CVE-2006-4972
Published Sep 25, 2006
Last updated 6 years ago
Overview
- Description
- Cross-site scripting (XSS) vulnerability in archive/index.php/forum-4.html in MyBB (aka MyBulletinBoard) allows remote attackers to inject arbitrary web script or HTML via the navbits[][name] parameter.
- Source
- cve@mitre.org
- NVD status
- Modified
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 5.1
- Impact score
- 6.4
- Exploitability score
- 4.9
- Vector string
- AV:N/AC:H/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Social media
- Hype score
- Not currently trending
Evaluator
- Comment
- -
- Impact
- -
- Solution
- -
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:mybulletinboard:mybulletinboard:1.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0F3B187F-D0C5-4001-B877-3B0122784BB2"
},
{
"criteria": "cpe:2.3:a:mybulletinboard:mybulletinboard:1.0.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D04152D8-60BE-4362-BF68-688DE53A066C"
},
{
"criteria": "cpe:2.3:a:mybulletinboard:mybulletinboard:1.0.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "98789943-2C7D-404E-B61E-04C436C1681C"
},
{
"criteria": "cpe:2.3:a:mybulletinboard:mybulletinboard:1.0.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "678B50B3-D151-40ED-8CAA-C12FC5BA4520"
},
{
"criteria": "cpe:2.3:a:mybulletinboard:mybulletinboard:1.0_final:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9114F7E3-D7E4-4DDF-8826-195EC63117E6"
},
{
"criteria": "cpe:2.3:a:mybulletinboard:mybulletinboard:1.0_preview_release_2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BD8FD48E-3B6A-4FD9-AA65-CCED2CC6E6A7"
},
{
"criteria": "cpe:2.3:a:mybulletinboard:mybulletinboard:1.0_rc2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "894A8A8C-24BE-4B28-9CF4-46DD04ED38BA"
},
{
"criteria": "cpe:2.3:a:mybulletinboard:mybulletinboard:1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "64E11CB6-E5E5-42CF-A2A4-B1DD3ABADBAD"
},
{
"criteria": "cpe:2.3:a:mybulletinboard:mybulletinboard:1.1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F1079E0F-7B89-45A9-83AD-F72470A63B07"
},
{
"criteria": "cpe:2.3:a:mybulletinboard:mybulletinboard:1.1.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "59C3A929-B608-42FC-BB31-7599146E8CB6"
},
{
"criteria": "cpe:2.3:a:mybulletinboard:mybulletinboard:1.1.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6F4409B6-9F4D-4136-BA74-43736215A122"
},
{
"criteria": "cpe:2.3:a:mybulletinboard:mybulletinboard:1.1.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D70B64CF-6EF1-487A-9617-68F904ACE727"
},
{
"criteria": "cpe:2.3:a:mybulletinboard:mybulletinboard:1.1.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "94EC0E67-111A-4989-A311-6B051D37CEE0"
},
{
"criteria": "cpe:2.3:a:mybulletinboard:mybulletinboard:1.1.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D6942A9C-55E6-4A87-903F-3C8314EA4EA5"
},
{
"criteria": "cpe:2.3:a:mybulletinboard:mybulletinboard:1.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0846A9BC-9FFC-4C93-911D-431688A6FB58"
},
{
"criteria": "cpe:2.3:a:mybulletinboard:mybulletinboard:1.14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "42490451-EA60-4C61-99FB-526EFA3CBA86"
},
{
"criteria": "cpe:2.3:a:mybulletinboard:mybulletinboard:1.20:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "956399FC-9377-478D-98E9-0024C61CA7E7"
}
],
"operator": "OR"
}
]
}
]