CVE-2005-3260
CVE-2005-3260 describes multiple XSS flaws in versatileBulletinBoard (vBB) 1.0.0 RC2. The vulnerabilities allow remote attackers to inject arbitrary script/HTML via the url parameter in dereferrer.php and the file parameter in imagewin.php. The NVD entry lists a MEDIUM base score (CVSS2: AV:N/AC:...