Vulnerability Details CVE-2006-2724
Cross-site scripting (XSS) vulnerability in PunBB 1.2.11 allows remote authenticated administrators to inject arbitrary HTML or web script to other administrators via the "Admin note" feature, a different vulnerability than CVE-2006-2227.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.01
EPSS Ranking 76.2%
CVSS Severity
CVSS v2 Score 6.8
References
- http://seclists.org/lists/bugtraq/2006/May/0408.html
- http://securitytracker.com/id?1016157
- http://www.neosecurityteam.net/advisories/Advisory-22.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26616
- http://seclists.org/lists/bugtraq/2006/May/0408.html
- http://securitytracker.com/id?1016157
- http://www.neosecurityteam.net/advisories/Advisory-22.txt
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26616