DeluxeBB CVE-2006-3303 Cross-Site Scripting Vulnerability

DeluxeBB CVE-2006-3303 Cross-Site Scripting Vulnerability

DeluxeBB is prone to a cross-site scripting vulnerability. Multiple cross-site scripting (XSS) vulnerabilities in pm.php in DeluxeBB 1.07 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) subject or (2) to parameters.