Vulnerability Assessment & Network Security Forums

If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.

Home >> Browse Vulnerability Assessment Database >> CGI abuses : XSS >> Invision Power Board Referer field XSS

Vulnerability Assessment Details

Invision Power Board Referer field XSS
Vulnerability Assessment Summary
Checks for Invision Power Board XSS

Detailed Explanation for this Vulnerability Assessment

Summary :

The remote web server contains a PHP script that is affected by a
cross-site scripting issue.

Description :

This version of Invision Power Board installed on the remote host is
vulnerable to cross-site scripting attacks, which may permit a possible hacker
to steal a user's cookies.

See also :

http://archives.neohapsis.com/archives/fulldisclosure/2004-10/0100.html

Solution:

Unknown at this time.

Network Security Threat Level:

Low / CVSS Base Score : 2
(AV:R/AC:H/Au:NR/C:N/A:N/I:P/B:N)

Networks Security ID: 11332

Vulnerability Assessment Copyright: This script is Copyright (C) 2004 David Maciejak
Cables, Connectors


Vintage Apple iMac G3 M5521 Mac OS 9.0.4 256MB Blue Please Read picture

Vintage Apple iMac G3 M5521 Mac OS 9.0.4 256MB Blue Please Read

$150.00


Compute's Third Book of Commodore 64 Compute Books Publication 1984 vintage picture

Compute's Third Book of Commodore 64 Compute Books Publication 1984 vintage

$21.00


Vintage DIGI International ISA PC/2e Interface Card 30002024-02 55000461 picture

Vintage DIGI International ISA PC/2e Interface Card 30002024-02 55000461

$17.99


Borland Screenery Disk 2 1991 MS-DOS PC 5.25

Borland Screenery Disk 2 1991 MS-DOS PC 5.25" Disk Vintage Computer Software

$4.27


Vintage Microsoft Excel for Windows Version 4.0 3.5

Vintage Microsoft Excel for Windows Version 4.0 3.5" Floppy Disc 1-5 User Guides

$27.95


Packard Bell Legend 2033 Vintage Desktop Computer 486 CD Rom Tape Drive READ PC picture

Packard Bell Legend 2033 Vintage Desktop Computer 486 CD Rom Tape Drive READ PC

$499.99


Vintage AppleDesign Powered Speakers II M2497 Pair Power Supply Tested picture

Vintage AppleDesign Powered Speakers II M2497 Pair Power Supply Tested

$89.00


Z80 - NABU PC & Keyboard - Vintage New Old Stock (Retro 80's) picture

Z80 - NABU PC & Keyboard - Vintage New Old Stock (Retro 80's)

$139.99


Vintage Computer Chip Gold White Ceramic Intel C1702A Static EPROM 2048-bit 1972 picture

Vintage Computer Chip Gold White Ceramic Intel C1702A Static EPROM 2048-bit 1972

$65.00


SEALED Vintage Western Digital Value Line Hard Drive 3.5-Inch Enhanced IDE 25 GB picture

SEALED Vintage Western Digital Value Line Hard Drive 3.5-Inch Enhanced IDE 25 GB

$100.00


Discussions

No Discussions have been posted on this vulnerability.