30 matches found
Unfixed XSS vulnerability at jsguide.net
Security researcher cyber, has submitted on 11/08/2007 a cross-site-scripting XSS vulnerability affecting jsguide.net, which at the time of submission ranked 1583246 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 21/08/2007. It is currently...
SQL IN Open Bulletin Board
Class: Input Validation Error Remote: Yes Local: Yes Credit: ABDUCTER ---- [email protected] OR [email protected] Vulnerable: Powered by Open Bulletin Board ALL VERSION info :- openbb is APOPULAR FORUM HAVE MANY VERSION U CAN FIND SOURCE OF FORUM IN http://www.openbb.com/ discussi...
OpenBB board.php FID Parameter XSS
The remote host seems to be running OpenBB, a forum management system written in PHP. The remote version of this software is vulnerable to cross-site scripting attacks, through the script 'board.php'. Using a specially crafted URL, an attacker can cause arbitrary code execution for third-party...
OpenBB 1.0 - board.php Cross-Site Scripting
OpenBB 1.0 - board.php Cross-Site Scripting source: https://www.securityfocus.com/bid/9303/info OpenBB is prone to a cross-site scripting vulnerability in the 'board.php' script. The source of the problem is that HTML and script code are not adequately sanitized from input supplied via URI...
OpenBB 1.0 - 'board.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/9303/info OpenBB is prone to a cross-site scripting vulnerability in the 'board.php' script. The source of the problem is that HTML and script code are not adequately sanitized from input supplied via URI parameters. This input will be included in...
OpenBB 1.01.1 - board.php SQL Injection
OpenBB 1.01.1 - board.php SQL Injection source: https://www.securityfocus.com/bid/7404/info It has been reported that OpenBB does not properly check input passed via the 'board.php' script. Because of this, an attacker may be able to inject arbitrary commands to the database in the context of the...
OpenBB 1.0/1.1 - 'board.php' SQL Injection
source: https://www.securityfocus.com/bid/7404/info It has been reported that OpenBB does not properly check input passed via the 'board.php' script. Because of this, an attacker may be able to inject arbitrary commands to the database in the context of the bulletin board software. The consequenc...
CVE-2002-1429
The CVE-2002-1429 entry corresponds to a cross-site scripting (XSS) vulnerability in endity.com’s ShoutBOX, specifically in the board.php handler. The flaw allows remote attackers to inject arbitrary HTML into the shoutbox page by manipulating the site parameter. Documents confirm the affected co...
PT-2003-1176 · Endity.Com · Shoutbox
Name of the Vulnerable Software and Affected Versions: ShoutBOX affected versions not specified Description: A cross-site scripting issue exists in the board.php file of ShoutBOX on endity.com, allowing remote attackers to inject arbitrary HTML into the shoutbox page via the site parameter...
WoltLab Burning Board 2.0 - SQL Injection
WoltLab Burning Board 2.0 - SQL Injection source: https://www.securityfocus.com/bid/5675/info WoltLab is prone to SQL injection attacks. This is due to insufficient sanitization of parameters handled by the board.php script, which may be supplied externally via the query string in a web request...