exploits , vulnerabilities , articles , W1L3D4 Philboard Cross-Site Scripting and SQL Injection Vulnerabilities

Title	W1L3D4 Philboard Cross-Site Scripting and SQL Injection Vulnerabilities
Published	2008-06-28-12:00AM
Updated	2008-06-28-12:00AM
Class	Input Validation Error
CVE
Remote	Yes
Local	No
Credit	Bl@ckbe@rD
Vulnerable	W1L3D4 Philboard 1.14
Not Vulnerable
Code	An attacker can exploit these issues via a browser. To exploit a cross-site scripting vulnerability, the attacker must entice a victim user to follow a malicious URI.The following example URIs are available:http://www.example.com/[ScriptPath]/forum.asp?forumid=[SQL] http://www.example.com/[ScriptPath]/search.asp?searchterms=[XSS]
TXT

Vulnerabilities - newest 10 RSS | More

• 2008-09-05 NetBSD ICMPv6 MLD Packet Remote Denial of Service Vulnerability
• 2008-09-05 Drupal Content Creation Kit Module Multiple HTML Injection Vulnerabilities
• 2008-09-05 HP OpenView Select Identity Connectors Local Information Disclosure Vulnerability
• 2008-09-05 eZoneScripts Dating Website Remote File Upload Vulnerability
• 2008-09-05 MicroTik RouterOS SNMP Security Bypass Vulnerability
• 2008-09-04 Dnsmasq DCHP Lease Multiple Remote Denial Of Service Vulnerabilities
• 2008-09-04 Zen Cart Multiple SQL Injection Vulnerabilities
• 2008-09-04 NETGEAR WN802T Wireless Access Point EAPoL Key Length Denial of Service Vulnerability
• 2008-09-04 Atheros Communications AR5416-AC1E Information Element Denial of Service Vulnerability
• 2008-09-04 NETGEAR WN802T With Marvell 88W8361P-BEM1 Chipset WAP Denial of Service Vulnerability

• Vulnerabilities
• Exploits
• News
• Articles

Copyright 2007, SecurityDot
Fri, 05 Sep 2008 23:35:36 +0000