Startseite ▼ Bookkeeping
Online ▼ Sicherheits
Überprüfungs ▼
Verwaltetes
DNS ▼
Info
Bestellen/Erneuern
FAQ
AUP
Dynamic DNS Clients
Domaine konfigurieren Dyanmic DNS Update Password Netzwerk
Überwachung ▼
Enterprise
Erweiterte
Standard
Gratis Test
FAQ
Preis/Funktionszusammenfassung
Bestellen
Beispiele
Konfigurieren/Status Alarm Profile | |||
Test Kennung: | 1.3.6.1.4.1.25623.1.0.200004 |
Kategorie: | Web application abuses |
Titel: | Chipmunk Forum <= 1.3 Cross-Site Scripting Vulnerability |
Zusammenfassung: | The remote host appears to be running Chipmunk Forum that is vulnerable to cross-site; scripting attacks. |
Beschreibung: | Summary: The remote host appears to be running Chipmunk Forum that is vulnerable to cross-site scripting attacks. Vulnerability Impact: A vulnerability was identified in Chipmunk Forum version 1.3 and prior, which may be exploited by remote attackers to execute script code by the user's browser. Solution: No known solution was made available for at least one year since the disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N |
Querverweis: |
BugTraq ID: 15149 Common Vulnerability Exposure (CVE) ID: CVE-2005-3514 http://www.securityfocus.com/bid/15149/ Bugtraq: 20051020 XSS & Path Disclosure in Chipmunk's products (Google Search) http://marc.info/?l=bugtraq&m=112982490104274&w=2 http://irannetjob.com/content/view/148/28/ http://www.osvdb.org/20164 http://www.osvdb.org/20165 http://www.osvdb.org/20166 http://www.osvdb.org/20167 http://secunia.com/advisories/17239/ http://securityreason.com/securityalert/96 XForce ISS Database: chipmunk-multiple-scripts-xss(22823) https://exchange.xforce.ibmcloud.com/vulnerabilities/22823 |
Copyright | Copyright (C) 2008 Ferdy Riphagen |
Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten. |