244 matches found
Komodo CMS 2.1 - Multiple Input Validation Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/15966/info Komodo CMS is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabilities...
Valdersoft Shopping Cart 3.0 - Multiple Input Validation Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/12916/info Multiple input validation vulnerabilities reportedly affect Valdersoft Shopping Cart. These issues are due to a failure of the application to properly sanitize user-supplied input prior to using it to carry out...
Microsoft SharePoint Server 2007 XSS Vulnerability
No description provided by source. Vulnerability ID: HTB22350 Reference: http://www.htbridge.ch/advisory/xssinmicrosoftsharepointserver2007.html http://www.microsoft.com/technet/security/advisory/983438.mspx Product: Microsoft SharePoint Server 2007 Vendor: Microsoft Corporation Vulnerable Versio...
V3 Chat Instant Messenger - profileview.php membername Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/18543/info V3 Chat Instant Messenger is prone to multiple cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker...
PHPPost 1.0 profile.php user Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/15524/info PHP-Post is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code ...
OpenDocMan 1.2.5 profile.php XSS
No description provided by source. source: http://www.securityfocus.com/bid/36777/info OpenDocMan is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an...
E-Publish 2.0 - Multiple Input Validation Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/15964/info E-Publish is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabilities...
Chipmunk Guestbook 1.4 Homepage HTML Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/16112/info Chipmunk Guestbook is prone to an HTML injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in dynamically generated content...
MySQL AB Eventum 1.x list.php release Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/14436/info MySQL Eventum is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issu...
APC Network Management Card Cross Site Request Forgery and Cross Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/37338/info The APC Network Management Card is prone to multiple cross-site request-forgery and cross-site scripting vulnerabilities. An attacker can exploit the cross-site request forgery issues to alter the settings on...
PluggedOut CMS 0.4.8 admin.php contenttypeid Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/14426/info PluggedOut CMS is prone to multiple cross-site scripting and SQL injection vulnerabilities. Exploitation could allow for theft of cookie-based authentication credentials or unauthorized access to database data...
EXoops Multiple Input Validation Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/12915/info Multiple input validation vulnerabilities reportedly affect exoops. These issues are due to a failure of the application to properly sanitize user-supplied input prior to using it to carry out critical actions...
PrestaShop - 'getSimilarManufacturer.php?id_manufacturer' SQL Injection
source: https://www.securityfocus.com/bid/67249/info PrestaShop is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to compromise the application, access or modify data...
Rhino - Cross-Site Scripting / Password Reset
source: https://www.securityfocus.com/bid/65628/info Rhino is prone to a cross-site scripting vulnerability and security-bypass vulnerability . An attacker can exploit these issues to execute arbitrary script code in the context of the vulnerable site, potentially allowing the attacker to steal...
Todoo Forum 2.0 - todooforum.php Multiple Cross-Site Scripting Vulnerabilities
Todoo Forum 2.0 - todooforum.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/59069/info Todoo Forum is prone to multiple SQL-injection and cross-site scripting vulnerabilities. Exploiting these issues could allow an attacker to steal cookie-based...
glFusion Multiple Cross-Site Scripting Vulnerabilities
glFusion is prone to multiple cross-site scripting vulnerabilities. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
jCore - adminindex.php?path Cross-Site Scripting
jCore - adminindex.php?path Cross-Site Scripting source: https://www.securityfocus.com/bid/56102/info jCore is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may exploit these issues to ste...
minimal Gallery - index.php Multiple Cross-Site Scripting Vulnerabilities
minimal Gallery - index.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/55577/info minimal Gallery is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues...
Extcalendar 2.0 - Multiple SQL Injections / HTML Injection Vulnerabilities
source: https://www.securityfocus.com/bid/55424/info ExtCalendar is prone to multiple SQL-injection vulnerabilities and an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting these issues may allow an attacker to compromise the application, acces...
Extcalendar 2.0 - Multiple SQL Injections HTML Injection Vulnerabilities
Extcalendar 2.0 - Multiple SQL Injections HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/55424/info ExtCalendar is prone to multiple SQL-injection vulnerabilities and an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied input. Exploitin...