ID de Prueba:	1.3.6.1.4.1.25623.1.0.18357
Categoría:	Web application abuses
Título:	ASP-DEv XM Forum IMG Tag Script Injection Vulnerability
Resumen:	The remote web server contains an ASP script which is vulnerable to a;cross site scripting issue.;;Description :;;The remote host appears to be running the ASP-DEV XM Forum.;;There is a flaw in the remote software which may allow anyone;to inject arbitrary HTML and script code through the BBCode IMG tag;to be executed in a user's browser within the context of the affected;web site.
Descripción:	Summary: The remote web server contains an ASP script which is vulnerable to a cross site scripting issue. Description : The remote host appears to be running the ASP-DEV XM Forum. There is a flaw in the remote software which may allow anyone to inject arbitrary HTML and script code through the BBCode IMG tag to be executed in a user's browser within the context of the affected web site. Solution: No known solution was made available for at least one year since the disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2005-1008 BugTraq ID: 12958 http://www.securityfocus.com/bid/12958 http://securitytracker.com/id?1013614
Copyright	Copyright (C) 2005 Josh Zlatin-Amishav

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.