RSS   Podatności dla 'Web wiz forum'   RSS

2008-07-31
 
CVE-2008-3392

CWE-352
 

 
Cross-site request forgery (CSRF) vulnerability in Web Wiz Forum 9.5 allows remote attackers to log out a user via a link or IMG tag to log_off_user.asp.

 
 
CVE-2008-3391

CWE-79
 

 
Multiple cross-site scripting (XSS) vulnerabilities in Web Wiz Forum 9.5 allow remote attackers to inject arbitrary web script or HTML via the mode parameter to (1) admin_group_details.asp and (2) admin_category_details.asp.

 

 >>> Vendor: Webwizguide 4 Produkty
Web wiz forums
Web wiz guestbook
Web wiz rich text editor
Web wiz forum


Copyright 2024, cxsecurity.com

 

Back to Top