ZeroBoard Multiple Cross-Site Scripting Vulnerabilities

info
discussion
exploit
solution
references

ZeroBoard Multiple Cross-Site Scripting Vulnerabilities

ZeroBoard is reported prone to multiple cross-site scripting vulnerabilities.

An attacker may leverage these issues to have arbitrary script code executed in the browser of an unsuspecting user. This may facilitate theft of cookie-based authentication credentials as well as other attacks.

All versions of ZeroBoard are considered to be vulnerable at the moment.