Description
Cross-site scripting vulnerabilities in PostBoard 2.0.1 and earlier allows remote attackers to execute script as other users via (1) an [IMG] tag when BBCode is enabled, or (2) in a topic title.
Exploits (2)
References (5)
Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/8884
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/4561
Vendor Advisory vdb-entry
x_refsource_xf
http://www.iss.net/security_center/static/8881.php
Exploit, Patch, Vendor Advisory vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/4559
Exploit, Patch, Vendor Advisory mailing-list
x_refsource_bugtraq
http://online.securityfocus.com/archive/1/267936
Scores
EPSS
0.0792
EPSS Percentile
92.1%
Details
Status
published
Products (6)
postboard/postboard
2.0
postboard/postboard
2.0.1
postnuke_software_foundation/postnuke
0.64
postnuke_software_foundation/postnuke
0.70
postnuke_software_foundation/postnuke
0.71
postnuke_software_foundation/postnuke
0.703
Published
Jul 03, 2002
Tracked Since
Feb 18, 2026