CVE-2018-6506

N/A

Description

Cross-Site Scripting (XSS) exists in the Add Forum feature in the Administrative Panel in miniBB 3.2.2 via crafted use of an onload attribute of an SVG element in the supertitle field.

Details CVE

Score CVSS v3.1N/A

Publie2/12/2018

Derniere modification11/21/2024

Sourcenvd

Observations honeypot0

Produits affectes

minibb:minibb

Faiblesses (CWE)

CWE-79

References

https://offensivehacking.wordpress.com/2018/02/07/minibb-forums-v3-2-2-stored-xss/(cve@mitre.org)

https://offensivehacking.wordpress.com/2018/02/07/minibb-forums-v3-2-2-stored-xss/(af854a3a-2127-422b-91ae-364da2661108)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.