AI Score
Confidence
High
EPSS
Percentile
70.7%
Cross-site scripting (XSS) vulnerability in index.php in Blank’N’Berg 0.2 allows remote attackers to inject arbitrary web script or HTML via the _path parameter. NOTE: this might be resultant from the directory traversal issue.
secunia.com/advisories/19520
securitytracker.com/id?1015854
www.osvdb.org/24374
www.securityfocus.com/bid/17346
www.silitix.com/bnb.php
exchange.xforce.ibmcloud.com/vulnerabilities/25618