CVE-2006-2070

CVE-2006-2070 describes a cross-site scripting (XSS) vulnerability in DevBB 1.0.0 and earlier. The vulnerable component is member.php in the viewpro action, where the member parameter leads to script/HTML injection. The vulnerability enables remote attackers to inject arbitrary web script or HTML...