44 matches found
EUVD-2010-1304
Malware in sbrugna...
EUVD-2010-1305
Malware in sbrugna...
EUVD-2009-0290
Malware in sbrugna...
CVE-2010-1276
Multiple cross-site scripting XSS vulnerabilities in BBSXP 2008 SP2 allow remote attackers to inject arbitrary web script or HTML via the URI in a request to 1 AddPost.asp, 2 AddTopic.asp, 3 AdminDefault.asp, 4 Bank.asp, 5 Manage.asp, and 6 ShowPost.asp. NOTE: the provenance of this information i...
BBSXP 2008 'ShowPost.asp' Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/38542/info BBSXP is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...
BBSXP 5.13 'error.asp' Cross Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/33411/info BBSXP is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an...
BBSXP CMS - Multiple SQL Injections
BBSXP CMS - Multiple SQL Injections source: https://www.securityfocus.com/bid/53298/info BBSXP CMS is prone to multiple SQL-injection vulnerabilities because the application fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an...
BBSXP CMS - Multiple SQL Injections
source: https://www.securityfocus.com/bid/53298/info BBSXP CMS is prone to multiple SQL-injection vulnerabilities because the application fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the applicatio...
BBSXP CMS SQL Injection
Exploit Title : BBSXP CMS SQL Injection Vulnerability Author : Secure-Land Security Team Discovered By : farbodmahini Home : Secure-Land.net Version : All Version Software Link : http://www.bbsxp.com/download.htm Contact : [email protected] , [email protected] Security Risk : High DorK :...
CVE-2010-1276
Multiple cross-site scripting XSS vulnerabilities in BBSXP 2008 SP2 allow remote attackers to inject arbitrary web script or HTML via the URI in a request to 1 AddPost.asp, 2 AddTopic.asp, 3 AdminDefault.asp, 4 Bank.asp, 5 Manage.asp, and 6 ShowPost.asp. NOTE: the provenance of this information i...
Cross site scripting
Cross-site scripting XSS vulnerability in ShowPost.asp in BBSXP 2008 allows remote attackers to inject arbitrary web script or HTML via the ThreadID parameter...
CVE-2010-1275
Cross-site scripting XSS vulnerability in ShowPost.asp in BBSXP 2008 allows remote attackers to inject arbitrary web script or HTML via the ThreadID parameter...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in BBSXP 2008 SP2 allow remote attackers to inject arbitrary web script or HTML via the URI in a request to 1 AddPost.asp, 2 AddTopic.asp, 3 AdminDefault.asp, 4 Bank.asp, 5 Manage.asp, and 6 ShowPost.asp. NOTE: the provenance of this information i...
CVE-2010-1275
Cross-site scripting XSS vulnerability in ShowPost.asp in BBSXP 2008 allows remote attackers to inject arbitrary web script or HTML via the ThreadID parameter...
CVE-2010-1276
CVE-2010-1276 concerns multiple cross-site scripting (XSS) vulnerabilities in BBSXP 2008 SP2. The issue allows remote attackers to inject arbitrary web script or HTML via the URI in requests to six ASP pages: AddPost.asp, AddTopic.asp, Admin_Default.asp, Bank.asp, Manage.asp, and ShowPost.asp. Th...
CVE-2010-1275
CVE-2010-1275 concerns a Cross-site scripting (XSS) vulnerability in ShowPost.asp used by BBSXP 2008, exploitable via the ThreadID parameter to inject arbitrary script/HTML. The underlying issue is improper handling/escaping of the ThreadID input, enabling remote script execution. The provided do...
CVE-2010-1276
Multiple cross-site scripting XSS vulnerabilities in BBSXP 2008 SP2 allow remote attackers to inject arbitrary web script or HTML via the URI in a request to 1 AddPost.asp, 2 AddTopic.asp, 3 AdminDefault.asp, 4 Bank.asp, 5 Manage.asp, and 6 ShowPost.asp. NOTE: the provenance of this information i...
[xss] a xss on "ThreadID" parameter in BBSXP 2008 from china
first, my name is liscker, not lis + cker. Im chinese. thank you. BBSXP is prone to an cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting...
BBSXP 2008 Cross Site Scripting
first, my name is liscker, not lis + cker. Im chinese. thank you. BBSXP is prone to an cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting...
BBSXP 2008 Cross Site Scripting Vulnerability
Exploit for unknown platform in category web applications ============================================= BBSXP 2008 Cross Site Scripting Vulnerability ============================================= BBSXP is prone to an cross-site scripting vulnerability because the application fails to properly...