Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in phpBB 2.0.19 allow remote attackers to inject arbitrary web script or HTML via the (1) Site Description field in (a) admin_board.php, the (2) Group name and (3) Group description fields in (b) admin_groups.php and (c) groupcp.php, the (4) Theme Name field in (d) admin_styles.php, and the (5) Rank Title field in (e) admin_ranks.php. NOTE: the profile.php/Current password vector is already covered by CVE-2006-1603.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
phpBB 多个跨站脚本漏洞
Vulnerability Description
phpBB 2.0.19存在多个跨站脚本漏洞。这使得远程攻击者可以借助于(a)admin_board.php中的(1)Site Description字段、(b)admin_groups.php 和(c) groupcp.php中的(2)Group name和(3)Group description字段、 (d) admin_styles.php中的Theme Name 字段以及(e) admin_ranks.php中的Rank Title 字段。
CVSS Information
N/A
Vulnerability Type
N/A