exploitDog

CVE-2005-3776

Опубликовано: 23 нояб. 2005

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Multiple cross-site scripting (XSS) vulnerabilities in MyBulletinBoard (MyBB) 1.0 PR2 Rev 686 allow remote attackers to inject arbitrary web script or HTML via (1) the subject field when creating a new thread and (2) information passed to the Reputation system.

Ссылки

http://marc.info/?l=bugtraq&m=113198945111329&w=2
http://secunia.com/advisories/17577/
Vendor Advisory
http://marc.info/?l=bugtraq&m=113198945111329&w=2
http://secunia.com/advisories/17577/
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:mybulletinboard:mybulletinboard:preview_release_2_rev_686:*:*:*:*:*:*:*

EPSS

Процентиль: 53%

0.00297

Низкий

4.3 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-v4wr-6348-f328

github

почти 4 года назад

Multiple cross-site scripting (XSS) vulnerabilities in MyBulletinBoard (MyBB) 1.0 PR2 Rev 686 allow remote attackers to inject arbitrary web script or HTML via (1) the subject field when creating a new thread and (2) information passed to the Reputation system.

EPSS

Процентиль: 53%

0.00297

Низкий

4.3 Medium

CVSS2

Дефекты

NVD-CWE-Other