CVE-2008-0284 Information

Description

Cross-site scripting (XSS) vulnerability in Simple Machines Forum (SMF) 1.1.4 and earlier allows remote attackers to inject arbitrary web script or HTML via (1) Itemid or (2) topic arguments.

Reference

http://securityreason.com/securityalert/3540 http://www.securityfocus.com/archive/1/486074/100/0/threaded http://www.securityfocus.com/bid/27218 https://exchange.xforce.ibmcloud.com/vulnerabilities/39585