PT-2009-5921 · Power · Power Bulletin Board

Name of the Vulnerable Software and Affected Versions: Power Bulletin Board versions 2.0.2 and earlier Description: A cross-site scripting issue allows remote attackers to inject arbitrary web script or HTML via the id parameter in a "new topic" action. This occurs in the forums/index.php file...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Bitweaver 2.0.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the PATHINFO to 1 users/register.php or 2 search/index.php, or an editcomments action in 3 wiki/index.php or 4 forums/index.php. NOTE: the error...