Punbb · Punbb · CVE-2008-3968
**Name of the Vulnerable Software and Affected Versions**
PunBB versions prior to 1.2.20
**Description**
The issue is related to a cross-site scripting (XSS) vulnerability. This vulnerability allows remote attackers to inject arbitrary web script or HTML via the `p` parameter in the "userlist.php" file.
**Recommendations**
For versions prior to 1.2.20, update to version 1.2.20 or later to resolve the issue.