Unrated severityNVD Advisory· Published Apr 9, 2008· Updated Jun 16, 2026
CVE-2008-1716
CVE-2008-1716
Description
Cross-site scripting (XSS) vulnerability in WoltLab Community Framework (WCF) 1.0.6 in WoltLab Burning Board 3.0.5 allows remote attackers to inject arbitrary web script or HTML via the (1) page and (2) form parameters, which are not properly handled when they are reflected back in an error message.
Affected products
3cpe:2.3:a:woltlab:burning_board:3.0.5:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:woltlab:burning_board:3.0.5:*:*:*:*:*:*:*
- (no CPE)range: =3.0.5
- Range: =1.0.6
Patches
Vulnerability mechanics
References
7- secunia.com/advisories/29719nvdVendor Advisory
- archives.neohapsis.com/archives/fulldisclosure/2008-04/0161.htmlnvd
- lists.grok.org.uk/pipermail/full-disclosure/2008-April/061271.htmlnvd
- www.securityfocus.com/archive/1/490560/100/0/threadednvd
- www.securityfocus.com/archive/1/490782/100/0/threadednvd
- www.securityfocus.com/bid/28678nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/41714nvd
News mentions
0No linked articles in our index yet.