04-26-2004, 05:01 PM
|
|
Registered User
|
Join Date: Oct 2003
Location: Paris - FRANCE
Posts: 176
|
|
|
Kristi, the XSS problem was on the old forums (where Moonie got her password stolen).
Now we're using version 3.0.1 of vBulletin. I tested the XSS you mentionned and this version is not vulnerable to this.
Also the people are getting a hash of the password, and not the password. They can login to the forum with that but they still have no idea of what the password is. |
|
|
|