Cilem Haber Free Edition - 'hata.asp?hata' Cross-Site Scripting

source: https://www.securityfocus.com/bid/21511/info Ã?ilem Haber Free Edition is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser of an...

orkut-xss.txt

Orkut Multiple Cross Site Scripting Vulnerabilities XDisclose Advisory : XD100092 Vulnerability Discovered: November 18th 2006 Advisory Released : December 08th 2006 Credit : Rajesh Sethumadhavan Class : Cross Site Scripting HTML Injection Severity : Medium Solution Status : Unpatched Vendor :...

CVE-2006-6300

Cross-site scripting XSS vulnerability in CuteNews 1.3.6 allows remote attackers to inject arbitrary web script or HTML via the result parameter...

JVN#38746816 TikiWiki cross-site scripting vulnerability

Impact An arbitrary script may be executed on the user's web browser. Solution Products Affected TikiWiki version 1.9.5 and earlier...

Cerberus Helpdesk 2.x - Spellwin.php Cross-Site Scripting

Cerberus Helpdesk 2.x - Spellwin.php Cross-Site Scripting source: https://www.securityfocus.com/bid/21423/info Cerberus Helpdesk is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have...

CVE-2006-6197

Multiple cross-site scripting XSS vulnerabilities in b2evolution 1.8.2 through 1.9 beta allow remote attackers to inject arbitrary web script or HTML via the 1 appname parameter in a 404notfound.page.php, b 410statsgone.page.php, and c refererspam.page.php in inc/VIEW/errors/; the 2 baseurl...

Woltlab Burning Board 2.3.x - register.php Cross-Site Scripting

Woltlab Burning Board 2.3.x - register.php Cross-Site Scripting source: https://www.securityfocus.com/bid/21370/info Woltlab Burning Board is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue t...

cPanel WebHost Manager 3.1 - park?ndomain Cross-Site Scripting

cPanel WebHost Manager 3.1 - park?ndomain Cross-Site Scripting source: https://www.securityfocus.com/bid/21288/info WebHost Manager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have...

cPanel WebHost Manager 3.1 - editpkg?pkg Cross-Site Scripting

cPanel WebHost Manager 3.1 - editpkg?pkg Cross-Site Scripting source: https://www.securityfocus.com/bid/21288/info WebHost Manager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have...

cPanel WebHost Manager 3.1 - 'park?ndomain' Cross-Site Scripting

source: https://www.securityfocus.com/bid/21288/info WebHost Manager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the browser of an unsuspecting...

cPanel WebHost Manager 3.1 - 'dochangeemail?email' Cross-Site Scripting

source: https://www.securityfocus.com/bid/21288/info WebHost Manager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the browser of an unsuspecting...

PMOS Help Desk 2.3 - ticketview.php Multiple Cross-Site Scripting Vulnerabilities

PMOS Help Desk 2.3 - ticketview.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/21250/info InverseFlow Help Desk is prone to multiple cross-site scripting vulnerabilities. An attacker may leverage these issues to have arbitrary script code execute in th...

PMOS Help Desk 2.3 - 'ticket.php?email' Cross-Site Scripting

source: https://www.securityfocus.com/bid/21250/info InverseFlow Help Desk is prone to multiple cross-site scripting vulnerabilities. An attacker may leverage these issues to have arbitrary script code execute in the browser of an unsuspecting user in the context of the affected site. This may he...

PMOS Help Desk 2.3 - 'ticketview.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/21250/info InverseFlow Help Desk is prone to multiple cross-site scripting vulnerabilities. An attacker may leverage these issues to have arbitrary script code execute in the browser of an unsuspecting user in the context of the affected site. This may he...

CuteNews 1.4.5 - show_news.php Cross-Site Scripting

CuteNews 1.4.5 - shownews.php Cross-Site Scripting source: https://www.securityfocus.com/bid/21233/info CuteNews is prone to multiple input-validation vulnerabilities, including an HTML-injection vulnerability, cross-site scripting vulnerabilities, and information-disclosure vulnerabilities. An...

CuteNews 1.4.5 - rss_title Cross-Site Scripting

CuteNews 1.4.5 - rsstitle Cross-Site Scripting source: https://www.securityfocus.com/bid/21233/info CuteNews is prone to multiple input-validation vulnerabilities, including an HTML-injection vulnerability, cross-site scripting vulnerabilities, and information-disclosure vulnerabilities. An...

Blog:CMS 4.1.3 - 'list.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/21173/info BLOG:CMS is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting user i...

Odysseus Blog 1.0 - blog.php Cross-Site Scripting

Odysseus Blog 1.0 - blog.php Cross-Site Scripting source: https://www.securityfocus.com/bid/21128/info Odysseus Blog is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code...

BlogTorrent Preview 0.92 - 'Announce.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/21125/info BlogTorrent Preview is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser of an...

Selenium Web Server 1.0 - Cross-Site Scripting

source: https://www.securityfocus.com/bid/21100/info Biba Selenium Web Server is prone to a cross-site scripting because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting...