109 matches found
VBZoom 1.01.11 - profile.php?Username Cross-Site Scripting
VBZoom 1.01.11 - profile.php?Username Cross-Site Scripting source: https://www.securityfocus.com/bid/14423/info VBZooM Forum is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may...
VBZoom 1.0/1.11 - 'login.php?UserID' Cross-Site Scripting
source: https://www.securityfocus.com/bid/14423/info VBZooM Forum is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issues to have arbitrary script code...
VBZoom 1.0/1.11 - 'profile.php?Username' Cross-Site Scripting
source: https://www.securityfocus.com/bid/14423/info VBZooM Forum is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issues to have arbitrary script code...
VBZoom Forum 1.11 - 'show.php' SQL Injection
source: https://www.securityfocus.com/bid/14383/info VBZooM Forum is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could result in a compromise of the...
VBZoom 1.0 - Arbitrary File Upload
VBZoom 1.0 - Arbitrary File Upload source: https://www.securityfocus.com/bid/5926/info It has been reported that VBZoom 1.01 may allow attackers to upload arbitrary files to a vulnerable system. The vulnerability is the result of VBZoom failing to properly validate the types of files that are...
upload malicious file in VBZooM forums
Name: VBZooM Version Affected: tested on v1.01 maybe other version vulnerable also Severity: Critical Category: upload system Vendor URL: http://www.vbzoom.com Author: hishhish [email protected] Date: discloused on 28th Aug 2002 published at 8th oct 2002 Description VBZooM is bulletin board...
Reset any user's password in VBZoom forums
Name: VBZoom Version Affected: tested on v1.01 maybe other version vulnerable also Severity: Critical Category: Password reset Vendor URL: http://www.vbzoom.com Author: hishhish [email protected] Date: discloused on 28th August 2002 Published at 8th oct 2002 Description VBZooM is bulletin...
VBZoom 1.0 - Arbitrary File Upload
source: https://www.securityfocus.com/bid/5926/info It has been reported that VBZoom 1.01 may allow attackers to upload arbitrary files to a vulnerable system. The vulnerability is the result of VBZoom failing to properly validate the types of files that are received. Validation is done through t...
VBZoom 1.0 - SQL Injection
source: https://www.securityfocus.com/bid/5919/info A SQL injection vulnerability has been discovered in VBZoom v1.01. Due to insufficient sanitization of variables used to construct SQL queries, it is possible to modify the logic of a query, via a malicious request. Exploiting this issue could...