|
Family: CGI abuses : XSS --> Category: infos
ExBB Netsted BBcode Remote Script Injection Vulnerability Scan
Vulnerability Scan Summary Checks ExBB's version
Detailed Explanation for this Vulnerability Test
The remote host is running ExBB, a bulletin board system written in PHP.
The remote version of this software is vulnerable to a script injection
vulnerability.
A possible hacker may post a forum comment in the remote application, containing
rogue javascript tags which will be executed in the browsers of legitimate
visitors of the remote web site.
Solution: Upgrade to ExBB 1.9.2 (when available) or newer
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|