Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in post.php in SkyeBox 1.2.0 allow remote attackers to inject arbitrary web script or HTML via the 1 name or 2 message parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information,...

SkyeShoutbox <= v.1.2.0 XSS

SkyeShoutbox = v.1.2.0 XSS Discovered by: Nomenumbra Date: 21/5/2006 impact:moderate possible defacement SkyeShoutbox doesn't filter any input at all, thus allowing attackers to inject arbitrary html or javascript. Nomenumbra...