Summary
The remote host is running Invision Power Board, a web-based bulletin-board system written in PHP.
This version of Invision Power Board is vulnerable to cross-site scripting attacks, which may allow an attacker to steal users cookies.
Solution
Upgrade to the latest version of this software
Severity
Classification
-
CVE CVE-2004-1578 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N
Related Vulnerabilities
- 123 Flash Chat Multiple Security Vulnerabilities
- Apache Tomcat HTTP BIO Connector Information Disclosure Vulnerability
- aeNovo Database Content Disclosure Vulnerability
- Apache Solr XML External Entity(XXE) Vulnerability-01 Jan-14
- APC PowerChute Network Shutdown 'security/applet' Cross Site Scripting Vulnerability