3 matches found
EUVD-2009-3135
Malware in sbrugna...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in becommunity/community/index.php in NTSOFT BBS E-Market Professional allow remote attackers to inject arbitrary web script or HTML via the 1 page, 2 btcode, and 3 bno parameters in a board view action...
CVE-2009-3152
CVE-2009-3152 affects NTSOFT BBS E-Market Professional (becommunity/community/index.php) with XSS vulnerabilities. The vulnerable vector involves user-controllable parameters in a board view action: page, bt_code, and b_no, allowing remote attackers to inject arbitrary script/HTML. The available ...