CVE Vulnerabilities

CVE-2005-3688

Published: Nov 19, 2005 | Modified: Apr 29, 2021
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.3 MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

Cross-site scripting (XSS) vulnerability in members.php in XMB 1.9.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the Your Current Mood field in the registration page.

Affected Software

Name Vendor Start Version End Version
Xmb Xmb_forum * 1.9.3 (including)
Xmb Xmb_forum 1.8_sp1 (including) 1.8_sp1 (including)
Xmb Xmb_forum 1.8_sp2 (including) 1.8_sp2 (including)
Xmb Xmb_forum 1.8_sp3 (including) 1.8_sp3 (including)
Xmb Xmb_forum 1.9.1 (including) 1.9.1 (including)
Xmb Xmb_forum 1.9.2 (including) 1.9.2 (including)
Xmb Xmb_forum 1.9_beta (including) 1.9_beta (including)

References