CVE-2011-3371

🗓️ 02 Oct 2011 20:00:00Reported by redhatType

cve

cve🔗 web.nvd.nist.gov👁 45 Views🌐 WEB

CVE-2011-3371 Multiple XSS vulnerabilities in PunBB before 1.3.

Reporter	Title	Published	Views	Family All 5
Cvelist	CVE-2011-3371	2 Oct 201120:00	–	cvelist
EUVD	EUVD-2011-3335	7 Oct 202500:30	–	euvd
NVD	CVE-2011-3371	2 Oct 201120:55	–	nvd
Prion	Cross site scripting	2 Oct 201120:55	–	prion
RedhatCVE	CVE-2011-3371	22 May 202509:57	–	redhatcve

NVD

Node

punbb punbbRange≤1.3.5

OR

punbb punbbMatch1.0

OR

punbb punbbMatch1.0alpha

OR

punbb punbbMatch1.0beta1

OR

punbb punbbMatch1.0beta1a

OR

punbb punbbMatch1.0beta2

OR

punbb punbbMatch1.0beta3

OR

punbb punbbMatch1.0rc1

OR

punbb punbbMatch1.0rc2

OR

punbb punbbMatch1.0.1

OR

punbb punbbMatch1.1

OR

punbb punbbMatch1.1.1

OR

punbb punbbMatch1.1.2

OR

punbb punbbMatch1.1.3

OR

punbb punbbMatch1.1.4

OR

punbb punbbMatch1.1.5

OR

punbb punbbMatch1.2

OR

punbb punbbMatch1.2.1

OR

punbb punbbMatch1.2.2

OR

punbb punbbMatch1.2.3

OR

punbb punbbMatch1.2.4

OR

punbb punbbMatch1.2.5

OR

punbb punbbMatch1.2.6

OR

punbb punbbMatch1.2.7

OR

punbb punbbMatch1.2.8

OR

punbb punbbMatch1.2.9

OR

punbb punbbMatch1.2.10

OR

punbb punbbMatch1.2.11

OR

punbb punbbMatch1.2.12

OR

punbb punbbMatch1.2.13

OR

punbb punbbMatch1.2.14

OR

punbb punbbMatch1.2.15

OR

punbb punbbMatch1.2.16

OR

punbb punbbMatch1.2.17

OR

punbb punbbMatch1.2.18

OR

punbb punbbMatch1.2.19

OR

punbb punbbMatch1.2.20

OR

punbb punbbMatch1.2.21

OR

punbb punbbMatch1.2.22

OR

punbb punbbMatch1.2.23

OR

punbb punbbMatch1.3

OR

punbb punbbMatch1.3beta

OR

punbb punbbMatch1.3rc1

OR

punbb punbbMatch1.3rc2

OR

punbb punbbMatch1.3rc7

OR

punbb punbbMatch1.3.1

OR

punbb punbbMatch1.3.2

OR

punbb punbbMatch1.3.3

OR

punbb punbbMatch1.3.4

Source	Link
archives	www.archives.neohapsis.com/archives/fulldisclosure/2011-09/0272.html
archives	www.archives.neohapsis.com/archives/fulldisclosure/2011-09/0193.html
openwall	www.openwall.com/lists/oss-security/2011/09/18/1
securitytracker	www.securitytracker.com/id
openwall	www.openwall.com/lists/oss-security/2011/09/22/3
punbb	www.punbb.informer.com/forums/topic/24427/multiple-xss-vulnerabilities/
punbb	www.punbb.informer.com/forums/topic/24430/punbb-136/
github	www.github.com/punbb/punbb/commit/dd50a50a2760f10bd2d09814e30af4b36052ca6d
archives	www.archives.neohapsis.com/archives/fulldisclosure/2011-09/0210.html
github	www.github.com/downloads/punbb/punbb/punbb-1.3.6.zip

Parameter	Position	Path	Description	CWE
id	request body	/delete.php	XSS through various parameters when deleting content via delete.php	CWE-79
form_sent	request body	/delete.php	XSS through various parameters when deleting content via delete.php	CWE-79
csrf_token	request body	/delete.php	XSS through various parameters when deleting content via delete.php	CWE-79
req_confirm	request body	/delete.php	XSS through various parameters when deleting content via delete.php	CWE-79
delete	request body	/delete.php	XSS through various parameters when deleting content via delete.php	CWE-79
id	request body	/edit.php	XSS through multiple parameters during editing content via edit.php	CWE-79
form_sent	request body	/edit.php	XSS through multiple parameters during editing content via edit.php	CWE-79
csrf_token	request body	/edit.php	XSS through multiple parameters during editing content via edit.php	CWE-79
req_message	request body	/edit.php	XSS through multiple parameters during editing content via edit.php	CWE-79
submit	request body	/edit.php	XSS through multiple parameters during editing content via edit.php	CWE-79

29 Apr 2026 01:13Current

5.9Medium risk

Vulners AI Score5.9

CVSS 24.3

EPSS0.00548

cve 2011 3371 xss vulnerabilities punbb web script html security nvd