CVE-2011-0909 Information

Description

Cross-site scripting (XSS) vulnerability in Vanilla Forums before 2.0.17.6 allows remote attackers to inject arbitrary web script or HTML via the p parameter to an unspecified component a different vulnerability than CVE-2011-0526.

Reference

http://www.vanillaforums.org/discussion/comment/134729/Comment_134729