CVE-2008-4076

TOR World Interactive Bbs < 1.57 - XSS

Title source: rule

Description

Cross-site scripting (XSS) vulnerability in (1) Tor World Tor Board 1.3 and earlier, (2) Topics BBS 1.11 and earlier, (3) Simple BBS 1.86 and earlier, and (4) Interactive BBS 1.57 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2008-0917.

References (5)

[Patch] http://download.torworld.com/bug/20080905.html

[Third Party Advisory] http://jvn.jp/en/jp/JVN18616622/index.html

[Patch] http://www.securityfocus.com/bid/31105

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/45043

[Third Party Advisory] http://secunia.com/advisories/31835

Scores

EPSS 0.0033

EPSS Percentile 55.5%

Classification

CWE

CWE-79

Status draft

Affected Products (6)

tor_world/interactive_bbs < 1.57

tor_world/simple_bbs < 1.86

tor_world/simple_bbs

tor_world/topics_bbs < 1.11

tor_world/tor_board < 1.3

tor_world/tor_board

Timeline

Published Sep 15, 2008

Tracked Since Feb 18, 2026