2 matches found
CVE-2006-1637
The CVE-2006-1637 entry describes multiple XSS vulnerabilities in aWebBB 1.2. Affected scripts: post.php (parameters tname, fpost); editac.php (fullname, emailadd, country, sig, otherav); register.php (fullname, emailadd, country). The underlying issue is insufficient sanitization of user-supplie...
CVE-2006-1637
Multiple cross-site scripting XSS vulnerabilities in aWebBB 1.2 allow remote attackers to inject arbitrary web script or HTML via the 1 tname or 2 fpost parameters to a post.php; 3 fullname, 4 emailadd, 5 country, 6 sig, or 7 otherav parameters to b editac.php; or 8 fullname, 9 emailadd, or 10...