Vulnerability Details CVE-2006-3308
Unspecified vulnerability in the wpprop code for Project EROS bbsengine before 20060622-0315 has unknown impact and remote attack vectors via [img] tags, possibly cross-site scripting (XSS).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 60.1%
CVSS Severity
CVSS v2 Score 9.3
References
- http://secunia.com/advisories/20760
- http://sourceforge.net/project/shownotes.php?release_id=427430&group_id=86388
- http://www.securityfocus.com/bid/18627
- http://www.vupen.com/english/advisories/2006/2503
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27488
- http://secunia.com/advisories/20760
- http://sourceforge.net/project/shownotes.php?release_id=427430&group_id=86388
- http://www.securityfocus.com/bid/18627
- http://www.vupen.com/english/advisories/2006/2503
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27488
Products affected by CVE-2006-3308
-
cpe:2.3:a:zoid_technologies:project_eros_bbsengine:2006-02-23
-
cpe:2.3:a:zoid_technologies:project_eros_bbsengine:2006-04-29
-
cpe:2.3:a:zoid_technologies:project_eros_bbsengine:2006-05-01
-
cpe:2.3:a:zoid_technologies:project_eros_bbsengine:2006-05-09
-
cpe:2.3:a:zoid_technologies:project_eros_bbsengine:2006-05-10
-
cpe:2.3:a:zoid_technologies:project_eros_bbsengine:2006-05-12
-
cpe:2.3:a:zoid_technologies:project_eros_bbsengine:2006-05-19
-
cpe:2.3:a:zoid_technologies:project_eros_bbsengine:2006-05-20