Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 27/09/2005 Updated: 05/09/2008

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in PunBB prior to 1.2.8 allows remote malicious users to inject arbitrary web script or HTML via the "forgotten e-mail" feature.

Vulnerable Product	Search on Vulmon	Subscribe to Product
punbb punbb 1.1.2
punbb punbb 1.1.3
punbb punbb 1.1.4
punbb punbb 1.1.5
punbb punbb 1.0.1
punbb punbb 1.0_beta3
punbb punbb 1.0_rc2
punbb punbb 1.1.1
punbb punbb 1.2
punbb punbb 1.2.2
punbb punbb 1.0_alpha
punbb punbb 1.0_beta1
punbb punbb 1.0_beta1a
punbb punbb 1.0_beta2
punbb punbb 1.2.4
punbb punbb 1.2.5
punbb punbb 1.2.6
punbb punbb 1.2.7
punbb punbb 1.0
punbb punbb 1.0_rc1
punbb punbb 1.1
punbb punbb 1.2.1
punbb punbb 1.2.3

NVD-CWE-Other http://www.punbb.org/changelogs/1.2.7_to_1.2.8.txt http://secunia.com/advisories/16908 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2005-3078

Vulnerability Summary

References

Vulmon Search

About

Products

Connect