BlackBoard Internet Newsboard System Remote File Include Flaw Network Vulnerability

Summary

The remote host is running the BlackBoard Internet Newsboard System, an open-source PHP-based internet bulletin board software. The remote version of this software is vulnerable to a remote file include flaw due to a lack of sanitization of user-supplied data. Successful exploitation of this issue may allow an attacker to execute malicious script code on a vulnerable server. *** OVS reports this vulnerability using only *** information that was gathered. Therefore, *** this might be a false positive.

Solution

Upgrade to the newest version of this software

Severity

Classification

CVE CVE-2004-1582
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

ActivDesk Multiple Cross Site Scripting and SQL Injection Vulnerabilities
AlstraSoft AskMe Pro 'forum_answer.php' and 'profile.php' Multiple SQL Injection Vulnerabilities
Apache Tomcat/JBoss EJBInvokerServlet / JMXInvokerServlet (RMI over HTTP) Marshalled Object Remote Code Execution
Avenger's News System Command Execution
Advantech WebAccess Multiple Vulnerabilities

BlackBoard Internet Newsboard System remote file include flaw

Take action and discover your vulnerabilities