CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Xmb Forum: >> Xmb >> 1.9.2 Security Vulnerabilities

CVE-2005-3688

Cross-site scripting (XSS) vulnerability in members.php in XMB 1.9.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the "Your Current Mood" field in the registration page.

CVSS Score

4.3

EPSS Score

0.009

Published

2005-11-19

CVE-2005-3689

post.php in XMB 1.9.2 allows remote attackers to obtain the installation path via an invalid fid parameter in a newthread action.

CVSS Score

5.0

EPSS Score

0.01

Published

2005-11-19

Page 1

Vulnerabilities

Vulnerable Software

Xmb Forum: >> Xmb >> 1.9.2 Security Vulnerabilities

Products

Pricing

Contact Us