CVE-2005-4078 Information

Feb 14, 2021 cve

Description

Multiple cross-site scripting (XSS) vulnerabilities in Ideal BB.NET 1.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) forumID (2) boardID and (3) topicRepeater1-p parameters in topics.aspx (4) boardID parameter in categoryindex.aspx (5) postID parameter in posts.aspx (6) catID parameter in forums.aspx and (7) memberID parameter in member.aspx.

Reference

http://pridels0.blogspot.com/2005/12/ideal-bbnet-13-xss-vuln.html http://secunia.com/advisories/17906 http://www.osvdb.org/21511 http://www.osvdb.org/21512 http://www.osvdb.org/21513 http://www.osvdb.org/21514 http://www.osvdb.org/21515 http://www.vupen.com/english/advisories/2005/2757 https://exchange.xforce.ibmcloud.com/vulnerabilities/23471

Share on: