CVE-2007-4899
Boinc Forum 5.10.20 and earlier contains multiple XSS vulnerabilities. An attacker can inject arbitrary script/HTML via (1) id in forum_forum.php or (2) search_string in forum_text_search_action.php for both titles and bodies searches. Affected product: Boinc Forum versions up to 5.10.20. The sou...