exploits , vulnerabilities , articles , Campus Bulletin Board SQL Injection and Cross-Site Scripting Vulnerabilities

Title	Campus Bulletin Board SQL Injection and Cross-Site Scripting Vulnerabilities
Published	2008-05-26-12:00AM
Updated	2008-05-26-10:53PM
Class	Input Validation Error
CVE
Remote	Yes
Local	No
Credit	unohope@chroot.org
Vulnerable	Campus Bulletin Board Campus Bulletin Board 3.4
Not Vulnerable
Code	An attacker can exploit these issues via a browser. To exploit a cross-site scripting vulnerability, the attacker must entice a victim user to follow a malicious URI.The following proof-of-concept URIs are available: /data/vulnerabilities/exploits/29375.html
TXT

Vulnerabilities - newest 10 RSS | More

• 2008-10-10 CUPS Multiple Heap Based Buffer Overflow Vulnerabilities
• 2008-10-10 Sun Java System Web Proxy Server FTP Subsytem Heap Based Buffer Overflow Vulnerability
• 2008-10-09 ModSecurity Transformation Caching Security Bypass Vulnerability
• 2008-10-09 DATAC RealWin SCADA Server Remote Stack Buffer Overflow Vulnerability
• 2008-10-09 Avaya Communication Manager Web Administration Multiple Security Vulnerabilities
• 2008-10-09 HP System Management Homepage (SMH) for Linux and Windows Cross Site Scripting Vulnerability
• 2008-10-09 YaCy Multiple Unspecified Vulnerabilities
• 2008-10-09 Opera Cached Java Applet Security Bypass Vulnerability
• 2008-10-09 WOW Raid Manager Unspecified Cross Site Scripting Vulnerability
• 2008-10-09 Drupal EveryBlog Module Multiple Unspecified Vulnerabilities

• Vulnerabilities
• Exploits
• News
• Articles

Copyright 2007, SecurityDot
Mon, 13 Oct 2008 22:08:57 +0000