12 matches found
EUVD-2004-1549
Malware in sbrugna...
FreezingCold Broadboard search.asp SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/11250/info Reportedly BroadBoard Message Board is affected by multiple SQL injection vulnerabilities. These issues are due to a failure of the application to properly sanitize user supplied URI input prior to using it in ...
FreezingCold Broadboard profile.asp SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/11250/info Reportedly BroadBoard Message Board is affected by multiple SQL injection vulnerabilities. These issues are due to a failure of the application to properly sanitize user supplied URI input prior to using it in ...
CVE-2004-1555
CVE-2004-1555 affects BroadBoard Instant ASP Message Board. The description documents multiple SQL injection flaws in the application, exploitable via specific parameters: keywords in search.asp, handle in profile.asp, txtUserHandle in reg2.asp, and txtUserEmail in forgot.asp. The underlying issu...
CVE-2004-1555
Multiple SQL injection vulnerabilities in BroadBoard Instant ASP Message Board allow remote attackers to run arbitrary SQL commands via the 1 keywords parameter to search.asp, 2 handle parameter to profile.asp, 3 txtUserHandle parameter to reg2.asp or 4 txtUserEmail parameter to forgot.asp...
CVE-2004-1555
Multiple SQL injection vulnerabilities in BroadBoard Instant ASP Message Board allow remote attackers to run arbitrary SQL commands via the 1 keywords parameter to search.asp, 2 handle parameter to profile.asp, 3 txtUserHandle parameter to reg2.asp or 4 txtUserEmail parameter to forgot.asp...
FreezingCold Broadboard - 'search.asp' SQL Injection
source: https://www.securityfocus.com/bid/11250/info Reportedly BroadBoard Message Board is affected by multiple SQL injection vulnerabilities. These issues are due to a failure of the application to properly sanitize user supplied URI input prior to using it in an SQL query. An attacker may...
FreezingCold Broadboard - 'profile.asp' SQL Injection
source: https://www.securityfocus.com/bid/11250/info Reportedly BroadBoard Message Board is affected by multiple SQL injection vulnerabilities. These issues are due to a failure of the application to properly sanitize user supplied URI input prior to using it in an SQL query. An attacker may...
[Full-Disclosure] SQL injection in BroadBoard Instant ASP Message Board
BroadBoard Instant ASP Message Board URL: http://www.broadboard.com/ 1. software does not properly validate user-supplied input in the 'keywords' parameter in search.asp: http://broadboard/forum/search.asp?archives=1&action=1&keywords='SQL code&method=1&method=1&body=1&subject=1&board=1&results=1...
BroadBoard Message Board Detection
Binary data 2328.prm...
BroadBoard Message Board SQL Injection
Binary data 2329.prm...
BroadBoard Multiple Script SQL Injection
The remote host appears to be running BroadBoard, an ASP script designed to manage a web-based bulletin-board system. There is a flaw in the remote software that could allow a remote attacker to inject arbitrary SQL commands, which could in turn be used to gain administrative access on the remote...