CVE-2012-5104
23.09.2012, 17:55
Cross-site scripting (XSS) vulnerability in forums/ubbthreads.php in UBB.threads 7.5.6 and earlier allows remote attackers to inject arbitrary web script or HTML via the Loginname parameter.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| ubbcentral | ubb.threads | 𝑥 ≤ 7.5.6 |
| ubbcentral | ubb.threads | 3.4 |
| ubbcentral | ubb.threads | 3.5 |
| ubbcentral | ubb.threads | 5.0 |
| ubbcentral | ubb.threads | 5.5.1 |
| ubbcentral | ubb.threads | 6.0 |
| ubbcentral | ubb.threads | 6.0.1 |
| ubbcentral | ubb.threads | 6.0.2 |
| ubbcentral | ubb.threads | 6.0.3 |
| ubbcentral | ubb.threads | 6.1 |
| ubbcentral | ubb.threads | 6.1.1 |
| ubbcentral | ubb.threads | 6.2 |
| ubbcentral | ubb.threads | 6.2.1 |
| ubbcentral | ubb.threads | 6.2.2 |
| ubbcentral | ubb.threads | 6.2.3 |
| ubbcentral | ubb.threads | 6.3 |
| ubbcentral | ubb.threads | 6.3.1 |
| ubbcentral | ubb.threads | 6.4 |
| ubbcentral | ubb.threads | 6.4.1 |
| ubbcentral | ubb.threads | 6.4.2 |
| ubbcentral | ubb.threads | 6.4.3 |
| ubbcentral | ubb.threads | 6.4.4 |
| ubbcentral | ubb.threads | 6.5 |
| ubbcentral | ubb.threads | 6.5.1 |
| ubbcentral | ubb.threads | 6.5.1.1 |
| ubbcentral | ubb.threads | 6.5.2 |
| ubbcentral | ubb.threads | 6.5.2_beta2:_beta2 |
| ubbcentral | ubb.threads | 6.5.3 |
| ubbcentral | ubb.threads | 7.0 |
| ubbcentral | ubb.threads | 7.1 |
| ubbcentral | ubb.threads | 7.2 |
| ubbcentral | ubb.threads | 7.3.1 |
| ubbcentral | ubb.threads | 7.4 |
| ubbcentral | ubb.threads | 7.4.1 |
| ubbcentral | ubb.threads | 7.4.2 |
| ubbcentral | ubb.threads | 7.5 |
| ubbcentral | ubb.threads | 7.5.1 |
| ubbcentral | ubb.threads | 7.5.2 |
| ubbcentral | ubb.threads | 7.5.3 |
| ubbcentral | ubb.threads | 7.5.4 |
| ubbcentral | ubb.threads | 7.5.5 |
| ubbcentral | ubb.threads | 7.6 |
𝑥
= Vulnerable software versions
References