Cross-site scripting (XSS) vulnerability in members.php in XMB 1.9.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the "Your Current Mood" field in the registration page.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 00:02
Type | Values Removed | Values Added |
---|---|---|
References | () http://irannetjob.com/content/view/163/28/ - Exploit, URL Repurposed | |
References | () http://secunia.com/advisories/17642 - Vendor Advisory | |
References | () http://securitytracker.com/id?1015237 - | |
References | () http://www.securityfocus.com/archive/1/417078/30/0/threaded - | |
References | () http://www.securityfocus.com/bid/15489 - | |
References | () http://www.vupen.com/english/advisories/2005/2488 - | |
References | () https://docs.xmbforum2.com/index.php?title=Security_Issue_History - |
14 Feb 2024, 01:17
Type | Values Removed | Values Added |
---|---|---|
References | () http://irannetjob.com/content/view/163/28/ - Exploit, URL Repurposed |
Information
Published : 2005-11-19 01:03
Updated : 2024-11-21 00:02
NVD link : CVE-2005-3688
Mitre link : CVE-2005-3688
CVE.ORG link : CVE-2005-3688
JSON object : View
Products Affected
xmb_forum
- xmb
CWE