| VID |
21534 |
| Severity |
30 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The PunBB, according to its version number, has multiple cross-site scripting in the profile.php. PunBB is a freely available, open source PHP-based bulletin board software. PunBB versions 1.2.3 and earlier are vulnerable to cross-site scripting, caused by improper filtering of user-supplied input in the 'email' and 'Jabber' parameters in the 'profile.php' script. This vulnerability could permit a remote attacker to create a malicious URI link that includes hostile HTML and script code. If this link were to be followed, the hostile code may be rendered in the web browser of the victim user. This would occur in the security context of the affected web site and may allow for theft of cookie-based authentication credentials or other attacks.
* Note: This check solely relied on the version number of the PunBB installed on the remote web server to assess this vulnerability, so this might be a false positive.
* References:
http://securitytracker.com/alerts/2005/Mar/1013446.html
* Platforms Affected:
Rickard Andersson, PunBB versions 1.2.3 and earlier
Any operating system Any version |
| Recommendation |
Upgrade to the latest version of PunBB (1.2.4 or later), available from the PunBB Web site at http://www.punbb.org/ |
| Related URL |
CVE-2005-0818 (CVE) |
| Related URL |
12828 (SecurityFocus) |
| Related URL |
19725 (ISS) |
|
