E107 · E107 · CVE-2005-2327
**Name of the Vulnerable Software and Affected Versions**
e107 versions 0.617 and earlier
**Description**
The issue allows remote attackers to inject arbitrary web script or HTML via nested [url] BBCode tags, which can lead to cross-site scripting (XSS).
**Recommendations**
For versions 0.617 and earlier, update to a version later than 0.617 to resolve the issue.