6 matches found
CVE-2018-15585
Cross-Site Scripting XSS vulnerability in newwinform.php in GNUBOARD5 before 5.3.1.6 allows remote attackers to inject arbitrary web script or HTML via the popup title parameter...
CVE-2018-15585
Cross-Site Scripting XSS vulnerability in newwinform.php in GNUBOARD5 before 5.3.1.6 allows remote attackers to inject arbitrary web script or HTML via the popup title parameter...
CVE-2018-15585
GNUBOARD5 before 5.3.1.6 is affected by an XSS in newwinform.php via the popup title parameter. The issue enables remote attackers to inject arbitrary script/HTML in web pages. Affected product: GNUBOARD5; vulnerable component: newwinform.php (popup title). Root cause is unvalidated input in the ...
CVE-2018-15583
Cross-Site Scripting XSS vulnerability in pointlist.php in GNUBOARD5 before 5.3.1.6 allows remote attackers to inject arbitrary web script or HTML via the popup title parameter...
Cross site scripting
Cross-Site Scripting XSS vulnerability in pointlist.php in GNUBOARD5 before 5.3.1.6 allows remote attackers to inject arbitrary web script or HTML via the popup title parameter...
DEBIAN-CVE-2008-0192
Multiple cross-site scripting XSS vulnerabilities in WordPress 2.0.9 and earlier allow remote attackers to inject arbitrary web script or HTML via the popuptitle parameter to 1 wp-admin/post.php or 2 wp-admin/page-new.php...