyright 2010, SecurityFocus
