Описание
Multiple cross-site scripting (XSS) vulnerabilities in Ideal Science Ideal BB 1.5.4a and earlier allow remote attackers to inject arbitrary web script or HTML via unknown vectors. NOTE: due to lack of details from the researcher, it is not clear whether this overlaps CVE-2004-2207.
Ссылки
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:ideal_science:idealbb:1.5.0_beta1:*:*:*:*:*:*:*
cpe:2.3:a:ideal_science:idealbb:1.5.0_beta2:*:*:*:*:*:*:*
cpe:2.3:a:ideal_science:idealbb:1.5.0_beta3:*:*:*:*:*:*:*
cpe:2.3:a:ideal_science:idealbb:1.5.0_beta4:*:*:*:*:*:*:*
cpe:2.3:a:ideal_science:idealbb:1.5.0_rc1:*:*:*:*:*:*:*
cpe:2.3:a:ideal_science:idealbb:1.5.1:*:*:*:*:*:*:*
cpe:2.3:a:ideal_science:idealbb:1.5.2:*:*:*:*:*:*:*
cpe:2.3:a:ideal_science:idealbb:1.5.2a:*:*:*:*:*:*:*
cpe:2.3:a:ideal_science:idealbb:1.5.2b:*:*:*:*:*:*:*
cpe:2.3:a:ideal_science:idealbb:1.5.2c:*:*:*:*:*:*:*
cpe:2.3:a:ideal_science:idealbb:1.5.3:*:*:*:*:*:*:*
cpe:2.3:a:ideal_science:idealbb:1.5.3_beta1:*:*:*:*:*:*:*
cpe:2.3:a:ideal_science:idealbb:1.5.3_beta2:*:*:*:*:*:*:*
cpe:2.3:a:ideal_science:idealbb:1.5.3a:*:*:*:*:*:*:*
cpe:2.3:a:ideal_science:idealbb:1.5.3b:*:*:*:*:*:*:*
cpe:2.3:a:ideal_science:idealbb:1.5.4a:*:*:*:*:*:*:*
EPSS
Процентиль: 68%
0.00558
Низкий
4.3 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Multiple cross-site scripting (XSS) vulnerabilities in Ideal Science Ideal BB 1.5.4a and earlier allow remote attackers to inject arbitrary web script or HTML via unknown vectors. NOTE: due to lack of details from the researcher, it is not clear whether this overlaps CVE-2004-2207.
EPSS
Процентиль: 68%
0.00558
Низкий
4.3 Medium
CVSS2
Дефекты
NVD-CWE-Other