CVE-2008-4076
Published Sep 15, 2008
Last updated 7 years ago
Overview
- Description
- Cross-site scripting (XSS) vulnerability in (1) Tor World Tor Board 1.3 and earlier, (2) Topics BBS 1.11 and earlier, (3) Simple BBS 1.86 and earlier, and (4) Interactive BBS 1.57 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2008-0917.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4.3
- Impact score
- 2.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:N/I:P/A:N
Weaknesses
- nvd@nist.gov
- CWE-79
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:tor_world:interactive_bbs:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "44638D98-6133-46A5-AAFB-CFFEE1BAD983",
"versionEndIncluding": "1.57"
},
{
"criteria": "cpe:2.3:a:tor_world:simple_bbs:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F6522E41-84B0-4A1C-835A-4C423B2FE125",
"versionEndIncluding": "1.86"
},
{
"criteria": "cpe:2.3:a:tor_world:simple_bbs:1.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C65B72C5-9C2A-49B4-9292-09B58DD7496E"
},
{
"criteria": "cpe:2.3:a:tor_world:topics_bbs:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D115C37C-C9C2-4058-97E5-840A6FC3C4C0",
"versionEndIncluding": "1.11"
},
{
"criteria": "cpe:2.3:a:tor_world:tor_board:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "59266471-5B2C-4356-9C40-2FD390B6B769",
"versionEndIncluding": "1.3"
},
{
"criteria": "cpe:2.3:a:tor_world:tor_board:1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3D7C4FD4-9402-479C-9986-6C34362F056F"
}
],
"operator": "OR"
}
]
}
]