Required CVE Record Information
Description
Multiple cross-site scripting (XSS) vulnerabilities in becommunity/community/index.php in NTSOFT BBS E-Market Professional allow remote attackers to inject arbitrary web script or HTML via the (1) page, (2) bt_code, and (3) b_no parameters in a board view action.
References 4 Total
- http://packetstormsecurity.org/0907-exploits/ntsoft-xss.txt
- exchange.xforce.ibmcloud.com: bbsemarket-index-xss(52157) vdb-entry
- securityfocus.com: 35893 vdb-entry
- secunia.com: 26117 third-party-advisory
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 4 Total
- http://packetstormsecurity.org/0907-exploits/ntsoft-xss.txt x_transferred
- exchange.xforce.ibmcloud.com: bbsemarket-index-xss(52157) vdb-entryx_transferred
- securityfocus.com: 35893 vdb-entryx_transferred
- secunia.com: 26117 third-party-advisoryx_transferred