RSS   Vulnerabilities for 'Hb-ns'   RSS

2006-05-02
 
CVE-2006-2146

 

 
Multiple cross-site scripting (XSS) vulnerabilities in index.php in HB-NS 1.1.6 allow remote attackers to inject arbitrary web script or HTML via the (1) poster_name, (2) poster_email, (3) poster_homepage, or (4) message parameter.

 
 
CVE-2006-2145

 

 
Multiple SQL injection vulnerabilities in index.php in HB-NS 1.1.6 allow remote attackers to execute arbitrary SQL commands via the (1) topic or (2) id parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top