4.3
CVE-2006-3953
- EPSS 0.4%
- Published 01.08.2006 21:04:00
- Last modified 03.04.2025 01:03:51
- Source cve@mitre.org
- Teams watchlist Login
- Open Login
Cross-site scripting (XSS) vulnerability in usercp.php in MyBB (aka MyBulletinBoard) 1.x allows remote attackers to inject arbitrary web script or HTML via the gallery parameter.
Data is provided by the National Vulnerability Database (NVD)
Mybulletinboard ≫ Mybulletinboard Version1.0.1
Mybulletinboard ≫ Mybulletinboard Version1.0.2
Mybulletinboard ≫ Mybulletinboard Version1.0.3
Mybulletinboard ≫ Mybulletinboard Version1.0.4
Mybulletinboard ≫ Mybulletinboard Version1.0_final
Mybulletinboard ≫ Mybulletinboard Version1.0_pr2
Mybulletinboard ≫ Mybulletinboard Version1.0_preview_release_2
Mybulletinboard ≫ Mybulletinboard Version1.00_rc1
Mybulletinboard ≫ Mybulletinboard Version1.00_rc2
Mybulletinboard ≫ Mybulletinboard Version1.0_rc2
Mybulletinboard ≫ Mybulletinboard Version1.00_rc3
Mybulletinboard ≫ Mybulletinboard Version1.0_rc4
Mybulletinboard ≫ Mybulletinboard Version1.00_rc4
Mybulletinboard ≫ Mybulletinboard Version1.00_rc4_security_patch
Mybulletinboard ≫ Mybulletinboard Version1.01
Mybulletinboard ≫ Mybulletinboard Version1.1
Mybulletinboard ≫ Mybulletinboard Version1.1.1
Mybulletinboard ≫ Mybulletinboard Version1.1.2
Mybulletinboard ≫ Mybulletinboard Version1.1.3
Mybulletinboard ≫ Mybulletinboard Version1.1.4
Mybulletinboard ≫ Mybulletinboard Version1.1.5
Mybulletinboard ≫ Mybulletinboard Version1.1.7
Mybulletinboard ≫ Mybulletinboard Version1.04
Mybulletinboard ≫ Mybulletinboard Version1.10
Mybulletinboard ≫ Mybulletinboard Version1.14
Mybulletinboard ≫ Mybulletinboard Version1.20
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.4% | 0.596 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:N/I:P/A:N
|