4.3
CVSSv2

CVE-2006-3953

Published: 01/08/2006 Updated: 17/10/2018
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Vulnerability Summary

Cross-site scripting (XSS) vulnerability in usercp.php in MyBB (aka MyBulletinBoard) 1.x allows remote malicious users to inject arbitrary web script or HTML via the gallery parameter.

Vulnerable Product Search on Vulmon Subscribe to Product

mybulletinboard mybulletinboard 1.10

mybulletinboard mybulletinboard 1.14

mybulletinboard mybulletinboard 1.0 final

mybulletinboard mybulletinboard 1.1.1

mybulletinboard mybulletinboard 1.0 rc4

mybulletinboard mybulletinboard 1.00 rc4

mybulletinboard mybulletinboard 1.00 rc3

mybulletinboard mybulletinboard 1.1.3

mybulletinboard mybulletinboard 1.20

mybulletinboard mybulletinboard 1.0.3

mybulletinboard mybulletinboard 1.00 rc4 security patch

mybulletinboard mybulletinboard 1.04

mybulletinboard mybulletinboard 1.01

mybulletinboard mybulletinboard 1.00 rc1

mybulletinboard mybulletinboard 1.1.5

mybulletinboard mybulletinboard 1.0 pr2

mybulletinboard mybulletinboard 1.00 rc2

mybulletinboard mybulletinboard 1.1

mybulletinboard mybulletinboard 1.1.4

mybulletinboard mybulletinboard 1.0.1

mybulletinboard mybulletinboard 1.0.4

mybulletinboard mybulletinboard 1.1.2

mybulletinboard mybulletinboard 1.0.2

mybulletinboard mybulletinboard 1.0 rc2

mybulletinboard mybulletinboard 1.1.7

mybulletinboard mybulletinboard 1.0 preview release 2