CVE-2010-4772
CVE-2010-4772 documents an XSS vulnerability in S-CMS 2.5. The issue resides in blocks/lang.php, where the id parameter passed to viewforum.php is susceptible to script/HTML injection. The vulnerability is triggered remotely via that parameter, enabling an attacker to inject arbitrary web script ...