CVE-2006-3303

Published: Jun 29, 2006Modified: Apr 16, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

Multiple cross-site scripting (XSS) vulnerabilities in pm.php in DeluxeBB 1.07 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) subject or (2) to parameters.

Affected (1)

Products: Deluxebb: Deluxebb

Deluxebb

1 product

Deluxebb

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Deluxebb Deluxebb	Up to 1.07

References (10)

http://pridels0.blogspot.com/2006/06/deluxebb-107-xss-vuln.html

Source: cve@mitre.org

http://secunia.com/advisories/20813

Source: cve@mitre.org

PatchVendor Advisory

http://securitytracker.com/id?1016380

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2006/2530

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/27359

Source: cve@mitre.org

http://pridels0.blogspot.com/2006/06/deluxebb-107-xss-vuln.html