EUVD-2010-0972

Malware in sbrugna...

Max Network Technology BBSMAX <= 4.2 'post.aspx' Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/38592/info Max Network Technology BBSMAX is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in...

BBSMAX Forum program login any user, obtain the user password information vulnerability-vulnerability warning-the black bar safety net

BBSMAX is the domestic development of the earliest is based on the. net technology to build the bbs, in leobbs unrivaled in the world, Microsoft. net just the birth when BBSMAX began development of the then known as nowboard, and after years of development, from personal development to team...

BBSMAX 4.x 论坛程序登陆任意用户，取得用户密码信息漏洞

在文件 register.aspx.cs 中 protected void PageLoadobject sender, EventArgs e string str = string.Empty; str = base.Request.Get"active", Method.Get; if !string.IsNullOrEmptystr if BOBaseUserBO.Instance.ActivingUserstr //激活用户 base.ShowSuccess"恭喜！您的账号" + base.My.Username + "已成功激活。",...

BSMAX 4.2 a xss on "action" parameter

Exploit for unknown platform in category web applications ===================================== BSMAX 4.2 a xss on "action" parameter ===================================== Affected Software : bbsmax:bbsmax:3.0 bbsmax:bbsmax:4.1 bbsmax:bbsmax:4.2 i found a xss on "action" parameter in "post.aspx" ...

[xss] a xss on &quot;action&quot; parameter in BBSMAX

i found a xss on "action" parameter in "post.aspx" in BBSMAX , it's "post.aspx?action=" Vulnerable: BBSMAX 4.2 BBSMAX 4.1 BBSMAX 3.0 For example: http://bbs.example.com/forum1/post.aspx?action=newthread"scriptalert/liscker//script BBSMAX Home Page : http://www.bbsmax.com/ BBSMAX is prone to an...

[xss] a xss on &quot;threadid&quot; parameter in BBSMAX

i found a xss on "threadid" parameter in "post.aspx" in BBSMAX , it's "post.aspx?action=reply&threadid=" Vulnerable: BBSMAX 4.2 BBSMAX 4.1 BBSMAX 3.0 For example: http://bbs.example.com/forum1/post.aspx?action=reply&threadid="scriptalert/liscker/;/script BBSMAX Home Page : http://www.bbsmax.com/...

Max Network Technology BBSMAX (threadid) Parameter XSS Vulnerability

Exploit for unknown platform in category web applications ==================================================================== Max Network Technology BBSMAX threadid Parameter XSS Vulnerability ==================================================================== Vulnerable: Max Network Technology...

CVE-2010-0947

Cross-site scripting XSS vulnerability in post.aspx in Max Network Technology BBSMAX 3.0, 4.1, and 4.2 allows remote attackers to inject arbitrary web script or HTML via the action parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in post.aspx in Max Network Technology BBSMAX 3.0, 4.1, and 4.2 allows remote attackers to inject arbitrary web script or HTML via the action parameter...

Max Network Technology BBSMAX 4.2 - threadid Cross-Site Scripting

Max Network Technology BBSMAX 4.2 - threadid Cross-Site Scripting source: https://www.securityfocus.com/bid/38630/info Max Network Technology BBSMAX is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to...

Max Network Technology BBSMAX 4.2 - &#039;threadid&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/38630/info Max Network Technology BBSMAX is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting use...

CVE-2010-0947

CVE-2010-0947 is a cross-site scripting (XSS) vulnerability affecting Max Network Technology BBSMAX versions 3.0, 4.1 and 4.2. The flaw exists in post.aspx and allows remote attackers to inject arbitrary web script or HTML via the action parameter. The NVD notes a MEDIUM severity (CVSS v2: AV:N/A...

CVE-2010-0947

Cross-site scripting XSS vulnerability in post.aspx in Max Network Technology BBSMAX 3.0, 4.1, and 4.2 allows remote attackers to inject arbitrary web script or HTML via the action parameter...

Max Network Technology BBSMAX 4.2 - post.aspx Cross-Site Scripting

Max Network Technology BBSMAX 4.2 - post.aspx Cross-Site Scripting source: https://www.securityfocus.com/bid/38592/info Max Network Technology BBSMAX is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to...

Max Network Technology BBSMAX 4.2 - &#039;post.aspx&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/38592/info Max Network Technology BBSMAX is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting use...

BBSMAX 3.0 / 4.1 / 4.2 Cross Site Scripting

i found a xss on "action" parameter in "post.aspx" in BBSMAX , it's "post.aspx?action=" Vulnerable: BBSMAX 4.2 BBSMAX 4.1 BBSMAX 3.0 For example: http://bbs.example.com/forum1/post.aspx?action=newthread"alert/liscker/ BBSMAX Home Page : http://www.bbsmax.com/ BBSMAX is prone to an cross-site...