PT-2008-4500 · Simple Machines · Simple Machines Forum
Jessica Hope
·
Publicado
2008-07-08
·
Atualizado
2012-11-27
·
CVE-2008-3073
CVSS v2.0
7.5
Alta
| Vetor | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions:
Simple Machines Forum versions 1.0.x through 1.0.12
Simple Machines Forum versions 1.1.x through 1.1.4
Description:
The issue is related to the use of the html-tag and may be a cross-site scripting (XSS) vulnerability, although the exact impact and attack vectors are unknown.
Recommendations:
For Simple Machines Forum versions 1.0.x through 1.0.12, update to version 1.0.13.
For Simple Machines Forum versions 1.1.x through 1.1.4, update to version 1.1.5.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Simple Machines Forum