Task Manager Pro <= 1.3.1 - Authenticated Cross-Site Scripting (XSS)

Multiple authenticated XSS vulnerabilities found logged as a low privileged user. PoC Authenticated Stored XSS: Logged as a follower, the lowest privileged user. Write the payload in the 'Add a comment' section Authenticated Reflected XSS On task-edit, task-details, project-details pages:...

PT-2014-3366 · Vtiger · Vtiger Crm

Name of the Vulnerable Software and Affected Versions: vTiger CRM version 5.4.0 Description: A cross-site scripting XSS issue allows remote attackers to inject arbitrary web script or HTML. This can be achieved via the return url parameter to the "modulescom vtiger workflowsavetemplate.php"...

Sql injection

SQL injection vulnerability in the commezun component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in an edit task...

CVE-2006-3958

Multiple unspecified cross-site scripting XSS vulnerabilities in Taskjitsu 2.0.3 allow remote attackers to inject arbitrary web script or HTML via 1 the Search Tasks system, or authenticated users via 2 the Edit Task system, 3 the back-end Category Editor system, and 4 "Pages that display task...

CVE-2006-3958

Multiple unspecified cross-site scripting XSS vulnerabilities in Taskjitsu 2.0.3 allow remote attackers to inject arbitrary web script or HTML via 1 the Search Tasks system, or authenticated users via 2 the Edit Task system, 3 the back-end Category Editor system, and 4 "Pages that display task...