CVE-2005-3638 Information

Description

Cross-site scripting (XSS) vulnerabilities in Ekinboard 1.0.3 allow remote attackers to inject arbitrary web script or HTML via the (1) id parameter in profile.php and (2) titles of posts.

Reference

http://irannetjob.com/content/view/162/28/ http://secunia.com/advisories/17569 http://securitytracker.com/id?1015207 http://www.osvdb.org/20844 http://www.securityfocus.com/bid/15443 http://www.securityfocus.com/bid/15447 http://www.vupen.com/english/advisories/2005/2419