CVE-2008-3336

Multiple cross-site scripting (XSS) vulnerabilities in PunBB before 1.2.19 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors in (1) include/parser.php and (2) moderate.php.
Cross-site Scripting
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 63%
VendorProductVersion
punbbpunbb
𝑥
≤ 1.2.18
punbbpunbb
1.0
punbbpunbb
1.0:alpha
punbbpunbb
1.0:beta1
punbbpunbb
1.0:beta1a
punbbpunbb
1.0:beta2
punbbpunbb
1.0:beta3
punbbpunbb
1.0:rc1
punbbpunbb
1.0:rc2
punbbpunbb
1.0.1
punbbpunbb
1.1
punbbpunbb
1.1.1
punbbpunbb
1.1.2
punbbpunbb
1.1.3
punbbpunbb
1.1.4
punbbpunbb
1.1.5
punbbpunbb
1.2
punbbpunbb
1.2.1
punbbpunbb
1.2.2
punbbpunbb
1.2.3
punbbpunbb
1.2.4
punbbpunbb
1.2.5
punbbpunbb
1.2.6
punbbpunbb
1.2.7
punbbpunbb
1.2.8
punbbpunbb
1.2.9
punbbpunbb
1.2.10
punbbpunbb
1.2.11
punbbpunbb
1.2.12
punbbpunbb
1.2.13
punbbpunbb
1.2.14
punbbpunbb
1.2.15
punbbpunbb
1.2.16
punbbpunbb
1.2.17
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://punbb.informer.com/
http://punbb.informer.com/download/changelogs/1.2.17_to_1.2.19.txt
http://punbb.informer.com/forums/topic/19539/punbb-1219/
http://secunia.com/advisories/31219
http://www.securityfocus.com/bid/30396
https://exchange.xforce.ibmcloud.com/vulnerabilities/44009
http://punbb.informer.com/
http://punbb.informer.com/download/changelogs/1.2.17_to_1.2.19.txt
http://punbb.informer.com/forums/topic/19539/punbb-1219/
http://secunia.com/advisories/31219
http://www.securityfocus.com/bid/30396
https://exchange.xforce.ibmcloud.com/vulnerabilities/44009