A cross-site scripting (XSS) vulnerability in the component install\install.sql of Xiuno BBS 4.0.4 allows malicious users to execute arbitrary web scripts or HTML via changing the doctype value to 0.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
xiuno xiunobbs 4.0.4 |