1 results (0.010 seconds)
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 1
CVE-2018-6506
https://notcve.org/view.php?id=CVE-2018-6506
Cross-Site Scripting (XSS) exists in the Add Forum feature in the Administrative Panel in miniBB 3.2.2 via crafted use of an onload attribute of an SVG element in the supertitle field. Existe Cross-Site Scripting (XSS) en la característica Add Forum en el panel administrativo en miniBB 3.2.2 mediante el uso manipulado de un atributo onload de un elemento SVG en el campo supertitle. • https://offensivehacking.wordpress.com/2018/02/07/minibb-forums-v3-2-2-stored-xss • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •