Mandrake Linux Security Advisory : mozilla (MDKSA-2005:128)

A number of vulnerabilities were reported and fixed in Mozilla 1.7.9. The following vulnerabilities have been backported and patched for this update : In several places the browser UI did not correctly distinguish between true user events, such as mouse clicks or keystrokes, and synthetic events...

IceWarp Web Mail 5.5.1 - calendar_d.html?createdataCX Cross-Site Scripting

IceWarp Web Mail 5.5.1 - calendard.html?createdataCX Cross-Site Scripting source: https://www.securityfocus.com/bid/14980/info IceWarp is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An...

IceWarp Web Mail 5.5.1 - calendar_w.html?createdataCX Cross-Site Scripting

IceWarp Web Mail 5.5.1 - calendarw.html?createdataCX Cross-Site Scripting source: https://www.securityfocus.com/bid/14980/info IceWarp is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An...

CubeCart 3.0.3 - 'cart.php?redir' Cross-Site Scripting

source: https://www.securityfocus.com/bid/14962/info CubeCart is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issues to have arbitrary script code execut...

LucidCMS 2.0 - index.php Cross-Site Scripting

LucidCMS 2.0 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/14951/info lucidCMS is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have...

LucidCMS 2.0 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/14951/info lucidCMS is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of ...

CMS Made Simple 0.10 - index.php Cross-Site Scripting

CMS Made Simple 0.10 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/14937/info CMS Made Simple is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this...

vBulletin 1.0.1 lite/2.x/3.0 - '/admincp/css.php?group' Cross-Site Scripting

source: https://www.securityfocus.com/bid/14874/info vBulletin is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issues to have arbitrary script code...

vBulletin 1.0.1 lite2.x3.0 - admincpindex.php Multiple Cross-Site Scripting Vulnerabilities

vBulletin 1.0.1 lite2.x3.0 - admincpindex.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/14874/info vBulletin is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize...

MAXdev MD-Pro 1.0.73 - Multiple Cross-Site Scripting Vulnerabilities

MAXdev MD-Pro 1.0.73 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/14751/info MAXdev MD-Pro is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An...

PHPMyFAQ 1.5.1 - Local File Inclusion

source: https://www.securityfocus.com/bid/14929/info PHPMyFAQ is prone to a local file include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary server-side script code that resides o...

Land Down Under 800 - index.php Multiple Cross-Site Scripting Vulnerabilities

Land Down Under 800 - index.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/14619/info Land Down Under is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied...

Land Down Under 800 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/14619/info Land Down Under is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issues to have arbitrary script code...

PHPTB Topic Board 2.0 - dev_o.php?absolutepath Remote File Inclusion

PHPTB Topic Board 2.0 - devo.php?absolutepath Remote File Inclusion source: https://www.securityfocus.com/bid/14592/info PHPTB is prone to multiple remote file include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may...

PHPTB Topic Board 2.0 - board_o.php?absolutepath Remote File Inclusion

PHPTB Topic Board 2.0 - boardo.php?absolutepath Remote File Inclusion source: https://www.securityfocus.com/bid/14592/info PHPTB is prone to multiple remote file include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may...

PHPTB Topic Board 2.0 - 'board_o.php?absolutepath' Remote File Inclusion

source: https://www.securityfocus.com/bid/14592/info PHPTB is prone to multiple remote file include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issues to execute arbitrary server-side script...

FunkBoard 0.66 - prefs.php Multiple Cross-Site Scripting Vulnerabilities

FunkBoard 0.66 - prefs.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/14507/info FunkBoard is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An...

SysCP 1.2.x - Multiple Script Execution Vulnerabilities

SysCP 1.2.x - Multiple Script Execution Vulnerabilities source: https://www.securityfocus.com/bid/14490/info SysCP is affected by multiple script execution vulnerabilities. The following specific vulnerabilities were identified: The application is affected by a remote file include vulnerability. ...

SysCP 1.2.x - Multiple Script Execution Vulnerabilities

source: https://www.securityfocus.com/bid/14490/info SysCP is affected by multiple script execution vulnerabilities. The following specific vulnerabilities were identified: The application is affected by a remote file include vulnerability. An attacker can include remote script code and execute i...

Jax PHP Scripts 1.0/1.34/2.14/3.31 - 'shrimp_petition.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/14481/info Jax PHP Scripts are affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure in the applications to properly sanitize user-supplied input. An attacker may leverage any of these issues to have arbitrary script...