FKIE_CVE-2001-0897
Vulnerability from fkie_nvd - Published: 2001-11-15 05:00 - Updated: 2025-04-03 01:03
Severity ?
Summary
Cross-site scripting vulnerability in Infopop Ultimate Bulletin Board (UBB) before 5.47e allows remote attackers to steal user cookies via an [IMG] tag that references an about: URL with an onerror field.
References
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D9273BCD-A439-426F-AA8C-7194B9A993F4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "8DC26B64-FC02-45F2-A263-9E011945A3E3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:2.0:*:*:*:*:*:*:*",
"matchCriteriaId": "08AB5674-453A-433A-8219-35F456611461",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:2.01:*:*:*:*:*:*:*",
"matchCriteriaId": "EC6486FB-B5F8-4DDA-B42B-98A07C7BE14F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:2.02:*:*:*:*:*:*:*",
"matchCriteriaId": "A23809E5-50FB-4CF0-A72D-EBF37C01781F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:2.03:*:*:*:*:*:*:*",
"matchCriteriaId": "AB495093-00E6-4C1F-B544-9D2D965F0E47",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:2.04:*:*:*:*:*:*:*",
"matchCriteriaId": "127135A5-A776-424C-B5F1-9BC3238CF213",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:2.05:*:*:*:*:*:*:*",
"matchCriteriaId": "E1FAFE51-8E79-453E-870D-B369EE29D36A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:2.10:*:*:*:*:*:*:*",
"matchCriteriaId": "87C217B8-5732-430F-ACD6-99CF2B2027D5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:2.11:*:*:*:*:*:*:*",
"matchCriteriaId": "474CF5E7-4C77-473B-950B-7B1FC399725C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:3.0:*:*:*:*:*:*:*",
"matchCriteriaId": "326C13A5-F302-418C-85E1-C333325E229E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:3.01:*:*:*:*:*:*:*",
"matchCriteriaId": "88C02339-7393-46D7-9DA4-3228DF837582",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:3.02:*:*:*:*:*:*:*",
"matchCriteriaId": "DA8097F7-5A17-40E7-8CD2-231291253BA8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:3.5:*:*:*:*:*:*:*",
"matchCriteriaId": "2A28920A-EF18-4160-9DC1-0DC7D1CFD61E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:3.6:*:*:*:*:*:*:*",
"matchCriteriaId": "1382D86F-0A84-46B6-B5E7-E9ED3FBFB57C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:3.7:*:*:*:*:*:*:*",
"matchCriteriaId": "A80A0BE7-A823-4AC1-9B84-2D7F910FA16E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:3.75:*:*:*:*:*:*:*",
"matchCriteriaId": "3D0055FF-C2E8-443A-B567-23ED37A3F95B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:4.0:*:*:*:*:*:*:*",
"matchCriteriaId": "2EAD48EC-5B61-4EC8-A128-3E6C59FF2EB8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:4.01:*:*:*:*:*:*:*",
"matchCriteriaId": "6BAAB97D-7381-4447-B8E4-EB7EFD27547C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:4.02:*:*:*:*:*:*:*",
"matchCriteriaId": "B2CD2691-F351-4D11-8EFC-8F86EB6A6B68",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:4.03:*:*:*:*:*:*:*",
"matchCriteriaId": "1D0CED1F-7C87-4156-8466-C4CB67839072",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:4.04:*:*:*:*:*:*:*",
"matchCriteriaId": "16ECB78B-36C6-49FE-AC76-5F3C49989422",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:4.05:*:*:*:*:*:*:*",
"matchCriteriaId": "E529724F-68AB-4BC9-90E9-1719A67C7972",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:4.06:*:*:*:*:*:*:*",
"matchCriteriaId": "553AD514-8315-4A53-A985-CADDFCDD2F95",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:4.07:*:*:*:*:*:*:*",
"matchCriteriaId": "3A3C3B5B-2EEA-466C-9944-A11370AAA446",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:4.50:*:*:*:*:*:*:*",
"matchCriteriaId": "591E5018-66DF-4F8B-8EE9-2459C9142BC9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:4.51:*:*:*:*:*:*:*",
"matchCriteriaId": "1D3E9916-DCF8-47E9-8C1D-571D9423178E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:4.52:*:*:*:*:*:*:*",
