CVE-2005-0660 Information

Description

Multiple cross-site scripting (XSS) vulnerabilities in D-Forum 1.11 allows remote attackers to inject arbitrary web script or HTML via certain fields as demonstrated using the page parameter in nav.php3.

Reference

http://secunia.com/advisories/14464 http://securitytracker.com/id?1013349