CVE-2018-15580

Cross-Site Scripting XSS vulnerability in adm/contentformupdate.php in gnuboard5 before 5.3.1.6 allows remote attackers to inject arbitrary web script or HTML...

CVE-2018-15585

Cross-Site Scripting XSS vulnerability in newwinform.php in GNUBOARD5 before 5.3.1.6 allows remote attackers to inject arbitrary web script or HTML via the popup title parameter...

GNUBOARD5 Cross-Site Scripting Vulnerability

GNUBOARD5 is a Web forum system based on PHP and MySQL. A cross-site scripting vulnerability exists in the pointlist.php file in GNUBOARD5 versions prior to 5.3.1.6. A remote attacker can exploit this vulnerability to execute arbitrary web script or HTML with the 'title' parameter...

PT-2019-9129 · Gnuboard · Gnuboard5

Name of the Vulnerable Software and Affected Versions: GNUBOARD5 versions prior to 5.3.1.6 Description: The issue allows remote attackers to inject arbitrary web script or HTML via the popup title parameter in the point list.php file. This enables attackers to perform Cross-Site Scripting XSS...