6892 matches found
Cross site scripting
Cross-site scripting XSS vulnerability in the Simple Gallery sksimplegallery extension 0.0.9 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
Cross site scripting
Cross-site scripting XSS vulnerability in the Sellector.com Widget Integration chsellector extension before 0.1.2 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
Cross site scripting
Cross-site scripting XSS vulnerability in the Reports Logfile View reportslogview extension 1.2.1 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2010-1011
Cross-site scripting XSS vulnerability in the myDashboard mydashboard extension 0.1.13 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in x10 Adult Media Script 1.7 allow remote attackers to inject arbitrary web script or HTML via the 1 picid parameter to includes/videoad.php, 2 category parameter to linkvideoslisting.php, 3 id parameter to templates/header1.php, and 4 key...
CVE-2009-4729
Multiple cross-site scripting XSS vulnerabilities in x10 Adult Media Script 1.7 allow remote attackers to inject arbitrary web script or HTML via the 1 picid parameter to includes/videoad.php, 2 category parameter to linkvideoslisting.php, 3 id parameter to templates/header1.php, and 4 key...
CVE-2009-4729
Multiple cross-site scripting XSS vulnerabilities in x10 Adult Media Script 1.7 allow remote attackers to inject arbitrary web script or HTML via the 1 picid parameter to includes/videoad.php, 2 category parameter to linkvideoslisting.php, 3 id parameter to templates/header1.php, and 4 key...
CVE-2009-4729
CVE-2009-4729 affects x10 Adult Media Script 1.7 with multiple XSS flaws. Vulnerable vectors include includes/video_ad.php (pic_id), linkvideos_listing.php (category), templates/header1.php (id), and video_listing.php (key). The flaws allow remote attackers to inject arbitrary web script/HTML, wi...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in ATutor 1.6.4 allow remote authenticated users, with Instructor privileges, to inject arbitrary web script or HTML via the 1 Question and 2 Choice fields in tools/polls/add.php, the 3 Type and 4 Title fields in tools/groups/createmanual.php, and...
CVE-2009-4717
Multiple cross-site scripting XSS vulnerabilities in Gonafish WebStatCaffe allow remote attackers to inject arbitrary web script or HTML via the 1 host parameter to stat/host.php, nodayshow parameter to 2 mostvisitpage.php and 3 visitorduration.php in stat/, 4 nopagesmost parameter to...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in SkaDate Dating allow remote attackers to inject arbitrary web script or HTML via the PATHINFO to 1 admin/auth.php and 2 fileuploader.php...
CVE-2009-4705
Cross-site scripting XSS vulnerability in the Twitter Search twittersearch extension before 0.1.1 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
Cross site scripting
Cross-site scripting XSS vulnerability in results.php in EDGEPHP EZWebSearch allows remote attackers to inject arbitrary web script or HTML via the language parameter...
CVE-2009-4716
Cross-site scripting XSS vulnerability in results.php in EDGEPHP EZWebSearch allows remote attackers to inject arbitrary web script or HTML via the language parameter...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in index.php in RadNICS Gold 5 allow remote attackers to inject arbitrary web script or HTML via the 1 order parameter in a ulist action and the 2 fid parameter in a viewforum action...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in YourFreeWorld Programs Rating Script allow remote attackers to inject arbitrary web script or HTML via the id parameter to 1 rate.php and 2 postcomments.php...
Cross site scripting
Cross-site scripting XSS vulnerability in account.php in phplemon AdQuick 2.2.1 allows remote attackers to inject arbitrary web script or HTML via the redurl parameter...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in index.php in PHP Shopping Cart Selling Website Script allow remote attackers to inject arbitrary web script or HTML via the 1 txtkeywords and 2 cid parameters...
CVE-2009-4690
Multiple cross-site scripting XSS vulnerabilities in YourFreeWorld Programs Rating Script allow remote attackers to inject arbitrary web script or HTML via the id parameter to 1 rate.php and 2 postcomments.php...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Natychmiast CMS allow remote attackers to inject arbitrary web script or HTML via the idstr parameter to 1 index.php and 2 aindex.php...