Test Kennung:	1.3.6.1.4.1.25623.1.0.56818
Kategorie:	CGI abuses
Titel:	W-Agora Multiple Remote Input Validation Vulnerabilities
Zusammenfassung:	NOSUMMARY
Beschreibung:	Description: W-Agora version 4.1.6a (and possibly previous versions) are vulnerable to multiple vulnerabilities due to insufficient filtering of user supplied data. Attack vectors include SQL injection, cross site scripting, and HTTP response splitting issues. Solution : Upgrade to a later version. Risk factor : High CVSS Score: 7.5
Querverweis:	BugTraq ID: 11283 Common Vulnerability Exposure (CVE) ID: CVE-2004-1562 http://www.securityfocus.com/bid/11283 Bugtraq: 20040930 Multiple vulnerabilities in w-agora forum (Google Search) http://marc.info/?l=bugtraq&m=109655691512298&w=2 http://lists.grok.org.uk/pipermail/full-disclosure/2004-September/027040.html http://securitytracker.com/id?1011463 http://secunia.com/advisories/12695 XForce ISS Database: wagora-redirurl-sql-injection(17557) https://exchange.xforce.ibmcloud.com/vulnerabilities/17557 Common Vulnerability Exposure (CVE) ID: CVE-2004-1563 XForce ISS Database: wagora-get-post-xss(17553) https://exchange.xforce.ibmcloud.com/vulnerabilities/17553 Common Vulnerability Exposure (CVE) ID: CVE-2004-1564 XForce ISS Database: wagora-response-splitting(17558) https://exchange.xforce.ibmcloud.com/vulnerabilities/17558 Common Vulnerability Exposure (CVE) ID: CVE-2004-1565
Copyright	Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.