CVE-2007-3963
CVE-2007-3963 covers multiple XSS flaws in UseBB 1.0.7 and possibly other 1.0.x versions. The vulnerabilities allow remote attackers to inject arbitrary script/HTML via the PATH_INFO (PHP_SELF) to upgrade-0-2-3.php, upgrade-0-3.php, or upgrade-0-4.php in the install/ directory. The cited entries ...