Vulnerabilities > CVE-2005-4306 - Cross-Site Scripting vulnerability in SiteNet BBS
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Multiple cross-site scripting (XSS) vulnerabilities in SiteNet BBS 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) pg, (2) tid, (3) cid, and (4) fid parameters to netboardr.cgi, or (5) cid parameter to search.cgi.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description Sitenet BBS 2.0 netboardr.cgi Multiple Parameter XSS. CVE-2005-4306. Webapps exploit for cgi platform id EDB-ID:26842 last seen 2016-02-03 modified 2005-12-15 published 2005-12-15 reporter r0t3d3Vil source https://www.exploit-db.com/download/26842/ title Sitenet BBS 2.0 netboardr.cgi Multiple Parameter XSS description Sitenet BBS 2.0 search.cgi cid Parameter XSS. CVE-2005-4306 . Webapps exploit for cgi platform id EDB-ID:26843 last seen 2016-02-03 modified 2005-12-15 published 2005-12-15 reporter r0t3d3Vil source https://www.exploit-db.com/download/26843/ title Sitenet BBS 2.0 - search.cgi cid Parameter XSS