Required CVE Record Information
Description
Cross-site scripting (XSS) vulnerability in index.php in Simple Machines Forum (SMF) 1.1 RC2 allows remote attackers to inject arbitrary web script or HTML via the action parameter.
References 4 Total
- securityfocus.com: 20061019 [Xss] IN SMF 1.1 RC2 mailing-list
- securityreason.com: 1772 third-party-advisory
- securityfocus.com: 20629 vdb-entry
- exchange.xforce.ibmcloud.com: smf-index-xss(29690) vdb-entry
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 4 Total
- securityfocus.com: 20061019 [Xss] IN SMF 1.1 RC2 mailing-listx_transferred
- securityreason.com: 1772 third-party-advisoryx_transferred
- securityfocus.com: 20629 vdb-entryx_transferred
- exchange.xforce.ibmcloud.com: smf-index-xss(29690) vdb-entryx_transferred