"matchCriteriaId": "96C0DEAA-F0F7-4E98-A901-49D8B6B8C35B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:4.53:*:*:*:*:*:*:*",
"matchCriteriaId": "C4E36013-DFB5-4D6B-B933-653E00B1AD4C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:4.75:*:*:*:*:*:*:*",
"matchCriteriaId": "C2E8CE07-A4BD-4E61-88CD-8E72AE0A3577",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:4.80:*:*:*:*:*:*:*",
"matchCriteriaId": "E19C4427-ABF7-47B0-8C18-9A9D7E093BB8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:4.81:*:*:*:*:*:*:*",
"matchCriteriaId": "E779CE38-A887-4484-A319-AE177A2FC33C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:4.82:*:*:*:*:*:*:*",
"matchCriteriaId": "296780D8-88A9-4B4E-98BA-138CB702D846",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:4.83:*:*:*:*:*:*:*",
"matchCriteriaId": "BABCB8BB-89B8-4711-9CEE-069DBCB372C9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:4.84:*:*:*:*:*:*:*",
"matchCriteriaId": "E255B370-054C-4BED-A00D-FD088BEE9B9B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:4.85:*:*:*:*:*:*:*",
"matchCriteriaId": "6F99A2D1-E071-4E99-AD0F-DAEA5A57CA31",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:4.86:*:*:*:*:*:*:*",
"matchCriteriaId": "06743824-C01A-44A1-A75A-36F0719D83BC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.00:*:*:*:*:*:*:*",
"matchCriteriaId": "85540AB5-815E-4B1E-912C-07B8F7A2112C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.01:*:*:*:*:*:*:*",
"matchCriteriaId": "48E6BB74-AEF9-4B8E-967F-1867969994FF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.02:*:*:*:*:*:*:*",
"matchCriteriaId": "7F219F48-41A2-4373-AD6F-B86C7194DC31",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.05:-:*:*:*:*:*:*",
"matchCriteriaId": "064000B6-2B45-48F9-ACE7-96D4A872C37B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.05:a:*:*:*:*:*:*",
"matchCriteriaId": "AB6C89B1-FA6F-4578-881F-A0990E6F5013",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.06:-:*:*:*:*:*:*",
"matchCriteriaId": "2ABD4153-05AA-4BD3-8667-A59D0A9F90DF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.06:a:*:*:*:*:*:*",
"matchCriteriaId": "B684B4A5-3BAB-43DD-9BC7-034BAD426784",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.07:*:*:*:*:*:*:*",
"matchCriteriaId": "0C52CA83-3B52-4C87-92B1-E45424A2556B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.08:*:*:*:*:*:*:*",
"matchCriteriaId": "24356CBC-CACF-49B4-8063-6060801205D9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.09:*:*:*:*:*:*:*",
"matchCriteriaId": "34855C05-1FFD-436C-87AB-EC5344D229E8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.10:*:*:*:*:*:*:*",
"matchCriteriaId": "A530F3D9-0872-40C3-B2E2-052DAD2C5268",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.11:*:*:*:*:*:*:*",
"matchCriteriaId": "CEDA5D94-8E1C-4F3B-B09B-3B5BFFA6B801",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.12:*:*:*:*:*:*:*",
"matchCriteriaId": "68B5870D-53AD-4F13-8AAA-85DD277857B5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.13:*:*:*:*:*:*:*",
"matchCriteriaId": "9FB03DE5-A890-4D4A-A436-66AC29C10EF2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.14:*:*:*:*:*:*:*",
"matchCriteriaId": "358BA26A-5F81-4C33-BA46-BFAD09DAB74D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.15:*:*:*:*:*:*:*",
"matchCriteriaId": "79C09870-2EB7-4648-A015-C615911D5DF3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.16:*:*:*:*:*:*:*",
"matchCriteriaId": "DFDF474B-BF27-44D8-857B-772EF651A7B9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.17:*:*:*:*:*:*:*",
"matchCriteriaId": "4ABFDB1B-2A64-4AB9-AAD5-8E81EDC5F0A1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.18:*:*:*:*:*:*:*",
"matchCriteriaId": "FF3EE5A2-C82A-427A-88CF-CED24440550A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.19:*:*:*:*:*:*:*",
"matchCriteriaId": "DDC496C6-F120-49B9-A852-9F692D5EDA34",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.20:*:*:*:*:*:*:*",
