Cross-site scripting (XSS) vulnerability in NBBC prior to 1.4.2 allows remote malicious users to inject arbitrary web script or HTML via an invalid URL in a BBCode img tag.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phantom-inker nbbc 1.1 |
||
phantom-inker nbbc 1.0 |
||
phantom-inker nbbc 1.3.1 |
||
phantom-inker nbbc 1.4.0 |
||
phantom-inker nbbc 1.3.4 |
||
phantom-inker nbbc |
||
phantom-inker nbbc 1.3 |
||
phantom-inker nbbc 1.2 |
||
phantom-inker nbbc alpha |
||
phantom-inker nbbc 1.3.3 |
||
phantom-inker nbbc 1.3.2 |