Vbseo · Vbseo · CVE-2012-6666
Name of the Vulnerable Software and Affected Versions:
vBSeo versions prior to 3.6.0PL2
Description:
The issue allows for XSS attacks via the `u` parameter in the `member.php` endpoint.
Recommendations:
For versions prior to 3.6.0PL2, update to version 3.6.0PL2 or later to resolve the issue.