2 matches found
CVE-2010-2463
CVE-2010-2463 affects Jamroom before 4.1.9. The XSS vulnerability occurs in forum.php’s modify action via the post_id parameter due to input sanitization flaws, allowing remote attackers to inject arbitrary HTML/JavaScript into users’ browsers. An exploit example is provided by HTBridge (and rela...
CVE-2010-2463
Cross-site scripting XSS vulnerability in forum.php in Jamroom before 4.1.9 allows remote attackers to inject arbitrary web script or HTML via the postid parameter in a modify action...