E107 · E107 · CVE-2004-2031
**Name of the Vulnerable Software and Affected Versions**
e107 (affected versions not specified)
**Description**
A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML via the URL, MSN, or AIM fields in user.php.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.