XSS vulnerability in WebPress

Vulnerability ID: HTB22480 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinwebpress2.html Product: WebPress Vendor: YWP http://www.goywp.com/ Vulnerable Version: Current at 01.07.2010 and Probably Prior Versions Vendor Notification: 01 July 2010 Vulnerability Type: XSS Cross Site...

PHPFaber CMS 2.0.5 Cross Site Scripting

Author: prodigy Date found: 4/07/2010 Software: PHPFaber Content Management System Vendor: www.phpfaber.com version: 2.0.5 Vulnerability founded: Multiple XSS Vulnerabilities Risk: Medium Impact: Malicious attackers can run javascript code into the page to perform phising attacks and cookie...

XSS vulnerability in Scribe CMS

Vulnerability ID: HTB22420 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinscribecms.html Product: Scribe CMS Vendor: Sigmer Technologies Vulnerable Version: Current at 03.06.2010 and Probably Prior Versions Vendor Notification: 07 June 2010 Vulnerability Type: XSS Cross Site Scripti...

CuteSITE CMS 1.5.0 Cross Site Scripting

Vulnerability ID: HTB22397 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityincutesitecms.html Product: CuteSITE CMS Vendor: AMT Company Vulnerable Version: 1.5.0 and Probably Prior Versions Vendor Notification: 20 May 2010 Vulnerability Type: XSS Cross Site Scripting Status: Not Fixed,...

boastMachine 3.1 Cross Site Scripting

Vulnerability ID: HTB22399 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinboastmachine.html Product: boastMachine Vendor: Kailash Nadh Vulnerable Version: 3.1 and Probably Prior Versions Vendor Notification: 20 May 2010 Vulnerability Type: XSS Cross Site Scripting Status: Not Fixed,...

Mozilla Firefox 'IFRAME' Denial Of Service vulnerability (Windows)

The host is installed with Mozilla Firefox browser and is prone to Denial of Service vulnerability. OpenVAS Vulnerability Test $Id: gbmozillafirefoxiframedosvulnwin.nasl 5323 2017-02-17 08:49:23Z teissa $ Mozilla Firefox 'IFRAME' Denial Of Service vulnerability Windows Authors: Antu Sanadi...

Microsoft Internet Explorer 'IFRAME' Denial Of Service Vulnerability (Jun 2010)

Internet Explorer is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2010-2119

The CVE-2010-2119 entry concerns Microsoft Internet Explorer 6.0.2900.2180, where JavaScript code that loops infinitely to create IFRAME elements for invalid nntp:// URIs can cause a denial of service through resource consumption. Connected sources corroborate a DoS condition in IE triggered by i...

360 Web Manager 3.0 Cross Site Scripting

Vulnerability ID: HTB22377 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityin360webmanager.html Product: 360 Web Manager Vendor: 360 Web Manager Vulnerable Version: 3.0 Vendor Notification: 10 May 2010 Vulnerability Type: XSS Cross Site Scripting Status: Not Fixed, Vendor Alerted,...

Google Chrome 'IFRAME' Denial Of Service Vulnerability

This host is installed with Google Chrome and is prone to Denial Of Service vulnerability. OpenVAS Vulnerability Test $Id: secpodgooglechromeiframedosvuln.nasl 5394 2017-02-22 09:22:42Z teissa $ Google Chrome 'IFRAME' Denial Of Service Vulnerability Authors: Antu Sanadi Updated By: Madhuri D on...

RazorCMS 1.0 - '/admin/index.php' HTML Injection

source: https://www.securityfocus.com/bid/40373/info razorCMS is prone to an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied data. Attacker-supplied HTML or JavaScript code could run in the context of the affected site, potentially allowing the attacker to ste...

RazorCMS 1.0 - adminindex.php HTML Injection

RazorCMS 1.0 - adminindex.php HTML Injection source: https://www.securityfocus.com/bid/40373/info razorCMS is prone to an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied data. Attacker-supplied HTML or JavaScript code could run in the context of the affected...

XSS vulnerability in LiSK CMS

Vulnerability ID: HTB22372 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinproduct.html Product: LiSK CMS Vendor: Createch-group Vulnerable Version: 4.4 Vendor Notification: 05 May 2010 Vulnerability Type: XSS Cross Site Scripting Status: Not Fixed, Vendor Alerted, Awaiting Vendor...

Design/Logic Flaw

Mozilla Firefox 3.6.3 on Windows XP SP3 allows remote attackers to cause a denial of service memory consumption and application crash via JavaScript code that creates multiple arrays containing elements with long string values, and then appends long strings to the content of a P element, related ...

CVE-2010-1988

Mozilla Firefox 3.6.3 on Windows XP SP3 allows remote attackers to cause a denial of service NULL pointer dereference and application crash or possibly execute arbitrary code via JavaScript code that performs certain string concatenation and substring operations, a different vulnerability than...

NPDS REvolution Cross Site Scripting

Vulnerability ID: HTB22363 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinnpds.html Product: NPDS REvolution Vendor: NPDS Vulnerable Version: REvolution 10.02 and Probably Prior Versions Vendor Notification: 29 April 2010 Vulnerability Type: XSS Cross Site Scripting Status: Not Fixe...

VMware Portal 3.1 Cross Site Scripting

DSECRG-09-058 Vmware View - XSS vulnerability Linked XSS in VMware Portal Digital Security Research Group DSecRG Advisory DSECRG-09-058 Application: VMware View Portal Versions Affected: alert/XSS/.source Solution Update VmWare View to version 3.1.3 References...

Saurus CMS 4.7.0 Cross Site Scripting

Vulnerability ID: HTB22361 Reference: http://www.htbridge.ch/advisory/xssinsauruscms.html Product: Saurus CMS Community Editon Vendor: Saurused Ltd Vulnerable Version: 4.7.0 Vendor Notification: 27 April 2010 Vulnerability Type: XSS Cross Site Scripting Status: Not Fixed, Vendor Alerted, Awaiting...

XSS vulnerability in EasyPublish CMS

Vulnerability ID: HTB22356 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityineasypublishcms.html Product: EasyPublish CMS Vendor: Escio AS Vulnerable Version: Current at 23.04.2010 and Probably Prior Versions Vendor Notification: 23 April 2010 Vulnerability Type: XSS Cross Site Scripti...

Acuity CMS 2.6.2 Cross Site Scripting

Vulnerability ID: HTB22352 Reference: http://www.htbridge.ch/advisory/xssinacuitycms.html Product: Acuity CMS asp version Vendor: The Collective Vulnerable Version: 2.6.2 ASP and Probably Prior Versions Vendor Notification: 19 April 2010 Vulnerability Type: XSS Cross Site Scripting Status: Not...