cbcvebase.
CVE-2004-0730
published 2004-07-27

CVE-2004-0730: Multiple cross-site scripting (XSS) vulnerabilities in PhpBB 2.0.8 allow remote attackers to inject arbitrary web script or HTML via (1) the cat_title…

PriorityP417medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EPSS
1.48%
70.6th percentile
Multiple cross-site scripting (XSS) vulnerabilities in PhpBB 2.0.8 allow remote attackers to inject arbitrary web script or HTML via (1) the cat_title parameter in index.php, (2) the faq[0][0] parameter in lang_faq.php as accessible from faq.php, or (3) the faq[0][0] parameter in lang_bbcode.php as accessible from faq.php.

Affected

2 ranges
VendorProductVersion rangeFixed in
phpbb_groupphpbb
phpbb_groupphpbb
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.