Vulnerability Details CVE-2006-0156
Cross-site scripting (XSS) vulnerability in Foxrum 4.0.4f allows remote attackers to inject arbitrary Javascript via the javascript URI in bbcode url tags in (1) addpost1.php and (2) addtopic1.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 72.4%
CVSS Severity
CVSS v2 Score 4.3
References
- http://evuln.com/vulns/20
- http://secunia.com/advisories/18386
- http://securityreason.com/securityalert/325
- http://www.securityfocus.com/archive/1/421277/100/0/threaded
- http://www.securityfocus.com/bid/16172
- http://www.vupen.com/english/advisories/2006/0121
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24043
- http://evuln.com/vulns/20
- http://secunia.com/advisories/18386
- http://securityreason.com/securityalert/325
- http://www.securityfocus.com/archive/1/421277/100/0/threaded
- http://www.securityfocus.com/bid/16172
- http://www.vupen.com/english/advisories/2006/0121
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24043