Total vulnerabilities in the database
Cross-site scripting (XSS) vulnerability in u2u.php in XMB 1.9.3 allows remote attackers to inject arbitrary web script or HTML via the username parameter.
CVSS v2:
No CWE or OWASP classifications available.