CVE-2007-3838
CVE-2007-3838 describes an XSS in takeprofedit.php for TBDev.NET DR 11-10-05-BETA-SF1:111005 and earlier. The vulnerability allows remote attackers to inject arbitrary script via the SRC attribute of a SCRIPT element in the avatar parameter. The affected component is takeprofedit.php; the issue i...