CVE-2008-6727 (upb)

Cross-site scripting (XSS) vulnerability in Ultimate PHP Board (UPB) 2.2.2, 2.2.1, and earlier 2.x versions allows remote attackers to inject arbitrary web script or HTML via the User-Agent HTTP header.

URL: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6727