5.9 Medium
AI Score
Confidence
High
0.009 Low
EPSS
Percentile
83.0%
Cross-site scripting (XSS) vulnerability in posts.php in 427BB 2.2 and 2.2.1 allows remote attackers to inject arbitrary Javascript via a new message with a url bbcode tag containing a javascript URI.
evuln.com/vulns/18/summary.html
secunia.com/advisories/18354
www.osvdb.org/22276
www.securityfocus.com/archive/1/421326/100/0/threaded
www.vupen.com/english/advisories/2006/0091
exchange.xforce.ibmcloud.com/vulnerabilities/24040