CVE-2005-1584

Name of the Vulnerable Software and Affected Versions Quick.Forum version 2.1.6

Description A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML via the topic field in a "NewTopic" action. This can be exploited by sending a malicious request to the /index.php endpoint.

Recommendations For Quick.Forum version 2.1.6, update the index.php file to properly sanitize user input in the topic field to prevent XSS attacks. As a temporary workaround, consider restricting access to the "NewTopic" action until a patch is available.