CVE-2005-0629

Name of the Vulnerable Software and Affected Versions 427BB version 2.2

Description The issue concerns multiple cross-site scripting (XSS) vulnerabilities. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML via the user or Avatar parameters in the profile.php file.

Recommendations For version 2.2, update to a version that includes a fix for this issue to prevent exploitation. As a temporary workaround, consider restricting input for the user and Avatar parameters to minimize the risk of XSS attacks.