2 matches found
CVE-2006-0102
CVE-2006-0102 affects TinyPHPForum (TPF) 3.6 and earlier. The issue is a Cross-site Scripting (XSS) vulnerability that allows remote attackers to inject arbitrary web script through a javascript: scheme in an "[a]" bbcode tag, possibly via the txt parameter to action.php. The NVD description conf...
CVE-2006-0102
Cross-site scripting XSS vulnerability in TinyPHPForum TPF 3.6 and earlier allows remote attackers to inject arbitrary web script via a javascript: scheme in an "a" bbcode tag, possibly the txt parameter to action.php...