Lucene search
HistoryApr 05, 2006 - 10:04 a.m.
CVE-2006-1625
mybb
mybulletinboard
1.10
xss
vulnerability
inc/functions_post.php
nvd
5.8 Medium
AI Score
Confidence
High
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.03 Low
EPSS
Percentile
90.8%
Cross-site scripting (XSS) vulnerability in inc/functions_post.php in MyBB (aka MyBulletinBoard) 1.10 allows remote attackers to inject arbitrary web script or HTML via a JavaScript event in a BBCode email tag, as demonstrated using the onmousemove event.
| CPE | Name | Operator | Version |
|---|---|---|---|
| mybulletinboard:mybulletinboard | mybulletinboard | eq | 1.10 |
Related
prion
prion
Cross site scripting
2006-04-05 10:04:00
Cross site scripting
2006-04-11 23:02:00
cvelist
cvelist
CVE-2006-1625
2006-04-05 10:00:00
CVE-2006-1716
2006-04-11 23:00:00
cve
cve
CVE-2006-1716
2006-04-11 23:02:00
5.8 Medium
AI Score
Confidence
High
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.03 Low
EPSS
Percentile
90.8%
Related for CVE-2006-1625