CVE-2005-1113 Information

Description

Multiple cross-site scripting (XSS) vulnerabilities in PhpBB Plus 1.52 and earlier allow remote attackers to inject arbitrary web script or HTML via the bsid parameter to (1) groupcp.php (2) index.php (3) portal.php (4) viewforum.php or (5) viewtopic.php (6) the c parameter to index.php or (7) the article parameter to portal.php.

Reference

http://marc.info/?l=bugtraq&m=111343406309969&w=2 http://www.digitalparadox.org/advisories/phpbbp.txt https://exchange.xforce.ibmcloud.com/vulnerabilities/20085