What is the severity of CVE-2008-5435?

CVE-2008-5435 has been classified as a moderate severity vulnerability due to its potential for exploitation via cross-site scripting.

How do I fix CVE-2008-5435?

To fix CVE-2008-5435, update to PunBB version 1.3.1 or later, as this version contains the necessary patches.

What software is affected by CVE-2008-5435?

CVE-2008-5435 affects multiple versions of PunBB, specifically all versions prior to 1.3.1.

What type of vulnerability is CVE-2008-5435?

CVE-2008-5435 is a cross-site scripting (XSS) vulnerability that allows attackers to inject arbitrary web scripts or HTML.

Can CVE-2008-5435 be exploited remotely?

Yes, CVE-2008-5435 can be exploited remotely by attackers who can submit specially crafted topic subjects.

Vulnerability/
CVE-2008-5435

medium

4.3

CWE

11/12/2008

15/1/2009

CVE-2008-5435: XSS

First published: Thu Dec 11 2008(Updated: )

Cross-site scripting (XSS) vulnerability in moderate.php in PunBB before 1.3.1 allows remote attackers to inject arbitrary web script or HTML via a topic subject.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
PunBB	=1.2.3
PunBB	=1.2.7
PunBB	=1.2.5
PunBB	=1.0-beta3
PunBB	=1.2.10
PunBB	=1.0
PunBB	=1.2.1
PunBB	=1.1.5
PunBB	=1.3-beta
PunBB	=1.1
PunBB	=1.2.21
PunBB	=1.2.14
PunBB	=1.0-beta2
PunBB	=1.2.13
PunBB	=1.0-rc2
PunBB	=1.0.1
PunBB	=1.1.1
PunBB	=1.2.20
PunBB	=1.2.15
PunBB	=1.2.12
PunBB	=1.0-alpha
PunBB	=1.3-rc1
PunBB	=1.0-rc1
PunBB	=1.0-beta1a
PunBB	=1.1.3
PunBB	=1.2.17
PunBB	=1.2.4
PunBB	=1.2.11
PunBB	=1.0-beta1
PunBB	<=1.3
PunBB	=1.2.8
PunBB	=1.3-rc7
PunBB	=1.2.2
PunBB	=1.2
PunBB	=1.2.16
PunBB	=1.3-rc2
PunBB	=1.1.4
PunBB	=1.2.6
PunBB	=1.2.18
PunBB	=1.2.19
PunBB	=1.1.2
PunBB	=1.2.9

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2008-5435?
CVE-2008-5435 has been classified as a moderate severity vulnerability due to its potential for exploitation via cross-site scripting.
How do I fix CVE-2008-5435?
To fix CVE-2008-5435, update to PunBB version 1.3.1 or later, as this version contains the necessary patches.
What software is affected by CVE-2008-5435?
CVE-2008-5435 affects multiple versions of PunBB, specifically all versions prior to 1.3.1.
What type of vulnerability is CVE-2008-5435?
CVE-2008-5435 is a cross-site scripting (XSS) vulnerability that allows attackers to inject arbitrary web scripts or HTML.
Can CVE-2008-5435 be exploited remotely?
Yes, CVE-2008-5435 can be exploited remotely by attackers who can submit specially crafted topic subjects.

agent/references
agent/weakness
agent/author
agent/type
agent/event
agent/description
agent/first-publish-date
agent/softwarecombine
agent/last-modified-date
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-historical
agent/severity
vendor/punbb
canonical/punbb
version/punbb/1.3
version/punbb/1.0
version/punbb/1.0-alpha
version/punbb/1.0-beta1
version/punbb/1.0-beta1a
version/punbb/1.0-beta2
version/punbb/1.0-beta3
version/punbb/1.0-rc1
version/punbb/1.0-rc2
version/punbb/1.0.1
version/punbb/1.1
version/punbb/1.1.1
version/punbb/1.1.2
version/punbb/1.1.3
version/punbb/1.1.4
version/punbb/1.1.5
version/punbb/1.2
version/punbb/1.2.1
version/punbb/1.2.2
version/punbb/1.2.3
version/punbb/1.2.4
version/punbb/1.2.5
version/punbb/1.2.6
version/punbb/1.2.7
version/punbb/1.2.8
version/punbb/1.2.9
version/punbb/1.2.10
version/punbb/1.2.11
version/punbb/1.2.12
version/punbb/1.2.13
version/punbb/1.2.14
version/punbb/1.2.15
version/punbb/1.2.16
version/punbb/1.2.17
version/punbb/1.2.18
version/punbb/1.2.19
version/punbb/1.2.20
version/punbb/1.2.21
version/punbb/1.3-beta
version/punbb/1.3-rc1
version/punbb/1.3-rc2
version/punbb/1.3-rc7