Hi,
I found weird bug in phpBB3 (3.0.10).
Once again, when I'm doing webapp pentests,
vulnerable parameter is 'connected' with date (functions).
Here You have some source code from text added (permanently) to phpBB board:
Example 1:
Example 2:
If You need more details about it, let me know via comments or e-mail.
Cheers! :)
It seems you just get the date format you asked for. This is a personal per-user setting, thus this is not a text-insertion bug.
ReplyDeleteYes, I couldn't either reproduce your phpBB injections =(
ReplyDelete