← Back to CVEs
CVE-2005-0673
N/ADescription
Cross-site scripting (XSS) vulnerability in usercp_register.php for phpBB 2.0.13 allows remote attackers to inject arbitrary web script or HTML by setting the (1) allowhtml, (2) allowbbcode, or (3) allowsmilies parameters to inject HTML into signatures for personal messages, possibly when they are processed by privmsg.php or viewtopic.php.
CVE Details
CVSS v3.1 ScoreN/A
Published5/2/2005
Last Modified4/16/2026
Sourcenvd
Honeypot Sightings0
Affected Products
phpbb_group:phpbb
References
http://neosecurityteam.tk/index.php?pagina=advisories&id=8(cve@mitre.org)
http://secunia.com/advisories/14475(cve@mitre.org)
http://securitytracker.com/id?1013362(cve@mitre.org)
http://neosecurityteam.tk/index.php?pagina=advisories&id=8(af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/14475(af854a3a-2127-422b-91ae-364da2661108)
http://securitytracker.com/id?1013362(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.