CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

NVD•added 2019/08/26 9:15 p.m.•11 views

CVE-2018-18668

GNUBOARD5 before 5.3.2.0 has XSS that allows remote attackers to inject arbitrary web script or HTML via the "homepage title" parameter, aka the adm/configformupdate.php cftitle parameter...

6.1CVSS6AI score0.0027EPSS

Exploits0References3

OSV•added 2019/08/26 9:15 p.m.•18 views

CVE-2018-18668

GNUBOARD5 before 5.3.2.0 has XSS that allows remote attackers to inject arbitrary web script or HTML via the "homepage title" parameter, aka the adm/configformupdate.php cftitle parameter...

6.1CVSS6AI score

Exploits0References3

CVE•added 2019/08/26 8:4 p.m.•176 views

CVE-2018-18668

GNUBOARD5 before 5.3.2.0 is affected by a cross-site scripting (XSS) vulnerability in the homepage title parameter (adm/config_form_update.php cf_title). Exploitation allows remote attackers to inject arbitrary web script/HTML, potentially compromising user sessions and browser execution context....

6.1CVSS5.9AI score0.0027EPSS

Exploits0References3Affected Software1

OSV•added 2019/07/23 5:15 p.m.•13 views

CVE-2018-18670

GNUBOARD5 5.3.1.9 has XSS that allows remote attackers to inject arbitrary web script or HTML via the "Extra Contents" parameter, aka the adm/configformupdate.php cf110 parameter...

6.1CVSS5.9AI score

Exploits0References3

Prion•added 2019/07/23 5:15 p.m.•13 views

Code injection

GNUBOARD5 5.3.1.9 has XSS that allows remote attackers to inject arbitrary web script or HTML via the "Extra Contents" parameter, aka the adm/configformupdate.php cf110 parameter...

4.3CVSS6AI score0.00363EPSS

Exploits0References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by