CGI abuses : W-Agora BBCode Script Injection Vulnerability

Vulnerability Search		Search 324607 CVE descriptions and 146377 test descriptions, access 10,000+ cross references.
	Tests CVE All

Test ID: 1.3.6.1.4.1.25623.1.0.56816

Category: CGI abuses

Title: W-Agora BBCode Script Injection Vulnerability

Summary: NOSUMMARY

Description: Description:

W-Agora version 4.2.0 (and possibly previous versions) are vulnerable
to script injection attacks as a result of insufficient filtering of
user supplied data.

Solution : Upgrade to a later version.

Risk factor : Medium

CVSS Score:
4.3

Cross-Ref: BugTraq ID: 17751
Common Vulnerability Exposure (CVE) ID: CVE-2006-2228
http://www.securityfocus.com/bid/17751
Bugtraq: 20060429 W-Agora 4.20 XSS (Google Search)
http://www.securityfocus.com/archive/1/432457/100/0/threaded
http://securityreason.com/securityalert/847

Copyright Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	1.3.6.1.4.1.25623.1.0.56816
Category:	CGI abuses
Title:	W-Agora BBCode Script Injection Vulnerability
Summary:	NOSUMMARY
Description:	Description: W-Agora version 4.2.0 (and possibly previous versions) are vulnerable to script injection attacks as a result of insufficient filtering of user supplied data. Solution : Upgrade to a later version. Risk factor : Medium CVSS Score: 4.3
Cross-Ref:	BugTraq ID: 17751 Common Vulnerability Exposure (CVE) ID: CVE-2006-2228 http://www.securityfocus.com/bid/17751 Bugtraq: 20060429 W-Agora 4.20 XSS (Google Search) http://www.securityfocus.com/archive/1/432457/100/0/threaded http://securityreason.com/securityalert/847
Copyright	Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com