"matchCriteriaId": "5AEF11EA-F515-4F75-BCA5-C1632FBA8B55",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.25:*:*:*:*:*:*:*",
"matchCriteriaId": "DD5BEA29-DE63-4B0D-A037-96109930BDD8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.26:*:*:*:*:*:*:*",
"matchCriteriaId": "9B14FEA3-C2F2-4690-8EF3-07978A29C452",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.27:*:*:*:*:*:*:*",
"matchCriteriaId": "C4304FE2-84DE-452E-91B1-0E12C9AB8B09",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.28:*:*:*:*:*:*:*",
"matchCriteriaId": "18C97E41-6A7F-41EF-8801-BBEDCD5F88F9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.29:-:*:*:*:*:*:*",
"matchCriteriaId": "B7E3A8D6-F692-4316-ABA8-DC431B47AD36",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.29:a:*:*:*:*:*:*",
"matchCriteriaId": "4B6F88B0-A4B6-4EC1-A29D-FA99CFC711EC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.29:b:*:*:*:*:*:*",
"matchCriteriaId": "C9C5D600-EC5B-4D62-B21A-962DED1F31CF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.30:-:*:*:*:*:*:*",
"matchCriteriaId": "07C71232-9C46-4034-84CD-63F9A44D1EFC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.30:a:*:*:*:*:*:*",
"matchCriteriaId": "04CDE5BC-A8F8-43A4-B716-DAA918F241DA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.31:*:*:*:*:*:*:*",
"matchCriteriaId": "51F72F6D-F8B2-41AD-ABA1-15205D3CF0C6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.32:*:*:*:*:*:*:*",
"matchCriteriaId": "0B50B140-28FB-442E-A998-C791C4B554A9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.33:*:*:*:*:*:*:*",
"matchCriteriaId": "671C1290-9C59-4822-AEC6-04143B770BC3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.34:-:*:*:*:*:*:*",
"matchCriteriaId": "C8ADD31B-C5A8-4299-B9C4-7577F7EC4378",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.34:a:*:*:*:*:*:*",
"matchCriteriaId": "E9BCCE31-C166-49A7-972D-527AB89AEFCE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.35:*:*:*:*:*:*:*",
"matchCriteriaId": "EC2FFC74-4F52-4549-8B3C-FD83364F6B5D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.36:-:*:*:*:*:*:*",
"matchCriteriaId": "C9D6A017-E229-445C-A4A1-07E8DBA8FDE5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.36:a:*:*:*:*:*:*",
"matchCriteriaId": "A0E39F77-08F8-4939-89F9-88B5FC254A4E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.37:*:*:*:*:*:*:*",
"matchCriteriaId": "729977A6-7E1D-409F-B74F-21FCB469A265",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.38:-:*:*:*:*:*:*",
"matchCriteriaId": "5009EDAC-EE9E-49F2-B717-3AD12D675A58",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.38:a:*:*:*:*:*:*",
"matchCriteriaId": "FA861D32-8E30-41ED-93D7-54BA46B96429",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.38:b:*:*:*:*:*:*",
"matchCriteriaId": "D69D4949-926A-4209-9769-C91F390AE931",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.38:c:*:*:*:*:*:*",
"matchCriteriaId": "F366C2A8-2396-4ADA-98A2-2C727F6BB2F3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.38:d:*:*:*:*:*:*",
"matchCriteriaId": "B3B9B13E-98BC-4B2F-A46E-2EF2A4C51A4C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.39:-:*:*:*:*:*:*",
"matchCriteriaId": "99EBE73C-CF78-4123-B5BC-A719B0317CB2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.39:a:*:*:*:*:*:*",
"matchCriteriaId": "2A7202ED-8BA1-40B4-A8EF-CB638FEF8FB8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.39:b:*:*:*:*:*:*",
"matchCriteriaId": "5C15A0BE-87B3-4D3C-B9A5-5731661D8577",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.39:c:*:*:*:*:*:*",
"matchCriteriaId": "3E701F44-F1AA-4BB9-A2BB-A89CA82E54C7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.40:*:*:*:*:*:*:*",
"matchCriteriaId": "39018D43-F8A4-49F4-90BC-464648DB55C9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.41:-:*:*:*:*:*:*",
"matchCriteriaId": "81224635-60DF-4C4F-9ABF-3FBCDE769C65",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.41:a:*:*:*:*:*:*",
