ID CVE-2008-5433Type cveReporter NVDModified 2009-02-06T02:03:52
Description
Cross-site scripting (XSS) vulnerability in login.php in PunBB 1.3 and 1.3.1 allows remote attackers to inject arbitrary web script or HTML via the password field.
{"viewCount": 0, "lastseen": "2016-09-03T11:25:03", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "type": "cve", "description": "Cross-site scripting (XSS) vulnerability in login.php in PunBB 1.3 and 1.3.1 allows remote attackers to inject arbitrary web script or HTML via the password field.", "assessment": {"name": "", "system": "", "href": ""}, "reporter": "NVD", "published": "2008-12-11T10:30:00", "history": [], "title": "CVE-2008-5433", "cpe": ["cpe:/a:punbb:punbb:1.3.1", "cpe:/a:punbb:punbb:1.3"], "bulletinFamily": "NVD", "edition": 1, "scanner": [], "id": "CVE-2008-5433", "cvelist": ["CVE-2008-5433"], "hash": "af56f7c1dee3bb09f4d4ce01b6899fc573b986154c6ab68661703a7befa978f3", "modified": "2009-02-06T02:03:52", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-5433", "objectVersion": "1.2", "references": ["http://punbb.informer.com/forums/topic/20475/punbb-132/", "http://punbb.informer.com/", "http://www.openwall.com/lists/oss-security/2008/12/09/3", "http://punbb.informer.com/wiki/punbb13/bugs#possible_xss_in_login"], "enchantments": {"score": {"value": 4.3, "vector": "NONE", "modified": "2016-09-03T11:25:03"}, "dependencies": {"references": [], "modified": "2016-09-03T11:25:03"}, "vulnersScore": 4.3}}
{}
