CVE-2010-2463

Exploit

EPSS 1.45%
Veröffentlicht 25.06.2010 21:30:01
Zuletzt bearbeitet 16.06.2026 23:20:48
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Cross-site scripting (XSS) vulnerability in forum.php in Jamroom before 4.1.9 allows remote attackers to inject arbitrary web script or HTML via the post_id parameter in a modify action.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 7

NVD 110 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Jamroom ≫ Jamroom Version <= 4.1.8

Jamroom ≫ Jamroom Version1.0

Jamroom ≫ Jamroom Version1.0 Updateb1

Jamroom ≫ Jamroom Version1.0 Updateb2

Jamroom ≫ Jamroom Version1.0 Updateb3

Jamroom ≫ Jamroom Version1.0 Updateb4

Jamroom ≫ Jamroom Version1.0 Updateb5

Jamroom ≫ Jamroom Version2.0.9

Jamroom ≫ Jamroom Version2.0.9 Updatea

Jamroom ≫ Jamroom Version2.6.10

Jamroom ≫ Jamroom Version2.6.11

Jamroom ≫ Jamroom Version2.6.12

Jamroom ≫ Jamroom Version2.60

Jamroom ≫ Jamroom Version2.60 Updaterc2

Jamroom ≫ Jamroom Version2.60 Updaterc3

Jamroom ≫ Jamroom Version2.61

Jamroom ≫ Jamroom Version2.62

Jamroom ≫ Jamroom Version2.63

Jamroom ≫ Jamroom Version2.64

Jamroom ≫ Jamroom Version2.65

Jamroom ≫ Jamroom Version2.66

Jamroom ≫ Jamroom Version2.67

Jamroom ≫ Jamroom Version2.68

Jamroom ≫ Jamroom Version2.69

Jamroom ≫ Jamroom Version3.0

Jamroom ≫ Jamroom Version3.0 Updateb1

Jamroom ≫ Jamroom Version3.0 Updateb2

Jamroom ≫ Jamroom Version3.0 Updateb3

Jamroom ≫ Jamroom Version3.0 Updateb4

Jamroom ≫ Jamroom Version3.0 Updateb5

Jamroom ≫ Jamroom Version3.0 Updateb6

Jamroom ≫ Jamroom Version3.0 Updateb7

Jamroom ≫ Jamroom Version3.0 Updateb8

Jamroom ≫ Jamroom Version3.0.1

Jamroom ≫ Jamroom Version3.0.2

Jamroom ≫ Jamroom Version3.0.3

Jamroom ≫ Jamroom Version3.0.4

Jamroom ≫ Jamroom Version3.0.5

Jamroom ≫ Jamroom Version3.0.6

Jamroom ≫ Jamroom Version3.0.7

Jamroom ≫ Jamroom Version3.0.8

Jamroom ≫ Jamroom Version3.0.9

Jamroom ≫ Jamroom Version3.0.10

Jamroom ≫ Jamroom Version3.0.11

Jamroom ≫ Jamroom Version3.0.12

Jamroom ≫ Jamroom Version3.0.13

Jamroom ≫ Jamroom Version3.0.14

Jamroom ≫ Jamroom Version3.0.15

Jamroom ≫ Jamroom Version3.0.16

Jamroom ≫ Jamroom Version3.0.17

Jamroom ≫ Jamroom Version3.0.18

Jamroom ≫ Jamroom Version3.0.19

Jamroom ≫ Jamroom Version3.0.20

Jamroom ≫ Jamroom Version3.0.21

Jamroom ≫ Jamroom Version3.0.22

Jamroom ≫ Jamroom Version3.0.23

Jamroom ≫ Jamroom Version3.0.24

Jamroom ≫ Jamroom Version3.0.25

Jamroom ≫ Jamroom Version3.0.26

Jamroom ≫ Jamroom Version3.0.27

Jamroom ≫ Jamroom Version3.0.28

Jamroom ≫ Jamroom Version3.0.29

Jamroom ≫ Jamroom Version3.0.30

Jamroom ≫ Jamroom Version3.1.0

Jamroom ≫ Jamroom Version3.1.0 Updateb1

Jamroom ≫ Jamroom Version3.1.0 Updateb2

Jamroom ≫ Jamroom Version3.1.0 Updateb3

Jamroom ≫ Jamroom Version3.1.1

Jamroom ≫ Jamroom Version3.1.2

Jamroom ≫ Jamroom Version3.1.3

Jamroom ≫ Jamroom Version3.1.4

Jamroom ≫ Jamroom Version3.1.5

Jamroom ≫ Jamroom Version3.2.0

Jamroom ≫ Jamroom Version3.2.1

Jamroom ≫ Jamroom Version3.2.2

Jamroom ≫ Jamroom Version3.2.3

Jamroom ≫ Jamroom Version3.2.4

Jamroom ≫ Jamroom Version3.2.5

Jamroom ≫ Jamroom Version3.2.6

Jamroom ≫ Jamroom Version3.3.0

Jamroom ≫ Jamroom Version3.3.1

Jamroom ≫ Jamroom Version3.3.2

Jamroom ≫ Jamroom Version3.3.3

Jamroom ≫ Jamroom Version3.3.4

Jamroom ≫ Jamroom Version3.3.5

Jamroom ≫ Jamroom Version3.3.6

Jamroom ≫ Jamroom Version3.3.7

Jamroom ≫ Jamroom Version3.3.8

Jamroom ≫ Jamroom Version3.4.0

Jamroom ≫ Jamroom Version4.0.2

Jamroom ≫ Jamroom Version4.0.3

Jamroom ≫ Jamroom Version4.0.4

Jamroom ≫ Jamroom Version4.0.5

Jamroom ≫ Jamroom Version4.0.6

Jamroom ≫ Jamroom Version4.0.7

Jamroom ≫ Jamroom Version4.0.8

Jamroom ≫ Jamroom Version4.0.9

Jamroom ≫ Jamroom Version4.0.10

Jamroom ≫ Jamroom Version4.0.11

Jamroom ≫ Jamroom Version4.0.12

Jamroom ≫ Jamroom Version4.0.13

Jamroom ≫ Jamroom Version4.0.14

Jamroom ≫ Jamroom Version4.1.0

Jamroom ≫ Jamroom Version4.1.1

Jamroom ≫ Jamroom Version4.1.2

Jamroom ≫ Jamroom Version4.1.3

Jamroom ≫ Jamroom Version4.1.4

Jamroom ≫ Jamroom Version4.1.5

Jamroom ≫ Jamroom Version4.1.6

Jamroom ≫ Jamroom Version4.1.7

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.45%	0.7

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:P/A:N

CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

http://secunia.com/advisories/40259

Vendor Advisory

http://www.htbridge.ch/advisory/xss_vulnerability_in_jamroom.html

Exploit

http://www.jamroom.net/index.php?m=td_tracker&o=view&id=1756

Vendor Advisory

http://www.securityfocus.com/bid/41071

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2010-2463

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2010-2463

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2010-2463

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2010-2463