CVE-2006-4079 Information

Description

Cross-site scripting (XSS) vulnerability in newpost.php in DeluxeBB 1.08 and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the subject parameter (aka the topic title field).

Reference

http://securityreason.com/securityalert/1381 http://www.osvdb.org/27833 http://www.securityfocus.com/archive/1/442464/100/0/threaded http://www.securityfocus.com/bid/19390 https://exchange.xforce.ibmcloud.com/vulnerabilities/28272