Multiple cross-site scripting (XSS) vulnerabilities in FLIP 0.9.0.1029 allow remote attackers to inject arbitrary web script or HTML via the (1) name parameter in text.php and (2) frame parameter in forum.php.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Flip | Flip | 0.9.0.1029 (including) | 0.9.0.1029 (including) |
References
- http://pridels0.blogspot.com/2005/12/flip-xss-vuln.html
- http://secunia.com/advisories/18128
- http://www.osvdb.org/21788
- http://www.osvdb.org/21789
- http://www.securityfocus.com/bid/15947
- http://www.vupen.com/english/advisories/2005/2987
- http://pridels0.blogspot.com/2005/12/flip-xss-vuln.html
- http://secunia.com/advisories/18128
- http://www.osvdb.org/21788
- http://www.osvdb.org/21789
- http://www.securityfocus.com/bid/15947
- http://www.vupen.com/english/advisories/2005/2987