CVE-2005-3790

Multiple cross-site scripting XSS vulnerabilities in actnewsletter.php in phpwcms 1.2.5 allow remote attackers to inject arbitrary web script or HTML via the 1 i and 2 text parameters...

CVE-2005-3770

Multiple cross-site scripting XSS vulnerabilities in PHP-Post PHPp 1.0 allow remote attackers to inject arbitrary web script or HTML via 1 the subject in a post, or the user parameter to 2 profile.php and 3 mail.php...

CVE-2005-3759

CVE-2005-3759: Horde webmail suite prior to 3.0.7 contains cross-site scripting vulnerabilities in the MIME viewers (gzip/tar and css) that do not filter/escape HTML when displaying attachments. Affected products include Horde up to 3.0.7; Debian/SUSE advisories reference Horde3 with fixes in 3.0...

[Recommended]to uncover the virus-the mystery of DLL remote inject technical explanation-vulnerability warning-the black bar safety net

DLL remote injection technology is currently the Win32 virus is a widely used technology. Using this technique the virus body is usually located in a DLL, At system startup, an EXE program will the DLL be loaded to some system processes 如 Explorer.exe in the run. As a result, the ordinary Process...

DEBIAN-CVE-2005-3301

Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin before 2.6.4-pl3 allow remote attackers to inject arbitrary web script or HTML via certain arguments to 1 left.php, 2 queryframe.php, or 3 serverdatabases.php...

CVE-2005-2734

Cross-site scripting XSS vulnerability in Gallery 1.5.1-RC2 and earlier allows remote attackers to inject arbitrary web script or HTML via EXIF data, such as the Camera Model Tag...

CVE-2005-2588

Multiple cross-site scripting XSS vulnerabilities in DVBBS 7.1 SP2 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 the page parameter to dispbbs.asp, 2 name parameter to dispuser.asp, or the 3 title, 4 view, or 5 act parameter to boardhelp.asp...

CVE-2005-2430

Multiple cross-site scripting XSS vulnerabilities in GForge 4.5 allow remote attackers to inject arbitrary web script or HTML via the 1 forumid or 2 groupid parameter to forum.php, 3 projecttaskid parameter to task.php, 4 id parameter to detail.php, 5 the text field on the search page, 6 groupid...

CVE-2005-2397

Cross-site scripting XSS vulnerability in guestbook.php in phpBook 1.46 allows remote attackers to inject arbitrary web script or HTML via the admin parameter...

DEBIAN-CVE-2005-2396

Cross-site scripting XSS vulnerability in MediaWiki 1.4.6 and earlier allows remote attackers to inject arbitrary web script or HTML via a parameter to the page move template...

CVE-2005-2064

Multiple cross-site scripting vulnerabilities in ASP Nuke 0.80 allow remote attackers to inject arbitrary web script or HTML via the 1 email parameter to forgotpassword.asp, or the 2 FirstName, 3 LastName, 4 Username, 5 Password, 6 Address1, 7 Address2, 8 City, 9 ZipCode, 10 Email parameter to...

CVE-2003-1184

Multiple cross-site scripting XSS vulnerabilities in ThWboard Beta 2.8 and 2.81 allow remote attackers to inject arbitrary web script or HTML via 1 time in board.php, 2 the profile Homepage-Feld, 3 pictures, and 4 other "Diverse XSS Bugs."...

CVE-2005-1436

Multiple cross-site scripting XSS vulnerabilities in osTicket allow remote attackers to inject arbitrary web script or HTML via 1 the t parameter to view.php, 2 the ostickettitle parameter to header.php, 3 the em parameter to adminlogin.php, 4 the e parameter to userlogin.php, 5 the err parameter...

CVE-2005-0647

adminsetup.php in paNews 2.0.4b allows remote attackers to inject arbitrary PHP code via the 1 $formcomments or 2 $formautoapprove parameters, which are written to config.php...

CVE-2005-0995

Multiple cross-site scripting XSS vulnerabilities in ProductCart 2.7 allow remote attackers to inject arbitrary web script or HTML via 1 the keyword parameter to advSearchh.asp, 2 the redirectUrl parameter to NewCust.asp, 3 the country parameter to storelocatorsubmit.asp, or 4 the error parameter...

CVE-2005-0992

Cross-site scripting XSS vulnerability in index.php in phpMyAdmin before 2.6.2-rc1 allows remote attackers to inject arbitrary web script or HTML via the convcharset parameter...

CVE-2005-0934

CVE-2005-0934 involves multiple cross-site scripting (XSS) vulnerabilities in WackoWiki R4 . The connected records confirm the affected product and the vulnerability class, indicating that remote attackers can inject arbitrary web script or HTML through unknown vectors in the application. The und...

CVE-2005-0870

CVE-2005-0870 is a set of cross-site scripting flaws in phpsysinfo (phpSysInfo 2.3) when register_globals is enabled, allowing remote script/HTML injection via index.php (sensor_program) and system_footer.php (text[language], text[template], hide_picklist). Connected OpenVAS entries consolidate t...

CVE-2005-0548

Cross-site scripting XSS vulnerability in Solaris AnswerBook2 Documentation 1.4.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the Search function...

CVE-2005-0543

CVE-2005-0543 = cross-site scripting in phpMyAdmin 2.6.1. Vulnerable via parameters in select_server.lib.php (strServer, cfg[BgcolorOne], strServerChoice), display_tbl_links.lib.php (bg_color, row_no), left_font_family/theme_left.css.php, and right_font_family/theme_right.css.php. Causes remote H...