exploits , vulnerabilities , articles , W1L3D4 Philboard Cross-Site Scripting and SQL Injection Vulnerabilities

Title	W1L3D4 Philboard Cross-Site Scripting and SQL Injection Vulnerabilities
Published	2008-06-28-12:00AM
Updated	2008-06-28-12:00AM
Class	Input Validation Error
CVE
Remote	Yes
Local	No
Credit	Bl@ckbe@rD
Vulnerable	W1L3D4 Philboard 1.14
Not Vulnerable
Code	An attacker can exploit these issues via a browser. To exploit a cross-site scripting vulnerability, the attacker must entice a victim user to follow a malicious URI.The following example URIs are available:http://www.example.com/[ScriptPath]/forum.asp?forumid=[SQL] http://www.example.com/[ScriptPath]/search.asp?searchterms=[XSS]
TXT

Vulnerabilities - newest 10 RSS | More

• 2008-09-07 Samsung DVR SHR-2040 HTTPD Denial of Service Vulnerability
• 2008-09-06 Computer Associates Products Message Engine RPC Server Multiple Buffer Overflow Vulnerabilities
• 2008-09-05 NetBSD ICMPv6 MLD Packet Remote Denial of Service Vulnerability
• 2008-09-05 Drupal Content Creation Kit Module Multiple HTML Injection Vulnerabilities
• 2008-09-05 HP OpenView Select Identity Connectors Local Information Disclosure Vulnerability
• 2008-09-05 eZoneScripts Dating Website Remote File Upload Vulnerability
• 2008-09-05 MicroTik RouterOS SNMP Security Bypass Vulnerability
• 2008-09-04 Dnsmasq DCHP Lease Multiple Remote Denial Of Service Vulnerabilities
• 2008-09-04 Zen Cart Multiple SQL Injection Vulnerabilities
• 2008-09-04 NETGEAR WN802T Wireless Access Point EAPoL Key Length Denial of Service Vulnerability

• Vulnerabilities
• Exploits
• News
• Articles

Copyright 2007, SecurityDot
Mon, 08 Sep 2008 10:49:48 +0000