5.8 Medium
AI Score
Confidence
High
0.017 Low
EPSS
Percentile
87.9%
Cross-site scripting (XSS) vulnerability in viewforum.php in Ultimate PHP Board (UPB) 1.8 through 1.9.6 allows remote attackers to inject arbitrary web script or HTML via the postorder parameter.
marc.info/?l=bugtraq&m=111600262424876&w=2
www.securityfocus.com/bid/13621