Simple Forum Multiple Vulnerabilities

Published by TL Guan February 22nd, 2008 in Cross Site Scripting, Discussion Boards and Information Disclosure.

Application: Simple Forum
Affected Version: 3.2 and other versions.
Vendor’s URL: http://www.gerd-tentler.de/tools/forum/
Bug Type: Cross Site Scripting, Information Disclosure
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly sanitized and verified.

Search

Entries RSS

Latest

eGroupWare File Upload
Joomla Jom Comment Component Unspecified SQL Injection
WordPress WP-Download Plugin SQL Injection
AuraCMS SQL Injection
Simple Gallery XSS
Drupal Webform Module Unspecified Script Insertion
PHP Photo Gallery SQL Injection
Wikepage Information Disclosure
Drupal Menu System Security Bypass
Gallery Script Lite Information Disclosure

Exabytes Security Portal

Categories

Simple Forum Multiple Vulnerabilities

Search

Subscribe

Latest

Archives