{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-18T02:50:34.519","vulnerabilities":[{"cve":{"id":"CVE-2008-3968","sourceIdentifier":"cve@mitre.org","published":"2008-09-11T01:13:47.727","lastModified":"2026-06-16T22:56:54.947","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-site scripting (XSS) vulnerability in userlist.php in PunBB before 1.2.20 allows remote attackers to inject arbitrary web script or HTML via the p parameter."},{"lang":"es","value":"Vulnerabilidad de secuencias de comandos en sitios cruzados XSS en el archivo userlist.php en PunBB, versiones anteriores a 1.2.20, que permite a los atacantes remotos inyectar una secuencia arbitraria de comandos web o HTML a través del parámetro p."}],"affected":[{"source":"cve@mitre.org","affectedData":[{"vendor":"n/a","product":"n/a","versions":[{"version":"n/a","status":"affected"}]}]}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:punbb:punbb:*:*:*:*:*:*:*:*","versionEndIncluding":"1.2.19","matchCriteriaId":"27B90B3E-CED5-4A47-B1B3-8C209B4B72BE"},{"vulnerable":true,"criteria":"cpe:2.3:a:punbb:punbb:1.0:*:*:*:*:*:*:*","matchCriteriaId":"92F62C7C-EA7A-40B2-A8A0-5FEA69DF321B"},{"vulnerable":true,"criteria":"cpe:2.3:a:punbb:punbb:1.0:alpha:*:*:*:*:*:*","matchCriteriaId":"4C9B6A22-A7BD-4C31-B4BB-A3BA43F4B9FD"},{"vulnerable":true,"criteria":"cpe:2.3:a:punbb:punbb:1.0:beta1:*:*:*:*:*:*","matchCriteriaId":"C80A6D72-289A-4F53-AF80-6F2697AFF2D8"},{"vulnerable":true,"criteria":"cpe:2.3:a:punbb:punbb:1.0:beta1a:*:*:*:*:*:*","matchCriteriaId":"9CADED1D-A90F-485E-B9EB-8CCAA22C9FB4"},{"vulnerable":true,"criteria":"cpe:2.3:a:punbb:punbb:1.0:beta2:*:*:*:*:*:*","matchCriteriaId":"037398E0-C125-48DC-B0D8-FEE9DBEF6374"},{"vulnerable":true,"criteria":"cpe:2.3:a:punbb:punbb:1.0:beta3:*:*:*:*:*:*","matchCriteriaId":"D1E6BBD6-5EE2-4412-92E1-48401F3622C8"},{"vulnerable":true,"criteria":"cpe:2.3:a:punbb:punbb:1.0:rc1:*:*:*:*:*:*","matchCriteriaId":"3BEBC325-DD6F-4DB1-84B8-86C26AC4165C"},{"vulnerable":true,"criteria":"cpe:2.3:a:punbb:punbb:1.0:rc2:*:*:*:*:*:*","matchCriteriaId":"78C47271-AED6-444B-B2E6-EF2A48B15600"},{"vulnerable":true,"criteria":"cpe:2.3:a:punbb:punbb:1.1:*:*:*:*:*:*:*","matchCriteriaId":"E04494D1-FE7F-431C-8242-A0591A5D0A6A"},{"vulnerable":true,"criteria":"cpe:2.3:a:punbb:punbb:1.1.1:*:*:*:*:*:*:*","matchCriteriaId":"A97DA335-4815-4608-84D5-67F4E539D8F0"},{"vulnerable":true,"criteria":"cpe:2.3:a:punbb:punbb:1.1.2:*:*:*:*:*:*:*","matchCriteriaId":"9481F02E-2523-4599-A39D-3ACE518CEC35"},{"vulnerable":true,"criteria":"cpe:2.3:a:punbb:punbb:1.1.3:*:*:*:*:*:*:*","matchCriteriaId":"01C976DD-47E4-48CA-AF99-93D0653D31F0"},{"vulnerable":true,"criteria":"cpe:2.3:a:punbb:punbb:1.1.4:*:*:*:*:*:*:*","matchCriteriaId":"A1AAB3BF-EBFA-4F55-A3D4-0B26F749D91E"},{"vulnerable":true,"criteria":"cpe:2.3:a:punbb:punbb:1.1.5:*:*:*:*:*:*:*","matchCriteriaId":"7277A122-5963-4E7F-BA1A-62B19AF804EB"},{"vulnerable":true,"criteria":"cpe:2.3:a:punbb:punbb:1.2.1:*:*:*:*:*:*:*","matchCriteriaId":"05BCF8A0-5530-4B36-8CEA-5330307C74CC"},{"vulnerable":true,"criteria":"cpe:2.3:a:punbb:punbb:1.2.11:*:*:*:*:*:*:*","matchCriteriaId":"F4A94FF3-C732-4552-A32B-53C4739F7E52"},{"vulnerable":true,"criteria":"cpe:2.3:a:punbb:punbb:1.2.13:*:*:*:*:*:*:*","matchCriteriaId":"C427E4AB-79A3-4B9E-BD73-35F8BE03B93C"},{"vulnerable":true,"criteria":"cpe:2.3:a:punbb:punbb:1.2.15:*:*:*:*:*:*:*","matchCriteriaId":"CDD30AB1-3E59-4981-9DFD-E7270D9C009E"},{"vulnerable":true,"criteria":"cpe:2.3:a:punbb:punbb:1.2.16:*:*:*:*:*:*:*","matchCriteriaId":"4546E547-54E1-4FB9-9F20-7C70B9F86BC6"}]}]}],"references":[{"url":"http://punbb.informer.com/download/changelogs/1.2.19_to_1.2.20.txt","source":"cve@mitre.org"},{"url":"http://punbb.informer.com/forums/topic/19682/punbb-1220-and-13rc-hotfix-released/","source":"cve@mitre.org"},{"url":"http://www.openwall.com/lists/oss-security/2008/09/09/10","source":"cve@mitre.org"},{"url":"http://www.openwall.com/lists/oss-security/2008/09/09/2","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/31082","source":"cve@mitre.org"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/45046","source":"cve@mitre.org"},{"url":"http://punbb.informer.com/download/changelogs/1.2.19_to_1.2.20.txt","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://punbb.informer.com/forums/topic/19682/punbb-1220-and-13rc-hotfix-released/","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.openwall.com/lists/oss-security/2008/09/09/10","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.openwall.com/lists/oss-security/2008/09/09/2","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/31082","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/45046","source":"af854a3a-2127-422b-91ae-364da2661108"}],"evaluatorSolution":"Patch information - http://punbb.informer.com/downloads.php"}}]}