7 matches found
DSA-1827-1 ipplan - cross-site scripting
Bulletin has no description...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in IPplan 4.91a allows remote attackers to hijack the authentication of administrators for requests that 1 change the password, 2 add users, or 3 delete users via unknown vectors...
CVE-2009-1732
Cross-site scripting XSS vulnerability in admin/usermanager in IPplan 4.91a allows remote attackers to inject arbitrary web script or HTML via the grp parameter...
CVE-2009-1732
Cross-site scripting XSS vulnerability in admin/usermanager in IPplan 4.91a allows remote attackers to inject arbitrary web script or HTML via the grp parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in admin/usermanager in IPplan 4.91a allows remote attackers to inject arbitrary web script or HTML via the grp parameter...
CVE-2009-1732
Cross-site scripting XSS vulnerability in admin/usermanager in IPplan 4.91a allows remote attackers to inject arbitrary web script or HTML via the grp parameter...
CVE-2009-1732
CVE-2009-1732 is a cross-site scripting (XSS) vulnerability affecting ipplan in the admin/usermanager module, caused by insufficient sanitising of the grp parameter. Remote attackers could inject arbitrary HTML/JavaScript to execute in a user’s browser. Public disclosures tie this to IPplan 4.91a...