Xiuno BBS is an open source PHP and MySQL-based forum program. Xiuno BBS suffers from a cross-site scripting vulnerability that stems from the failure of the installinstall.sql component of the product to properly validate user input data. An attacker can execute arbitrary web scripts and HTML by modifying the doctype to 0.
CPE | Name | Operator | Version |
---|---|---|---|
xiuno xiuno bbs | eq | 4.0.4 |