exploits , vulnerabilities , articles , PHPBB Photo Album Module Album_Comment.PHP Cross-Site Scripting Vulnerability

Title	PHPBB Photo Album Module Album_Comment.PHP Cross-Site Scripting Vulnerability
Published	2005-04-13-12:00AM
Updated	2005-04-13-07:45PM
Class	Input Validation Error
CVE	CVE-MAP-NOMATCH
Remote	Yes
Local	No
Credit	dcrab <dcrab@hackerscenter.com> is credited with the discovery of this vulnerability.
Vulnerable	Smartor Photo Album 2.0.53 phpBB Group phpBB 2.0 .0 phpBB Group phpBB 2.0.1 phpBB Group phpBB 2.0.2 phpBB Group phpBB 2.0.3 phpBB Group phpBB 2.0.4 phpBB Group phpBB 2.0.5 phpBB Group phpBB 2.0.6 phpBB Group phpBB 2.0.6 c phpBB Group phpBB 2.0.6 d phpBB Group phpBB 2.0.7 phpBB Group phpBB 2.0.7 a phpBB Group phpBB 2.0.8 phpBB Group phpBB 2.0.8 a phpBB Group phpBB 2.0.9 phpBB Group phpBB 2.0.10 phpBB Group phpBB 2.0.11 phpBB Group phpBB 2.0.12 phpBB Group phpBB 2.0.13
Not Vulnerable
Code	No exploit is required. The following proof of concept URI is available: http://www.example.com/album_comment.php?pic_id=224&amp%3bsid='%22%3E%3Cscript%3Ealert(document.cookie)%3C/script%3E
TXT

Vulnerabilities - newest 10 RSS | More

2009-12-15 TYPO3 Watchdog (aba_watchdog) Unspecified Information Disclosure Vulnerability
2009-12-15 PostgreSQL Index Function Session State Modification Local Privilege Escalation Vulnerability
2009-12-15 PostgreSQL NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
2009-12-15 IBM DB2 prior to 9.5 Fix Pack 5 Multiple Unspecified Security Vulnerabilities
2009-12-15 Sun Ray Server Software Desktop Session Handling Local Security Bypass Vulnerability
2009-12-15 Mozilla Firefox Sage Extension RSS Feeds Cross Domain Scripting Vulnerability
2009-12-15 Adobe Reader and Acrobat (CVE-2009-4324) Remote Code Execution Vulnerability
2009-12-14 Microsoft Protected Extensible Authentication Protocol Authentication Bypass Vulnerability
2009-12-14 Google Chrome DNS Pre-Fetching Proxy Cache Information Disclosure Vulnerability
2009-12-14 Oracle E-Business Suite Multiple Remote Vulnerabilities

SECURITY RSS FEEDS

Advertising

Copyright 2007, SecurityDot
Wed, 16 Dec 2009 01:32:51 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
Crack Data Kushboosex hrrp://for youa.baidu Indonesa v www.mail.y php-nuke 2 nakedphoto Www. 18to1 sexy lad SMF Passwo amxmod Sexygirls. youa.baidu twig r003907 VIDIE SXE news for C picture se pixel posr hi.baidu.c Crack Data mambo Remo brute forc americ www.gxemb. Sagilasex. search/exp TRISHA BAT Girlsgonew news for c linux 2.6. 2 step Crack+Data 3x desi.co WWW.SEXTV. W.W.W.SEXC php-nuke 2 Sabdrimer Tagger LE les video screen nam Www.free s Virtual GET /u Www.88by88 WWW.FXXX.C mandriva WWW.lovegi 228898120.