NVD

Id
51531  
Name
CVE-2009-4408  
Description
Multiple cross-site scripting (XSS) vulnerabilities in models.parser in PyForum 1.0.3 and possibly earlier versions, and possibly zForum, allow remote attackers to inject arbitrary web script or HTML via crafted BBcode (1) img or (2) url tags, which are not properly handled when a post is viewed.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-07  
Published
2009-12-23  
Modified Date
2009-12-24  
Seq
2009-4408  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
261301 51531 CVE-2009-4408 20091215 [BMSA-2009-08] Multiple Vulnerabilities in PyForum  View
261302 51531 CVE-2009-4408 pyforum-bbcodetag-xss(54855)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
45558 JVNDB-2009-006565 PyForum および zForum の models.parser におけるクロスサイトスクリプティングの脆弱性 PyForum および zForum の models.parser には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2009-4408 41839 CVE-2009-4408 51531 4.3 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-006565.html 2009-12-23 2012-12-20 View