CVE-2009-3649
PBBoard (Power Bulletin Board) suffers a cross-site scripting (XSS) vulnerability in forums/index.php, affecting version 2.0.2 and earlier. The issue arises in the id parameter of the "new_topic" action, allowing remote attackers to inject arbitrary web script or HTML. Affected software is PBBoar...