2.6

CVE-2006-3241

Cross-site scripting (XSS) vulnerability in messages.php in XennoBB 1.0.5 and earlier allows remote attackers to inject arbitrary web script or HTML via the tid parameter.

Data is provided by the National Vulnerability Database (NVD)
XennobbXennobb Version1.0
XennobbXennobb Version1.0.1
XennobbXennobb Version1.0.2
XennobbXennobb Version1.0.3
XennobbXennobb Version1.0.4
XennobbXennobb Version1.0.5
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.43% 0.615
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 2.6 4.9 2.9
AV:N/AC:H/Au:N/C:N/I:P/A:N