phpbb 3.0.x-3.0.6 has an XSS vulnerability

Jahāzpur Overview :
some issues found in phpbb 3.0.x-3.0.6 with an XSS vulnerability.
Aurogra no rx in us Affected Product(s) :
  • phpbb 3.0.x-3.0.6
Vulnerability Details :
CVE ID : CVE-2019-12419
phpbb 3.0.x-3.0.6 has an XSS vulnerability via the [flash] BB tag.

Solution :

Source Package Release Version Status
phpbb3 (PTS) jessie 3.0.12-5+deb8u1 fixed
jessie (security) 3.0.12-5+deb8u4 fixed
Package Type Release Fixed Version Urgency Origin Debian Bugs
phpbb3 source (unstable) 3.0.7-PL1-5 low 612477

Common Vulnerabilityies and Exposures

Contact us to get started

CVE-2024-5296 : D-LINK D-VIEW 2.0.1.28 TOKENUTILS HARD-CODED KEY

CVE-2024-5296 : D-LINK D-VIEW 2.0.1.28 TOKENUTILS HARD-CODED KEY

Description D-Link D-View Use of Hard-coded Cryptographic Key Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on

CVE-2024-5201 : OPENTEXT DIMENSIONS RM UP TO 12.11.1.2/12.11.2.5 HTTP REQUEST PRIVILEGE ESCALATION

CVE-2024-5201 : OPENTEXT DIMENSIONS RM UP TO 12.11.1.2/12.11.2.5 HTTP REQUEST PRIVILEGE ESCALATION

Description Privilege Escalation in OpenText Dimensions RM allows an authenticated user to escalate there privilege to the privilege of another

CVE-2024-4267 : PARISNEO LOLLMS-WEBUI UP TO 9.5 OPEN_FILE COMMAND INJECTION

CVE-2024-4267 : PARISNEO LOLLMS-WEBUI UP TO 9.5 OPEN_FILE COMMAND INJECTION

Description A remote code execution (RCE) vulnerability exists in the parisneo/lollms-webui, specifically within the ‘open_file’ module, version 9.5. The vulnerability