212 matches found
Thread-IT Message Board XSS Vulnerability
Thread-IT Message Board XSS Vulnerability Published: 24 September 2003 Released: 24 September 2003 Affected Systems: Thread-IT Message Board Vendor: http://www.ymonda.co.uk Issue: Remote attackers can inject XSS script. Description: ============ "Thread-IT is a simple message board product that...
PHPOutsourcing Zorum 3.4 - Full Path Disclosure
source: https://www.securityfocus.com/bid/8396/info A vulnerability has been reported in Zorum message board software that allows a remote attacker to send a malformed HTTP request resulting in a disclosure of the installation path. This issue may allow an attacker to gain knowledge of the file...
CVE-2002-1902
CGIForum 1.0 through 1.05 allows remote attackers to cause a denial of service infinite recursion by creating a message board post that is a child of an outdated parent...
CVE-2002-1733
Cross-site scripting XSS vulnerability in the web-based message board in Prospero Technologies allows remote attackers to inject arbitrary web script or HTML via a message board post...
CVE-2002-0316
Cross-site scripting vulnerability in eXtreme message board XMB 1.6x and earlier allows remote attackers to execute script as other XMB users by inserting the script into an IMG tag...
CVE-2002-0316
The connected Nessus NASL confirms that XMB Forum (PHP) versions older than 1.9.1 are affected by multiple cross-site scripting (XSS) flaws, including CVE-2002-0316. The vulnerability allows an attacker to inject scripts that run in the context of other XMB users’ browsers. Affected software: XMB...
CVE-2002-0316
Cross-site scripting vulnerability in eXtreme message board XMB 1.6x and earlier allows remote attackers to execute script as other XMB users by inserting the script into an IMG tag...
PostBoard 2.0 - Topic Title Script Execution
PostBoard 2.0 - Topic Title Script Execution source: https://www.securityfocus.com/bid/4561/info PostBoard is a freely available, open source message board module for the PostNuke content management system. It is designed for use on the Unix and Linux operating systems. PostBoard does not...
PostBoard 2.0 - Topic Title Script Execution
source: https://www.securityfocus.com/bid/4561/info PostBoard is a freely available, open source message board module for the PostNuke content management system. It is designed for use on the Unix and Linux operating systems. PostBoard does not adequately sanitize input by board users. Because of...
CVE-1999-0930
wwwboard allows a remote attacker to delete message board articles via a malformed argument...
XMB Forum 1.6 pre-beta - Image Tag Script Injection
source: https://www.securityfocus.com/bid/4167/info The Extreme Message Board XMB 1.6 Magic Lantern pre-beta version reportedly allows JavaScript and HTML to be entered in messages. This can be achieved by entering script or HTML between img and /img tags in a forum message. This has been fixed i...
CVE-1999-0930
wwwboard allows a remote attacker to delete message board articles via a malformed argument...