Support
Eng
òÕÓ
Company
Home
Services
Solutions
Documentation
News and Events
 
 
 
Knowledgebase
Downloads
Glossary
Ask a Question
Search:     Advanced search
SHALB.com / Security Knowledgebase / Network Security / CGI abuses XSS / ASP-DEv XM Forum post.asp IMG Tag XSS
server monitoring

ASP-DEv XM Forum post.asp IMG Tag XSS
Article ID: 18357
Last updated: 27 Jan, 2009
Print
Email to friend
Views: 1812
Posted: 22 Jan, 2009
by: Tech Pubs S.
Updated: 27 Jan, 2009
by: Tech Pubs S.

ASP-DEv XM Forum post.asp IMG Tag XSS
This script is Copyright (C) 2005-2008 Josh Zlatin-Amishav

FamilyCGI abuses : XSS
Plugin ID18357
Bugtraq ID12958
CVE IDCVE-2005-1008

Description:

Synopsis :

The remote web server contains an ASP script that is vulnerable to a
cross-site scripting issue.

Description :

The remote host appears to be running the ASP-DEV XM Forum.

There is a flaw in the remote software that may allow anyone to inject
arbitrary HTML and script code through the BBCode IMG tag to be
executed in a users browser within the context of the affected web
site.

Solution :

Unknown at this time.

Risk factor :

Medium / CVSS Base Score : 4.3
(CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N)
This article was:   Helpful | Not Helpful
Prev   Next
GuppY pg Parameter Vulnerability     WEBppliance ocw_login_username Parameter Cross-Site Scripting...

server monitoring

¿ 2010 "SHALB.com" All rights reserved
SHALB Home
Services
Solutions
Documentation
News and Events