3 matches found
EUVD-2025-35714
Cross Site Scripting XSS vulnerability in Gnuboard 5.6.15 allows authenticated attackers to execute arbitrary code via crafted cid parameter in bbs/viewcomment.php...
CVE-2025-60859
Cross Site Scripting XSS vulnerability in Gnuboard 5.6.15 allows authenticated attackers to execute arbitrary code via crafted cid parameter in bbs/viewcomment.php...
CVE-2025-60859
Gnuboard 5.6.15 is affected by CVE-2025-60859 due to an XSS vulnerability in bbs/view_comment.php caused by crafted c_id parameter. Authenticated attackers can exploit this to execute arbitrary code. Multiple sources (NVD, Red Hat, ENISA EUVD, OSV, CNNVD, CVE list) corroborate the XSS impact. No ...