• info
• discussion
• exploit
• solution
• references

VUBB Index.PHP Cross-Site Scripting Vulnerability

No exploit is required.

Example URI have been provided:

http://www.example.com/forum/index.php?act=newreply&t='>%3CIFRAME%20SRC=javascript:alert(%2527XSS%2527)%3E%3C/IFRAME%3E&f=6