Topic: Multiple XSS vulnerabilities

Multiple XSS vulnerabilities have been found from the latest version. Original advisory:

http://seclists.org/fulldisclosure/2011/Sep/158

Do you have plan to fix these issues? Are these valid?

2

Re: Multiple XSS vulnerabilities

Thanks!
Fixed on: https://github.com/punbb/punbb/commit/d … b36052ca6d
PunBB 1.3.6 released: https://github.com/downloads/punbb/punb … -1.3.6.zip

Re: Multiple XSS vulnerabilities

Version 1.3.6 does not seem to be announced in page: http://punbb.informer.com/

4

Re: Multiple XSS vulnerabilities

Will be tomorrow, 19 september

Re: Multiple XSS vulnerabilities

This received CVE-ID: CVE-2011-3371