Joomla! Component com_bulkenquery - Controller Local File Inclusion

Joomla! Component combulkenquery - Controller Local File Inclusion source: https://www.securityfocus.com/bid/51622/info The 'combulkenquery' component for Joomla! is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this...

Lead Capture - 'login.php' Script Cross-Site Scripting

source: https://www.securityfocus.com/bid/51785/info Lead Capture is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the conte...

osCommerce vulnerable to cross-site scripting

Overview osCommerce contains a cross-site scripting vulnerability. osCommerce is an open source system for creating shopping websites. osCommerce contains a cross-site scripting vulnerability. Masako Oono reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Informati...

Oracle WebLogic Server vulnerable to cross-site scripting

Overview Oracle WebLogic Server contains a cross-site scripting vulnerability. Oracle WebLogic Server contains a cross-site scripting vulnerability on the management console. Minetoshi Takizawa reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security...

phpVideoPro Multiple Cross Site Scripting Vulnerabilities

phpVideoPro is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the...

OneOrZero AIMS - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/51549/info OneOrZero AIMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the contex...

PHP Membership Site Manager Script 2.1 - index.php Cross-Site Scripting

PHP Membership Site Manager Script 2.1 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/51416/info PHP Membership Site Manager Script is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically...

Giveaway Manager - 'members.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/51431/info Giveaway Manager is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

PHP Ringtone Website - 'ringtones.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/51418/info PHP Ringtone Website is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspectin...

MailEnable XSS Vulnerability (Jan 2012) - Active Check

MailEnable is prone to a cross-site scripting XSS vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Microsoft AntiXSS Library Information Disclosure Vulnerability (2607664)

This host is missing an important security update according to Microsoft Bulletin MS12-007. OpenVAS Vulnerability Test $Id: secpodms12-007.nasl 5366 2017-02-20 13:55:38Z cfi $ Microsoft AntiXSS Library Information Disclosure Vulnerability 2607664 Authors: Madhuri D Copyright: Copyright c 2012...

KnowledgeTree 3.x - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/51373/info KnowledgeTree is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in...

Microsoft AntiXSS 34.0 Library Sanitization Module - Security Bypass

Microsoft AntiXSS 34.0 Library Sanitization Module - Security Bypass source: https://www.securityfocus.com/bid/51291/info Microsoft Anti-Cross Site Scripting AntiXSS Library is prone to a security-bypass vulnerability that affects the sanitization module. An attacker can exploit this vulnerabilit...

SAPID CMS Multiple Remote File Include Vulnerabilities

SAPID CMS is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these vulnerabilities to obtain potentially sensitive information or to execute arbitrary script code in the context of the webserver process. This...

Advanced File Management 1.4 - 'users.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/51339/info Advanced File Management is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in...

Advanced File Management 1.4 - users.php Cross-Site Scripting

Advanced File Management 1.4 - users.php Cross-Site Scripting source: https://www.securityfocus.com/bid/51339/info Advanced File Management is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute...

VertrigoServ 'ext' Parameter Cross Site Scripting Vulnerability

This host is running VertrigoServ and is prone to cross-site scripting vulnerability. OpenVAS Vulnerability Test $Id: gbvertrigoservextparamxssvuln.nasl 5792 2017-03-30 13:18:14Z cfi $ VertrigoServ 'ext' Parameter Cross Site Scripting Vulnerability Authors: Madhuri D Copyright: Copyright c 2012...

SQLiteManager 1.2.4 - index.php Multiple Cross-Site Scripting Vulnerabilities

SQLiteManager 1.2.4 - index.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/51294/info SQLiteManager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically...

SQLiteManager 1.2.4 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/51294/info SQLiteManager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage these issues to execute arbitrary scrip...

GraphicsClone Script - 'term' Cross-Site Scripting

source: https://www.securityfocus.com/bid/51258/info GraphicsClone Script is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...