Lostbook · Lostbook · CVE-2004-2064
**Name of the Vulnerable Software and Affected Versions**
lostBook versions 1.1 and earlier
**Description**
A cross-site scripting issue allows remote attackers to inject arbitrary web script via the `Email` or `Website` fields.
**Recommendations**
For lostBook versions 1.1 and earlier, update to a version later than 1.1 to resolve the issue.