2008-12-09 11:00:00
mitre
PUBLISHED
Cross-site scripting (XSS) vulnerability in the listonlineusers (aka "Whos online") component in mvnForum before 1.2.1 GA allows remote attackers to inject arbitrary web script or HTML via unspecified parameters.