HomePentest-Tools.com Logo

geccBBlite Multiple Cross-Site Scripting Vulnerabilities CVE-2009-4649

Severity
Not available
CVSSv3 Score
Not available
Vulnerability description

geccBBlite is prone to multiple Cross-Site Scripting vulnerabilities.

Risk description

Flaws are caused by improper validation of user-supplied input in multiple scripts. This can be exploited using the postatoda parameter to inject malicious script into a Web page. Successful exploitation will allow remote attackers to inject arbitrary web script or HTML in a users browser session in the context of an affected site.

Recommendation

Upgrade to geccBBlite version 0.2 or later.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Feb 22, 2010
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available