QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2015-1431

Back to search

CVE-2015-1431

Published: Feb 10, 2015

Modified: Aug 6, 2024

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in includes/startup.php in phpBB before 3.0.13 allows remote attackers to inject arbitrary web script or HTML via vectors related to "Relative Path Overwrite."

VendorProductVersions

n/a

n/a

affected
n/a

References

GLSA-201701-25
vendor-advisory
x_refsource_GENTOO
72405
vdb-entry
x_refsource_BID
phpbb3-cve20151431-xss(100670)
vdb-entry
x_refsource_XF

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now