Cross-site scripting (XSS) vulnerability in global.php in ShoutBOOK 1.1 allows remote attackers to inject arbitrary web script or HTML via the (1) NAME and (2) COMMENTS parameters.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Shoutbook | Cynical_games | 1.1 (including) | 1.1 (including) |