.. / CVE-2004-1965

Exploit for Open Bulletin Board (OpenBB) v1.0.6 - Open Redirect/XSS (CVE-2004-1965)

Description:

Multiple cross-site scripting (XSS) vulnerabilities in Open Bulletin Board (OpenBB) 1.0.6 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) redirect parameter to member.php, (2) to parameter to myhome.php (3) TID parameter to post.php, or (4) redirect parameter to index.php.

Nuclei Template

View the template here CVE-2004-1965.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2004/CVE-2004-1965.yaml

References:

https://nvd.nist.gov/vuln/detail/CVE-2004-1965
http://marc.info/?l=bugtraq&m=108301983206107&w=2
https://exchange.xforce.ibmcloud.com/vulnerabilities/15966
https://www.exploit-db.com/exploits/24055
https://github.com/POORVAJA-195/Nuclei-Analysis-main

.. / CVE-2004-1965 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for Open Bulletin Board (OpenBB) v1.0.6 - Open Redirect/XSS (CVE-2004-1965)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2004-1965