Lucene search

[email protected]NVD:CVE-2010-1629

HistoryMay 19, 2010 - 10:30 p.m.

CVE-2010-1629

2010-05-1922:30:01

CWE-79

[email protected]

web.nvd.nist.gov

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.7

Confidence

High

EPSS

0.002

Percentile

60.3%

JSON

Cross-site scripting (XSS) vulnerability in Phorum before 5.2.15 allows remote attackers to inject arbitrary web script or HTML via an invalid email address.

Affected configurations

Nvd

Node

phorumphorumRange≤5.2.14

phorumphorumMatch3.0.7

phorumphorumMatch3.1

phorumphorumMatch3.1.1

phorumphorumMatch3.1.1_pre

phorumphorumMatch3.1.1_rc2

phorumphorumMatch3.1.1a

phorumphorumMatch3.1.2

phorumphorumMatch3.2

phorumphorumMatch3.2.2

phorumphorumMatch3.2.3

phorumphorumMatch3.2.3a

phorumphorumMatch3.2.3b

phorumphorumMatch3.2.4

phorumphorumMatch3.2.5

phorumphorumMatch3.2.6

phorumphorumMatch3.2.7

phorumphorumMatch3.2.8

phorumphorumMatch3.3.1

phorumphorumMatch3.3.1a

phorumphorumMatch3.3.2

phorumphorumMatch3.3.2a

phorumphorumMatch3.3.2b3

phorumphorumMatch3.4

phorumphorumMatch3.4.1

phorumphorumMatch3.4.2

phorumphorumMatch3.4.3

phorumphorumMatch3.4.4

phorumphorumMatch3.4.5

phorumphorumMatch3.4.6

phorumphorumMatch3.4.7

phorumphorumMatch3.4.8

phorumphorumMatch3.4.8a

phorumphorumMatch4.3.7

phorumphorumMatch5.0.0_alpha

phorumphorumMatch5.0.1_alpha

phorumphorumMatch5.0.2_alpha

phorumphorumMatch5.0.3_beta

phorumphorumMatch5.0.4_beta

phorumphorumMatch5.0.4a_beta

phorumphorumMatch5.0.5_beta

phorumphorumMatch5.0.6_beta

phorumphorumMatch5.0.7_beta

phorumphorumMatch5.0.7a_beta

phorumphorumMatch5.0.8_rc

phorumphorumMatch5.0.9

phorumphorumMatch5.0.10

phorumphorumMatch5.0.11

phorumphorumMatch5.0.12

phorumphorumMatch5.0.13

phorumphorumMatch5.0.13a

phorumphorumMatch5.0.14

phorumphorumMatch5.0.14a

phorumphorumMatch5.0.15

phorumphorumMatch5.0.15a

phorumphorumMatch5.0.16

phorumphorumMatch5.0.17

phorumphorumMatch5.0.17a

phorumphorumMatch5.0.18

phorumphorumMatch5.0.19

phorumphorumMatch5.0.20

phorumphorumMatch5.1.13

phorumphorumMatch5.1.14

phorumphorumMatch5.1.17

phorumphorumMatch5.1.18

phorumphorumMatch5.1.20

phorumphorumMatch5.1.21

phorumphorumMatch5.1.25

phorumphorumMatch5.2

phorumphorumMatch5.2.1

phorumphorumMatch5.2.2beta

phorumphorumMatch5.2.3rc1

phorumphorumMatch5.2.4rc2

phorumphorumMatch5.2.5

phorumphorumMatch5.2.8

phorumphorumMatch5.2.9

phorumphorumMatch5.2.10

phorumphorumMatch5.2.10rc1

phorumphorumMatch5.2.11

phorumphorumMatch5.2.12

phorumphorumMatch5.2.12a

phorumphorumMatch5.2.13

VendorProductVersionCPE
phorumphorum*cpe:2.3:a:phorum:phorum:*:*:*:*:*:*:*:*
phorumphorum3.0.7cpe:2.3:a:phorum:phorum:3.0.7:*:*:*:*:*:*:*
phorumphorum3.1cpe:2.3:a:phorum:phorum:3.1:*:*:*:*:*:*:*
phorumphorum3.1.1cpe:2.3:a:phorum:phorum:3.1.1:*:*:*:*:*:*:*
phorumphorum3.1.1_precpe:2.3:a:phorum:phorum:3.1.1_pre:*:*:*:*:*:*:*
phorumphorum3.1.1_rc2cpe:2.3:a:phorum:phorum:3.1.1_rc2:*:*:*:*:*:*:*
phorumphorum3.1.1acpe:2.3:a:phorum:phorum:3.1.1a:*:*:*:*:*:*:*
phorumphorum3.1.2cpe:2.3:a:phorum:phorum:3.1.2:*:*:*:*:*:*:*
phorumphorum3.2cpe:2.3:a:phorum:phorum:3.2:*:*:*:*:*:*:*
phorumphorum3.2.2cpe:2.3:a:phorum:phorum:3.2.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
phorum	phorum	*	cpe:2.3:a:phorum:phorum::::::::
phorum	phorum	3.0.7	cpe:2.3:a:phorum:phorum:3.0.7:::::::*
phorum	phorum	3.1	cpe:2.3:a:phorum:phorum:3.1:::::::*
phorum	phorum	3.1.1	cpe:2.3:a:phorum:phorum:3.1.1:::::::*
phorum	phorum	3.1.1_pre	cpe:2.3:a:phorum:phorum:3.1.1_pre:::::::*
phorum	phorum	3.1.1_rc2	cpe:2.3:a:phorum:phorum:3.1.1_rc2:::::::*
phorum	phorum	3.1.1a	cpe:2.3:a:phorum:phorum:3.1.1a:::::::*
phorum	phorum	3.1.2	cpe:2.3:a:phorum:phorum:3.1.2:::::::*
phorum	phorum	3.2	cpe:2.3:a:phorum:phorum:3.2:::::::*
phorum	phorum	3.2.2	cpe:2.3:a:phorum:phorum:3.2.2:::::::*

Rows per page:

1-10 of 821

References

osvdb.org/64759

www.facebook.com/note.php?note_id=371190874581

www.openwall.com/lists/oss-security/2010/05/16/2

www.openwall.com/lists/oss-security/2010/05/18/11

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.7

Confidence

High

EPSS

0.002

Percentile

60.3%

JSON

Related for NVD:CVE-2010-1629

openvas2 prion1 cve1 cvelist1