4.3
CVE-2006-3953
- EPSS 0.4%
- Veröffentlicht 01.08.2006 21:04:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
- Quelle cve@mitre.org
- Teams Watchlist Login
- Unerledigt Login
Cross-site scripting (XSS) vulnerability in usercp.php in MyBB (aka MyBulletinBoard) 1.x allows remote attackers to inject arbitrary web script or HTML via the gallery parameter.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Mybulletinboard ≫ Mybulletinboard Version1.0.1
Mybulletinboard ≫ Mybulletinboard Version1.0.2
Mybulletinboard ≫ Mybulletinboard Version1.0.3
Mybulletinboard ≫ Mybulletinboard Version1.0.4
Mybulletinboard ≫ Mybulletinboard Version1.0_final
Mybulletinboard ≫ Mybulletinboard Version1.0_pr2
Mybulletinboard ≫ Mybulletinboard Version1.0_preview_release_2
Mybulletinboard ≫ Mybulletinboard Version1.00_rc1
Mybulletinboard ≫ Mybulletinboard Version1.00_rc2
Mybulletinboard ≫ Mybulletinboard Version1.0_rc2
Mybulletinboard ≫ Mybulletinboard Version1.00_rc3
Mybulletinboard ≫ Mybulletinboard Version1.0_rc4
Mybulletinboard ≫ Mybulletinboard Version1.00_rc4
Mybulletinboard ≫ Mybulletinboard Version1.00_rc4_security_patch
Mybulletinboard ≫ Mybulletinboard Version1.01
Mybulletinboard ≫ Mybulletinboard Version1.1
Mybulletinboard ≫ Mybulletinboard Version1.1.1
Mybulletinboard ≫ Mybulletinboard Version1.1.2
Mybulletinboard ≫ Mybulletinboard Version1.1.3
Mybulletinboard ≫ Mybulletinboard Version1.1.4
Mybulletinboard ≫ Mybulletinboard Version1.1.5
Mybulletinboard ≫ Mybulletinboard Version1.1.7
Mybulletinboard ≫ Mybulletinboard Version1.04
Mybulletinboard ≫ Mybulletinboard Version1.10
Mybulletinboard ≫ Mybulletinboard Version1.14
Mybulletinboard ≫ Mybulletinboard Version1.20
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.4% | 0.596 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:N/I:P/A:N
|