Cross-site scripting (XSS) vulnerability in acp/lib/class_db_mysql.php in Woltlab Burning Board (wBB) 2.3.4 allows remote attackers to inject arbitrary web script or HTML via the errormsg parameter when a SQL error is generated.
CPE | Name | Operator | Version |
---|---|---|---|
burning_board | le | 2.3.4 | |
burning_board | eq | <= 1.0.2pl2e-lite |