CVE-2004-0730

Published: Jul 27, 2004Modified: Apr 16, 2026

6.8

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability: 8.6 / Impact: 6.4

Source: NVD

Description

Multiple cross-site scripting (XSS) vulnerabilities in PhpBB 2.0.8 allow remote attackers to inject arbitrary web script or HTML via (1) the cat_title parameter in index.php, (2) the faq[0][0] parameter in lang_faq.php as accessible from faq.php, or (3) the faq[0][0] parameter in lang_bbcode.php as accessible from faq.php.

Affected (2)

Products: Phpbb Group: Phpbb

1 product

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Phpbb Group Phpbb	Version 2.0.8
Phpbb Group Phpbb	Version 2.0.8a

References (12)

http://marc.info/?l=bugtraq&m=108999024506020&w=2

Source: cve@mitre.org

http://www.securityfocus.com/bid/10738

Source: cve@mitre.org

http://www.waraxe.us/index.php?modname=sa&id=34

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/16724

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/16725

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/16726

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=108999024506020&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/10738

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.waraxe.us/index.php?modname=sa&id=34

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/16724

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/16725

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/16726

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.