AJ Auction Pro OOPD 3.0 - 'txtkeyword' Cross-Site Scripting

source: https://www.securityfocus.com/bid/43273/info AJ Auction Pro OOPD is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting...

AJ Auction Pro 3.0 - 'txtkeyword' Cross-Site Scripting

source: https://www.securityfocus.com/bid/35968/info AJ Auction Pro is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the contex...

BaoFeng Storm '.smpl' File Buffer Overflow Vulnerability

This host is installed with BaoFeng Storm and is prone to Buffer Overflow vulnerability. OpenVAS Vulnerability Test $Id: gbbaofengstormsmplbofvuln.nasl 5374 2017-02-20 16:36:11Z cfi $ BaoFeng Storm '.smpl' File Buffer Overflow Vulnerability Authors: Nikita MR Copyright: Copyright c 2009 Greenbone...

68 Classifieds 4.1 - category.php Cross-Site Scripting

68 Classifieds 4.1 - category.php Cross-Site Scripting source: https://www.securityfocus.com/bid/36208/info '68 Classifieds' is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

WebAsyst Shop-Script PREMIUM - 'SearchString' Cross-Site Scripting

source: https://www.securityfocus.com/bid/43380/info Shop-Script PREMIUM is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in th...

Basilic 1.5.13 - index.php Cross-Site Scripting

Basilic 1.5.13 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/43372/info Basilic is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...

Cross-site scripting vulnerability in RevoCounter CGI (Animation Counter)

Overview RevoCounter CGI Animation Counter from futomi's CGI Cafe contains a cross-site scripting vulnerability. RevoCounter CGI Animation Counter from futomi's CGI Cafe is a software that displays an animated counter on a webpage. RevoCounter CGI Animation Counter contains a cross-site scripting...

WebShop Hun 1.062s - index.php Local File Inclusion Cross-Site Scripting

WebShop Hun 1.062s - index.php Local File Inclusion Cross-Site Scripting source: https://www.securityfocus.com/bid/43429/info WebShop Hun is prone to a local file-include vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker...

SkaLinks 1.5 - cat Multiple Cross-Site Scripting Vulnerabilities

SkaLinks 1.5 - cat Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/43430/info SkaLinks is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

WebShop Hun 1.062s - '/index.php' Local File Inclusion / Cross-Site Scripting

source: https://www.securityfocus.com/bid/43429/info WebShop Hun is prone to a local file-include vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit the local file-include vulnerability using directory-traversa...

MyDLstore Meta Search Engine Script 1.0 - url Remote File Inclusion

MyDLstore Meta Search Engine Script 1.0 - url Remote File Inclusion source: https://www.securityfocus.com/bid/43455/info MyDLstore Meta Search Engine Script is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this...

MyDLstore Pixel Ad Script - 'payment.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/43448/info MyDLstore Pixel Ad Script is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in...

PHP Scripts Now Hangman - 'index.php?n' SQL Injection

source: https://www.securityfocus.com/bid/43513/info TOPHangman is prone to an SQL-injection vulnerability and an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage these issues to compromise the application, access or modify data,...

YourFreeWorld Ultra Classifieds - subclass.php?cname Cross-Site Scripting

YourFreeWorld Ultra Classifieds - subclass.php?cname Cross-Site Scripting source: www.securityfocus.com/bid/43490/info Ultra Classifieds is prone to multiple cross-site scripting vulnerabilities because the software fails to sufficiently sanitize user-supplied input An attacker may leverage these...

Web TV - 'chn' Cross-Site Scripting

source: https://www.securityfocus.com/bid/43494/info Web TV is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

Freewebscriptz HUBScript - single_winner1.php Cross-Site Scripting

Freewebscriptz HUBScript - singlewinner1.php Cross-Site Scripting source: https://www.securityfocus.com/bid/43474/info HUBScript is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary...

DragDropCart - includesajaxgetstate.php?prefix Cross-Site Scripting

DragDropCart - includesajaxgetstate.php?prefix Cross-Site Scripting source: https://www.securityfocus.com/bid/43478/info DragDropCart is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to...

DragDropCart - '/assets/js/ddcart.php?sid' Cross-Site Scripting

source: https://www.securityfocus.com/bid/43478/info DragDropCart is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user i...

MyWeight 1.0 - user_login.php Multiple Cross-Site Scripting Vulnerabilities

MyWeight 1.0 - userlogin.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/43488/info MyWeight is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to...

DragDropCart - 'index.php?search' Cross-Site Scripting

source: https://www.securityfocus.com/bid/43478/info DragDropCart is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user i...