Cross-site scripting (XSS) vulnerability in login.php in Jamroom 3.0.16 and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the forgot parameter in the forgot mode.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published: 2006-09-28T00:00:00
Updated: 2024-08-07T19:32:23.264Z
Reserved: 2006-09-27T00:00:00
Link: CVE-2006-5060

No data.

Status : Deferred
Published: 2006-09-28T00:07:00.000
Modified: 2025-04-09T00:30:58.490
Link: CVE-2006-5060

No data.