CVE-2008-6448

Cross-site scripting XSS vulnerability in install.cgi in SKYARC System MTCMS WYSIWYG Editor allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

Cross site scripting

Cross-site scripting XSS vulnerability in install.cgi in SKYARC System MTCMS WYSIWYG Editor allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

Mandrake Security Advisory MDVSA-2009:054 (nagios)

The remote host is missing an update to nagios announced via advisory MDVSA-2009:054. OpenVAS Vulnerability Test $Id: mdksa2009054.nasl 6587 2017-07-07 06:35:35Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:054 nagios Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft In...

CVE-2008-6295

Multiple cross-site scripting XSS vulnerabilities in Camera Life 2.6.2b8 allow remote attackers to inject arbitrary web script or HTML via the q parameter to 1 search.php and 2 rss.php; the query string after the image name in 3 photos/photo; the path parameter to 4 folder.php; page parameter and...

Cross site scripting

Cross-site scripting XSS vulnerability in wp-admin/wp-blogs.php in Wordpress MU WPMU before 2.6 allows remote attackers to inject arbitrary web script or HTML via the 1 s and 2 ipaddress parameters...

CVE-2008-4537

Cross-site scripting XSS vulnerability in EC-CUBE Ver1 1.4.6 and earlier, Ver1 Beta 1.5.0-beta and earlier, Ver2 2.1.2a and earlier, Ver2 BetaRC 2.1.1-beta and earlier, Community Edition 1.3.4 and earlier, and Community Edition Nightly-Build r17336 and earlier allows remote attackers to inject...

CVE-2008-2236

Cross-site scripting XSS vulnerability in blosxom.cgi in Blosxom before 2.1.2 allows remote attackers to inject arbitrary web script or HTML via the flav parameter flavour variable. NOTE: some of these details are obtained from third party information...

Cross site scripting

Cross-site scripting XSS vulnerability in MyBB 1.2.x before 1.2.14 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly involving search.php...

CVE-2008-2825

CVE-2008-2825 describes a cross-site scripting (XSS) vulnerability in the embedded Web Server of Xerox WorkCentre models M123/M128/133 and WorkCentre Pro 123/128/133. The issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Affected component: embedded Web...

Cross site scripting

Cross-site scripting XSS vulnerability in admin/users.asp in Xigla Absolute Control Panel XE 1.0 allows remote attackers to inject arbitrary web script or HTML via the name parameter and other unspecified parameters. NOTE: some of these details are obtained from third party information...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the Glassfish webadmin interface in Sun Java System Application Server 9.101 allow remote attackers to inject arbitrary web script or HTML via the 1 propertyForm:propertyContentPage:propertySheet:propertSectionTextField:jndiProp:JndiNew, 2...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in admin/inc/header.php in Maian Greeting 2.1 allow remote attackers to inject arbitrary web script or HTML via the 1 msgscript and 2 msgscript2 parameters...

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in Chilek Content Management System aka ChiCoMaS 2.0.4 allows remote attackers to inject arbitrary web script or HTML via the q parameter...

CVE-2008-2179

Cross-site scripting XSS vulnerability in SystemList.jsp in SysAid 5.1.08 allows remote attackers to inject arbitrary web script or HTML via the searchField parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Cezanne 6.5.1 and 7 allow remote attackers to inject arbitrary web script or HTML via the 1 LookUPId and 2 CbFun parameters to a CFLookUP.asp; 3 TitleParms, 4 WidgetsHeights, 5 WidgetsLinks, and 6 WidgetsTitles parameters to b...

Cross site scripting

Cross-site scripting XSS vulnerability in mindex.do in ManageEngine Firewall Analyzer 4.0.3 allows remote attackers to inject arbitrary web script or HTML via the displayName parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party informati...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in artmedic webdesign weblog allow remote attackers to inject arbitrary web script or HTML via the 1 date parameter to artmedicprint.php and the 2 jahrneu parameter to index.php...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the DMSGuestbook 1.7.0 plugin for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 file parameter to wp-admin/admin.php, or the 2 messagefield parameter in the guestbook page, and the 3 title parameter in the...

CVE-2008-0265

Multiple cross-site scripting XSS vulnerabilities in the Search function in the web management interface in F5 BIG-IP 9.4.3 allow remote attackers to inject arbitrary web script or HTML via the SearchString parameter to 1 listsystem.jsp, 2 listpktfilter.jsp, 3 listltm.jsp, 4 resourcesaudit.jsp, a...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in cryptographp/admin.php in the Cryptographp 1.2 and earlier plugin for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 cryptwidth, 2 cryptheight, 3 bgimg, 4 charR, 5 charG, 6 charB, 7 charclear, 8 tfont, 9 chare...