2 matches found
CVE-2006-4881
Multiple cross-site scripting XSS vulnerabilities in David Bennett PHP-Post PHPp 1.0 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 the replyuser parameter in a pm.php; 2 the txtjumpto parameter in b dropdown.php; the 3 txterror and 4 txttemplatenotexist parameter...
CVE-2006-4881
CVE-2006-4881 concerns multiple cross-site scripting (XSS) vulnerabilities in David Bennett PHP-Post (PHPp) 1.0 and earlier. The issues allow remote attackers to inject arbitrary web script/HTML through specific parameters across several pages: (1) replyuser in pm.php; (2) txt_jumpto in dropdown....