RSS   Vulnerabilities for 'Cj tag board'   RSS

2006-09-14
 
CVE-2006-4797

CWE-Other
 

 
Cross-site scripting (XSS) vulnerability in tag.php in CloudNine Interactive CJ Tag Board 3.0 allows remote attackers to inject arbitrary web script or HTML via a JavaScript event in a url BBcode tag in the cjmsg parameter.

 
2006-08-29
 
CVE-2006-4451

 

 
Direct static code injection vulnerability in CJ Tag Board 3.0 allows remote attackers to execute arbitrary PHP code via the (1) User-Agent HTTP header in tag.php, which is executed by all.php, and (2) the banned parameter in admin_index.php.

 
2005-09-14
 
CVE-2005-2899

 

 
Multiple cross-site scripting (XSS) vulnerabilities in details.php in CjTagBoard 3.0 allow remote attackers to inject arbitrary web script or HTML via the (1) date, (2) time, (3) name, (4) ip, (5) agent, or (6) msg parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top