ZeroBoard Multiple Cross-Site Scripting Vulnerabilities (CVE-2005-0495)
Severity: : Medium
Advisory Date: 21 de июля de 2015
DESCRIPTION
Cross-site scripting (XSS) vulnerability in ZeroBoard allows remote attackers to inject arbitrary web script or HTML via the (1) sn1, (2) year, or (3) page parameter to zboard.php or (4) filename to view_image.php.
INFORMATION EXPOSURE
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1000552