← back
CVE-2006-1215

CVE-2006-1215

EPSS 1.7%
Cross-site scripting (XSS) vulnerability in misc.php in Woltlab Burning Board (wBB) 2.3.4 allows remote attackers to inject arbitrary web script or HTML via the percent parameter. NOTE: this issue has been disputed in a followup post, although the original disclosure might be related to reflected XSS.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/27355unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/25156http://www.securityfocus.com/archive/1/426766http://www.securityfocus.com/archive/1/426816/30/0/threadedhttp://www.securityfocus.com/bid/16959