ID de Prueba:	1.3.6.1.4.1.25623.1.0.15717
Categoría:	Web application abuses
Título:	Goollery < 0.04b Multiple XSS Vulnerabilities - Active Check
Resumen:	Goollery is prone to multiple cross-site-scripting (XSS); vulnerabilities eg. through the 'viewpic.php' script.
Descripción:	Summary: Goollery is prone to multiple cross-site-scripting (XSS) vulnerabilities eg. through the 'viewpic.php' script. Vulnerability Impact: An attacker, exploiting these flaws, would need to be able to coerce a user to browse a malicious URI. Upon successful exploitation, the attacker would be able to run code within the web-browser in the security context of the remote server. Affected Software/OS: Goollery prior to version 0.04b. Solution: Update to version 0.04b or later. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2004-2245 BugTraq ID: 11587 http://www.securityfocus.com/bid/11587 http://www.osvdb.org/ref/11/11xxx-goollery_multiple.txt http://www.osvdb.org/11318 http://www.osvdb.org/11319 http://www.osvdb.org/11320 http://securitytracker.com/id?1012062 XForce ISS Database: goollery-viewalbum-viewpic-xss(17957) https://exchange.xforce.ibmcloud.com/vulnerabilities/17957 Common Vulnerability Exposure (CVE) ID: CVE-2004-2246 http://www.osvdb.org/ref/11/11624-goollery-viewpic.txt http://www.osvdb.org/11624
Copyright	Copyright (C) 2004 David Maciejak

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.