CVSS: 4.3EPSS: 0%CPEs: 3EXPL: 0CVE-2009-1588
https://notcve.org/view.php?id=CVE-2009-1588
Cross-site scripting (XSS) vulnerability in CGI RESCUE MiniBBS 8t before 8.95t, 8 before 8.95, 9 before 9.08, and 10 before 10.32 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en CGI RESCUE MiniBBS v8t anteriores a v8.95t, v8 anteriores a v8.95, v9 anteriores a v9.08, y v10 anteriores a v10.32 permite a atacantes remotos inyectar secuencias de comandos web o HTML de su elección mediante vectores no especificados. • http://jvn.jp/en/jp/JVN11396739/index.html http://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-000022.html http://secunia.com/advisories/34887 http://www.rescue.ne.jp/whatsnew/blog.cgi/permalink/20081213132937 http://www.securityfocus.com/bid/34718 https://exchange.xforce.ibmcloud.com/vulnerabilities/50219 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •