PHPMyVisites 2.4 - PHPmv2index.php Multiple Cross-Site Scripting Vulnerabilities

PHPMyVisites 2.4 - PHPmv2index.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/52377/info phpMyVisites is prone to multiple cross-site scripting vulnerabilities because it fails to sanitize user-supplied input. An attacker may leverage these issues to...

Etano 1.20/1.22 - 'search.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/52295/info Etano is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

starCMS - q URI Cross-Site Scripting

starCMS - q URI Cross-Site Scripting source: https://www.securityfocus.com/bid/52262/info starCMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

Dotclear 2.4.1.2 - adminplugin.php?page Cross-Site Scripting

Dotclear 2.4.1.2 - adminplugin.php?page Cross-Site Scripting source: https://www.securityfocus.com/bid/52221/info Dotclear is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrar...

Dotclear 2.4.1.2 - admincomments.php Multiple Cross-Site Scripting Vulnerabilities

Dotclear 2.4.1.2 - admincomments.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/52221/info Dotclear is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issu...

Fork CMS 3.x - '/backend/modules/error/actions/index.php?parse()' Multiple Error Display Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/52236/info Fork CMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage these issues to execute arbitrary script cod...

Endian Firewall 2.4 - dnat.cgi?createrule Cross-Site Scripting

Endian Firewall 2.4 - dnat.cgi?createrule Cross-Site Scripting source: https://www.securityfocus.com/bid/52076/info Endian Firewall is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attack...

Bontq - 'user/' URI Cross-Site Scripting

source: https://www.securityfocus.com/bid/52183/info Bontq is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...

Endian Firewall 2.4 - openvpn_users.cgi?PATH_INFO Cross-Site Scripting

Endian Firewall 2.4 - openvpnusers.cgi?PATHINFO Cross-Site Scripting source: https://www.securityfocus.com/bid/52076/info Endian Firewall is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an...

Endian Firewall 2.4 - 'dansguardian.cgi?addrule' Cross-Site Scripting

source: https://www.securityfocus.com/bid/52076/info Endian Firewall is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to execute arbitrary script on the affected server and steal...

Endian Firewall 2.4 - dansguardian.cgi?addrule Cross-Site Scripting

Endian Firewall 2.4 - dansguardian.cgi?addrule Cross-Site Scripting source: https://www.securityfocus.com/bid/52076/info Endian Firewall is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an...

Endian Firewall 2.4 - 'dnat.cgi?createrule' Cross-Site Scripting

source: https://www.securityfocus.com/bid/52076/info Endian Firewall is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to execute arbitrary script on the affected server and steal...

Webglimpse 2.x - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/52170/info Webglimpse is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to execute arbitrary script on the affected server and steal...

Webglimpse 2.x - Multiple Cross-Site Scripting Vulnerabilities

Webglimpse 2.x - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/52170/info Webglimpse is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in backend/core/engine/base.php in Fork CMS 3.2.4 and possibly other versions before 3.2.5 allow remote attackers to inject arbitrary web script or HTML via the 1 report parameter to blog/settings or 2 error parameter to users/index...

Movable Type vulnerable to cross-site scripting

Overview Movable Type contains a cross-site scripting vulnerability. mt-wizard.cgi and Movable Type templates contain a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. Solution Update the software Update to the latest version of each produ...

D-Link DCS - 'security.cgi' Cross-Site Request Forgery

source: https://www.securityfocus.com/bid/52134/info The D-Link DCS-900, DCS-2000, and DCS-5300 are prone to a cross-site request-forgery vulnerability. Successful exploits may allow attackers to run privileged commands on the affected device, change configuration, cause denial-of-service...

D-Link DCS - security.cgi Cross-Site Request Forgery

D-Link DCS - security.cgi Cross-Site Request Forgery source: https://www.securityfocus.com/bid/52134/info The D-Link DCS-900, DCS-2000, and DCS-5300 are prone to a cross-site request-forgery vulnerability. Successful exploits may allow attackers to run privileged commands on the affected device,...

ContentLion Alpha 1.3 - login.php Cross-Site Scripting

ContentLion Alpha 1.3 - login.php Cross-Site Scripting source: https://www.securityfocus.com/bid/52112/info ContentLion Alpha is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script...

Oxwall 1.1.1 - plugin Cross-Site Scripting

Oxwall 1.1.1 - plugin Cross-Site Scripting source: https://www.securityfocus.com/bid/52125/info Oxwall is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of...