Description
Cross-site scripting (XSS) vulnerability in search.php in phpBB 2.0.3 and possibly earlier versions allows remote attackers to inject arbitrary web script or HTML via the search_username parameter in searchuser mode.
Remediation
References
Related Vulnerabilities
ZenCart Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2017-11675)
PostgreSQL Incorrect Authorization Vulnerability (CVE-2018-10925)
WordPress Plugin Opening Hours Cross-Site Scripting (2.3.0)
Apache Tomcat Improper Input Validation Vulnerability (CVE-2013-4286)
Joomla Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-15882)