exploitDog

GHSA-rxvx-4qf3-f363

Опубликовано: 30 апр. 2022

Источник: github

Github: Не прошло ревью

Описание

Cross-site scripting vulnerability in YaBB.cgi for Yet Another Bulletin Board (YaBB) 1 Gold SP1 and earlier allows remote attackers to execute arbitrary script as other web site visitors via script in the num parameter, which is not filtered in the resulting error message.

Cross-site scripting vulnerability in YaBB.cgi for Yet Another Bulletin Board (YaBB) 1 Gold SP1 and earlier allows remote attackers to execute arbitrary script as other web site visitors via script in the num parameter, which is not filtered in the resulting error message.

Ссылки

EPSS

Процентиль: 86%

0.03062

Низкий

CVE ID

Связанные уязвимости

CVE-2002-0955

nvd

больше 23 лет назад

Cross-site scripting vulnerability in YaBB.cgi for Yet Another Bulletin Board (YaBB) 1 Gold SP1 and earlier allows remote attackers to execute arbitrary script as other web site visitors via script in the num parameter, which is not filtered in the resulting error message.

EPSS

Процентиль: 86%

0.03062

Низкий

CVE ID