CVE-2006-0080
CVE-2006-0080 describes a cross-site scripting (XSS) vulnerability in vBulletin 3.5.2 (and possibly earlier). The issue arises because user-provided data in the title of an event is not properly filtered by the calendar.php and reminder.php paths, enabling remote attackers to inject arbitrary web...