Lucene search
HistoryJun 01, 2006 - 1:02 a.m.
CVE-2006-2724
cve-2006-2724
cross-site scripting
xss vulnerability
punbb
web security
5.3 Medium
AI Score
Confidence
High
6.8 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.007 Low
EPSS
Percentile
80.2%
Cross-site scripting (XSS) vulnerability in PunBB 1.2.11 allows remote authenticated administrators to inject arbitrary HTML or web script to other administrators via the “Admin note” feature, a different vulnerability than CVE-2006-2227.
Affected configurations
Node
punbbpunbbMatch1.2.11
| CPE | Name | Operator | Version |
|---|---|---|---|
| punbb:punbb | punbb | eq | 1.2.11 |
Related
prion
prion
Cross site scripting
2006-06-01 01:02:00
Cross site scripting
2006-05-05 19:02:00
nvd
nvd
CVE-2006-2724
2006-06-01 01:02:00
CVE-2006-2227
2006-05-05 19:02:00
cvelist
cvelist
CVE-2006-2724
2006-06-01 01:00:00
CVE-2006-2227
2006-05-05 19:00:00
cve
cve
CVE-2006-2227
2006-05-05 19:02:00
5.3 Medium
AI Score
Confidence
High
6.8 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.007 Low
EPSS
Percentile
80.2%
Related for CVE-2006-2724