CarLine Forum Russian Board 4.2 – ‘set.php?name_ig_array[]’ Cross-Site Scripting

18次阅读
没有评论

CarLine Forum Russian Board 4.2 – ‘set.php?name_ig_array[]’ Cross-Site Scripting

漏洞ID 1055193 漏洞类型
发布时间 2005-06-23 更新时间 2005-06-23
CarLine Forum Russian Board 4.2 - 'set.php?name_ig_array[]' Cross-Site ScriptingCVE编号 N/A
CarLine Forum Russian Board 4.2 - 'set.php?name_ig_array[]' Cross-Site ScriptingCNNVD-ID N/A
漏洞平台 PHP CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/25881
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/14045/info
     
Forum Russian Board is prone to multiple input validation vulnerabilities. These issues can allow attackers to carry out SQL Injection, cross-site scripting, and HTML injection attacks.
     
Forum Russian Board 4.2 is reported to be affected. 

set.php?name_ig_array[]=<script>alert("XSS");</script>

相关推荐: Image Display System Directory Existence Disclosure Vulnerability

Image Display System Directory Existence Disclosure Vulnerability 漏洞ID 1102035 漏洞类型 Configuration Error 发布时间 2002-05-28 更新时间 2002-…

正文完
 0