Multiple cross-site scripting (XSS) vulnerabilities in users.php in NinkoBB 1.3 RC5 allow remote malicious users to inject arbitrary web script or HTML via the (1) first_name, (2) last_name, (3) msn, or (4) aim parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ninkobb ninkobb 1.3 |