Multiple cross-site scripting (XSS) vulnerabilities in profile.php in DbbS 2.0-alpha and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) ulocation or (2) uhobbies parameters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dbbs dbbs 2.0 |
||
dbbs dbbs |