CVE-2005-3264
Zeroblog is affected by a Cross-Site Scripting (XSS) vulnerability in thread.php via the threadID parameter, observed in Zeroblog 1.1f and 1.2a. The issue is caused by insufficient input sanitization on threadID, allowing arbitrary web script or HTML to be injected by a remote attacker. Connected...