CVE-2005-2894

Name of the Vulnerable Software and Affected Versions PBLang versions 4.65 and earlier

Description A cross-site scripting (XSS) issue exists in the user registration functionality, allowing remote attackers to inject arbitrary web script or PHP code via the location field. This could potentially lead to unauthorized actions on the affected system.

Recommendations For versions 4.65 and earlier, consider validating and sanitizing user input in the location field to prevent XSS attacks. As a temporary workaround, restrict access to the user registration functionality until a fix is available.