Vulnerabilities > Zeroboard > Zeroboard > 4.1.pl6

DATE CVE VULNERABILITY TITLE RISK
2006-03-14 CVE-2006-1222 HTML Injection vulnerability in Zeroboard
Multiple cross-site scripting (XSS) vulnerabilities in zeroboard 4.1 pl7 allows allow remote attackers to inject arbitrary web script or HTML via the (1) memo box title, (2) user email, and (3) homepage fields.
network
zeroboard
4.3
4.3
2005-02-19 CVE-2005-0495 Cross-Site Scripting vulnerability in Zeroboard
Cross-site scripting (XSS) vulnerability in ZeroBoard allows remote attackers to inject arbitrary web script or HTML via the (1) sn1, (2) year, or (3) page parameter to zboard.php or (4) filename to view_image.php.
network
zeroboard
4.3
4.3