CVE-2005-2569 Information

Description

Multiple cross-site scripting (XSS) vulnerabilities in FunkBoard 0.66CF and possibly earlier versions allow remote attackers to inject arbitrary web script or HTML via the fbusername or fbpassword parameter to (1) editpost.php (2) prefs.php (3) newtopic.php (4) reply.php or (5) profile.php the (6) fbusername (7) fmail (8) www (9) icq (10) yim (11) location (12) sex (13) interebbies (14) sig or (15) aim parameter to register.php or (16) subject parameter to newtopic.php.

Reference

http://marc.info/?l=bugtraq&m=112360702307424&w=2 http://marc.info/?l=bugtraq&m=112413891603018&w=2