OpenDocMan 1.2.5 - 'view_file.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/36777/info OpenDocMan is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based...

OpenDocMan 1.2.5 - 'search.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/36777/info OpenDocMan is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based...

OpenDocMan 1.2.5 - 'profile.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/36777/info OpenDocMan is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based...

OpenDocMan 1.2.5 xss SQL injection

No description provided by source. Security Advisory : Multiple vulnerabilities in OpenDocMan Discovered by == Amol Naik amolnaik4atgmail.com Overview -------------- OpenDocMan is a free document management system DMS designed to comply with ISO 17025 and OIE standard for document management. It...

OpenDocMan 1.2.5 xss SQL injection

No description provided by source. Security Advisory : Multiple vulnerabilities in OpenDocMan Discovered by == Amol Naik amolnaik4atgmail.com Overview -------------- OpenDocMan is a free document management system DMS designed to comply with ISO 17025 and OIE standard for document management. It...

OpenDocMan 1.2.5 - Cross-Site Scripting SQL Injection

OpenDocMan 1.2.5 - Cross-Site Scripting SQL Injection Security Advisory : Multiple vulnerabilities in OpenDocMan Discovered by == Amol Naik amolnaik4atgmail.com Overview -------------- OpenDocMan is a free document management system DMS designed to comply with ISO 17025 and OIE standard for...

OpenDocMan 1.2.5 xss, SQL injection

Exploit for unknown platform in category web applications =================================== OpenDocMan 1.2.5 xss, SQL injection =================================== Security Advisory : Multiple vulnerabilities in OpenDocMan Overview -------------- OpenDocMan is a free document management system...

OpenDocMan 1.2.5 - Cross-Site Scripting / SQL Injection

Security Advisory : Multiple vulnerabilities in OpenDocMan Discovered by == Amol Naik amolnaik4atgmail.com Overview -------------- OpenDocMan is a free document management system DMS designed to comply with ISO 17025 and OIE standard for document management. It features web based access, fine...

CVE-2008-2787

Cross-site scripting XSS vulnerability in out.php in OpenDocMan 1.2.5 allows remote attackers to inject arbitrary web script or HTML via the lastmessage parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in out.php in OpenDocMan 1.2.5 allows remote attackers to inject arbitrary web script or HTML via the lastmessage parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in index.php in OpenDocMan 1.2.5 allows remote attackers to inject arbitrary web script or HTML via the redirection parameter...

CVE-2008-2788

Cross-site scripting XSS vulnerability in index.php in OpenDocMan 1.2.5 allows remote attackers to inject arbitrary web script or HTML via the redirection parameter...

CVE-2008-2788

Cross-site scripting XSS vulnerability in index.php in OpenDocMan 1.2.5 allows remote attackers to inject arbitrary web script or HTML via the redirection parameter...

CVE-2008-2787

Cross-site scripting XSS vulnerability in out.php in OpenDocMan 1.2.5 allows remote attackers to inject arbitrary web script or HTML via the lastmessage parameter...

CVE-2008-2787

CVE-2008-2787 is an XSS vulnerability in OpenDocMan 1.2.5 (out.php) allowing remote injection of script/HTML via the last_message parameter. Documented impact is remote script/HTML execution; the connected documents do not provide a patch/versioned fix.

CVE-2008-2788

Cross-site scripting XSS vulnerability in index.php in OpenDocMan 1.2.5 allows remote attackers to inject arbitrary web script or HTML via the redirection parameter...

CVE-2008-2788

CVE-2008-2788 is an XSS vulnerability affecting OpenDocMan 1.2.5, reported in multiple sources. The issue resides in index.php, where the redirection parameter can be exploited by remote attackers to inject arbitrary web script or HTML. The vulnerability is described consistently across CVE recor...

CVE-2008-2787

Cross-site scripting XSS vulnerability in out.php in OpenDocMan 1.2.5 allows remote attackers to inject arbitrary web script or HTML via the lastmessage parameter...

[Full-disclosure] S21SEC-044-en:OpenDocMan Cross Site Scripting (XSS)

S21Sec Advisory - Title: OpenDocMan Cross Site Scripting XSS ID: S21sec-044-en Severity: Low History: 15.Apr.2008 Vulnerability discovered 16.Apr.2008 Vendor contacted 27.May.2008 Patch available Scope: Cross Site Scripting XSS Platforms: Any Author: Sergi Rosell [email protected] URL:...

OpenDocMan 1.x - out.php Cross-Site Scripting

OpenDocMan 1.x - out.php Cross-Site Scripting source: https://www.securityfocus.com/bid/29765/info OpenDocMan is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script co...