"matchCriteriaId": "6954C7A9-4AE4-4374-AD35-C78ABAD6D13F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.41:b:*:*:*:*:*:*",
"matchCriteriaId": "337E61B7-4A9B-42A8-8C8D-E8A8644A599E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.42:-:*:*:*:*:*:*",
"matchCriteriaId": "6F4A2A10-E274-4DAB-83ED-5603FA4A1744",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.42:a:*:*:*:*:*:*",
"matchCriteriaId": "036C0212-3ABE-4435-897F-5ADD4EA47F4D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.43:-:*:*:*:*:*:*",
"matchCriteriaId": "76FBE583-898B-4EA3-9406-D01B0C6D2E84",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.43:a:*:*:*:*:*:*",
"matchCriteriaId": "53598A0B-F14C-43B6-B554-73910DD4D6BD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.43:b:*:*:*:*:*:*",
"matchCriteriaId": "5641CF25-DE69-4412-A930-E844641E54B8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.43:c:*:*:*:*:*:*",
"matchCriteriaId": "EA38A770-062D-4987-871C-BF12D2415473",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.43:d:*:*:*:*:*:*",
"matchCriteriaId": "F7044A6E-347A-44E9-9EB6-BEF0D6191B75",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.44:-:*:*:*:*:*:*",
"matchCriteriaId": "7FE4CFA8-FE00-4D82-99FB-154763BC7B3C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.44:a:*:*:*:*:*:*",
"matchCriteriaId": "D3F14DF9-3ACE-4117-9AF3-AFB75B6F6C0E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.44:b:*:*:*:*:*:*",
"matchCriteriaId": "BCAF1620-D289-419D-8DC9-2237BFF3D9DE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.45:-:*:*:*:*:*:*",
"matchCriteriaId": "1867E969-B4BB-4F30-9435-03E3311D453C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.45:a:*:*:*:*:*:*",
"matchCriteriaId": "06300271-726B-4725-ABCD-6F7F0D1D9163",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.45:b:*:*:*:*:*:*",
"matchCriteriaId": "8CAABC7E-ADAB-4234-AC09-3A269830D50F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.45:c:*:*:*:*:*:*",
"matchCriteriaId": "2E7C092C-2B1A-4D95-89F4-3C752DE0F542",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.46:-:*:*:*:*:*:*",
"matchCriteriaId": "954827B7-14BA-470F-A40A-2EF3B5818314",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.46:a:*:*:*:*:*:*",
"matchCriteriaId": "11E88097-2945-4046-83B0-93C11B995400",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.47:-:*:*:*:*:*:*",
"matchCriteriaId": "F974F8FB-A8EB-41CF-A370-B4743F56CA66",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.47:a:*:*:*:*:*:*",
"matchCriteriaId": "C8C476D5-BE6B-4292-B358-8565E940459D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.47:b:*:*:*:*:*:*",
"matchCriteriaId": "BF77674A-01AD-456B-B17E-2DFCA43319C8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.47:c:*:*:*:*:*:*",
"matchCriteriaId": "34E0C561-2F6E-474B-BCFE-15B24A2657C6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:infopop:ultimate_bulletin_board:5.47:d:*:*:*:*:*:*",
"matchCriteriaId": "FA9C9EA8-140A-49F7-BF57-82CABB733D4D",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Cross-site scripting vulnerability in Infopop Ultimate Bulletin Board (UBB) before 5.47e allows remote attackers to steal user cookies via an [IMG] tag that references an about: URL with an onerror field."
}
],
"id": "CVE-2001-0897",
"lastModified": "2025-04-03T01:03:51.193",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2001-11-15T05:00:00.000",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Mailing List"
],
"url": "http://marc.info/?l=bugtraq\u0026m=100586033530341\u0026w=2"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List"
],
"url": "http://marc.info/?l=bugtraq\u0026m=100586541317940\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List"
],
"url": "http://marc.info/?l=bugtraq\u0026m=100586033530341\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List"
],
"url": "http://marc.info/?l=bugtraq\u0026m=100586541317940\u0026w=2"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…