Lucene search
HistoryOct 03, 2022 - 4:20 p.m.
CVE-2010-3424
cve-2010-3424
cross-site scripting
xss
invision power board
ip.board 3.1.2
security vulnerability
5.8 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
49.7%
Cross-site scripting (XSS) vulnerability in admin/sources/classes/bbcode/custom/defaults.php in Invision Power Board (IP.Board) 3.1.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Affected configurations
Node
invisioncommunityinvision_power_boardMatch3.1.2
| CPE | Name | Operator | Version |
|---|---|---|---|
| invisioncommunity:invision_power_board | invisioncommunity invision power board | eq | 3.1.2 |
Related
openvas
openvas
Invision Power Board <= 3.1.2 BBCode XSS Vulnerability
2010-09-09 00:00:00
nvd
nvd
CVE-2010-3424
2010-09-16 22:00:03
prion
prion
Cross site scripting
2010-09-16 22:00:00
cvelist
cvelist
CVE-2010-3424
2022-10-03 16:20:55
5.8 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
49.7%
Related for CVE-2010-3424