354 matches found
CVE-2006-2988
Cross-site scripting XSS vulnerability in dictionary.php in Chemical Dictionary allows remote attackers to inject arbitrary web script or HTML via the keyword parameter in a browse action...
CVE-2006-2988
Cross-site scripting XSS vulnerability in dictionary.php in Chemical Dictionary allows remote attackers to inject arbitrary web script or HTML via the keyword parameter in a browse action...
Sql injection
SQL injection vulnerability in searchresult.asp in EDirectoryPro 2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the keyword parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information...
CVE-2006-2189
SQL injection vulnerability in search.php in Servous sBLOG 0.7.2 allows remote attackers to execute arbitrary SQL commands via the keyword parameter. NOTE: this issue can be used to trigger path disclosure. In addition, it might be primary to vector 1 in CVE-2006-1135...
Sql injection
SQL injection vulnerability in search.php in Servous sBLOG 0.7.2 allows remote attackers to execute arbitrary SQL commands via the keyword parameter. NOTE: this issue can be used to trigger path disclosure. In addition, it might be primary to vector 1 in CVE-2006-1135...
CVE-2006-1889
Cross-site scripting XSS vulnerability in the search action handler in index.php in Nils Asmussen aka SCRIPTSOLUTION Boardsolution 1.12 and earlier allows remote attackers to inject arbitrary web script or HTML via the "Search for" item keyword parameter...
CVE-2006-0122
Cross-site scripting XSS vulnerability in Public/Index.asp in Aquifer CMS allows remote attackers to inject arbitrary web script or HTML via the Keyword parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in Public/Index.asp in Aquifer CMS allows remote attackers to inject arbitrary web script or HTML via the Keyword parameter...
CVE-2006-0122
Cross-site scripting XSS vulnerability in Public/Index.asp in Aquifer CMS allows remote attackers to inject arbitrary web script or HTML via the Keyword parameter...
CVE-2005-4571
Cross-site scripting XSS vulnerability in myEZshop Shopping Cart allows remote attackers to inject arbitrary web script or HTML via the Keyword parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2005-4571
Cross-site scripting XSS vulnerability in myEZshop Shopping Cart allows remote attackers to inject arbitrary web script or HTML via the Keyword parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2005-4571
The provided documents confirm a Cross-site scripting (XSS) vulnerability in the myEZshop Shopping Cart . The issue allows remote attackers to inject arbitrary web script or HTML via the Keyword parameter. No explicit root cause or vulnerable version is stated in the sources; the impact is limite...
CVE-2005-4420
Cross-site scripting XSS vulnerability in Honeycomb Archive Enterprise 3.0 allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters, possibly the keyword parameter in search.cfm...
sBLOG <= 0.7.2 search.php keyword Parameter SQL Injection
Binary data 3528.prm...