Cross site scripting

Cross-site scripting XSS vulnerability in the MailForm plugin before 1.20 for Movable Type allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2007-6751

The CVE-2007-6751 entry describes a cross-site scripting (XSS) vulnerability in the MailForm plugin for Movable Type, affecting versions before 1.20. The vulnerability allows remote attackers to inject arbitrary script or HTML via unspecified vectors, resulting in arbitrary script execution in a ...

CVE-2007-6751

Cross-site scripting XSS vulnerability in the MailForm plugin before 1.20 for Movable Type allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

Movable Type Plugin MailForm vulnerable to cross-site scripting

Overview MailForm contains a cross-site scripting vulnerability. MailForm is a plugin for Movable Type. MailForm contains a cross-site scripting vulnerability. Daiki Fukumori of Cyber Defense Institute, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under...

JVN#60887968: Movable Type Plugin MailForm vulnerable to cross-site scripting

MailForm is a plugin for Movable Type. MailForm contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. Solution Update the Software Update to the fixed version according to the information provided by the developer. Products Affected...

CVE-2010-4939

PHP remote file inclusion vulnerability in index.php in MailForm 1.2 allows remote attackers to execute arbitrary PHP code via a URL in the theme parameter...

Remote file inclusion

PHP remote file inclusion vulnerability in index.php in MailForm 1.2 allows remote attackers to execute arbitrary PHP code via a URL in the theme parameter...

CVE-2010-4939

CVE-2010-4939 is a PHP remote file inclusion vulnerability affecting MailForm 1.2 (index.php). The underlying issue is unsafe handling of the theme parameter, allowing an attacker to include a URL and execute arbitrary PHP code on the server. CVSS v2 base score is 7.5 (HIGH) with network access, ...

CVE-2010-4939

PHP remote file inclusion vulnerability in index.php in MailForm 1.2 allows remote attackers to execute arbitrary PHP code via a URL in the theme parameter...

MailForm 1.2 Remote File Inclusion

Exploit Title: MailForm Remote File Include Date: 14-8-2010 Author: LoSt.HaCkEr / aDaMTRoJaN Software Link: http://scripts.bdr130.net/files/any/MailForm.zip Version: v 1.2 Tested on: Windows XP CVE : هكر المسيب Contact: LoSt.HaCkEratyahoodotcom /0r/ [email protected]...

MailForm 1.2 - Remote File Inclusion

MailForm 1.2 - Remote File Inclusion Exploit Title: MailForm Remote File Include Date: 14-8-2010 Author: LoSt.HaCkEr / aDaMTRoJaN Software Link: http://scripts.bdr130.net/files/any/MailForm.zip Version: v 1.2 Tested on: Windows XP CVE : هكر المسيب Contact: LoSt.HaCkEratyahoodotcom /0r/ ...

MailForm 1.2 - Remote File Inclusion

Exploit Title: MailForm Remote File Include Date: 14-8-2010 Author: LoSt.HaCkEr / aDaMTRoJaN Software Link: http://scripts.bdr130.net/files/any/MailForm.zip Version: v 1.2 Tested on: Windows XP CVE : هكر المسيب Contact: LoSt.HaCkEratyahoodotcom /0r/ [email protected]...

MailForm 1.2 Remote File Include Vulnerability

Exploit for php platform in category web applications ============================================== MailForm 1.2 Remote File Include Vulnerability ============================================== Exploit Title: MailForm Remote File Include Date: 14-8-2010 Author: LoSt.HaCkEr / aDaMTRoJaN Software...

Cross site scripting

Cross-site scripting XSS vulnerability in the Mailform mailform extension before 0.9.24 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2009-4706

Cross-site scripting XSS vulnerability in the Mailform mailform extension before 0.9.24 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2009-4706

Cross-site scripting XSS vulnerability in the Mailform mailform extension before 0.9.24 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2009-4706

The CVE-2009-4706 issue is an XSS vulnerability in the TYPO3 Mailform extension prior to version 0.9.24. The affected component is Mailform (extension for TYPO3); the root cause is not specified in the provided documents beyond generic XSS in the extension. Impact per sources is remote arbitrary ...

CVE-2007-0610

Cross-site scripting XSS vulnerability in the mailform feature in CMSimple 2.7 fix1 allows remote attackers to inject arbitrary web script or HTML via the sender parameter. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information...

CVE-2000-0877

CVE-2000-0877 concerns the MailForm 2.0 product, specifically the mailform.pl CGI script. The vulnerability allows remote attackers to read arbitrary files by supplying a filename in the XX-attach_file parameter, which MailForm then sends to the attacker. The issue directly concerns the confident...

CVE-2000-0877

mailform.pl CGI script in MailForm 2.0 allows remote attackers to read arbitrary files by specifying the file name in the XX-attachfile parameter, which MailForm then sends to the attacker...