4 matches found
XMB 1.9.3 U2U.PHP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/15342/info XMB is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser o...
CVE-2005-3688
Cross-site scripting XSS vulnerability in members.php in XMB 1.9.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the "Your Current Mood" field in the registration page...
CVE-2005-3688
The CVE-2005-3688 entry describes a cross-site scripting (XSS) vulnerability in XMB Forum up to version 1.9.3, in members.php, exploitable via the Your Current Mood field on the registration page. The vulnerability allows remote attackers to inject arbitrary script/HTML. A related PT-2005-4444 ad...
CVE-2005-3544
** vuln: XMB 1.9.3** has an XSS in u2u.php that lets remote attackers inject arbitrary scripts via the username parameter. The vulnerability arises from insufficient input sanitization in the web interface, enabling script execution in the victim’s browser. No explicit exploit details, affected v...