Cross-site scripting (XSS) vulnerability in bb-login.php in bbPress 0.8.1 allows remote attackers to inject arbitrary web script or HTML via the re parameter. NOTE: exploitation may require forcing the client to send a certain Referer header.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Bbpress | Bbpress | 0.8.1 (including) | 0.8.1 (including) |