Vulnerability Details CVE-2004-1967
Cross-site request forgery (CSRF) vulnerabilities in (1) cp_forums.php, (2) cp_usergroup.php, (3) cp_ipbans.php, (4) myhome.php, (5) post.php, or (6) moderator.php in Open Bulletin Board (OpenBB) 1.0.6 and earlier allow remote attackers to execute arbitrary code by including the code in an image tag or a link.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.013
EPSS Ranking 78.7%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 7.5
References
- http://marc.info/?l=bugtraq&m=108301983206107&w=2
- http://secunia.com/advisories/11481
- http://securitytracker.com/id?1009935
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15967
- http://marc.info/?l=bugtraq&m=108301983206107&w=2
- http://secunia.com/advisories/11481
- http://securitytracker.com/id?1009935
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15967