Lucene search
K

6252 matches found

xssed
xssed
added 2008/04/17 12:0 a.m.18 views

Unfixed XSS vulnerability at www.gulf-daily-news.com

Security researcher cueballr, has submitted on 17/04/2008 a cross-site-scripting XSS vulnerability affecting www.gulf-daily-news.com, which at the time of submission ranked 39705 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 17/04/2008. It is...

Exploits0References1
xssed
xssed
added 2008/04/17 12:0 a.m.13 views

Unfixed XSS vulnerability at www.radyoruzgar.com

Security researcher TraCK10ya, has submitted on 17/04/2008 a cross-site-scripting XSS vulnerability affecting www.radyoruzgar.com, which at the time of submission ranked 102523 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 17/04/2008. It is...

6.6AI score
Exploits0References1
exploitpack
exploitpack
added 2008/04/17 12:0 a.m.12 views

EsContacts 1.0 - groupes.php?msg Cross-Site Scripting

EsContacts 1.0 - groupes.php?msg Cross-Site Scripting source: https://www.securityfocus.com/bid/28825/info EsContacts is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. Attackers may leverage these issues to execute arbitrary scrip...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2008/04/17 12:0 a.m.10 views

EsContacts 1.0 - login.php?msg Cross-Site Scripting

EsContacts 1.0 - login.php?msg Cross-Site Scripting source: https://www.securityfocus.com/bid/28825/info EsContacts is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. Attackers may leverage these issues to execute arbitrary script...

6.8AI score
Exploits0
xssed
xssed
added 2008/04/10 12:0 a.m.11 views

Unfixed XSS vulnerability at www.cairn.info

Security researcher death-angel, has submitted on 04/10/2008 a cross-site-scripting XSS vulnerability affecting www.cairn.info, which at the time of submission ranked 40704 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 04/10/2008. It is...

6.6AI score
Exploits0References1
xssed
xssed
added 2008/04/09 12:0 a.m.13 views

Unfixed XSS vulnerability at www.tias.com

Security researcher tenest, has submitted on 04/09/2008 a cross-site-scripting XSS vulnerability affecting www.tias.com, which at the time of submission ranked 21908 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 23/09/2008. It is currently...

6.6AI score
Exploits0References1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2008/03/27 12:0 a.m.12 views

JVN#76669770 PerlMailer cross-site scripting vulnerability

PerlMailer is a mail form CGI provided by "Homepage Decorator". It is used to send mail from a form on a web page. A cross-site scripting vulnerabiltiy exists in PerlMailer. Impact An arbitrary script may be executed on the user's web browser. Solution Update the Software Update to the latest...

6.4AI score
Exploits0
OSV
OSV
added 2008/03/25 7:44 p.m.6 views

CVE-2008-1502

The badprotocolonce function in phpgwapi/inc/class.kses.inc.php in KSES, as used in eGroupWare before 1.4.003, Moodle before 1.8.5, and other products, allows remote attackers to bypass HTML filtering and conduct cross-site scripting XSS attacks via a string containing crafted URL protocols...

5.3AI score
Exploits0References22
xssed
xssed
added 2008/03/22 12:0 a.m.9 views

Unfixed XSS vulnerability at www.osp.ru

Security researcher CCC, has submitted on 22/03/2008 a cross-site-scripting XSS vulnerability affecting www.osp.ru, which at the time of submission ranked 41890 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 03/04/2008. It is currently unfixed...

Exploits0References1
xssed
xssed
added 2008/03/09 12:0 a.m.10 views

Unfixed XSS vulnerability at www.escstone.com

Security researcher SaMTHG, has submitted on 03/09/2008 a cross-site-scripting XSS vulnerability affecting www.escstone.com, which at the time of submission ranked 14957352 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 24/09/2008. It is...

Exploits0References1
Cvelist
Cvelist
added 2008/02/19 8:0 p.m.16 views

CVE-2008-0826

Cross-site scripting XSS vulnerability in Claroline before 1.8.9 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

5.7AI score0.01033EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2008/01/28 12:0 a.m.39 views

Mambo MOStlyCE Mambot Arbitrary File Rename

The remote host is running MOStlyContent Editor MOStlyCE, the default WYSIWYG editor for Mambo. The version of MOStlyCE installed on the remote host contains a design flaw that may allow an attacker to rename files subject to the privileges of the web server user id. An unauthenticated attacker m...

5.8CVSS5.2AI score0.01811EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2008/01/25 1:0 a.m.37 views

CVE-2008-0455

Cross-site scripting XSS vulnerability in the modnegotiation module in the Apache HTTP Server 2.2.6 and earlier in the 2.2.x series, 2.0.61 and earlier in the 2.0.x series, and 1.3.39 and earlier in the 1.3.x series allows remote authenticated users to inject arbitrary web script or HTML by...

4.3CVSS6AI score0.6477EPSS
Exploits1References1
xssed
xssed
added 2008/01/18 12:0 a.m.13 views

Unfixed XSS vulnerability at www.naa.org

Security researcher holisticinfosec, has submitted on 18/01/2008 a cross-site-scripting XSS vulnerability affecting www.naa.org, which at the time of submission ranked 169593 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 01/03/2008. It is...

Exploits0References1
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.18 views

Debian Security Advisory DSA 125-1 (analog)

The remote host is missing an update to analog announced via advisory DSA 125-1. OpenVAS Vulnerability Test $Id: deb1251.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 125-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

7.5CVSS6.8AI score0.01797EPSS
Exploits0
xssed
xssed
added 2008/01/10 12:0 a.m.9 views

Unfixed XSS vulnerability at www.rotary9640.org

Security researcher Camilo-TcK, has submitted on 01/10/2008 a cross-site-scripting XSS vulnerability affecting www.rotary9640.org, which at the time of submission ranked 9787259 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 02/10/2008. It is...

6.6AI score
Exploits0References1
xssed
xssed
added 2008/01/08 12:0 a.m.18 views

Unfixed XSS vulnerability at www.winchesterguns.com

Security researcher skathgh420, has submitted on 01/08/2008 a cross-site-scripting XSS vulnerability affecting www.winchesterguns.com, which at the time of submission ranked 197648 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 06/08/2008. It ...

6.6AI score
Exploits0References1
xssed
xssed
added 2008/01/07 12:0 a.m.9 views

Unfixed XSS vulnerability at www.canuckster.com

Security researcher Uber0n, has submitted on 01/07/2008 a cross-site-scripting XSS vulnerability affecting www.canuckster.com, which at the time of submission ranked 519412 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/07/2008. It is...

6.6AI score
Exploits0References1
xssed
xssed
added 2008/01/03 12:0 a.m.12 views

Unfixed XSS vulnerability at www.cad-media.com

Security researcher Mutant, has submitted on 01/03/2008 a cross-site-scripting XSS vulnerability affecting www.cad-media.com, which at the time of submission ranked 133488 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 06/03/2008. It is...

0.1AI score
Exploits0References1
Packet Storm
Packet Storm
added 2007/12/28 12:0 a.m.26 views

aolygp-overflows.txt

The AOL YGP Picture Editor ControlAIM PicEditor Control version 9.5.1.8 suffers from multiple exploitable buffer overflows in various properties. This object is marked safe for scripting. I have not tested other versions. PoC as follows: ---------------- function Check var s = 'A'; while s.length...

7.4AI score
Exploits0
Rows per page
Query Builder