Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
Pybb ProjectPybb

2 matches found

CVE
CVEadded 2023/06/19 5:2 p.m.35 views

CVE-2023-34461

PyBB XSS in 0.1.0 : A manual review shows PyBB 0.1.0 allowed submission of arbitrary HTML (e.g., xss) that could execute client-side JS. The issue was patched in commit 5defd92; upgrade to 0.1.1 is advised. If upgrading isn’t possible, workarounds include removing post creation, removing the |saf...

5.4CVSS5AI score0.00119EPSS
CVE
CVEadded 2023/06/13 4:40 p.m.34 views

CVE-2023-34249

The CVE-2023-34249 entry concerns the benjjvi/PyBB bulletin board, where versions prior to commit dcaeccd37198ecd3e41ea766d1099354b60d69c2 were vulnerable to SQL Injection. The vulnerability is fixed in that commit, and a manual workaround is to sanitize queries in BulletinDatabaseModule.py. The ...

9.8CVSS9.6AI score0.00085EPSS