phpbb 3.0.x-3.0.6 has an XSS vulnerability

November 14, 2019

Overview :

some issues found in phpbb 3.0.x-3.0.6 with an XSS vulnerability.

Affected Product(s) :

Vulnerability Details :

CVE ID :	CVE-2019-12419
	phpbb 3.0.x-3.0.6 has an XSS vulnerability via the [flash] BB tag.

Solution :

Source Package	Release	Version	Status
phpbb3 (PTS)	jessie	3.0.12-5+deb8u1	fixed
	jessie (security)	3.0.12-5+deb8u4	fixed

Package	Type	Release	Fixed Version	Urgency	Origin	Debian Bugs
phpbb3	source	(unstable)	3.0.7-PL1-5	low		612477