CVE-2011-0544 — Cross-site Scripting in Phpbb

CWE-79 — Cross-site Scripting2 documents2 sources

Severity

6.1MEDIUMNVD

EPSS

0.3%

top 43.33%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

3

Phpbb Phpbb3 Debian Linux

Timeline

PublishedNov 14

Latest updateApr 22

Description

phpbb 3.0.x-3.0.6 has an XSS vulnerability via the [flash] BB tag.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:NExploitability: 2.8 | Impact: 2.7

Affected Packages2 packages

▶NVDphpbb/phpbb3.0.0 — 3.0.6

▶CVEListV5phpbb3/phpbb33.0.x-3.0.6

Also affects: Debian Linux 8.0

🔴Vulnerability Details

1

GHSA

GHSA-3884-6vq4-8grw: phpbb 3↗2022-04-22

▶