ID de Prueba:	1.3.6.1.4.1.25623.1.0.100309
Categoría:	Web application abuses
Título:	Gallarific Multiple Vulnerabilities (Oct 2009) - Active Check
Resumen:	Gallarific is prone to a cross-site scripting (XSS); vulnerability and multiple authentication bypass vulnerabilities.
Descripción:	Summary: Gallarific is prone to a cross-site scripting (XSS) vulnerability and multiple authentication bypass vulnerabilities. Vulnerability Impact: An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site, steal cookie-based authentication credentials, add new categories, add new users, and modify existing users. Other attacks are also possible. Affected Software/OS: These issues affect both the commercial and the free versions of Gallarific. Solution: Updates are available. Please contact the vendor for details. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-1326 BugTraq ID: 28163 http://www.securityfocus.com/bid/28163 http://downloads.securityfocus.com/vulnerabilities/exploits/28163.html http://secunia.com/advisories/29399 XForce ISS Database: gallarific-search-xss(41105) https://exchange.xforce.ibmcloud.com/vulnerabilities/41105
Copyright	Copyright (C) 2009 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.