CVE-2005-2161Cross-site Scripting in Group Phpbb

2 documents2 sources
Severity
4.3MEDIUMNVD
EPSS
0.3%
top 43.56%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Phpbb Group Phpbb
Timeline
PublishedJul 6
Latest updateMay 1

Description

Cross-site scripting (XSS) vulnerability in phpBB 2.0.16 allows remote attackers to inject arbitrary web script or HTML via nested [url] tags.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

NVDphpbb_group/phpbb2.0.16

🔴Vulnerability Details

1
GHSA
GHSA-qp7h-jrxq-3g8j: Cross-site scripting (XSS) vulnerability in phpBB 22022-05-01