WordPress User List Table Cross-Site Scripting Vulnerability

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Software Foundation. WordPress fails to adequately filter user-submitted input, allowing remote attackers to exploit vulnerabilities to inject malicious scripts or HTML code that can capture sensitive...

Winmail Server 'badlogin.php' Cross-Site Scripting Vulnerability

Winmail Server is a set of mail server software. A cross-site scripting vulnerability exists in Winmail Server badlogin.php, which allows remote attackers to exploit the vulnerability to inject malicious script or HTML code, which can be used to gain access to sensitive information or hijack user...

IBM Domino Server Cross-Site Scripting Vulnerability (CNVD-2015-05521)

The IBM Lotus Domino server is a WEB-based collaborative application architecture. A cross-site scripting vulnerability exists in IBM Domino Server, which allows remote attackers to exploit the vulnerability to inject malicious script or HTML code that can be used to obtain sensitive information ...

SITEFACT '/index.cfm' Cross-Site Scripting Vulnerability

SITEFACT is an open source content management system. SITEFACT '/index.cfm' suffers from a cross-site scripting vulnerability that allows remote attackers to exploit the vulnerability to inject malicious script or HTML code, which can be used to gain access to sensitive information or hijack user...

Unspecified Cross-Site Scripting Vulnerability in PHPWind

PHPWind is a set of PHP-based Web forum program . PHPWind suffers from a cross-site scripting vulnerability that allows remote attackers to exploit the vulnerability to inject malicious script or HTML code, which can be used to obtain sensitive information or hijack user sessions when malicious...

Avsarsoft Matbaa Script Cross-Site Scripting Vulnerability

Avsarsoft Matbaa Script is a WEB-based script. Avsarsoft Matbaa Script suffers from a cross-site scripting vulnerability that allows remote attackers to exploit the vulnerability to inject malicious script or HTML code, which can be used to gain access to sensitive information or hijack user...

Drupal Current Search Links Module Cross-Site Scripting Vulnerability

Drupal is a free and open source content management system developed in PHP. A cross-site scripting vulnerability exists in Drupal Current Search Links, which allows remote attackers to exploit the vulnerability to inject malicious script or HTML code, which can be used to obtain sensitive...

Unspecified cross-site scripting vulnerability in Nagios Business Process Intelligence (BPI) index.php

Nagios is an open source free network monitoring tool , can effectively monitor Windows, Linux and Unix host status , switches routers and other network settings , printers and so on. Nagios Business Process Intelligence index.php cross-site scripting vulnerability , allowing remote attackers to...

Multiple Cross-Site Scripting Vulnerabilities in ocPortal

ocPortal is a content management system. Multiple cross-site scripting vulnerabilities exist in ocPortal. The vulnerabilities can be exploited to allow remote attackers to inject malicious script or HTML code, which can be used to obtain sensitive information or hijack user sessions when maliciou...

IBM WebSphere Portal Cross-Site Scripting Vulnerability (CNVD-2015-01273)

IBM WebSphere Portal provides a framework for combining application or business mashups and provides a high-level tool to construct flexible, SOA-based solutions. A cross-site scripting vulnerability exists in IBM WebSphere Portal, which allows remote attackers to exploit the vulnerability to...

CVE-2011-4969

Cross-site scripting XSS vulnerability in jQuery before 1.6.3, when using location.hash to select elements, allows remote attackers to inject arbitrary web script or HTML via a crafted tag...

Mozilla SeaMonkey Multiple Vulnerabilities-02 November12 (Windows)

This host is installed with Mozilla Seamonkey and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbmozillaseamonkeymultvuln02nov12win.nasl 5999 2017-04-21 09:02:32Z teissa $ Mozilla SeaMonkey Multiple Vulnerabilities-02 November12 Windows Authors: Arun Kallavi Copyright:...

Mozilla SeaMonkey Multiple Vulnerabilities-02 November12 (Mac OS X)

This host is installed with Mozilla Seamonkey and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbmozillaseamonkeymultvuln02nov12macosx.nasl 6074 2017-05-05 09:03:14Z teissa $ Mozilla SeaMonkey Multiple Vulnerabilities-02 November12 Mac OS X Authors: Arun Kallavi Copyright...

Mozilla Seamonkey Multiple Vulnerabilities - November12 (Mac OS X)

This host is installed with Mozilla Seamonkey and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbmozillaseamonkeymultvulnnov12macosx.nasl 6074 2017-05-05 09:03:14Z teissa $ Mozilla Seamonkey Multiple Vulnerabilities - November12 Mac OS X Authors: Arun Kallavi Copyright:...

Mozilla Firefox Multiple Vulnerabilities - July12 (Windows)

This host is installed with Mozilla firefox and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbmozillafirefoxmultvulnjul12win.nasl 6018 2017-04-24 09:02:24Z teissa $ Mozilla Firefox Multiple Vulnerabilities - July12 Windows Authors: Rachana Shetty Copyright: Copyright c...

Mozilla Firefox Multiple Vulnerabilities - July12 (Mac OS X)

This host is installed with Mozilla firefox and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbmozillafirefoxmultvulnjul12macosx.nasl 5963 2017-04-18 09:02:14Z teissa $ Mozilla Firefox Multiple Vulnerabilities - July12 Mac OS X Authors: Rachana Shetty Copyright: Copyright...

CVE-2011-5074

Multiple cross-site request forgery CSRF vulnerabilities in Support Incident Tracker aka SiT! before 3.65 allow remote attackers to hijack the authentication of administrators for requests that change administrator email, add a new administrator, or insert arbitrary script via 1 userprofileedit.p...

CVE-2008-5249

Cross-site scripting XSS vulnerability in MediaWiki 1.13.0 through 1.13.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2005-0303

Multiple cross-site scripting XSS vulnerabilities in 1 comersussupportError.asp or 2 comersusbackofficelitesupportError.asp in BackOffice Lite 6.0 and 6.01 allow remote attackers to inject arbitrary web script or HTML via the error parameter...

CVE-2004-1418

Cross-site scripting XSS vulnerability in WPKontakt 3.0.1 and earlier allows remote attackers to inject arbitrary web script or HTML via an e-mail address, which is not quoted when a parsing error is generated...