CVE-2006-1264
CVE-2006-1264 affects xhawk.net discussion 2.0 beta2. The issue is a Cross-site scripting (XSS) vulnerability where a Javascript URI in a BBCode img tag can be exploited to inject arbitrary script/HTML. The core problem is user-supplied content within a BBCode image tag not properly sanitized, en...