| ID |
CVE-2005-0216
|
| Summary |
Cross-site scripting (XSS) vulnerability in formmail.php in Woltlab Burning Board Lite 1.0.0, 1.0.1e, and possibly other versions, allows remote attackers to inject arbitrary web script and HTML via the userid parameter. |
| References |
|
| Vulnerable Configurations |
|
| CVSS |
| Base: | 4.3 (as of 12-07-2017 - 01:29) |
| Impact: | |
| Exploitability: | |
|
| CWE |
NVD-CWE-Other |
| CAPEC |
|
| Access |
| Vector | Complexity | Authentication |
| NETWORK |
MEDIUM |
NONE |
|
| Impact |
| Confidentiality | Integrity | Availability |
| NONE |
PARTIAL |
NONE |
|
| cvss-vector
via4
|
AV:N/AC:M/Au:N/C:N/I:P/A:N
|
| refmap
via4
|
| bid | 12199 | | bugtraq | 20050108 Security Advisory: Woltlab Burning Board Lite formmail.php XSS | | secunia | 13782 | | xf | wbb-formmail-userid-xss(18814) |
|
| Last major update |
12-07-2017 - 01:29 |
| Published |
02-05-2005 - 04:00 |
| Last modified |
12-07-2017 - 01:29 |
