CVE-2005-0742

Cross-site scripting XSS vulnerability in Sun Java System Application Server 7 allows remote attackers to inject arbitrary web script or HTML via unknown vectors...

CVE-2005-0863

Cross-site scripting XSS vulnerability in PHPOpenChat v3.x allows remote attackers to inject arbitrary web script or HTML via 1 the chatter parameter to regulars.php or 2 the chatter, chatter1, chatter2, chatter3, or chatter4 parameters to register.php...

CVE-2005-0928

Multiple cross-site scripting XSS vulnerabilities in PhotoPost PHP Pro 5.x allow remote attackers to inject arbitrary web script or HTML via the 1 cat, 2 password, 3 ppuser, 4 sort, or 5 si parameters to showgallery.php, the 6 ppuser, 7 sort, or 8 si parameters to showmembers.php, or 9 the photo...

CVE-2005-1016

Cross-site scripting XSS vulnerability in linksaddform.asp for MaxWebPortal 1.33 and earlier allows remote attackers to inject arbitrary web script or HTML via a Javascript URL in a banner URL...

CVE-2005-1313

Cross-site scripting XSS vulnerability in Horde Passwd module before 2.2.2 allows remote attackers to inject arbitrary web script or HTML via the parent's frame page title...

CVE-2005-0802

Cross-site scripting XSS vulnerability in search.asp in ACS Blog 0.8 through 1.1b allows remote attackers to execute arbitrary web script or HTML via the search parameter...

CVE-2005-0949

Multiple cross-site scripting XSS vulnerabilities in content.asp in Iatek PortalApp allow remote attackers to inject arbitrary web script or HTML via the 1 contenttype or 2 keywords parameter...

CVE-2005-1309

Cross-site scripting XSS vulnerability in bBlog 0.7.4 allows remote attackers to inject arbitrary web script or HTML via the 1 entry title field or 2 comment body text...

CVE-2005-0783

Cross-site scripting XSS vulnerability in Phorum before 5.0.14a allows remote attackers to inject arbitrary web script or HTML via the filename of an attached file...

CVE-2005-0934

Multiple cross-site scripting XSS vulnerabilities in WackoWiki R4 allow remote attackers to inject arbitrary web script or HTML via unknown vectors...

CVE-2005-0981

Multiple cross-site scripting XSS vulnerabilities in AlstraSoft EPay Pro 2.0 allow remote attackers to inject arbitrary web script or HTML via the 1 payment or 2 send parameter...

CVE-2005-1189

Cross-site scripting XSS vulnerability in WebcamXP PRO v2.16.468 and earlier allows remote attackers to inject arbitrary web script or HTML via the chat name, as demonstrated by using an IFRAME to redirect users to other sites...

CVE-2005-1010

Cross-site scripting XSS vulnerability in Comersus Cart 6 allows remote attackers to inject arbitrary web script or HTML via the account username...

CVE-2005-1030

Multiple cross-site scripting XSS vulnerabilities in Active Auction House allow remote attackers to inject arbitrary web script or HTML via the 1 ReturnURL, 2 password, 3 username parameter, 4 ReturnURL parameter to account.asp, 5 Table, 6 Title parameter to sendpassword.asp, or 7 itemid to...

CVE-2005-1162

Multiple cross-site scripting XSS vulnerabilities in OneWorldStore allow remote attackers to inject arbitrary web script or HTML via the 1 sEmail parameter to owContactUs.asp, 2 bSub parameter to owListProduct.asp, or the 3 Name, 4 Email, or 5 Comment fields in owProductDetail.asp...

CVE-2005-0888

Multiple cross-site scripting XSS vulnerabilities in functions.inc.php for Double Choco Latte 0.9.4.3 allow remote attackers to inject arbitrary web script or HTML via the 1 class or 2 method name...

CVE-2005-1076

Cross-site scripting XSS vulnerability in the discussion board functionality for WebCT Campus Edition 4.1 allows remote attackers to inject arbitrary web script or HTML via the message field...

CVE-2005-0872

Cross-site scripting XSS vulnerability in calendarscheduler.php in the Topic Calendar 1.0.1 module for phpBB allows remote attackers to inject arbitrary web script or HTML via the start parameter...

CVE-2005-1356

Cross-site scripting XSS vulnerability in includer.cgi script in The Includer allows remote attackers to inject arbitrary web script or HTML via the argument...

CVE-2005-1309

Cross-site scripting XSS vulnerability in bBlog 0.7.4 allows remote attackers to inject arbitrary web script or HTML via the 1 entry title field or 2 comment body text...