CVE-2005-0495 - Unvisored Viper

Description

Cross-site scripting (XSS) vulnerability in ZeroBoard allows remote attackers to inject arbitrary web script or HTML via the (1) sn1 (2) year or (3) page parameter to zboard.php or (4) filename to view_image.php.

Reference

http://securitytracker.com/id?1013243 http://marc.info/?l=bugtraq&m=110884332105513&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/19420