deluxebb <= 1.3 - Multiple Vulnerabilities

No description provided by source. Author: cp77fk4r | Empty0pagEShift+2gmail.comhttp://gmail.com Vendor: http://www.deluxebb.com Directory Listing http://server/templates/ http://server/images/ http://server/logs/ http://server/wysiwyg/ http://server/docs/ http://server/classes http://server/lang...

DeluxeBB存在多个安全漏洞

Bugraq ID: 37448 CVE ID：CVE-2009-4465 CVE-2009-4466 CVE-2009-4467 CVE-2009-4468 DeluxeBB是一款基于PHP的论坛程序。 DeluxeBB存在多个输入验证问题，远程攻击者可以利用漏洞进行跨站脚本，验证绕过和安全绕过等攻击。 具体漏洞如下： -部分管理控制面板文件不受访问保护。 -部分日志文件不受访问保护。 -在用户注册过程之后，简单的发送特殊链接，可绕过邮件注册校验。 -通过访问邮件列表字段的末页获得USERID -存在路径泄漏问题。 DeluxeBB = 1.3 目前没有解决方案提供：...

DeluxeBB 1.3 - Multiple Vulnerabilities

DeluxeBB 1.3 - Multiple Vulnerabilities Author: cp77fk4r | Empty0pagEShift+2gmail.com Vendor: http://www.deluxebb.com Directory Listing http://server/templates/ http://server/images/ http://server/logs/ http://server/wysiwyg/ http://server/docs/ http://server/classes http://server/lang...

DeluxeBB <= 1.3 Multiple Vulnerabilities

Exploit for unknown platform in category web applications ======================================== DeluxeBB = 1.3 Multiple Vulnerabilities ======================================== Vendor: http://www.deluxebb.com Directory Listing http://server/templates/ http://server/images/ http://server/logs/...

DeluxeBB 1.3 - Multiple Vulnerabilities

Author: cp77fk4r | Empty0pagEShift+2gmail.com Vendor: http://www.deluxebb.com Directory Listing http://server/templates/ http://server/images/ http://server/logs/ http://server/wysiwyg/ http://server/docs/ http://server/classes http://server/lang http://server/settings/ Cross Site Scripting...

DeluxeBB 1.3 XSS / Bypass

Author: cp77fk4r | Empty0pagEShift+2gmail.com Vendor: http://www.deluxebb.com Directory Listing http://server/templates/ http://server/images/ http://server/logs/ http://server/wysiwyg/ http://server/docs/ http://server/classes http://server/lang http://server/settings/ Cross Site Scripting...