2 matches found
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Devsyn Open Bulletin Board OpenBB 1.0.6 allow remote attackers to inject arbitrary web script or HTML via 1 the FID parameter in board.php and 2 the TID parameter in read.php. NOTE: the SQL injection issues are already covered by CVE-2005-1612...
CVE-2006-2088
Multiple cross-site scripting XSS vulnerabilities in Devsyn Open Bulletin Board OpenBB 1.0.6 allow remote attackers to inject arbitrary web script or HTML via 1 the FID parameter in board.php and 2 the TID parameter in read.php. NOTE: the SQL injection issues are already covered by CVE-2005-1612...