megabbs forum 2.2 (sql/xss) Multiple Vulnerabilities

No description provided by source. www.BugReport.ir AmnPardaz Security Research Team Title: MegaBBS Forum Multiple Vulnerabilities. Vendor: http://www.pd9soft.com/ Vulnerable Version: 2.2 Exploit: Available Impact: Medium Fix: N/A Original Advisory: http://bugreport.ir/index.php?/37 1. Descriptio...

[Full-Disclosure] HTTP Response Splitting and SQL injection in megabbs forum

URL: http://www.pd9soft.com Tested megabbs 2.1 1. HTTP Response Splitting http://www.pd9soft.com/megabbs/forums/thread-post.asp?action=writenew&fid=0 d0aContent-Length:2000d0a0d0aHTTP/1.02020020OK0d0aContent-Type:20 text/html0d0aContent-Length:20330d0a0d0a3chtml3eScanned20by20Maxp...