Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0535

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2002-0535
Last Modified 05 Sep 2008 04:28:16
Published 03 Jul 2002 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0535

Summary

Cross-site scripting vulnerabilities in PostBoard 2.0.1 and earlier allows remote attackers to execute script as other users via (1) an [IMG] tag when BBCode is enabled, or (2) in a topic title.

Vulnerable Systems

Application

  • Postboard 2.0

  • Postboard 2.0.1

  • Postnuke Software Foundation Postnuke 0.64

  • Postnuke Software Foundation Postnuke 0.70

  • Postnuke Software Foundation Postnuke 0.703

  • Postnuke Software Foundation Postnuke 0.71


References

BID - 4559

BUGTRAQ - 20020416 Multiple Vulnerabilities in PostBoard

XF - postboard-title-css(8884)

BID - 4561

XF - postboard-img-css(8881)


Last Updated: 27 May 2016 10:36:57