[CLOSE] OSVDB ID : 42253 - Disclosed: 2008-02-25

Description:

Sniplets Plugin for WordPress contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to the '/modules/syntax_highlight.php' script not properly sanitizing user input supplied to the 'libpath' parameter. This may allow an attacker to include a file from a third-party remote host that contains commands or code that will be executed by the vulnerable script with the same privileges as the web server.

[CLOSE] OSVDB ID : 41037 - Disclosed: 2008-02-01

Description:

WordPress contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'pre_footnotes', 'priority', 'post_footnotes', and 'style_rules' array elements in the 'wp_footnotes_current_settings[]' array upon submission to the admin_panel.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 40622 - Disclosed: 2008-01-23

Description:

(Description Provided by CVE) : Cross-site request forgery (CSRF) vulnerability in modcp.php in Woltlab Burning Board (wBB) 2.3.6 PL2 allows remote attackers to delete threads as moderators or administrators via a thread_del action.

[CLOSE] OSVDB ID : 40639 - Disclosed: 2008-01-23

Description:

(Description Provided by CVE) : Cross-site request forgery (CSRF) vulnerability in privmsg.php in phpBB 2.0.22 allows remote attackers to delete private messages (PM) as arbitrary users via a deleteall action.

[CLOSE] OSVDB ID : 52944 - Disclosed: 2008-01-06

Description:

vBulletin contains a flaw that allows a remote Cross-Site Request Forgery (CSRF / XSRF) attack which can be leveraged to execute a XSS attack. The flaw exists because the application does not require multiple steps and/or confirmation for sensitive transactions for the 'profile.php' script. By using a crafted URL (e.g. a crafted GET request inside an "img" tag), an attacker may be able to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification. In this situation this can lead to script being embedded into a victim's profile, allowing an attacker to compromise the integrity of the application.

[CLOSE] OSVDB ID : 39497 - Disclosed: 2007-12-20

Description:

Woltlab Burning Board Lite contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'showposts', 'sortby', and "sortorder' variables upon submission to the 'search.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.