VULHUB ™

Multiple cross site scripting vulnerabilities have been discovered in Cyboards PHP Lite. These issues occur due to insufficient validation of user supplied values. It is possible for a remote attacker to create a malicious link containing script code which will be executed in the browser of a legitimate user. All code will be executed within the context of the website running Cyboards PHP Lite. This issue could be exploited to steal a legitimate users cookie-based authentication credentials. Information gained in this manner could be later used to hijack a legitimate users web session.

Multiple cross site scripting vulnerabilities have been discovered in Cyboards PHP Lite. These issues occur due to insufficient validation of user supplied values. It is possible for a remote attacker to create a malicious link containing script code which will be executed in the browser of a legitimate user. All code will be executed within the context of the website running Cyboards PHP Lite. This issue could be exploited to steal a legitimate users cookie-based authentication credentials. Information gained in this manner could be later used to hijack a legitimate users web session.