5.9 Medium
AI Score
Confidence
High
0.004 Low
EPSS
Percentile
72.1%
Cross-site scripting (XSS) vulnerability in formmail.php in Woltlab Burning Board Lite 1.0.0, 1.0.1e, and possibly other versions, allows remote attackers to inject arbitrary web script and HTML via the userid parameter.
marc.info/?l=bugtraq&m=110537385427004&w=2
secunia.com/advisories/13782
www.securityfocus.com/bid/12199
exchange.xforce.ibmcloud.com/vulnerabilities/18814