Showing 1 - 1 of 1

CVE-2006-2109

Status Candidate

Overview

Cross-site scripting (XSS) vulnerability in the parse_query_str function in include/print.php in JSBoard 2.0.10 and 2.0.11, and possibly other versions before 2.0.12, allows remote attackers to inject arbitrary web script or HTML via parameters that are set as global variables within the program, as demonstrated using the table parameter to login.php.

Related Files

aklink-sa-2006-001-jsboard-xss.txt: Posted May 5, 2006; Authored by Alexander Klink | Site klink.name; JSBoard releases 2.0.10 and 2.0.11 suffer from a cross site scripting vulnerability.; tags | exploit, xss; advisories | CVE-2006-2109; SHA-256 | ef4921c4eaae2c60489129528cea8016ef9baaaed728b17d6583b53923c60897; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 128 files
Ubuntu 103 files
Debian 16 files
Rafael Pedrero 11 files
Apple 9 files
Google Security Research 9 files
Abdulhakim Oner 8 files
nu11secur1ty 7 files
Hubert Wojciechowski 6 files
Sarang Tumne 5 files

File Archives

Systems

AIX (426)
Apple (1,960)
BSD (372)
CentOS (56)
Cisco (1,919)
Debian (6,715)
Fedora (1,691)
FreeBSD (1,244)
Gentoo (4,288)
HPUX (878)
iOS (340)
iPhone (108)
IRIX (220)
Juniper (67)
Linux (45,149)
Mac OS X (684)
Mandriva (3,105)
NetBSD (256)
OpenBSD (482)
RedHat (12,930)
Slackware (941)
Solaris (1,609)
SUSE (1,444)
Ubuntu (8,458)
UNIX (9,208)
UnixWare (185)
Windows (6,533)
Other

CVE-2006-2109

Overview

Related Files

File Archive:

March 2023

Top Authors In Last 30 Days

File Tags

File Archives

Systems