CVE-2004-1779 - Contrasting Lie

Description

Cross-site scripting (XSS) vulnerability in board.php for ThWboard before beta 2.84 allows remote attackers to inject arbitrary web script or HTML via the lastvisited parameter.

Reference

http://sourceforge.net/project/shownotes.php?release_id=207893 http://cvs.sourceforge.net/viewcvs.py/thwb/thwb/board.php?r1=1.11&r2=1.12 http://www.securityfocus.com/bid/9367 http://www.osvdb.org/3330 http://securitytracker.com/id?1008617 http://secunia.com/advisories/10546 https://exchange.xforce.ibmcloud.com/vulnerabilities/14143