CVE-2004-1827

Cross-site scripting (XSS) vulnerability in YaBB 1 Gold(SP1.3) and YaBB SE 1.5.1 Final allows remote attackers to inject arbitrary web script via the background:url property in (1) glow or (2) shadow tags.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:yabb:yabb:1_gold_-_sp_1.3:*:*:*:*:*:*:*
cpe:2.3:a:simple_machines:simple_machines_smf:1.0_b:*:*:*:*:*:*:*
cpe:2.3:a:yabb:yabb:1.5.1:*:second_edition:*:*:*:*:*

Information

Published : 2004-03-14 21:00

Updated : 2017-07-10 18:31


NVD link : CVE-2004-1827

Mitre link : CVE-2004-1827


JSON object : View

Advertisement

dedicated server usa

Products Affected

simple_machines

  • simple_machines_smf

yabb

  • yabb