CVE-2004-0359 Information

Description

Cross-site scripting (XSS) vulnerability in index.php for Invision Power Board 1.3 final allows remote attackers to execute arbitrary script as other users via the (1) c (2) f (3) showtopic (4) showuser or (5) username parameters.

Reference

http://marc.info/?l=bugtraq&m=107851589701916&w=2 http://secunia.com/advisories/11053 http://www.osvdb.org/4154 http://www.securityfocus.com/bid/9768 https://exchange.xforce.ibmcloud.com/vulnerabilities/15403