← back
CVE-2008-5433

CVE-2008-5433

EPSS 1.1%
Cross-site scripting (XSS) vulnerability in login.php in PunBB 1.3 and 1.3.1 allows remote attackers to inject arbitrary web script or HTML via the password field.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://punbb.informer.com/http://punbb.informer.com/forums/topic/20475/punbb-132/http://punbb.informer.com/wiki/punbb13/bugs#possible_xss_in_loginhttp://secunia.com/advisories/33059http://www.openwall.com/lists/oss-security/2008/12/09/3