eXV2 CMS - Multiple Cross-Site Scripting Vulnerabilities

eXV2 CMS - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/44169/info eXV2 CMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary...

TWiki 5.0 - bin/login Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/44103/info TWiki is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

TWiki 5.0 - '/bin/view?rev' Cross-Site Scripting

source: https://www.securityfocus.com/bid/44103/info TWiki is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

MS10-072: Vulnerabilities in SafeHTML Could Allow Information Disclosure (2412048)

The versions of SharePoint Services, SharePoint Server, Groove, or Office Web Apps installed on the remote host have multiple cross-site scripting vulnerabilities. A remote attacker could exploit them by tricking a user into making a malicious request, resulting in arbitrary script code execution...

AdaptCMS 'init.php' Remote File Include Vulnerability

AdaptCMS is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Joomla! Mambo Component com_trade - PID Cross-Site Scripting

Joomla! Mambo Component comtrade - PID Cross-Site Scripting source: https://www.securityfocus.com/bid/43915/info The 'comtrade' component for Joomla! and Mambo is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this...

Joomla! Component JS Calendar 1.5.1 - Multiple Vulnerabilities

JS Calendar 1.5.1 Joomla Component Multiple Remote Vulnerabilities Name JS Calendar Vendor http://www.joomlaseller.com Versions Affected 1.5.1 Author Salvatore Fresta aka Drosophila Website http://www.salvatorefresta.net Contact salvatorefresta at gmail dot com Date 2010-10-09 X. INDEX I. ABOUT T...

Uebimiau Webmail 'stage' Parameter Local File Include Vulnerability

Uebimiau Webmail is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and to execute arbitrary local scripts in the context of the webserver process. This ma...

SurgeMail SurgeWeb Cross Site Scripting Vulnerability

SurgeMail is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to...

Portili Personal and Team Wiki 1.14 - Multiple Vulnerabilities (2)

source: https://www.securityfocus.com/bid/41973/info Portili Personal and Team Wiki are prone to multiple security vulnerabilities. These vulnerabilities include a cross-site scripting vulnerability, an arbitrary-file-upload vulnerability, and multiple information-disclosure vulnerabilities...

Docebo 3.6 - description Cross-Site Scripting

Docebo 3.6 - description Cross-Site Scripting source: https://www.securityfocus.com/bid/43721/info Docebo is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...

Docebo 3.6 - 'description' Cross-Site Scripting

source: https://www.securityfocus.com/bid/43721/info Docebo is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...

NuSOAP 'nusoap.php' Cross Site Scripting Vulnerability

This host is running NuSOAP and is prone to Cross-site scripting Vulnerability. OpenVAS Vulnerability Test $Id: secpodmantisbtnusoapxssvuln.nasl 5394 2017-02-22 09:22:42Z teissa $ NuSOAP 'nusoap.php' Cross Site Scripting Vulnerability Authors: Madhuri D Copyright: Copyright c 2010 SecPod,...

phpMyFAQ 'index.php' Cross Site Scripting Vulnerability

phpMyFAQ is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to stea...

PHPMyFAQ 2.6.x - index.php Cross-Site Scripting

PHPMyFAQ 2.6.x - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/43560/info phpMyFAQ is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...

PHPMyFAQ 2.6.x - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/43560/info phpMyFAQ is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of t...

OpenText LiveLink 9.7.1 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/43420/info OpenText LiveLink is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting...

CVE-2010-3427

Multiple cross-site scripting XSS vulnerabilities in Open Classifieds 1.7.0.2 allow remote attackers to inject arbitrary web script or HTML via the 1 desc, 2 price, 3 title, and 4 place parameters to index.php and the 5 subject parameter to contact.htm, related to content/contact.php...

AChecker 1.0 - URI Cross-Site Scripting

AChecker 1.0 - URI Cross-Site Scripting source: https://www.securityfocus.com/bid/43240/info AChecker is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in th...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the Local Management Interface LMI on the IBM Proventia Network Mail Security System PNMSS appliance with firmware before 2.5.0.2 allow remote attackers to inject arbitrary web script or HTML via 1 the date1 parameter to pvmmessagestore.php, 2...