JVN#38605899 Mozilla Firefox cross-site scripting vulnerability

Mozilla Firefox interprets HTML data improperly and activates event handlers for invalid HTML elements, leading to a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. Solution Upgrade the Software Mozilla has released Firefox 2.0.0.2 and...

Evenzia Content Management Systems (CMS) - Cross-Site Scripting

Evenzia Content Management Systems CMS - Cross-Site Scripting source: https://www.securityfocus.com/bid/24270/info Evenzia CMS is prone to a cross-site script vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute...

PHPLive! 3.2.2 - 'chat.php?sid' Cross-Site Scripting

source: https://www.securityfocus.com/bid/24276/info PHP Live! is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

Cross site scripting

Cross-site scripting XSS vulnerability in showown.php in GMTT Music Distro 1.2 allows remote attackers to inject arbitrary web script or HTML via the st parameter...

Particle Gallery 1.0 - 'search.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/24236/info Particle Gallery is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting use...

Cross site scripting

Cross-site scripting XSS vulnerability in gnatsweb.pl in Gnatsweb 4.00 and Gnats 4.1.99 allows remote attackers to inject arbitrary web script or HTML via the database parameter...

ClientExec 3.0 - index.php Multiple Cross-Site Scripting Vulnerabilities

ClientExec 3.0 - index.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/24061/info ClientExec is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to...

VP-ASP Shopping Cart 6.50 - 'ShopContent.asp' Cross-Site Scripting

source: https://www.securityfocus.com/bid/24033/info VP-ASP Shopping Cart is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting...

PHP Multi User Randomizer 2006.09.13 - 'Configure_Plugin.TPL.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/23917/info PHP Multi User Randomizer is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

Advanced Guestbook 2.4.2 - picture.php Cross-Site Scripting

Advanced Guestbook 2.4.2 - picture.php Cross-Site Scripting source: https://www.securityfocus.com/bid/23873/info Advanced Guestbook is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execu...

Kayako eSupport 3.0.90 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/23864/info Kayako eSupport is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user...

Microsoft SharePoint Server 3.0 - Cross-Site Scripting

source: https://www.securityfocus.com/bid/23832/info Microsoft SharePoint Server is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Exponent CMS 0.96.6 Alpha and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 url parameter to a magpiedebug.php and b magpiesimple.php in external/magpierss/scripts/, the 2 rssurl parameter to c magpieslashbox.p...

MoinMoin 1.5.x - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/23676/info MoinMoin is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

MoinMoin 1.5.x - index.php Cross-Site Scripting

MoinMoin 1.5.x - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/23676/info MoinMoin is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script co...

Cross site scripting

Cross-site scripting XSS vulnerability in contact/index.php in Ripe Website Manager 0.8.4 and earlier allows remote attackers to inject arbitrary web script or HTML via a leading """ in the ripeformpost parameter...

Exponent CMS 0.96.50.96.6 - magpie_slashbox.php?rss_url Cross-Site Scripting

Exponent CMS 0.96.50.96.6 - magpieslashbox.php?rssurl Cross-Site Scripting source: https://www.securityfocus.com/bid/23574/info Exponent CMS is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. Exploiting these issues could...

Exponent CMS 0.96.5/0.96.6 - 'iconspopup.php?icodir' Traversal Arbitrary Directory Listing

source: https://www.securityfocus.com/bid/23574/info Exponent CMS is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, execute...

Wabbit Gallery Script 0.9 - showpic.php Multiple Cross-Site Scripting Vulnerabilities

Wabbit Gallery Script 0.9 - showpic.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/23526/info Wabbit Gallery Script is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may...

BloofoxCMS 0.2.2 - 'Img_Popup.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/23487/info BloofoxCMS is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in t...