YaBB Image Upload HTML Injection Vulnerability
|
Bugtraq ID:
|
15368
|
|
Class:
|
Input Validation Error
|
|
CVE:
|
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Nov 09 2005 12:00AM
|
|
Updated:
|
Nov 09 2005 12:00AM
|
|
Credit:
|
The discoverer of this vulnerability is currently unknown, the vendor disclosed this issue.
|
|
Vulnerable:
|
YaBB YaBB 2.0 RC1
YaBB YaBB 2.0 RC2
YaBB YaBB 2.0
YaBB YaBB 1.41
YaBB YaBB 1.40
YaBB YaBB 1 Gold Release
-
Microsoft Windows 2000 Professional SP2
-
Microsoft Windows 2000 Professional SP1
-
Microsoft Windows 2000 Professional
-
Microsoft Windows 95
-
Microsoft Windows 98
-
Microsoft Windows NT 4.0 SP6a
-
Microsoft Windows NT 4.0 SP6
-
Microsoft Windows NT 4.0 SP5
-
Microsoft Windows NT 4.0 SP4
-
Microsoft Windows NT 4.0 SP3
-
Microsoft Windows NT 4.0 SP2
-
Microsoft Windows NT 4.0 SP1
-
Microsoft Windows NT 4.0
YaBB YaBB 1 Gold - SP 1.4
YaBB YaBB 1 Gold - SP 1.3.2
YaBB YaBB 1 Gold - SP 1.3.1
YaBB YaBB 1 Gold - SP 1.3
YaBB YaBB 1 Gold - SP 1.2
YaBB YaBB 1 Gold - SP 1
-
Apache Apache 1.3.22
-
Apache Apache 1.3.20
-
Apache Apache 1.3.20
-
Apache Apache 1.3.19
-
Apache Apache 1.3.19
-
Apache Apache 1.3.18
-
Apache Apache 1.3.18
-
Apache Apache 1.3.17
-
Apache Apache 1.3.17
-
Microsoft IIS 5.0
-
Microsoft IIS 4.0
-
Omnicron OmniHTTPD 2.4 Pro
|
|
|
|
Not Vulnerable:
|
YaBB YaBB 2.1
|
|
