Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2010-1629

Cross-site scripting (XSS) vulnerability in Phorum before 5.2.15 allows remote attackers to inject arbitrary web script or HTML via an invalid email address.

Published

2010-05-19T22:30:01.020

Last Modified

2025-04-11T00:51:21.963

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 4.3 (MEDIUM)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

  • Access Vector: NETWORK
  • Access Complexity: MEDIUM
  • Authentication: NONE
  • Confidentiality Impact: NONE
  • Integrity Impact: PARTIAL
  • Availability Impact: NONE
Exploitability Score

8.6

Impact Score

2.9

Weaknesses
  • Type: Primary
    CWE-79
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application phorum phorum ≤ 5.2.14 Yes
Application phorum phorum 3.0.7 Yes
Application phorum phorum 3.1 Yes
Application phorum phorum 3.1.1 Yes
Application phorum phorum 3.1.1_pre Yes
Application phorum phorum 3.1.1_rc2 Yes
Application phorum phorum 3.1.1a Yes
Application phorum phorum 3.1.2 Yes
Application phorum phorum 3.2 Yes
Application phorum phorum 3.2.2 Yes
Application phorum phorum 3.2.3 Yes
Application phorum phorum 3.2.3a Yes
Application phorum phorum 3.2.3b Yes
Application phorum phorum 3.2.4 Yes
Application phorum phorum 3.2.5 Yes
Application phorum phorum 3.2.6 Yes
Application phorum phorum 3.2.7 Yes
Application phorum phorum 3.2.8 Yes
Application phorum phorum 3.3.1 Yes
Application phorum phorum 3.3.1a Yes
Application phorum phorum 3.3.2 Yes
Application phorum phorum 3.3.2a Yes
Application phorum phorum 3.3.2b3 Yes
Application phorum phorum 3.4 Yes
Application phorum phorum 3.4.1 Yes
Application phorum phorum 3.4.2 Yes
Application phorum phorum 3.4.3 Yes
Application phorum phorum 3.4.4 Yes
Application phorum phorum 3.4.5 Yes
Application phorum phorum 3.4.6 Yes
Application phorum phorum 3.4.7 Yes
Application phorum phorum 3.4.8 Yes
Application phorum phorum 3.4.8a Yes
Application phorum phorum 4.3.7 Yes
Application phorum phorum 5.0.0_alpha Yes
Application phorum phorum 5.0.1_alpha Yes
Application phorum phorum 5.0.2_alpha Yes
Application phorum phorum 5.0.3_beta Yes
Application phorum phorum 5.0.4_beta Yes
Application phorum phorum 5.0.4a_beta Yes
Application phorum phorum 5.0.5_beta Yes
Application phorum phorum 5.0.6_beta Yes
Application phorum phorum 5.0.7_beta Yes
Application phorum phorum 5.0.7a_beta Yes
Application phorum phorum 5.0.8_rc Yes
Application phorum phorum 5.0.9 Yes
Application phorum phorum 5.0.10 Yes
Application phorum phorum 5.0.11 Yes
Application phorum phorum 5.0.12 Yes
Application phorum phorum 5.0.13 Yes
Application phorum phorum 5.0.13a Yes
Application phorum phorum 5.0.14 Yes
Application phorum phorum 5.0.14a Yes
Application phorum phorum 5.0.15 Yes
Application phorum phorum 5.0.15a Yes
Application phorum phorum 5.0.16 Yes
Application phorum phorum 5.0.17 Yes
Application phorum phorum 5.0.17a Yes
Application phorum phorum 5.0.18 Yes
Application phorum phorum 5.0.19 Yes
Application phorum phorum 5.0.20 Yes
Application phorum phorum 5.1.13 Yes
Application phorum phorum 5.1.14 Yes
Application phorum phorum 5.1.17 Yes
Application phorum phorum 5.1.18 Yes
Application phorum phorum 5.1.20 Yes
Application phorum phorum 5.1.21 Yes
Application phorum phorum 5.1.25 Yes
Application phorum phorum 5.2 Yes
Application phorum phorum 5.2.1 Yes
Application phorum phorum 5.2.2 Yes
Application phorum phorum 5.2.3 Yes
Application phorum phorum 5.2.4 Yes
Application phorum phorum 5.2.5 Yes
Application phorum phorum 5.2.8 Yes
Application phorum phorum 5.2.9 Yes
Application phorum phorum 5.2.10 Yes
Application phorum phorum 5.2.10 Yes
Application phorum phorum 5.2.11 Yes
Application phorum phorum 5.2.12 Yes
Application phorum phorum 5.2.12a Yes
Application phorum phorum 5.2.13 Yes
References