exploitDog

CVE-2008-0913

Опубликовано: 22 фев. 2008

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in Invision Power Board (IPB or IP.Board) 2.3.4 allows remote attackers to inject arbitrary web script or HTML via crafted BBCodes in an unspecified context.

Ссылки

http://forums.invisionpower.com/index.php?showtopic=269961
Patch
http://secunia.com/advisories/29055
Vendor Advisory
http://forums.invisionpower.com/index.php?showtopic=269961
Patch
http://secunia.com/advisories/29055
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:invision_power_services:invision_power_board:2.3.4:*:*:*:*:*:*:*

EPSS

Процентиль: 45%

0.00225

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-r5v5-xcxj-vxhm

github

почти 4 года назад

Cross-site scripting (XSS) vulnerability in Invision Power Board (IPB or IP.Board) 2.3.4 allows remote attackers to inject arbitrary web script or HTML via crafted BBCodes in an unspecified context.

EPSS

Процентиль: 45%

0.00225

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79