CVE-2008-5435

PunBB <1.3.1 - XSS

Title source: llm

Description

Cross-site scripting (XSS) vulnerability in moderate.php in PunBB before 1.3.1 allows remote attackers to inject arbitrary web script or HTML via a topic subject.

References (4)

[Third Party Advisory, VDB Entry] http://osvdb.org/50680

[Vendor Advisory] http://punbb.informer.com/

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/32800

[Mailing List] http://www.openwall.com/lists/oss-security/2008/12/09/3

Scores

EPSS 0.0029

EPSS Percentile 51.6%

Classification

CWE

CWE-79

Status published

Affected Products (43)

punbb/punbb < 1.3

punbb/punbb

... and 28 more

Timeline

Published Dec 11, 2008

Tracked Since Feb 18, 2026