Visale 1.0 pbpgst.cgi keyval Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/17598/info Visale is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have...

NetFlow Analyzer 4 Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/15127/info NetFlow Analyzer 4 is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have...

Microsoft Internet Explorer 6.0 File Attachment Script Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5450/info An error has been reported in Microsoft Internet Explorer 6, which may allow malicious file attachments to execute arbitrary code in the context of the local system. HTM files are associated with Internet...

Artmedic Newsletter 4.1 Log.PHP Remote Script Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/18047/info Artmedic Newsletter is prone to a remote PHP code-execution vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to creat...

PHPBB 2.0.x Viewtopic.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13345/info phpBB is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script...

ATutor 1.4.3 directory.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/13972/info ATutor is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issues to...

iDevSpot iSupport 1.8 'index.php' Local File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/26961/info iSupport is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. Exploiting this issue may allow an unauthorized user to view files and execute local scripts...

Mantis 0.19 Remote Server-Side Script Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10993/info Mantix is reportedly susceptible to a remote server-side script execution vulnerability. This vulnerability only presents itself when PHP is configured on the hosting computer with 'registerglobals = on'. When...

Pre Classified Listings 1.0 'signup.asp' Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/32567/info Pre Classified Listings is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the...

Apple QuickTime 7.1.3 Plug-In Arbitrary Script Execution Weakness

No description provided by source. source: http://www.securityfocus.com/bid/20138/info Apple QuickTime plug-in is prone to an arbitrary-script-execution weakness when executing QuickTime Media Link files .qtl. An attacker can exploit this issue to execute arbitrary script code in the context of t...

Spyce 2.1.3 docs/examples/handlervalidate.spy x Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/27898/info Spyce is prone to multiple input-validation vulnerabilities that can lead to information disclosure or client-side script execution. An attacker may leverage these issues to execute arbitrary script code in the...

myPHPNuke 1.8.8 Links.php Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6892/info Reportedly, myPHPNuke 'links.php' does not adequately filter HTML code thus making it prone to cross-site scripting attacks. It is possible for a remote attacker to create a malicious link containing script code...

Apple Mac OS X 10.4 Weblog Server Cross-Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/14569/info Apple Mac OS X Weblog Server is prone to cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issue...

OpenBiblio 0.x staff_del_confirm.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/27053/info OpenBiblio is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. The issues include SQL-injection, cross-site scripting, HTML-injection, and local...

SourceBans 1.4.7 XSS Vulnerability

No description provided by source. Exploit Title: SourceBans Version 1.4.7 XSS Google Dork: inurl:sourcebans/index.php?p=submit Date: Feb. 9th 2011 Author: Sw1tCh Software Link: http://www.sourcebans.net/ Version: 1.4.7 Info: SourceBans is an application for managing publicly the banned users for...

Adobe IndesignServer 5.5 SOAP Server Arbitrary Script Execution

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

EmuMail 5.0 Email Form Script Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5824/info Emumail is an open source web mail application. It is available for the Unix, Linux, and Microsoft Windows operating systems. It has been reported that EmuMail does not properly sanitize input. Under some...

PerlDesk Language Variable Server-Side Script Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11160/info It is reported that PerlDesk is susceptible to a server-side script execution vulnerability. This vulnerability may be exploited to execute the contents of Perl scripts contained on the affected server...

ESTsoft InternetDisk Arbitrary File Upload and Script Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/18279/info ESTsoft InternetDisk is prone to an arbitrary file-upload and script-execution vulnerability. An attacker can exploit this vulnerability to upload arbitrary code and execute it in the context of the webserver...

Wirtualna Polska WPKontakt 3.0.1 - Remote Script Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/12097/info WPKontakt is reported prone to a potential script execution vulnerability. It is reported that this issue may allow remote attackers to execute arbitrary script code on a vulnerable computer, which may lead to...