Multiple cross-site scripting (XSS) vulnerabilities in FunkBoard 0.66CF, and possibly earlier versions, allow remote attackers to inject arbitrary web script or HTML via the fbusername or fbpassword parameter to (1) editpost.php, (2) prefs.php, (3) newtopic.php, (4) reply.php, or (5) profile.php, the (6) fbusername, (7) fmail, (8) www, (9) icq, (10) yim, (11) location, (12) sex, (13) interebbies, (14) sig or (15) aim parameter to register.php, or (16) subject parameter to newtopic.php.
References
Configurations
History
No history.
Information
Published : 2005-08-16 04:00
Updated : 2024-02-04 16:52
NVD link : CVE-2005-2569
Mitre link : CVE-2005-2569
CVE.ORG link : CVE-2005-2569
JSON object : View
Products Affected
funkboard
- funkboard
CWE