EUVD-2024-55339

XMB Forum 1.9.12.06 contains a persistent cross-site scripting vulnerability that allows authenticated administrators to inject malicious JavaScript into templates and front page settings. Attackers can insert XSS payloads in footer templates and news ticker fields, enabling script execution for...

CVE-2024-58292

XMB Forum 1.9.12.06 contains a persistent cross-site scripting vulnerability that allows authenticated administrators to inject malicious JavaScript into templates and front page settings. Attackers can insert XSS payloads in footer templates and news ticker fields, enabling script execution for...

CVE-2024-58292

CVE-2024-58292 affects XMB Forum 1.9.12.06. Red Hat and NVD entries describe a persistent cross-site scripting vulnerability exploitable by authenticated administrators who can inject JavaScript into templates and front-page settings (footer templates, news ticker). When pages render, the script ...

CVE-2024-58292 XMB Forum 1.9.12.06 Persistent Cross-Site Scripting via Admin Templates

XMB Forum 1.9.12.06 contains a persistent cross-site scripting vulnerability that allows authenticated administrators to inject malicious JavaScript into templates and front page settings. Attackers can insert XSS payloads in footer templates and news ticker fields, enabling script execution for...

CVE-2024-58292 XMB Forum 1.9.12.06 Persistent Cross-Site Scripting via Admin Templates

XMB Forum 1.9.12.06 contains a persistent cross-site scripting vulnerability that allows authenticated administrators to inject malicious JavaScript into templates and front page settings. Attackers can insert XSS payloads in footer templates and news ticker fields, enabling script execution for...

XMB Forum 跨站脚本漏洞

XMB Forum is an open source forum system by XMB. A cross-site scripting vulnerability exists in XMB Forum version 1.9.12.06, which stems from persistent cross-site scripting in the template and homepage settings, which could lead to script execution by all forum users...

PT-2025-50746

Name of the Vulnerable Software and Affected Versions XMB Forum version 1.9.12.06 Description The software contains a persistent cross-site scripting issue. Authenticated administrators can inject malicious JavaScript into templates and front page settings. Attackers can insert XSS payloads in...

EUVD-2006-1748

Malware in sbrugna...

EUVD-2005-2575

Malware in sbrugna...

EUVD-2005-2576

Malware in sbrugna...

EUVD-2003-0477

Malware in sbrugna...

EUVD-2005-0886

Malware in sbrugna...

XMB 1.9.12.06 - Stored XSS Vulnerability

Exploit Title: Persistent XSS in XMB 1.9.12.06 Exploit Author: Chokri Hammedi Vendor Homepage: https://www.xmbforum2.com/ Software Link: https://www.xmbforum2.com/download/XMB-1.9.12.06.zip Version: 1.9.12.06 Tested on: Windows XP CVE: N/A Vulnerability Details A persistent stored XSS vulnerabili...

XMB 跨站脚本漏洞

XMB is a lightweight PHP forum software. XMB suffers from a cross-site scripting vulnerability that can be exploited by attackers to conduct cross-site scripting attacks...

XMB Forum 1.6 Magic Lantern Cross Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/4721/info XMB Forum 1.6 Magic Lantern is a web-based discussion forum. It is vulnerable to a number of cross-site scripting issues because of improper filtering of user input. 1. The first involves 'member.php'; submittin...

XMB Forum 1.8 editprofile.php user Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/9726/info XMB Forum has been reported prone to multiple cross-site scripting, HTML injection and SQL injection vulnerabilities. The issues present themselves due to insufficient sanitization of remote user supplied data. ...

XMB Forum 1.6 pre-beta Image Tag Script Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/4167/info The Extreme Message Board XMB 1.6 Magic Lantern pre-beta version reportedly allows JavaScript and HTML to be entered in messages. This can be achieved by entering script or HTML between img and /img tags in a...

XMB Forum 1.8 member.php member Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/8013/info XMB Forum has been reported prone to multiple cross-site scripting and HTML-injection vulnerabilities because the application fails to sanitize user-supplied data. An attacker may exploit any one of these...

XMB Forum 1.8 forumdisplay.php Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/9726/info XMB Forum has been reported prone to multiple cross-site scripting, HTML injection and SQL injection vulnerabilities. The issues present themselves due to insufficient sanitization of remote user supplied data. ...

XMB Forum 1.8/1.9 u2u.php username Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/16604/info XMB Forum is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because the application fails to properly sanitize user-supplied input. Successful...