CVE-2005-4460 Information

Description

Cross-site scripting (XSS) vulnerability in Beehive Forum 0.6.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) Name (2) Description and (3) Comment fields to (a) links.php and (b) links_add.php.

Reference

http://cvs.sourceforge.net/viewcvs.py/beehiveforum/beehiveforum/forum/index.php?rev=1.121&view=log http://secunia.com/advisories/18154 http://www.securityfocus.com/archive/1/419988/100/0/threaded http://www.securityfocus.com/bid/16002 http://www.vupen.com/english/advisories/2005/3043 https://exchange.xforce.ibmcloud.com/vulnerabilities/23879