EUVD-2024-55339

XMB Forum 1.9.12.06 contains a persistent cross-site scripting vulnerability that allows authenticated administrators to inject malicious JavaScript into templates and front page settings. Attackers can insert XSS payloads in footer templates and news ticker fields, enabling script execution for...

CVE-2024-58292

XMB Forum 1.9.12.06 contains a persistent cross-site scripting vulnerability that allows authenticated administrators to inject malicious JavaScript into templates and front page settings. Attackers can insert XSS payloads in footer templates and news ticker fields, enabling script execution for...

CVE-2024-58292

CVE-2024-58292 affects XMB Forum 1.9.12.06. Red Hat and NVD entries describe a persistent cross-site scripting vulnerability exploitable by authenticated administrators who can inject JavaScript into templates and front-page settings (footer templates, news ticker). When pages render, the script ...

CVE-2024-58292 XMB Forum 1.9.12.06 Persistent Cross-Site Scripting via Admin Templates

XMB Forum 1.9.12.06 contains a persistent cross-site scripting vulnerability that allows authenticated administrators to inject malicious JavaScript into templates and front page settings. Attackers can insert XSS payloads in footer templates and news ticker fields, enabling script execution for...

CVE-2024-58292 XMB Forum 1.9.12.06 Persistent Cross-Site Scripting via Admin Templates

XMB Forum 1.9.12.06 contains a persistent cross-site scripting vulnerability that allows authenticated administrators to inject malicious JavaScript into templates and front page settings. Attackers can insert XSS payloads in footer templates and news ticker fields, enabling script execution for...

XMB Forum 跨站脚本漏洞

XMB Forum is an open source forum system by XMB. A cross-site scripting vulnerability exists in XMB Forum version 1.9.12.06, which stems from persistent cross-site scripting in the template and homepage settings, which could lead to script execution by all forum users...

PT-2025-50746

Name of the Vulnerable Software and Affected Versions XMB Forum version 1.9.12.06 Description The software contains a persistent cross-site scripting issue. Authenticated administrators can inject malicious JavaScript into templates and front page settings. Attackers can insert XSS payloads in...

EUVD-2003-0477

Malware in sbrugna...

EUVD-2005-0886

Malware in sbrugna...

EUVD-2005-2575

Malware in sbrugna...

EUVD-2005-2576

Malware in sbrugna...

EUVD-2006-1748

Malware in sbrugna...

XMB 1.9.12.06 - Stored XSS Vulnerability

Exploit Title: Persistent XSS in XMB 1.9.12.06 Exploit Author: Chokri Hammedi Vendor Homepage: https://www.xmbforum2.com/ Software Link: https://www.xmbforum2.com/download/XMB-1.9.12.06.zip Version: 1.9.12.06 Tested on: Windows XP CVE: N/A Vulnerability Details A persistent stored XSS vulnerabili...

XMB 跨站脚本漏洞

XMB is a lightweight PHP forum software. XMB suffers from a cross-site scripting vulnerability that can be exploited by attackers to conduct cross-site scripting attacks...

XMB Forum 1.8 Member.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7406/info XMB Forum Member.PHP has been reported prone to an SQL injection vulnerability, under certain conditions. The SQL injection vulnerability has been reported to affect the registration page of XMB Forum. This is...

XMB Forum 1.8 u2uadmin.php uid Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/9726/info XMB Forum has been reported prone to multiple cross-site scripting, HTML injection and SQL injection vulnerabilities. The issues present themselves due to insufficient sanitization of remote user supplied data. ...

XMB Forum 1.6 Magic Lantern Cross Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/4721/info XMB Forum 1.6 Magic Lantern is a web-based discussion forum. It is vulnerable to a number of cross-site scripting issues because of improper filtering of user input. 1. The first involves 'member.php'; submittin...

XMB Forum 1.8 member.php member Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/8013/info XMB Forum has been reported prone to multiple cross-site scripting and HTML-injection vulnerabilities because the application fails to sanitize user-supplied data. An attacker may exploit any one of these...

XMB Forum 1.9.3 Post.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/15267/info XMB Nexus Forum is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation...

XMB Forum 1.8 Member.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7662/info XMB Forum has been reported prone to a cross-site scripting vulnerability. XMB Forum fails to adequately filter script code from URL parameters, making it prone to cross-site scripting attacks. Attacker-supplied...