PunBB 1.3 Bugs

Please, look through the list for the bug you have found. If there is no one, then add it.

PunBB 1.3 bugs

PunBB 1.3.1 bugs

PunBB 1.3.2 bugs

PunBB 1.3.3 bugs

PunBB 1.3.4 bugs

PunBB 1.3.5 bugs

PunBB 1.3.6 bugs

Security issue details

We provide the details of some fixed security bugs here.

Possible XSS in moderate

A topic title was not converted to HTML in forum moderation. A user could steal moderator's & administrator's session by injecting JavaScript in the topic title.

Possible XSS in login

Password field value (set directly from POST-request) was not properly escaped, so that one could use it to execute JavaScript. CSRF confirm message would be displayed.

Potential SQL-injections at admin/users.php page

The values of $_POST['order_by'] and $_POST['direction'] were escaped, but not logically checked before using in SQL query at the AdministrationUsers page. One could execute any SQL query via making administrator to send a POST-request (e.g. giving him a link to the specially formed page). CSRF confirm message would be displayed.

Potential SQL-injections in admin/settings.php via configuration values

The values of configuration options were not checked before using in SQL query at AdministrationSettings page. One could execute any SQL query via making administrator to send a POST-request (e.g. giving him a link to the specially formed page). CSRF confirm message would be displayed.

See also

Links