CVE-2005-4333 Information

Description

Multiple cross-site scripting (XSS) vulnerabilities in Binary Board System (BBS) 0.2.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) inreplyto (2) article and (3) board parameters to reply.pl (4) branch (5) board and (6) stats.pl parameters to (b) stats.pl and (7) board parameter to (c) toc.pl.

Reference

http://pridels0.blogspot.com/2005/12/binary-board-system-xss-vuln.html http://www.osvdb.org/21893 http://www.osvdb.org/21894 http://www.osvdb.org/21895 http://www.securityfocus.com/bid/15913