ProfitCode Software PayProCart 3.0 - AdminShop MMActionComm Cross-Site Scripting

ProfitCode Software PayProCart 3.0 - AdminShop MMActionComm Cross-Site Scripting source: https://www.securityfocus.com/bid/13309/info PayProCart is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacke...

ProfitCode Software PayProCart 3.0 - AdminShop HDoc Cross-Site Scripting

ProfitCode Software PayProCart 3.0 - AdminShop HDoc Cross-Site Scripting source: https://www.securityfocus.com/bid/13305/info PayProCart is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may...

ProfitCode Software PayProCart 3.0 - AdminShop HDoc Cross-Site Scripting

source: https://www.securityfocus.com/bid/13305/info PayProCart is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser o...

CVE-2005-1191

Summary : CVE-2005-1191 affects the Web View DLL (webvw.dll) used by Windows Explorer on Windows 2000. The flaw arises from insufficient validation of the Author field in file metadata, allowing an attacker to craft a name that, when Web View creates a mailto: link in the preview pane, results in...

CityPost PHP Image Editor M1M2M3ImgsrcM4 - URI Cross-Site Scripting

CityPost PHP Image Editor M1M2M3ImgsrcM4 - URI Cross-Site Scripting source: https://www.securityfocus.com/bid/13256/info source: https://www.securityfocus.com/bid/13257/info source: https://www.securityfocus.com/bid/13258/info source: https://www.securityfocus.com/bid/13259/info source:...

OneWorldStore - DisplayResults.asp Cross-Site Scripting

OneWorldStore - DisplayResults.asp Cross-Site Scripting source: https://www.securityfocus.com/bid/13251/info OneWorldStore is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this...

MVNForum 1.0 - Search Cross-Site Scripting

MVNForum 1.0 - Search Cross-Site Scripting source: https://www.securityfocus.com/bid/13213/info mvnForum is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have...

MVNForum 1.0 - Search Cross-Site Scripting

source: https://www.securityfocus.com/bid/13213/info mvnForum is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of ...

RSA Security RSA Authentication Agent For Web 5.2 - Cross-Site Scripting

RSA Security RSA Authentication Agent For Web 5.2 - Cross-Site Scripting source: https://www.securityfocus.com/bid/13168/info A remote cross-site scripting vulnerability affects the RSA Security RSA Authentication Agent for Web. This issue is due to a failure of the application to properly saniti...

Microsoft Windows - HTA Script Execution (MS05-016)

Microsoft Windows - HTA Script Execution MS05-016 / Changed date in db to place it on the main page instead of it being bumped off /str0ke / /++ MS05-016 POC Made By ZwelL [email protected] 2005.4.13 All information from : http://www.securityfocus.net/archive/1/395563/2005-04-10/2005-04-16/0 You nee...

OneWorldStore - OWListProduct.asp Cross-Site Scripting

OneWorldStore - OWListProduct.asp Cross-Site Scripting source: https://www.securityfocus.com/bid/13185/info OneWorldStore is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this iss...

All4WWW-HomePageCreator 1.0 - index.php Remote File Inclusion

All4WWW-HomePageCreator 1.0 - index.php Remote File Inclusion source: https://www.securityfocus.com/bid/13169/info All4WWW-Homepagecreator is affected by an arbitrary remote file include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input befo...

Microsoft Windows - 'HTA' Script Execution (MS05-016)

/ Changed date in db to place it on the main page instead of it being bumped off /str0ke / /++ MS05-016 POC Made By ZwelL [email protected] 2005.4.13 All information from : http://www.securityfocus.net/archive/1/395563/2005-04-10/2005-04-16/0 You need make a .hta file to use it. Like: set...

iDEFENSE Security Advisory 04.12.05: Microsoft MSHTA Script Execution Vulnerability

Microsoft MSHTA Script Execution Vulnerability iDEFENSE Security Advisory 04.12.05 www.idefense.com/application/poi/display?id=231&type=vulnerabilities April 12, 2005 I. BACKGROUND Microsoft HTML Application Host MSHTA is part of the Microsoft Windows operating system and is needed to execute .HT...

Comersus Cart 4.05.0 - Comersus_Search_Item.asp Cross-Site Scripting

Comersus Cart 4.05.0 - ComersusSearchItem.asp Cross-Site Scripting source: https://www.securityfocus.com/bid/13125/info Comersus Cart is affected by a cross-site scripting vulnerability. This issue is due to a failure in the application to properly validate user-supplied input. An attacker may...

XAMPP - 'Phonebook.php' Multiple Remote HTML Injection Vulnerabilities

source: https://www.securityfocus.com/bid/13127/info XAMPP is prone to multiple remote HTML-injection vulnerabilities because the software fails to properly sanitize user-supplied input before including it in dynamically generated web content. An attacker may leverage these issues to execute...

Comersus Cart 4.0/5.0 - 'Comersus_Search_Item.asp' Cross-Site Scripting

source: https://www.securityfocus.com/bid/13125/info Comersus Cart is affected by a cross-site scripting vulnerability. This issue is due to a failure in the application to properly validate user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the...

Pinnacle Cart - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/13138/info Pinnacle Cart is affected by a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting use...

PostNuke Phoenix 0.760 RC3 - 'OP' Cross-Site Scripting

source: https://www.securityfocus.com/bid/13075/info A remote cross-site scripting vulnerability affects PostNuke. This issue is due to a failure of the application to properly sanitize user-supplied input prior to including it in dynamically generated Web content. An attacker may leverage this...

Active Auction House - sendpassword.asp Multiple Cross-Site Scripting Vulnerabilities

Active Auction House - sendpassword.asp Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/13038/info Active Auction House is reportedly affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly...