CVE-2009-1880 Information

Description

Cross-site scripting (XSS) vulnerability in MT312 REP-BBS allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to (1) model.php and (2) config.php with timestamps before 20090521.

Reference

http://jvn.jp/en/jp/JVN01115659/index.html http://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-000033.html http://secunia.com/advisories/35251