CVE-2007-4088

Vikingboard 0.1.2 - Cross-Site Scripting via Multiple Parameters

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 4 public exploits for CVE-2007-4088. PoCs published by Lostmon.

AI-analyzed exploit summary The provided text describes a cross-site scripting (XSS) vulnerability in Vikingboard 0.1.2, where user-supplied input is not properly sanitized. The example URL demonstrates how an attacker could inject malicious scripts via the 'u' parameter.

Description

Multiple cross-site scripting (XSS) vulnerabilities in Vikingboard 0.1.2 allow remote attackers to inject arbitrary web script or HTML via the (1) id, (2) f, (3) quote, and (4) act parameters to cp.php; the (5) u parameter to user.php; the (6) f parameter to post.php; the (7) s parameter to topic.php; the (8) quote, (9) t, (10) poll, and (11) p parameters to post.php; the (12) Message Title field of a private message (PM) in mode 6 of cp.php; the (13) title field of a private message (PM) in mode 7 of cp.php; and (14) allow user-assisted remote attackers to inject arbitrary web script or HTML via a dosearch action to search.php, which reflects the first lines of all posts by a user. NOTE: the act parameter to help.php and the p parameter to report.php are already covered by CVE-2006-4708. NOTE: vectors 12 and 13 might overlap CVE-2006-6283.1. NOTE: vector 14 might overlap CVE-2006-4708.b.

Exploits (4)

exploitdb WRITEUP VERIFIED
by Lostmon · textwebappsphp
https://www.exploit-db.com/exploits/30384

The provided text describes a cross-site scripting (XSS) vulnerability in Vikingboard 0.1.2, where user-supplied input is not properly sanitized. The example URL demonstrates how an attacker could inject malicious scripts via the 'u' parameter.

Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: Vikingboard 0.1.2
No auth needed
Prerequisites: Access to a vulnerable Vikingboard instance
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by Lostmon · textwebappsphp
https://www.exploit-db.com/exploits/30386

The provided text describes a cross-site scripting (XSS) vulnerability in Vikingboard 0.1.2, where user-supplied input is not properly sanitized. The example URL demonstrates how an attacker could inject malicious script code via the 's' parameter.

Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: Vikingboard 0.1.2
No auth needed
Prerequisites: Access to a vulnerable Vikingboard instance
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by Lostmon · textwebappsphp
https://www.exploit-db.com/exploits/30385

The provided text describes multiple XSS vulnerabilities in Vikingboard 0.1.2 due to insufficient input sanitization. It includes example URLs demonstrating how an attacker could inject malicious scripts via the 'f', 'poll', 't', and 'p' parameters.

Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: Vikingboard 0.1.2
No auth needed
Prerequisites: Access to the target application's post.php endpoint
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by Lostmon · textwebappsphp
https://www.exploit-db.com/exploits/30383

The provided text describes multiple XSS vulnerabilities in Vikingboard 0.1.2 due to insufficient input sanitization. It includes example URLs demonstrating how an attacker could inject malicious scripts via the 'mode', 'id', 'f', and 'act' parameters.

Classification
Writeup 90%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: Vikingboard 0.1.2
No auth needed
Prerequisites: Access to the target application's URL
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (11)

Core 11
Core References
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/26196
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/37352
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/37356
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/37354
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/35601
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/37357
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/37355
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/25056
Various Sources x_refsource_misc
http://secwatch.org/advisories/1018567/
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/35599

Scores

EPSS 0.0438
EPSS Percentile 90.0%

Details

Status published
Products (1)
vikingboard/vikingboard 0.1.2
Published Jul 30, 2007
Tracked Since Feb 18, 2026