Description
Cross-site scripting (XSS) vulnerability in PunBB 1.2.3 allows remote attackers to inject arbitrary web script or HTML via the (1) email or (2) Jabber parameters.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by benji lemien · textwebappsphp
https://www.exploit-db.com/exploits/25230
References (2)
Core 2
Core References
Exploit vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1013446
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/19725
Scores
EPSS
0.0046
EPSS Percentile
64.0%
Details
Status
published
Products (1)
punbb/punbb
1.2.3
Published
May 02, 2005
Tracked Since
Feb 18, 2026