Test ID:	1.3.6.1.4.1.25623.1.0.15451
Category:	Web application abuses
Title:	GoSmart Multiple Vulnerabilities
Summary:	GoSmart is prone to multiple vulnerabilities.
Description:	Summary: GoSmart is prone to multiple vulnerabilities. Vulnerability Insight: The remote version of this software contains multiple flaws, due to a failure of the application to properly sanitize user-supplied input. It is also affected by a cross-site scripting vulnerability. As a result of this vulnerability, it is possible for a remote attacker to create a malicious link containing script code that will be executed in the browser of an unsuspecting user when followed. Furthermore, this version is vulnerable to SQL injection flaws that let an attacker inject arbitrary SQL commands. Solution: Upgrade to the newest version of this software. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2004-1588 BugTraq ID: 11361 http://www.securityfocus.com/bid/11361 Bugtraq: 20041011 [MAxpatrol Security Advisory] Multiple vulnerabilities in GoSmart Message Board (Google Search) http://marc.info/?l=bugtraq&m=109751522823011&w=2 http://secunia.com/advisories/12790/ XForce ISS Database: gosmart-forum-loginexec-sql-injection(17678) https://exchange.xforce.ibmcloud.com/vulnerabilities/17678 Common Vulnerability Exposure (CVE) ID: CVE-2004-1589 XForce ISS Database: gosmart-forum-mainmessageid-xss(17679) https://exchange.xforce.ibmcloud.com/vulnerabilities/17679
Copyright	Copyright (C) 2004 David Maciejak

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.