CVE-2008-3968

Cross-site scripting (XSS) vulnerability in userlist.php in PunBB before 1.2.20 allows remote attackers to inject arbitrary web script or HTML via the p parameter.

Date published : 2008-09-10

http://www.securityfocus.com/bid/31082

http://punbb.informer.com/download/changelogs/1.2.19_to_1.2.20.txt