CVE-2006-0156

Name of the Vulnerable Software and Affected Versions Foxrum version 4.0.4f

Description The issue is related to a cross-site scripting (XSS) vulnerability. This vulnerability allows remote attackers to inject arbitrary Javascript code via the javascript URI in bbcode url tags. The affected files are addpost1.php and addtopic1.php.

Recommendations For Foxrum version 4.0.4f, consider disabling the use of javascript URI in bbcode url tags in addpost1.php and addtopic1.php until a patch is available. Restrict access to these files to minimize the risk of exploitation. Avoid using the javascript URI scheme in bbcode url tags in the affected API endpoints until the issue is resolved.