26 matches found
EUVD-2004-2199
Malware in sbrugna...
EUVD-2004-2200
Malware in sbrugna...
EUVD-2004-2201
Malware in sbrugna...
CVE-2004-2208
CRLF injection vulnerability in Ideal Science IdealBB 1.4.9 through 1.5.3 allows remote attackers to conduct HTTP response splitting attacks via unknown vectors...
CVE-2004-2207
Cross-site scripting XSS vulnerability in Ideal Science IdealBB 1.4.9 through 1.5.3 allows remote attackers to inject arbitrary web script or HTML via unknown vectors...
IdealBB 1.4.9 Beta HTML Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8480/info IdealBB is prone to an HTML injection vulnerability. This could permit remote attackers to inject malicious HTML and script code into board messages. The attacker's code may be rendered in the web browser of the...
IdealBB 1.4.9 Error.ASP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8360/info IdealBB error.asp page has been reported prone to a cross-site scripting vulnerability. The issue presents itself due to a lack of sufficient sanitization performed by functions in the error.asp script on...
IdealBB < 1.5.4b Multiple Vulnerabilities (XSS, SQLi, Upload, Traversal)
The remote host is running Ideal BB, an ASP-based forum software. According to its banner, the version of Ideal BB installed on the remote host reportedly allows an attacker to upload files with arbitrary ASP code, to view files under the web root, and to launch SQL injection and cross-site...
Multiple Vulnerabilities In IdealBB ASP Bulletin Board
======================================================================== = CodeScan Advisory, codescan.com [email protected] = = Multiple Vulnerabilities In IdealBB ASP Bulletin Board = = Vendor Website: = http://www.idealscience.com = = Affected Version: = Version 1.5.4a And Earlier = =...
IdealBB multiple flaws
The remote version of this IdealBB is vulnerable to multiple flaws: SQL injection, cross-site scripting and HTTP response splitting vulnerabilities. SPDX-FileCopyrightText: 2004 David Maciejak Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respecti...
IdealBB multiple flaws
The remote host is running IdealBB, a web based bulletin board written in ASP. The remote version of this software is vulnerable to multiple flaws: SQL injection, cross-site scripting and HTTP response splitting vulnerabilities. OpenVAS Vulnerability Test $Id: idealbbmultipleflaws.nasl 5786...
CVE-2004-2208
CRLF injection vulnerability in Ideal Science IdealBB 1.4.9 through 1.5.3 allows remote attackers to conduct HTTP response splitting attacks via unknown vectors...
CVE-2004-2207
Cross-site scripting XSS vulnerability in Ideal Science IdealBB 1.4.9 through 1.5.3 allows remote attackers to inject arbitrary web script or HTML via unknown vectors...
CVE-2004-2208
IdealBB (Ideal Science) web bulletin board versions 1.4.9–1.5.3 are affected by a CRLF injection vulnerability that enables HTTP response splitting. The CVE-2004-2208 entries across NVD, Red Hat, CVE listing, and OpenVAS describe this as a remote issue with unknown vectors, impacting integrity (I...
CVE-2004-2209
CVE-2004-2209 concerns a SQL injection in the IdealBB web application from Ideal Science, affecting versions 1.4.9 through 1.5.3. The vulnerability allows remote attackers to execute arbitrary SQL commands via unknown vectors. The report notes a network-access vector with low attack complexity an...
CVE-2004-2207
CVE-2004-2207 affects IdealBB, a web-based bulletin board, with a cross-site scripting (XSS) vulnerability reported in versions 1.4.9 through 1.5.3. The vulnerability allows remote attackers to inject arbitrary web script or HTML via unknown vectors. The connected OpenVAS and CVE records corrobor...
CVE-2004-2209
SQL injection vulnerability in Ideal Science IdealBB 1.4.9 through 1.5.3 allows remote attackers to execute arbitrary SQL commands via unknown vectors...
CVE-2004-2208
CRLF injection vulnerability in Ideal Science IdealBB 1.4.9 through 1.5.3 allows remote attackers to conduct HTTP response splitting attacks via unknown vectors...
CVE-2004-2209
SQL injection vulnerability in Ideal Science IdealBB 1.4.9 through 1.5.3 allows remote attackers to execute arbitrary SQL commands via unknown vectors...
CVE-2004-2207
Cross-site scripting XSS vulnerability in Ideal Science IdealBB 1.4.9 through 1.5.3 allows remote attackers to inject arbitrary web script or HTML via unknown vectors...