Lucene search

[email protected]NVD:CVE-2005-1327

HistoryMay 02, 2005 - 4:00 a.m.

CVE-2005-1327

2005-05-0204:00:00

[email protected]

web.nvd.nist.gov

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.8

Confidence

High

EPSS

0.002

Percentile

59.6%

JSON

Cross-site scripting (XSS) vulnerability in pms.php for Woltlab Burning Board 2.3.1 PL2 and earlier allows remote attackers to inject arbitrary web script or HTML via the folderid parameter.

Affected configurations

Nvd

Node

woltlabburning_boardRange≤2.3.1

VendorProductVersionCPE
woltlabburning_board*cpe:2.3:a:woltlab:burning_board:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
woltlab	burning_board	*	cpe:2.3:a:woltlab:burning_board::::::::

References

www.securityfocus.com/archive/1/396858

www.securityfocus.com/bid/13353

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.8

Confidence

High

EPSS

0.002

Percentile

59.6%

JSON

Related for NVD:CVE-2005-1327

cvelist1 nessus1 cve1