AntiBoard 0.6/0.7 antiboard.php feedback Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/10821/info Multiple vulnerabilities are reported to exist in the application due to insufficient sanitization of user-supplied data. The issues include various instances of SQL injection and a cross-site scripting...

AntiBoard 0.6/0.7 antiboard.php Multiple Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/10821/info Multiple vulnerabilities are reported to exist in the application due to insufficient sanitization of user-supplied data. The issues include various instances of SQL injection and a cross-site scripting...

CVE-2004-2063

Cross-site scripting XSS vulnerability in antiboard.php in AntiBoard 0.7.2 and earlier allows remote attackers to inject arbitrary HTML or web script via the feedback parameter...

CVE-2004-2062

SQL injection vulnerability in antiboard.php in AntiBoard 0.7.2 and earlier allows remote attackers to execute arbitrary SQL via the 1 threadid, 2 parentid, or 3 mode parameters...

CVE-2004-2062

CVE-2004-2062 affects AntiBoard ( antiboard.php ) ≤ 0.7.2. The vulnerability is a SQL injection in parameters (thread_id, parent_id, mode) that allows remote attackers to execute arbitrary SQL through the affected page. The vulnerability and affected component are documented in multiple sources (...

CVE-2004-2063

CVE-2004-2063 is an XSS vulnerability in AntiBoard 0.7.2 and earlier, located in antiboard.php. The flaw allows remote attackers to inject arbitrary HTML or UWS script via the feedback parameter. The description refers to cross-site scripting as the vulnerability class, with the affected version ...