{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-03-13T00:00:00", "descriptions": [{"lang": "en", "value": "Multiple cross-site scripting (XSS) vulnerabilities in member.php in MyBulletin Board (MyBB) 1.0.3 allow remote attackers to inject arbitrary web script or HTML via the (1) aim, (2) yahoo, (3) msn, or (4) website field."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-18T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "23935", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/23935"}, {"tags": ["x_refsource_MISC"], "url": "http://kapda.ir/advisory-297.html"}, {"tags": ["x_refsource_MISC"], "url": "http://community.mybboard.net/showthread.php?tid=7368"}, {"name": "17097", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/17097"}, {"name": "20060314 [[KAPDA::#35] MyBB 1.0.3~member.php~XSS Attack in contact details", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/427746/100/0/threaded"}, {"name": "mybb-member-xss(25263)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25263"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-1272", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple cross-site scripting (XSS) vulnerabilities in member.php in MyBulletin Board (MyBB) 1.0.3 allow remote attackers to inject arbitrary web script or HTML via the (1) aim, (2) yahoo, (3) msn, or (4) website field."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "23935", "refsource": "OSVDB", "url": "http://www.osvdb.org/23935"}, {"name": "http://kapda.ir/advisory-297.html", "refsource": "MISC", "url": "http://kapda.ir/advisory-297.html"}, {"name": "http://community.mybboard.net/showthread.php?tid=7368", "refsource": "MISC", "url": "http://community.mybboard.net/showthread.php?tid=7368"}, {"name": "17097", "refsource": "BID", "url": "http://www.securityfocus.com/bid/17097"}, {"name": "20060314 [[KAPDA::#35] MyBB 1.0.3~member.php~XSS Attack in contact details", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/427746/100/0/threaded"}, {"name": "mybb-member-xss(25263)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25263"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-1272", "datePublished": "2006-03-19T02:00:00", "dateReserved": "2006-03-18T00:00:00", "dateUpdated": "2018-10-18T14:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:mybulletinboard:mybulletinboard:1.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "98789943-2C7D-404E-B61E-04C436C1681C", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Multiple cross-site scripting (XSS) vulnerabilities in member.php in MyBulletin Board (MyBB) 1.0.3 allow remote attackers to inject arbitrary web script or HTML via the (1) aim, (2) yahoo, (3) msn, or (4) website field."}], "id": "CVE-2006-1272", "lastModified": "2018-10-18T16:31:49.793", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2006-03-19T02:02:00.000", "references": [{"source": "cve@mitre.org", "url": "http://community.mybboard.net/showthread.php?tid=7368"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Vendor Advisory"], "url": "http://kapda.ir/advisory-297.html"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/23935"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/427746/100/0/threaded"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://www.securityfocus.com/bid/17097"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25263"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}