Cross-site scripting (XSS) vulnerability in MercuryBoard 1.0.x and 1.1.x allows remote attackers to inject arbitrary HTML and web script via the f parameter.
Software | From | Fixed in |
---|---|---|
mercuryboard / mercuryboard | 1.0 | 1.0.x |
mercuryboard / mercuryboard | 1.1 | 1.1.x |
mercuryboard / mercuryboard | 1.1.1 | 1.1.1.x |