Reamday Enterprises Magic News Plus 1.0.2 - Cross-Site Scripting

Reamday Enterprises Magic News Plus 1.0.2 - Cross-Site Scripting source: https://www.securityfocus.com/bid/37566/info Magic News Plus is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to...

PHPCart 3.1.2 - search.php Cross-Site Scripting

PHPCart 3.1.2 - search.php Cross-Site Scripting source: https://www.securityfocus.com/bid/37567/info PHPCart is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script cod...

Joomla! Component MS Comment 0.8.0b - Security Bypass / Cross-Site Scripting

source: https://www.securityfocus.com/bid/38250/info The MS Comment component for Joomla! is prone to a security-bypass vulnerability because it fails to properly sanitize user-supplied input. The component is also prone to a security-bypass vulnerability because it fails to reset the CAPTCHA aft...

DieselPay 1.6 - Cross-Site Scripting / Directory Traversal

source: https://www.securityfocus.com/bid/37564/info DieselPay is prone to a cross-site scripting vulnerability and a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker could exploit these vulnerabilities to obtain sensitive information,...

PHPMyCart 1.3 - Cross-Site Scripting Authentication Bypass

PHPMyCart 1.3 - Cross-Site Scripting Authentication Bypass source: https://www.securityfocus.com/bid/37553/info Conkurent PHPMyCart is prone to a cross-site scripting vulnerability and an authentication-bypass vulnerability. An attacker may leverage these issues to gain unauthorized access to the...

StarDevelop Live Help 2.6 - SERVER Multiple Cross-Site Scripting Vulnerabilities

StarDevelop Live Help 2.6 - SERVER Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/37558/info Stardevelop Live Help is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An...

Discuz! 1.0 - 'referer' Cross-Site Scripting

source: https://www.securityfocus.com/bid/37562/info Discuz! is prone to an cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

Joomla! Component MS Comment 0.8.0b - Security Bypass Cross-Site Scripting

Joomla! Component MS Comment 0.8.0b - Security Bypass Cross-Site Scripting source: https://www.securityfocus.com/bid/38250/info The MS Comment component for Joomla! is prone to a security-bypass vulnerability because it fails to properly sanitize user-supplied input. The component is also prone t...

PHPMyCart 1.3 - Cross-Site Scripting / Authentication Bypass

source: https://www.securityfocus.com/bid/37553/info Conkurent PHPMyCart is prone to a cross-site scripting vulnerability and an authentication-bypass vulnerability. An attacker may leverage these issues to gain unauthorized access to the affected application and execute arbitrary script code in...

CVE-2009-4459

Redmine 0.8.7 and earlier uses the title tag before defining the character encoding in a meta tag, which allows remote attackers to conduct cross-site scripting XSS attacks and inject arbitrary script via UTF-7 encoded values in the title parameter to a new issue page, which may be interpreted as...

Western Digital My Book World Edition 1.1.16 - 'lang' Cross-Site Scripting

source: https://www.securityfocus.com/bid/40564/info My Book World Edition is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting...

AzDGDatingMedium 1.9.3 - l Multiple Cross-Site Scripting Vulnerabilities

AzDGDatingMedium 1.9.3 - l Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/37514/info Azerbaijan Development AzDGDatingMedium is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied inpu...

AzDGDatingMedium 1.9.3 - 'l' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/37514/info Azerbaijan Development AzDGDatingMedium is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code...

PHPInstantGallery 1.1 - admin.php Cross-Site Scripting

PHPInstantGallery 1.1 - admin.php Cross-Site Scripting source: https://www.securityfocus.com/bid/37502/info phpInstantGallery is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script...

AL-Caricatier 2.5 - comment.php Cross-Site Scripting

AL-Caricatier 2.5 - comment.php Cross-Site Scripting source: https://www.securityfocus.com/bid/41338/info AL-Caricatier is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code ...

Cross site scripting

Cross-site scripting XSS vulnerability in login.php in phpGroupWare 0.9.16.12, and possibly other versions before 0.9.16.014, allows remote attackers to inject arbitrary web script or HTML via an arbitrary parameter whose name begins with the "phpgw" sequence...

MyBB 1.4.10 - 'myps.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/37464/info MyBB is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...

MyBB 1.4.10 - myps.php Cross-Site Scripting

MyBB 1.4.10 - myps.php Cross-Site Scripting source: https://www.securityfocus.com/bid/37464/info MyBB is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of ...

webMathematica 3 - MSP Script Cross-Site Scripting

webMathematica 3 - MSP Script Cross-Site Scripting source: https://www.securityfocus.com/bid/37451/info webMathematica is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code i...

webMathematica 3 - 'MSP' Script Cross-Site Scripting

source: https://www.securityfocus.com/bid/37451/info webMathematica is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the contex...