16 matches found
EUVD-2005-3263
Malware in sbrugna...
EUVD-2010-1304
Malware in sbrugna...
BBSXP 2008 'ShowPost.asp' Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/38542/info BBSXP is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...
[ProcessThreadsView] View process threads information
ProcessThreadsView is a small utility that displays extensive information about all threads of the process that you choose. The threads information includes the ThreadID, Context Switches Count, Priority, Created Time, User/Kernel Time, Number of Windows, Window Title, Start Address, and more. Wh...
Cross site scripting
Cross-site scripting XSS vulnerability in ShowPost.asp in BBSXP 2008 allows remote attackers to inject arbitrary web script or HTML via the ThreadID parameter...
CVE-2010-1275
Cross-site scripting XSS vulnerability in ShowPost.asp in BBSXP 2008 allows remote attackers to inject arbitrary web script or HTML via the ThreadID parameter...
CVE-2010-1275
Cross-site scripting XSS vulnerability in ShowPost.asp in BBSXP 2008 allows remote attackers to inject arbitrary web script or HTML via the ThreadID parameter...
CVE-2010-1275
CVE-2010-1275 concerns a Cross-site scripting (XSS) vulnerability in ShowPost.asp used by BBSXP 2008, exploitable via the ThreadID parameter to inject arbitrary script/HTML. The underlying issue is improper handling/escaping of the ThreadID input, enabling remote script execution. The provided do...
[xss] a xss on "ThreadID" parameter in BBSXP 2008 from china
first, my name is liscker, not lis + cker. Im chinese. thank you. BBSXP is prone to an cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting...
Max Network Technology BBSMAX (threadid) Parameter XSS Vulnerability
Exploit for unknown platform in category web applications ==================================================================== Max Network Technology BBSMAX threadid Parameter XSS Vulnerability ==================================================================== Vulnerable: Max Network Technology...
BBSXP 2008 - 'ShowPost.asp' Cross-Site Scripting
source: https://www.securityfocus.com/bid/38542/info BBSXP is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...
BBSxp 2 0 0 8 (Build: 8.0.4) Sql injection vulnerability-vulnerability warning-the black bar safety net
File:MoveThread. asp MoveThread. asp line 2-2 of 4 % if CookieUserName =empty then error"you have nota href=""javascript:BBSXPModal. Open 'Login. asp',3 8 0,1 7 0;""login/a" 'save the cookie log can be ThreadID=Request"ThreadID" ' Sql Injection Vulnerability If Not IsNumericThreadID then...
BBSxp 2008 (Build: 8.0.4) Sql Injection Vulnerability
MoveThread.asp MoveThread.asp行2-24 % if CookieUserName =empty then error"您还未a href=""javascript:BBSXPModal.Open 'Login.asp',380,170;""登录/a论坛" '保存cookie登陆即可 ThreadID=Request"ThreadID" ' Sql Injection Vulnerability If Not IsNumericThreadID then ThreadIDArray=SplitThreadID,"," '判断数组,避免13行出错 if...
OvBB SQL vulnerabilities.
OvBB SQL vulnerabilities. Vuln. dicovered by : r0t Date: 24 nov. 2005 Orginal advisory:http://pridels.blogspot.com/2005/11/ovbb-sql-vulnerabilities.html Vendor:http://www.ovbb.org/ affected version: V0.08a and prior Vuln. description: Input passed to the "threadid" parameter in "thread.php" isn't...
CVE-2003-1277
Cross-site scripting XSS vulnerabilities in Yet Another Bulletin Board YaBB 1.5.0 allow remote attackers to execute arbitrary script as other users and possibly steal authentication information via cookies by injecting arbitrary HTML or script into 1 newsicon of newstemplate.php, and 2 threadid a...
PT-2005-4077 · Zeroblog · Zeroblog
Name of the Vulnerable Software and Affected Versions: Zeroblog versions 1.1f through 1.2a Description: A cross-site scripting XSS issue exists, allowing remote attackers to inject arbitrary web script or HTML via the threadID parameter in the thread.php file. Recommendations: For Zeroblog versio...