Cross-site scripting vulnerability in phpBB 1.4.4 and earlier allows remote attackers to execute arbitrary Javascript on web clients by embedding the script within an IMG image tag while editing a message.Referenceshttp://www.securiteam.com/unixfocus/6W00Q202UM.htmlhttp://www.iss.net/security_center/static/7459.phphttp://www.securityfocus.com/bid/4379
