CVE-2004-1599

CVE-2004-1599 concerns a Cross-site Scripting (XSS) vulnerability in CoolPHP 1.0-stable, exploitable via index.php using the query or nick parameters. The underlying issue is insufficient input handling in the affected script, allowing an attacker to inject and execute arbitrary web scripts/HTML ...

CVE-2004-2076

Cross-site scripting XSS vulnerability in search.php for Jelsoft vBulletin 3.0.0 RC4 allows remote attackers to inject arbitrary web script or HTML via the query parameter...

CVE-2004-2492

Cross-site scripting XSS vulnerability in Groupmax World Wide Web GmaxWWW Desktop 5, 6, and Desktop for Jichitai 6, allows remote attackers to inject arbitrary web script or HTML via the QUERY parameter...

[SA13285] JSPWiki "query" Parameter Cross-Site Scripting Vulnerability

TITLE: JSPWiki "query" Parameter Cross-Site Scripting Vulnerability SECUNIA ADVISORY ID: SA13285 VERIFY ADVISORY: http://secunia.com/advisories/13285/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: JSPWiki 2.x http://secunia.com/product/4310/ DESCRIPTION: Jeremy...

Psunami Bulletin Board 0.x - Psunami.cgi Remote Command Execution (2)

Psunami Bulletin Board 0.x - Psunami.cgi Remote Command Execution 2 source: https://www.securityfocus.com/bid/6607/info Psunami Bulletin Board is prone to a remote command execution vulnerability. Psunami does not sufficiently sanitize shell metacharacters from query string parameters. As a resul...

CVE-1999-1070

Buffer overflow in ping CGI program in Xylogics Annex terminal service allows remote attackers to cause a denial of service via a long query parameter...

Sambar Server 4.3/4.4 Beta 3 - Search CGI

source: https://www.securityfocus.com/bid/1684/info The Sambar Server was created to test a three-tier communication infrastructure modeled after the Sybase Open Client/Open Server. Soon thereafter, the idea of leveraging the infrastructure for dynamic delivery of content on the WWW resulted in t...