CVE-2010-4874

CVE-2010-4874 affects NinkoBB 1.3 RC5. Multiple XSS flaws in users.php allow injection of arbitrary script/HTML via parameters first_name, last_name, msn, and aim due to input sanitation error. This enables a remote attacker to execute scripts in a victim’s browser in the context of the vulnerabl...

CVE-2010-4874

creationtimestamp| type| source ---|---|--- 2010-10-27 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/15330...