|Category:||Web application abuses|
|Title:||DevoyBB multiple flaws|
|Summary:||Checks DevoyBB version|
The remote host is running DevoyBB, a web based forum written in PHP.
This version is vulnerable to XSS and SQL injection attacks. A malicious
user can access users cookies including authentication cookies and inject SQL
commands to be executed on the underlying database.
Solution: Upgrade to the latest version.
BugTraq ID: 11428|
Common Vulnerability Exposure (CVE) ID: CVE-2004-2177
Common Vulnerability Exposure (CVE) ID: CVE-2004-2178
|Copyright||This script is Copyright (C) 2004 David Maciejak|
|This is only one of 32582 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.