mirror of
https://github.com/0xMarcio/cve.git
synced 2025-12-16 20:27:21 +00:00
786 B
786 B
CVE-2010-4874
Description
Multiple cross-site scripting (XSS) vulnerabilities in users.php in NinkoBB 1.3 RC5 allow remote attackers to inject arbitrary web script or HTML via the (1) first_name, (2) last_name, (3) msn, or (4) aim parameter.
POC
Reference
- http://packetstormsecurity.org/1010-exploits/ninkobb-xss.txt
- http://securityreason.com/securityalert/8430
- http://www.exploit-db.com/exploits/15330
Github
No PoCs found on GitHub currently.