CVE-2009-0761
Team Board 1.x - Cross-Site Scripting via lookname Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2009-0761. PoCs published by Pouya_Server.
AI-analyzed exploit summary The exploit demonstrates two vulnerabilities in Team Board software: an information disclosure (DD) allowing direct access to the database file and a reflected XSS via the 'lookname' parameter in online.asp. The PoC includes URLs to exploit both issues.
Description
Cross-site scripting (XSS) vulnerability in online.asp in Team Board 1.x allows remote attackers to inject arbitrary web script or HTML via the lookname parameter.
Exploits (1)
The exploit demonstrates two vulnerabilities in Team Board software: an information disclosure (DD) allowing direct access to the database file and a reflected XSS via the 'lookname' parameter in online.asp. The PoC includes URLs to exploit both issues.