ZeroBoard Multiple Cross-Site Scripting Vulnerabilities (CVE-2005-0495)
Severity: MEDIUM
Advisory Date: JUL 21, 2015
DESCRIPTION
Cross-site scripting (XSS) vulnerability in ZeroBoard allows remote attackers to inject arbitrary web script or HTML via the (1) sn1, (2) year, or (3) page parameter to zboard.php or (4) filename to view_image.php.
TREND MICRO PROTECTION INFORMATION
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1000552