3 matches found
CVE-2020-18663
Cross Site Scripting XSS vulnerability in gnuboard5 =v5.3.2.8 via the act parameter in bbs/moveupdate.php...
CVE-2020-18663
Cross Site Scripting XSS vulnerability in gnuboard5 =v5.3.2.8 via the act parameter in bbs/moveupdate.php...
CVE-2020-18663
CVE-2020-18663 affects gnuboard5 in versions prior to or up to 5.3.2.8, with a cross-site scripting (XSS) vulnerability exploitable via the act parameter in bbs/move_update.php. The root cause is an inadequate sanitization/encoding of user-controlled input, enabling injected scripts to execute in...