SAP BusinessObjects 12 - URI redirection / Cross-Site Scripting

source: https://www.securityfocus.com/bid/37972/info SAP BusinessObjects is prone to multiple URI-redirection issues and multiple cross-site scripting issues because it fails to sufficiently sanitize user-supplied input. Attackers can exploit these issues to execute arbitrary script or HTML code,...

PunBB 1.3 - 'viewtopic.php' Cross-Site Scripting Vulnerability

PunBB 1.3 'viewtopic.php' Cross-Site Scripting Vulnerability. CVE-2010-0455. Webapps exploit for php platform source: http://www.securityfocus.com/bid/37930/info PunBB is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may...

CVE-2010-0357

Cross-site scripting XSS vulnerability in the Login page in IBM Lotus Web Content Management WCM 6.0.1.4, 6.0.1.5, and 6.0.1.6 before iFix 32; and 6.1.0.1 and 6.1.0.2 before iFix 24; for WebSphere Portal allows remote attackers to inject arbitrary web script or HTML via unspecified parameters...

Zope 'standard_error_message' Cross-Site Scripting Vulnerability

Zope is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may help the attacker...

Bits Video Script 2.05 Gold Beta - showcase2search.php?rowptem[template] Remote File Inclusion

Bits Video Script 2.05 Gold Beta - showcase2search.php?rowptemtemplate Remote File Inclusion source: https://www.securityfocus.com/bid/40709/info Bits Video Script is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can...

Easysitenetwork Jokes Complete Website - id Cross-Site Scripting

Easysitenetwork Jokes Complete Website - id Cross-Site Scripting source: https://www.securityfocus.com/bid/37852/info EasySiteNetwork Jokes Complete Website is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may...

Bits Video Script 2.042.05 - search.php Cross-Site Scripting

Bits Video Script 2.042.05 - search.php Cross-Site Scripting source: https://www.securityfocus.com/bid/40716/info Bits Video Script is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary...

Easysitenetwork Jokes Complete Website - searchingred Cross-Site Scripting

Easysitenetwork Jokes Complete Website - searchingred Cross-Site Scripting source: https://www.securityfocus.com/bid/37852/info EasySiteNetwork Jokes Complete Website is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacke...

Hitmaaan Gallery 1.3 - Multiple Cross-Site Scripting Vulnerabilities

Hitmaaan Gallery 1.3 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/40711/info Hitmaaan Gallery is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to...

Bits Video Script 2.05 Gold Beta - 'showcase2search.php?rowptem[template]' Remote File Inclusion

source: https://www.securityfocus.com/bid/40709/info Bits Video Script is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these vulnerabilities to obtain potentially sensitive information or to execute...

Bits Video Script 2.04/2.05 - 'search.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/40716/info Bits Video Script is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

Bits Video Script 2.05 Gold Beta - 'showcasesearch.php?rowptem[template]' Remote File Inclusion

source: https://www.securityfocus.com/bid/40709/info Bits Video Script is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these vulnerabilities to obtain potentially sensitive information or to execute...

WebCalenderC3 cross-site scripting vulnerability

Overview WebCalenderC3 from C3 Corp. contains a cross-site scripting vulnerability. WebCalenderC3 from C3 Corp. is a calender software. WebCalenderC3 contains a cross-site scripting vulnerability. According to the developer, they were not able to reproduce the vulnerability. However, to mitigate...

Technology for Solutions 1.0 - id Cross-Site Scripting

Technology for Solutions 1.0 - id Cross-Site Scripting source: https://www.securityfocus.com/bid/37811/info Technology for Solutions is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary...

StivaSoft Stiva SHOPPING CART 1.0 - demo.php Cross-Site Scripting

StivaSoft Stiva SHOPPING CART 1.0 - demo.php Cross-Site Scripting source: https://www.securityfocus.com/bid/40310/info Stiva SHOPPING CART is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute...

Joomla! Component com_tienda - 'categoria' Cross-Site Scripting

source: https://www.securityfocus.com/bid/37798/info The Joomla! 'comartistavenue' component is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

StivaSoft Stiva SHOPPING CART 1.0 - 'demo.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/40310/info Stiva SHOPPING CART is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

PHPepperShop 2.5 - USER_ARTIKEL_HANDLING_AUFRUF.php Cross-Site Scripting

PHPepperShop 2.5 - USERARTIKELHANDLINGAUFRUF.php Cross-Site Scripting source: https://www.securityfocus.com/bid/37707/info PhPepperShop is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to...

Simple PHP Blog 0.5.x - search.php Cross-Site Scripting

Simple PHP Blog 0.5.x - search.php Cross-Site Scripting source: https://www.securityfocus.com/bid/37752/info Simple PHP Blog is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute...

PHPepperShop 2.5 - 'USER_ARTIKEL_HANDLING_AUFRUF.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/37707/info PhPepperShop is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in...