CVE-2006-1034

Name of the Vulnerable Software and Affected Versions Woltlab Burning Board (wBB) (affected versions not specified)

Description The issue concerns multiple cross-site scripting (XSS) vulnerabilities. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML. The username parameter to "galerie index.php" is a known vector for this issue. There is also a possible second vector via "galerie onfly.php", although it is not confirmed to be an XSS vulnerability.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.