6892 matches found
Cross site scripting
Cross-site scripting XSS vulnerability in the Login page in IBM Lotus Web Content Management WCM 6.0.1.4, 6.0.1.5, and 6.0.1.6 before iFix 32; and 6.1.0.1 and 6.1.0.2 before iFix 24; for WebSphere Portal allows remote attackers to inject arbitrary web script or HTML via unspecified parameters...
CVE-2010-0349
Cross-site scripting XSS vulnerability in C3 Corp. WebCalenderC3 0.32 and earlier allows remote attackers to inject arbitrary web script or HTML via unknown vectors. NOTE: this issue could not be reproduced by the vendor, but a patch was provided anyway. The original researcher is reliable...
Cross site scripting
Cross-site scripting XSS vulnerability in C3 Corp. WebCalenderC3 0.32 and earlier allows remote attackers to inject arbitrary web script or HTML via unknown vectors. NOTE: this issue could not be reproduced by the vendor, but a patch was provided anyway. The original researcher is reliable...
CVE-2010-0349
Cross-site scripting XSS vulnerability in C3 Corp. WebCalenderC3 0.32 and earlier allows remote attackers to inject arbitrary web script or HTML via unknown vectors. NOTE: this issue could not be reproduced by the vendor, but a patch was provided anyway. The original researcher is reliable...
Cross site scripting
Cross-site scripting XSS vulnerability in index.php in Docmint 1.0 and 2.1 allows remote attackers to inject arbitrary web script or HTML via the id parameter. NOTE: some of these details are obtained from third party information...
Cross site scripting
Cross-site scripting XSS vulnerability in the KJ: Imagelightbox kjimagelightbox2 extension 2.0.0 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2008-2490...
Cross site scripting
Cross-site scripting XSS vulnerability in submitlink.php in Glitter Central Script allows remote attackers to inject arbitrary web script or HTML via the catid parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in the VD / Geomap vdgeomap extension 0.3.1 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
Cross site scripting
Cross-site scripting XSS vulnerability in the Tip many friends mimitipfriends extension 0.0.2 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2010-0320
Cross-site scripting XSS vulnerability in submitlink.php in Glitter Central Script allows remote attackers to inject arbitrary web script or HTML via the catid parameter...
CVE-2010-0327
CVE-2010-0327 describes a cross-site scripting (XSS) vulnerability in the KJ Image Lightbox 2 (kj_imagelightbox2) extension for TYPO3, allowing remote attackers to inject arbitrary web script or HTML via unspecified vectors. The CVE covers versions 2.0.0 and earlier. The connected records also re...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Mort Bay Jetty 6.x and 7.0.0 allow remote attackers to inject arbitrary web script or HTML via 1 the query string to jsp/dump.jsp in the JSP Dump feature, or the 2 Name or 3 Value parameter to the default URI for the Session Dump Servlet under...
CVE-2009-4612
Multiple cross-site scripting XSS vulnerabilities in the WebApp JSP Snoop page in Mort Bay Jetty 6.1.x through 6.1.21 allow remote attackers to inject arbitrary web script or HTML via the PATHINFO to the default URI under 1 jspsnoop/, 2 jspsnoop/ERROR/, and 3 jspsnoop/IOException/, and possibly t...
CVE-2009-4610
Multiple cross-site scripting XSS vulnerabilities in Mort Bay Jetty 6.x and 7.0.0 allow remote attackers to inject arbitrary web script or HTML via 1 the query string to jsp/dump.jsp in the JSP Dump feature, or the 2 Name or 3 Value parameter to the default URI for the Session Dump Servlet under...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the WebApp JSP Snoop page in Mort Bay Jetty 6.1.x through 6.1.21 allow remote attackers to inject arbitrary web script or HTML via the PATHINFO to the default URI under 1 jspsnoop/, 2 jspsnoop/ERROR/, and 3 jspsnoop/IOException/, and possibly t...
PhPepperShop Webshop 2.5 Cross Site Scripting
============================================================================== PhPepperShop Webshop 2.5 XSS Cross Site Scripting Vulnerability ============================================================================== + My home http://hack-tech.com + Date Submitted: January 12 2010 + Founder:...
CVE-2009-3742
Cross-site scripting XSS vulnerability in Liferay Portal before 5.3.0 allows remote attackers to inject arbitrary web script or HTML via the ppid parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in LXR Cross Referencer 0.9.5 and 0.9.6 allows remote attackers to inject arbitrary web script or HTML via the i parameter to the ident program...
CVE-2009-4586
Multiple cross-site scripting XSS vulnerabilities in index.html in Wowd client before 1.3.1 allow remote attackers to inject arbitrary web script or HTML via the 1 sortby, 2 tags, or 3 ctx parameter in a search action...
CVE-2009-4589
Cross-site scripting XSS vulnerability in the Special:Block implementation in the getContribsLink function in SpecialBlockip.php in MediaWiki 1.14.0 and 1.15.0 allows remote attackers to inject arbitrary web script or HTML via the ip parameter...