Lucene search
MitreCVE-2005-1113HistoryMay 02, 2005 - 4:00 a.m.
CVE-2005-1113
2005-05-0204:00:00
mitre
web.nvd.nist.gov
25
cve-2005-1113
xss
phpbb
security
vulnerability
remote attack
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.8
Confidence
High
EPSS
0.004
Percentile
72.2%
Multiple cross-site scripting (XSS) vulnerabilities in PhpBB Plus 1.52 and earlier allow remote attackers to inject arbitrary web script or HTML via the bsid parameter to (1) groupcp.php, (2) index.php, (3) portal.php, (4) viewforum.php, or (5) viewtopic.php, (6) the c parameter to index.php, or (7) the article parameter to portal.php.
Affected configurations
Node
phpbb_groupphpbb_plusRange≤1.52
ORphpbb_groupphpbb_plusMatch1.3
ORphpbb_groupphpbb_plusMatch1.51
| Vendor | Product | Version | CPE |
|---|---|---|---|
| phpbb_group | phpbb_plus | * | cpe:2.3:a:phpbb_group:phpbb_plus:*:*:*:*:*:*:*:* |
| phpbb_group | phpbb_plus | 1.3 | cpe:2.3:a:phpbb_group:phpbb_plus:1.3:*:*:*:*:*:*:* |
| phpbb_group | phpbb_plus | 1.51 | cpe:2.3:a:phpbb_group:phpbb_plus:1.51:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2005-1113
2005-04-16 04:00:00
nvd
nvd
CVE-2005-1113
2005-05-02 04:00:00
nessus
nessus
phpBB2 Plus <= 1.52 Multiple XSS
2005-06-28 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.8
Confidence
High
EPSS
0.004
Percentile
72.2%
Related for CVE-2005-1113