OpenWrt 10.03 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/44843/info OpenWrt is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

WeBid Multiple Input Validation Vulnerabilities

WeBid is prone to multiple input-validation vulnerabilities because it fails to adequately sanitize user-supplied input. These vulnerabilities include a local file-include vulnerability and a cross-site-scripting vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions migh...

Microsoft Forefront Unified Access Gateway 'Signurl.asp' Cross-Site Scripting Vulnerability

Description Microsoft Forefront Unified Access Gateway is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...

Microsoft Forefront Unified Access Gateway Mobile Portal Cross-Site Scripting Vulnerability

Description Microsoft Forefront Unified Access Gateway is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...

WordPress Plugin FeedList 2.61.01 - handler_image.php Cross-Site Scripting

WordPress Plugin FeedList 2.61.01 - handlerimage.php Cross-Site Scripting source: https://www.securityfocus.com/bid/44704/info The FeedList Plugin for Wordpress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage thi...

WordPress Plugin Vodpod Video Gallery 3.1.5 - 'vodpod_gallery_thumbs.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/44715/info The Vodpod Video Gallery Plugin for Wordpress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

WordPress Plugin FeedList 2.61.01 - 'handler_image.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/44704/info The FeedList Plugin for Wordpress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting...

pfSense - pkg_edit.php?id Cross-Site Scripting

pfSense - pkgedit.php?id Cross-Site Scripting source: https://www.securityfocus.com/bid/45272/info pfSense is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in...

pfSense - 'status_graph.php?if' Cross-Site Scripting

source: https://www.securityfocus.com/bid/45272/info pfSense is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

pfSense 2 Beta 4 - 'graph.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/44738/info pfSense is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

WordPress Plugin cformsII 11.5/13.1 - 'lib_ajax.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/44587/info The cformsII plugin for WordPress is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an...

w-Agora 'search.php' Local File Include and Cross Site Scripting Vulnerabilities

w-Agora is prone to a local file-include vulnerability and a cross- site scripting vulnerability because it fails to properly sanitize user- supplied input. An attacker can exploit the local file-include vulnerability using directory-traversal strings to view and execute local files within the...

IBM Tivoli Access Manager for E-Business - ibmwpmwebseal?method Cross-Site Scripting

IBM Tivoli Access Manager for E-Business - ibmwpmwebseal?method Cross-Site Scripting source: https://www.securityfocus.com/bid/44382/info IBM Tivoli Access Manager for e-business is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. A...

W-Agora 4.2.1 - search.php3?bn Traversal Local File Inclusion

W-Agora 4.2.1 - search.php3?bn Traversal Local File Inclusion source: https://www.securityfocus.com/bid/44370/info w-Agora is prone to a local file-include vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit the...

IBM Tivoli Access Manager for E-Business - '/ibm/wpm/gsogroup?method' Cross-Site Scripting

source: https://www.securityfocus.com/bid/44382/info IBM Tivoli Access Manager for e-business is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser ...

IBM Tivoli Access Manager for E-Business - '/ibm/wpm/acl?method' Cross-Site Scripting

source: https://www.securityfocus.com/bid/44382/info IBM Tivoli Access Manager for e-business is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser ...

IBM Tivoli Access Manager for E-Business - ibmwpmrule?method Cross-Site Scripting

IBM Tivoli Access Manager for E-Business - ibmwpmrule?method Cross-Site Scripting source: https://www.securityfocus.com/bid/44382/info IBM Tivoli Access Manager for e-business is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An...

pecio CMS 2.0.5 - target Cross-Site Scripting

pecio CMS 2.0.5 - target Cross-Site Scripting source: https://www.securityfocus.com/bid/44304/info pecio cms is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...

PhreeBooks <= 2.1 Multiple Vulnerabilities - Active Check

PhreeBooks is prone to multiple input validation vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

eXV2 CMS - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/44169/info eXV2 CMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...