CVE-2008-6885
XOOPS CVE-2008-6885: is an XSS in the pmlite.php component affecting XOOPS versions 2.3.1 and 2.3.2a . An attacker can inject arbitrary web script or HTML via a STYLE attribute in a URL BBCode tag in a private message. Root cause: improper handling of STYLE attributes in BBCode within private mes...