ID de Prueba:	1.3.6.1.4.1.25623.1.0.900939
Categoría:	Web application abuses
Título:	ELOG Logbook XSS Vulnerability
Resumen:	ELOG is prone to a cross-site scripting (XSS) vulnerability.
Descripción:	Summary: ELOG is prone to a cross-site scripting (XSS) vulnerability. Vulnerability Insight: An error occurs while processing malicious user supplied data passed into the 'logbook' module and can be exploited to inject arbitrary HTML and script code in the context of the affected application. Vulnerability Impact: Attackers can exploit this issue to steal cookie-based authentication credentials by conducting Cross-Site Scripting attacks on the affected system. Affected Software/OS: ELOG versions prior to 2.7.2. Solution: Upgrade ELOG Version to 2.7.2 or later. Please see the references for more info. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-7206 BugTraq ID: 27526 http://www.securityfocus.com/bid/27526 http://osvdb.org/41685 XForce ISS Database: elog-logbook-xss(40124) https://exchange.xforce.ibmcloud.com/vulnerabilities/40124
Copyright	Copyright (C) 2009 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.