Vulnerability Description
Cross-site scripting (XSS) vulnerability in (1) Tor World Tor Board 1.3 and earlier, (2) Topics BBS 1.11 and earlier, (3) Simple BBS 1.86 and earlier, and (4) Interactive BBS 1.57 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issue than CVE-2008-0917.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Tor World | Interactive Bbs | <= 1.57 |
| Tor World | Simple Bbs | <= 1.86 |
| Tor World | Topics Bbs | <= 1.11 |
| Tor World | Tor Board | <= 1.3 |
Related Weaknesses (CWE)
References
- http://download.torworld.com/bug/20080905.htmlPatch
- http://jvn.jp/en/jp/JVN18616622/index.html
- http://secunia.com/advisories/31835
- http://www.securityfocus.com/bid/31105Patch
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45043
- http://download.torworld.com/bug/20080905.htmlPatch
- http://jvn.jp/en/jp/JVN18616622/index.html
- http://secunia.com/advisories/31835
- http://www.securityfocus.com/bid/31105Patch
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45043
FAQ
What is CVE-2008-4076?
CVE-2008-4076 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Cross-site scripting (XSS) vulnerability in (1) Tor World Tor Board 1.3 and earlier, (2) Topics BBS 1.11 and earlier, (3) Simple BBS 1.86 and earlier, and (4) Interactive BBS 1.57 and earlier allows r...
How severe is CVE-2008-4076?
CVE-2008-4076 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-4076?
Check the references section above for vendor advisories and patch information. Affected products include: Tor World Interactive Bbs, Tor World Simple Bbs, Tor World Topics Bbs, Tor World Tor Board.