JVN#92854093 Movable Type vulnerable to cross-site scripting

Movable Type, a web log system from Six Apart KK, contains a cross-site scripting vulnerability. This vulnerability is different than the previous vulnerabilities disclosed on JVN. Impact An arbitrary script may be executed on the user's web browser. Solution Update the Software Update to the...

Cross site scripting

Cross-site scripting XSS vulnerability in login.php in PHP Photo Vote 1.3F allows remote attackers to inject arbitrary web script or HTML via the page parameter...

Saurus CMS 4.7 - 'edit.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/40059/info Saurus CMS is prone to a cross-site scripting vulnerability because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user ...

Saurus CMS 4.7 - edit.php Cross-Site Scripting

Saurus CMS 4.7 - edit.php Cross-Site Scripting source: https://www.securityfocus.com/bid/40059/info Saurus CMS is prone to a cross-site scripting vulnerability because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary scri...

EasyPublish CMS 23.04.2010 - URI Cross-Site Scripting

EasyPublish CMS 23.04.2010 - URI Cross-Site Scripting source: https://www.securityfocus.com/bid/40037/info EasyPublish CMS is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the Table JX comgrid component for Joomla! allow remote attackers to inject arbitrary web script or HTML via the 1 datasearch and 2 rpp parameters to index.php...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Zikula Application Framework 1.2.2, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the 1 func parameter to index.php, or the 2 lang parameter to index.php, which is not properly handled by ZLanguage.php...

WordPress Plugin TYPO3 't3m_cumulus_tagcloud' Extension 1.0 - HTML Injection / Cross-Site Scripting

source: https://www.securityfocus.com/bid/39926/info TYPO3 't3mcumulustagcloud' extension is prone to HTML-injection and cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage the issues to execute arbitrary script code in the...

VMware View 3.1.x - URL Processing Cross-Site Scripting

source: https://www.securityfocus.com/bid/39949/info VMware View is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the contex...

WordPress Plugin TYPO3 t3m_cumulus_tagcloud Extension 1.0 - HTML Injection Cross-Site Scripting

WordPress Plugin TYPO3 t3mcumulustagcloud Extension 1.0 - HTML Injection Cross-Site Scripting source: https://www.securityfocus.com/bid/39926/info TYPO3 't3mcumulustagcloud' extension is prone to HTML-injection and cross-site scripting vulnerabilities because it fails to properly sanitize...

WordPress Plugin Cimy Counter 0.9.4 - HTTP Response Splitting Cross-Site Scripting

WordPress Plugin Cimy Counter 0.9.4 - HTTP Response Splitting Cross-Site Scripting source: https://www.securityfocus.com/bid/41132/info Cimy Counter for WordPress is prone to an HTTP response-splitting vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize...

Mango Blog 1.4.1 - '/archives.cfm/search' Cross-Site Scripting

source: https://www.securityfocus.com/bid/39864/info Mango Blog is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...

Apache ActiveMQ version 5.3.x XSS Vulnerabilities

Exploit for php platform in category web applications ================================================= Apache ActiveMQ version 5.3.x XSS Vulnerabilities ================================================= Severity: Medium Overview: --------- Apache ActiveMQ is prone to cross-site scripting...

Apache ActiveMQ 'admin/queueBrowse' Cross Site Scripting Vulnerability

Apache ActiveMQ is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Apache ActiveMQ 5.3 - adminqueueBrowse Cross-Site Scripting

Apache ActiveMQ 5.3 - adminqueueBrowse Cross-Site Scripting source: https://www.securityfocus.com/bid/39771/info Apache ActiveMQ is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary...

ProArcadeScript - 'search.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/39749/info ProArcadeScript is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the conte...

Ektron CMS400.NET 7.5.2 - Multiple Vulnerabilities

source: https://www.securityfocus.com/bid/39679/info Ektron CMS400.NET is prone to multiple security vulnerabilities, including multiple cross-site scripting issues, an information-disclosure issue, a cookie-manipulation issue, a directory-traversal issue, a security-bypass issue, and a URI...

Kasseler CMS 2.0.5 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/39703/info Kasseler CMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context ...

Kasseler CMS 2.0.5 - index.php Cross-Site Scripting

Kasseler CMS 2.0.5 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/39703/info Kasseler CMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in...

PowerEasy 2006 - ComeUrl Cross-Site Scripting

PowerEasy 2006 - ComeUrl Cross-Site Scripting source: https://www.securityfocus.com/bid/39696/info PowerEasy is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the...