CVE-2005-0485 - Erysipelatous Braid
Description
Cross-site scripting (XSS) vulnerability in comment.php for paNews 2.0b4 for PHP Arena allows remote attackers to inject arbitrary HTML and web script via the showpost parameter.
Reference
http://www.securityfocus.com/bid/12576 http://marc.info/?l=bugtraq&m=110863062605906&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/19359