CGI abuses : XSS : eggBlog <= 3.1.0 Multiple XSS vulnerabilities

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.60121

Categoría: CGI abuses : XSS

Título: eggBlog <= 3.1.0 Multiple XSS vulnerabilities

Resumen: NOSUMMARY

Descripción: Description:

The installed version of eggBlog according to the version
number, is vulnerable to multiple XSS attacks as a result
of insufficiently sanitized user supplied data.

Versions up to and including 3.1.0 are known to be vulnerable.

Solution : Upgrade to a later version.

Risk factor : High

CVSS Score:
6.8

Referencia Cruzada: BugTraq ID: 26408
BugTraq ID: 21134
Common Vulnerability Exposure (CVE) ID: CVE-2007-5980
http://www.securityfocus.com/bid/26408
Bugtraq: 20071111 Eggblog v3.1.0 XSS Vulnerability (Google Search)
http://www.securityfocus.com/archive/1/483569/100/0/threaded
http://www.h-labs.org/blog/2007/11/11/eggblog_v3_1_0_xss_issues.html
http://secunia.com/advisories/27668
http://securityreason.com/securityalert/3361
XForce ISS Database: eggblog-rss-xss(38420)
https://exchange.xforce.ibmcloud.com/vulnerabilities/38420
Common Vulnerability Exposure (CVE) ID: CVE-2006-6046
http://www.securityfocus.com/bid/21134
Bugtraq: 20061116 eggblog=> 3.1.0 Cross Site Scripting (Google Search)
http://marc.info/?l=bugtraq&m=116373125308955&w=2
http://securitytracker.com/id?1017246
XForce ISS Database: eggblog-articles-xss(30351)
https://exchange.xforce.ibmcloud.com/vulnerabilities/30351

Copyright Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.60121
Categoría:	CGI abuses : XSS
Título:	eggBlog <= 3.1.0 Multiple XSS vulnerabilities
Resumen:	NOSUMMARY
Descripción:	Description: The installed version of eggBlog according to the version number, is vulnerable to multiple XSS attacks as a result of insufficiently sanitized user supplied data. Versions up to and including 3.1.0 are known to be vulnerable. Solution : Upgrade to a later version. Risk factor : High CVSS Score: 6.8
Referencia Cruzada:	BugTraq ID: 26408 BugTraq ID: 21134 Common Vulnerability Exposure (CVE) ID: CVE-2007-5980 http://www.securityfocus.com/bid/26408 Bugtraq: 20071111 Eggblog v3.1.0 XSS Vulnerability (Google Search) http://www.securityfocus.com/archive/1/483569/100/0/threaded http://www.h-labs.org/blog/2007/11/11/eggblog_v3_1_0_xss_issues.html http://secunia.com/advisories/27668 http://securityreason.com/securityalert/3361 XForce ISS Database: eggblog-rss-xss(38420) https://exchange.xforce.ibmcloud.com/vulnerabilities/38420 Common Vulnerability Exposure (CVE) ID: CVE-2006-6046 http://www.securityfocus.com/bid/21134 Bugtraq: 20061116 eggblog=> 3.1.0 Cross Site Scripting (Google Search) http://marc.info/?l=bugtraq&m=116373125308955&w=2 http://securitytracker.com/id?1017246 XForce ISS Database: eggblog-articles-xss(30351) https://exchange.xforce.ibmcloud.com/vulnerabilities/30351
Copyright	Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com