Vulnerabilities > SIR > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-04-26 | CVE-2018-15580 | Cross-site Scripting vulnerability in SIR Gnuboard Cross-Site Scripting (XSS) vulnerability in adm/contentformupdate.php in gnuboard5 before 5.3.1.6 allows remote attackers to inject arbitrary web script or HTML. | 6.1 |
| 2019-03-27 | CVE-2018-15585 | Cross-site Scripting vulnerability in SIR Gnuboard Cross-Site Scripting (XSS) vulnerability in newwinform.php in GNUBOARD5 before 5.3.1.6 allows remote attackers to inject arbitrary web script or HTML via the popup title parameter. | 6.1 |
| 2019-03-25 | CVE-2018-15583 | Cross-site Scripting vulnerability in SIR Gnuboard Cross-Site Scripting (XSS) vulnerability in point_list.php in GNUBOARD5 before 5.3.1.6 allows remote attackers to inject arbitrary web script or HTML via the popup title parameter. | 6.1 |