CVE-2005-4072

2005-12-07T20:03:00
ID CVE-2005-4072
Type cve
Reporter NVD
Modified 2011-03-07T21:27:39

Description

Cross-site scripting (XSS) vulnerability in CFMagic Magic Forum Personal 2.5 and earlier allows remote attackers to inject arbitrary web script or HTML via the Words parameter in search_forums.cfm, as used in the "Search For:" field.