6237 matches found
Unfixed XSS vulnerability at dutyfreehosting.com
Security researcher db, has submitted on 04/01/2011 a cross-site-scripting XSS vulnerability affecting dutyfreehosting.com, which at the time of submission ranked 911435 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 11/12/2011. It is currentl...
Bacula-Web 1.3.x Cross Site Scripting / SQL Injection
GotGeek Labs http://www.gotgeek.com.br/ Bacula-web 1.3.x - 5.0.3 Multiple Remote Vulnerabilities + Description Bacula-Web is a web based tool that provide you a summarized view of your bacula director. It obtain his information from your bacula catalog's database. It provide some usefull...
phpWebSite <= 1.7.1 XSS Vulnerability - Active Check
phpWebSite is prone to a cross-site scripting XSS vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
FreeBSD Ports: phpMyAdmin
The remote host is missing an update to the system as announced in the referenced advisory. VID 753f8185-5ba9-42a4-be02-3f55ee580093 OpenVAS Vulnerability Test $ Description: Auto generated from VID 753f8185-5ba9-42a4-be02-3f55ee580093 Authors: Thomas Reinke Copyright: Copyright c 2010 E-Soft Inc...
Unfixed XSS vulnerability at trapster.com
Security researcher Sony, has submitted on 21/01/2011 a cross-site-scripting XSS vulnerability affecting trapster.com, which at the time of submission ranked 200564 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 02/04/2012. It is currently...
Unfixed XSS vulnerability at www.bna.com.tn
Security researcher Electr0n Libre, has submitted on 28/12/2010 a cross-site-scripting XSS vulnerability affecting www.bna.com.tn, which at the time of submission ranked 1439724 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 11/12/2011. It is...
Mandriva Update for git MDVSA-2010:256 (git)
Check for the Version of git OpenVAS Vulnerability Test Mandriva Update for git MDVSA-2010:256 git Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...
Unfixed XSS vulnerability at www.pixel.com.au
Security researcher db, has submitted on 19/12/2010 a cross-site-scripting XSS vulnerability affecting www.pixel.com.au, which at the time of submission ranked 1203873 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 11/12/2011. It is currently...
CVE-2010-4396
Cross-zone scripting vulnerability in the HandleAction method in a certain ActiveX control in RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.5, and RealPlayer Enterprise 2.1.2 allows remote attackers to inject arbitrary web script or HTML in the Local Zone by specifying ...
Unfixed XSS vulnerability at www.foroswebgratis.com
Security researcher Deuvede, has submitted on 12/01/2010 a cross-site-scripting XSS vulnerability affecting www.foroswebgratis.com, which at the time of submission ranked 19616 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 18/12/2011. It is...
Unfixed XSS vulnerability at www.ilirija.si
Security researcher RoAdKiLlEr, has submitted on 21/09/2010 a cross-site-scripting XSS vulnerability affecting www.ilirija.si, which at the time of submission ranked 5627740 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/11/2011. It is...
Oracle BPM Process Administrator tips.jsp context Parameter XSS
The Oracle Business Process Manager BPM Suite's Process Administrator running on the remote host contains a JSP script - 'webconsole/faces/faces/faces/jsf/tips.jsp' - that fails to sanitize user input to the 'context' parameter before using it to generate dynamic HTML output. An attacker may be...
Mantis 1.2.x < 1.2.2 Cross-Site Scripting Vulnerability
Binary data 5619.prm...
Unfixed XSS vulnerability at smansapati.com
Security researcher robusta, has submitted on 07/07/2010 a cross-site-scripting XSS vulnerability affecting smansapati.com, which at the time of submission ranked 4912129 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 08/07/2010. It is current...
ManageEngine ADManager Plus 'computerName' Parameter XSS
The version of ADManager Plus running on the remote web server has a cross-site scripting vulnerability. Input to the 'computerName' parameter of '/jsp/admin/tools/remoteshare.jsp' is not properly sanitized. A remote attacker could exploit this by tricking a user into requesting a maliciously...
ManageEngine ADAudit Plus 'reportList' Parameter XSS
The version of ADAudit Plus installed on the remote web server has a cross-site scripting vulnerability. Input passed to the 'reportList' parameter of 'jsp/audit/reports/ExportReport.jsp' is not properly sanitized before it is used to generate dynamic HTML content. An unauthenticated, remote...
VMSA-2010-0008 VMware View 3.1.3 addresses an important cross-site scripting vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ VMware Security Advisory Advisory ID: VMSA-2010-0008 Synopsis: VMware View 3.1.3 addresses an important cross-site scripting vulnerability Issue date: 2010-05-05 Updated on:...
CVE-2009-4716
Cross-site scripting XSS vulnerability in results.php in EDGEPHP EZWebSearch allows remote attackers to inject arbitrary web script or HTML via the language parameter...
Fixed XSS vulnerability at www.naukri.com
Security researcher Inxro0t aka Mr.xxxx, has submitted on 02/08/2010 a cross-site-scripting XSS vulnerability affecting www.naukri.com, which at the time of submission ranked 469 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 15/12/2011. It is...
Unfixed XSS vulnerability at secure.schedulepayments.net
Security researcher Xylitol, has submitted on 02/06/2010 a cross-site-scripting XSS vulnerability affecting secure.schedulepayments.net, which at the time of submission ranked 14034960 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 06/07/2010...