CVE-2005-1614 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2005-1614

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

Cross-site scripting (XSS) vulnerability in viewforum.php in Ultimate PHP Board (UPB) 1.8 through 1.9.6 allows remote attackers to inject arbitrary web script or HTML via the postorder parameter.

Affected Software

Name	Vendor	Start Version	End Version
Ultimate_php_board	Ultimate_php_board	1.8 (including)	1.8 (including)
Ultimate_php_board	Ultimate_php_board	1.8.2 (including)	1.8.2 (including)
Ultimate_php_board	Ultimate_php_board	1.9 (including)	1.9 (including)
Ultimate_php_board	Ultimate_php_board	1.9.6 (including)	1.9.6 (including)

References

http://marc.info/?l=bugtraq\u0026m=111600262424876\u0026w=2
http://www.securityfocus.com/bid/13621
http://marc.info/?l=bugtraq\u0026m=111600262424876\u0026w=2
http://www.securityfocus.com/bid/13621