WordPress Plugin WHOIS 1.4.2 3 - domain Cross-Site Scripting

WordPress Plugin WHOIS 1.4.2 3 - domain Cross-Site Scripting source: https://www.securityfocus.com/bid/51244/info WHOIS for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrar...

WordPress Plugin Comment Rating 2.9.20 - 'path' Cross-Site Scripting

source: https://www.securityfocus.com/bid/51241/info The Comment Rating plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker could leverage this issue to execute arbitrary script code in the browser of an...

WordPress Plugin Comment Rating 2.9.20 - path Cross-Site Scripting

WordPress Plugin Comment Rating 2.9.20 - path Cross-Site Scripting source: https://www.securityfocus.com/bid/51241/info The Comment Rating plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker could leverag...

FuseTalk Forums 3.2 - 'windowed' Cross-Site Scripting

source: https://www.securityfocus.com/bid/51227/info FuseTalk Forums is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker could leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

WordPress Plugin WP Live.php 1.2.1 - s Cross-Site Scripting

WordPress Plugin WP Live.php 1.2.1 - s Cross-Site Scripting source: https://www.securityfocus.com/bid/51220/info WP Live.php plugin for WordPress is prone to a cross-site-scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to...

Siena CMS 1.242 - err Cross-Site Scripting

Siena CMS 1.242 - err Cross-Site Scripting source: https://www.securityfocus.com/bid/51218/info Siena CMS is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the...

WordPress Plugin WP Live.php 1.2.1 - 's' Cross-Site Scripting

source: https://www.securityfocus.com/bid/51220/info WP Live.php plugin for WordPress is prone to a cross-site-scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting...

WordPress Plugin The Welcomizer 1.3.9.4 - twiz-index.php Cross-Site Scripting

WordPress Plugin The Welcomizer 1.3.9.4 - twiz-index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/51037/info The Welcomizer plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may levera...

WordPress Plugin TheCartPress 1.6 - OptionsPostsList.php Cross-Site Scripting

WordPress Plugin TheCartPress 1.6 - OptionsPostsList.php Cross-Site Scripting source: https://www.securityfocus.com/bid/51216/info The TheCartPress WordPress Plugin is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage...

WordPress Plugin TheCartPress 1.6 - 'OptionsPostsList.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/51216/info The TheCartPress WordPress Plugin is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting...

Neturf eCommerce Shopping Cart - searchFor Cross-Site Scripting

Neturf eCommerce Shopping Cart - searchFor Cross-Site Scripting source: https://www.securityfocus.com/bid/55667/info Neturf eCommerce Shopping Cart is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to...

DEBIAN-CVE-2011-5027

Cross-site scripting XSS vulnerability in ZABBIX before 1.8.10 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to the profiler...

Pligg CMS 1.1.4 - 'SERVER[php_self]' Cross-Site Scripting

source: https://www.securityfocus.com/bid/51274/info Pligg CMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...

PukiWiki Plus! vulnerable to cross-site scripting

Overview PukiWiki Plus! contains a cross-site scripting vulnerability. PukiWiki Plus! is a software that adds wiki functionality to websites. PukiWiki Plus! contains a vulnerability in handling web form entries, which may result in cross-site scripting. Koki Nakayasu of Keiji Takeda Lab, Keio...

Apache Struts vulnerable to cross-site scripting

Overview Apache Struts may create web applications that contain a cross-site scripting vulnerability. Apache Struts provided by the Apache Software Foundation is a software framework for creating Java web applications. Apache Struts may create web applications that contain a cross-site scripting...

epesi BIM 1.2 rev 8154 - Multiple Cross-Site Scripting Vulnerabilities

epesi BIM 1.2 rev 8154 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/51149/info epesi BIM is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execu...

epesi BIM 1.2 rev 8154 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/51149/info epesi BIM is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

Vulnerability in Hex-Rays IDA Pro, IDAPython Plugin Could Allow Arbitrary Script Execution

Executive Summary Microsoft is providing notification of the discovery and remediation of a vulnerability affecting IDA Pro running the IDAPython plugin. By default, the IDAPython plugin is installed with all versions of IDA Pro. Microsoft discovered and disclosed the vulnerability under...

Cacti Multiple Input Validation Vulnerabilities

Cacti is prone to multiple multiple input-validation vulnerabilities including: 1. Multiple cross-site scripting vulnerabilities. 2. A cross-site request-forgery vulnerability. 3. An HTML-injection vulnerability. An attacker can exploit these vulnerabilities to execute arbitrary script code in th...

Pulse Pro 1.7.2 - Multiple Cross-Site Scripting Vulnerabilities

Pulse Pro 1.7.2 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/51056/info Pulse Pro is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An...