CNNVD-202510-3211 Information

CNNVD ID

CNNVD-202510-3211

Related CVE

CVE-2025-60859

• CNNVD Published: 2025-10-23

Description (Chinese)

Gnuboard是Gnuboard开源的一套可扩展论坛程序。 Gnuboard 5.6.15版本存在安全漏洞，该漏洞源于对bbs/view_comment.php中参数c_id的错误操作，可能导致跨站脚本攻击。

Description (English)

Gnuboard is an extended set of Gnuboard open-source forum procedures. There is a security loophole in Gnuboard Version 5.6.15, which stems from an error in the use of parameter c id inbbs/view comment.php, which may result in a cross-site script attack.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Gnuboard

Published

2025-10-23

Last Modified

2026-02-24

References

https://creeperkirby.notion.site/Gnboard5-5-6-15-reflected-XSS-25c4fe7db8cf80efa20fc2ebefcfe61e?source=copy_link https://github.com/gnuboard/gnuboard5/commit/002e43e5fb84b465357b445772c881e196e100d3 https://access.redhat.com/security/cve/cve-2025-60859

Patch

https://github.com/gnuboard/gnuboard5/releases