CVE-2006-6459

Publication date

2006-12-11 17:00:00

Family

mitre

State

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in toplist.php in PhpBB Toplist 1.3.7 allows remote attackers to inject arbitrary HTML or web script via the (1) Name and (2) Information fields when adding a new site (toplistnew action).