header-logo
Suggest Exploit
vendor:
BibORB
by:
SecurityFocus
8.8
CVSS
HIGH
Cross-site scripting, HTML injection, SQL injection, directory traversal, and arbitrary file upload attacks
79, 89, 22, 78, 264
CWE
Product Name: BibORB
Affected Version From: 1.3.2 and all previous versions
Affected Version To: 1.3.2002
Patch Exists: YES
Related CWE: N/A
CPE: BibORB
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2005

BibORB Multiple Vulnerabilities

BibORB is reported prone to multiple vulnerabilities arising from insufficient sanitization of user-supplied input. These issues can be exploited by a remote attacker to carry out cross-site scripting, HTML injection, SQL injection, directory traversal, and arbitrary file upload attacks.

Mitigation:

Input validation and sanitization should be used to prevent malicious user input from being executed.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/12583/info
   
   
BibORB is reported prone to multiple vulnerabilities arising from insufficient sanitization of user-supplied input. These issues can be exploited by a remote attacker to carry out cross-site scripting, HTML injection, SQL injection, directory traversal, and arbitrary file upload attacks.
   
These vulnerabilities are reported to affect BibORB version 1.3.2 and all previous versions. 

When logging in, use the following username and password:

Username: x' or 1=1 or login='x
Password: x') or 1=1 or password=md5('x

Navigation

Suggest Exploit

Services By CQR