Produkt Rgboard (...) - CVEMAP.ORG

Podatności dla 'Rgboard'

2008-05-18

CVE-2008-2296

CWE-94

PHP remote file inclusion vulnerability in include/bbs.lib.inc.php in Rgboard 3.0.12 allows remote attackers to execute arbitrary PHP code via a URL in the site_path parameter.

CVE-2008-2295

CWE-79

Cross-site scripting (XSS) vulnerability in rg_search.php in Rgboard 3.0.12, and possibly earlier versions, allows remote attackers to inject arbitrary web script or HTML via the s_text parameter and other unspecified vectors.

Copyright 2024, cxsecurity.com