2 matches found
Vulnerability in YaBB forum (Perl version without SQL)
There's a vulnerability in non-SQL version of YaBB forum I've checked it with YaBB 1 Gold - SP 1.2 written in Perl -- it's not new, but is in use even nowadays. You can input almost anything into .txt file from boards directory. The "subject" form field isn't checked for "n" symbols, so creating ...
YaBB 1 Gold SP 1 - YaBB.pl Cross-Site Scripting
YaBB 1 Gold SP 1 - YaBB.pl Cross-Site Scripting source: https://www.securityfocus.com/bid/6272/info A cross-site scripting vulnerability has been reported in the YaBB forum. This vulnerability is due to insufficient sanitization of URI parameters in some scripts. As a result, it is possible for a...