exploitDog

CVE-2006-1716

Опубликовано: 11 апр. 2006

Источник: nvd

CVSS2: 5.1

EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in inc/functions_post.php in MyBB (aka MyBulletinBoard) 1.10 allows remote attackers to inject arbitrary web script or HTML via a JavaScript event in a BBCode img tag. NOTE: the email vector is already covered by CVE-2006-1625, although it might stem from the same core issue.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:mybulletinboard:mybulletinboard:1.10:*:*:*:*:*:*:*

EPSS

Процентиль: 80%

0.01414

Низкий

5.1 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-xc9w-q566-vx6m

github

почти 4 года назад

Cross-site scripting (XSS) vulnerability in inc/functions_post.php in MyBB (aka MyBulletinBoard) 1.10 allows remote attackers to inject arbitrary web script or HTML via a JavaScript event in a BBCode img tag. NOTE: the email vector is already covered by CVE-2006-1625, although it might stem from the same core issue.

EPSS

Процентиль: 80%

0.01414

Низкий

5.1 Medium

CVSS2

Дефекты

NVD-CWE-Other