Описание
Cross-site scripting (XSS) vulnerability in Ideal Science IdealBB 1.4.9 through 1.5.3 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:ideal_science:idealbb:1.4.9:*:*:*:*:*:*:*
cpe:2.3:a:ideal_science:idealbb:1.4.9_beta:*:*:*:*:*:*:*
cpe:2.3:a:ideal_science:idealbb:1.4.9a:*:*:*:*:*:*:*
cpe:2.3:a:ideal_science:idealbb:1.5.1:*:*:*:*:*:*:*
cpe:2.3:a:ideal_science:idealbb:1.5.2:*:*:*:*:*:*:*
cpe:2.3:a:ideal_science:idealbb:1.5.2a:*:*:*:*:*:*:*
cpe:2.3:a:ideal_science:idealbb:1.5.2c:*:*:*:*:*:*:*
cpe:2.3:a:ideal_science:idealbb:1.5.3:*:*:*:*:*:*:*
cpe:2.3:a:ideal_science:idealbb:1.5_beta1:*:*:*:*:*:*:*
cpe:2.3:a:ideal_science:idealbb:1.5_beta2:*:*:*:*:*:*:*
cpe:2.3:a:ideal_science:idealbb:1.5_beta3:*:*:*:*:*:*:*
cpe:2.3:a:ideal_science:idealbb:1.5_beta4:*:*:*:*:*:*:*
cpe:2.3:a:ideal_science:idealbb:1.5_beta5:*:*:*:*:*:*:*
cpe:2.3:a:ideal_science:idealbb:1.5_rc1:*:*:*:*:*:*:*
EPSS
Процентиль: 56%
0.00335
Низкий
4.3 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Cross-site scripting (XSS) vulnerability in Ideal Science IdealBB 1.4.9 through 1.5.3 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
EPSS
Процентиль: 56%
0.00335
Низкий
4.3 Medium
CVSS2
Дефекты
NVD-CWE-Other