PT-2008-5379 · Tor World+3 · Tor World Tor Board+3
Yutaka Kokubu
·
Published
2008-09-15
·
Updated
2017-08-08
·
CVE-2008-4076
CVSS v2.0
4.3
Medium
| Vector | AV:N/AC:M/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
Tor World Tor Board versions 1.3 and earlier
Topics BBS versions 1.11 and earlier
Simple BBS versions 1.86 and earlier
Interactive BBS versions 1.57 and earlier
Description
A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. This is a distinct issue from other known vulnerabilities.
Recommendations
For Tor World Tor Board versions 1.3 and earlier, update to a version later than 1.3 to resolve the issue.
For Topics BBS versions 1.11 and earlier, update to a version later than 1.11 to resolve the issue.
For Simple BBS versions 1.86 and earlier, update to a version later than 1.86 to resolve the issue.
For Interactive BBS versions 1.57 and earlier, update to a version later than 1.57 to resolve the issue.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Interactive Bbs
Simplebbs
Topics Bbs
Tor World Tor Board