5.7 Medium
AI Score
Confidence
High
0.004 Low
EPSS
Percentile
73.3%
Cross-site scripting (XSS) vulnerability in the file_download function in GNUBoard before 4.34.21 allows remote attackers to inject arbitrary web script or HTML via the filename parameter.
secunia.com/advisories/48458
sir.co.kr/bbs/board.php?bo_table=g4_pds&wr_id=7156
www.exploit-db.com/exploits/18627
www.securityfocus.com/bid/52622