2 matches found
CVE-2008-2024
Cross-site scripting XSS vulnerability in index.php in miniBB 2.2, and possibly earlier, when registerglobals is enabled, allows remote attackers to inject arbitrary web script or HTML via the glang parameter in a registernew action...
CVE-2008-2024
CVE-2008-2024 describes a cross-site scripting (XSS) vulnerability in the PHP script index.php of miniBB 2.2 (and possibly earlier) that can be triggered when register_globals is enabled. The issue allows remote attackers to inject arbitrary scripts or HTML via the glang[] parameter in a register...