ID de Prueba:	1.3.6.1.4.1.25623.1.0.15451
Categoría:	Web application abuses
Título:	GoSmart Multiple Vulnerabilities
Resumen:	GoSmart is prone to multiple vulnerabilities.
Descripción:	Summary: GoSmart is prone to multiple vulnerabilities. Vulnerability Insight: The remote version of this software contains multiple flaws, due to a failure of the application to properly sanitize user-supplied input. It is also affected by a cross-site scripting vulnerability. As a result of this vulnerability, it is possible for a remote attacker to create a malicious link containing script code that will be executed in the browser of an unsuspecting user when followed. Furthermore, this version is vulnerable to SQL injection flaws that let an attacker inject arbitrary SQL commands. Solution: Upgrade to the newest version of this software. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2004-1588 BugTraq ID: 11361 http://www.securityfocus.com/bid/11361 Bugtraq: 20041011 [MAxpatrol Security Advisory] Multiple vulnerabilities in GoSmart Message Board (Google Search) http://marc.info/?l=bugtraq&m=109751522823011&w=2 http://secunia.com/advisories/12790/ XForce ISS Database: gosmart-forum-loginexec-sql-injection(17678) https://exchange.xforce.ibmcloud.com/vulnerabilities/17678 Common Vulnerability Exposure (CVE) ID: CVE-2004-1589 XForce ISS Database: gosmart-forum-mainmessageid-xss(17679) https://exchange.xforce.ibmcloud.com/vulnerabilities/17679
Copyright	Copyright (C) 2004 David Maciejak

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.