RSS   Vulnerabilities for 'Rgboard'   RSS

2008-05-18
 
CVE-2008-2296

CWE-94
 

 
PHP remote file inclusion vulnerability in include/bbs.lib.inc.php in Rgboard 3.0.12 allows remote attackers to execute arbitrary PHP code via a URL in the site_path parameter.

 
 
CVE-2008-2295

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in rg_search.php in Rgboard 3.0.12, and possibly earlier versions, allows remote attackers to inject arbitrary web script or HTML via the s_text parameter and other unspecified vectors.

 


Copyright 2024, cxsecurity.com

 

Back to Top