Info

Last Modified

6 months ago

Percent Complete

40%

Disclosure

Feb 27, 2006

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

This Entry needs help! It is only 40% Complete. Click the edit link above to add more information.

Contributing is fast and easy, and benefits the entire security community.

Description

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in EKINboard 1.0.3 allows remote attackers to inject arbitrary web script or HTML via a Javascript URI in a BBCode img tag.

Classification

Location: Remote/Network Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
OSVDB: Web Related

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, EKINdesigns has released a patch to address this vulnerability.

Products

Unknown or Incomplete

References

FrSIRT Advisory: ADV-2006-0758
Bugtraq ID: 16861
Related OSVDB ID: 23547
Other Advisory URL: http://evuln.com/vulns/88/summary.html
Secunia Advisory ID: 19045
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-02/0699.html
CVE ID: 2006-1130 (see also: NVD)
Vendor Specific Solution URL: http://www.ekinboard.com/forums/v1/viewtopic.php?id=469
Vendor URL: http://www.ekinboard.com/
Keyword: EV0088

Credit

Unknown or Incomplete

Blogs

Provided by Technorati

None found at this time

Comments

Add Comment Hide Add Comment

No Comments.

DONATE NOW!

User Status

Account
- Login
- Sign-Up

Quick Searches