Description phpBB 3.2.7 allows adding an arbitrary Cascading Style Sheets (CSS) token sequence to a page through BBCode. Remediation References CVE-2019-16108 Related Vulnerabilities WordPress Plugin Smash Balloon Social Post Feed Unspecified Vulnerability (2.4.2) WordPress Plugin Contact Form by BestWebSoft Cross-Site Scripting (3.34) ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-2047) WordPress Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2017-14719) PrestaShop Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-30839) Severity High Classification CVE-2019-16108 CWE-94 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N Tags Missing Update Known Vulnerabilities