<![CDATA[Latest posts for the topic "MyBulletinBoard Global.PHP XSS Vuln"]]> /hvaonline/posts/list/13.html JForum - http://www.jforum.net MyBulletinBoard Global.PHP XSS Vuln Code:
Class:  	 Input Validation Error
CVE: 	
Remote: 	Yes
Local: 	No
Published: 	Aug 30 2006 12:00AM
Updated: 	Aug 30 2006 06:23PM
Credit: 	imei addmimistrator is credited with the discovery of this vulnerability.

Vulnerable: 	
MyBulletinBoard MyBulletinBoard 1.1.7
MyBulletinBoard MyBulletinBoard 1.1.6
MyBulletinBoard MyBulletinBoard 1.1.5
MyBulletinBoard MyBulletinBoard 1.1.4
MyBulletinBoard MyBulletinBoard 1.1.3
MyBulletinBoard MyBulletinBoard 1.1.2
MyBulletinBoard MyBulletinBoard 1.1.1
MyBulletinBoard MyBulletinBoard 1.1
MyBulletinBoard MyBulletinBoard 1.0.4
MyBulletinBoard MyBulletinBoard 1.0.3
MyBulletinBoard MyBulletinBoard 1.0.2
MyBulletinBoard MyBulletinBoard 1.0.1
MyBulletinBoard MyBulletinBoard 1.0 PR2
MyBulletinBoard MyBulletinBoard 1.0

Not Vulnerable: 	
MyBulletinBoard MyBulletinBoard 1.1.8 

This issue can be exploited through a web client.

An example URI has been provided:
 http://www.example.com/admin/index.php?_SERVER[PHP_SELF]=http://www.example.com
]]>
/hvaonline/posts/list/3482.html#20152 /hvaonline/posts/list/3482.html#20152 GMT