[PHPBB3-9365] X_FORWARDED_FOR is not filtered - phpBB Tracker

XML

Word

Printable

Details

Type: Bug
Status: Closed (View Workflow)
Resolution: Fixed
Affects Version/s: 3.0.x
Fix Version/s: 3.0.1
Component/s: Other
Labels:
None
Environment:
PHP Environment:
Database:

phpBB Import Key:
http://www.phpbb.com/bugs/all/ticket.php?ticket_id=20815

Description

X_FORWARDED_FOR is not filtered through htmlspecialchars here:

$this->browser= (!empty($_SERVER['HTTP_USER_AGENT'])) ? htmlspecialchars((string) $_SERVER['HTTP_USER_AGENT']) : '';

$this->forwarded_for=(!empty($_SERVER['HTTP_X_FORWARDED_FOR'])) ? (string) $_SERVER['HTTP_X_FORWARDED_FOR'] : '';

So, it will be possible to use this vulnerability, if some mod use these lines and x_forwarded_for here.

Taken from PhpBB 3 Vulnerability and Forscripts.Net On-Line Test 1/2008

Attachments

Activity

People

Assignee:: Kellanved [X] (Inactive)

Reporter:: alex007

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 02/Feb/08 5:49 PM

Updated:: 28/Mar/10 5:51 PM

Resolved:: 04/Feb/08 12:14 PM