Unfixed XSS vulnerability at www.jahu.net

Security researcher Apollo15, has submitted on 07/03/2008 a cross-site-scripting XSS vulnerability affecting www.jahu.net, which at the time of submission ranked 67744 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/03/2008. It is currently...

Unfixed XSS vulnerability at www.1001-petites-annonces.com

Security researcher Oxil, has submitted on 06/08/2008 a cross-site-scripting XSS vulnerability affecting www.1001-petites-annonces.com, which at the time of submission ranked 360033 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 06/08/2008. It...

Sphider 1.3.4 - query Cross-Site Scripting

Sphider 1.3.4 - query Cross-Site Scripting source: https://www.securityfocus.com/bid/29074/info Sphider is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in...

Unfixed XSS vulnerability at www.meribel.net

Security researcher ironzorg, has submitted on 24/04/2008 a cross-site-scripting XSS vulnerability affecting www.meribel.net, which at the time of submission ranked 183962 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 25/04/2008. It is...

CVE-2008-1342

Multiple cross-site scripting XSS vulnerabilities in the search feature in Polymita BPM-Suite and CollagePortal allow remote attackers to inject arbitrary web script or HTML via the 1 q and 2 luceneindexfieldvalue parameters. NOTE: the provenance of this information is unknown; the details are...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the search feature in Polymita BPM-Suite and CollagePortal allow remote attackers to inject arbitrary web script or HTML via the 1 q and 2 luceneindexfieldvalue parameters. NOTE: the provenance of this information is unknown; the details are...

CVE-2008-1342

CVE-2008-1342 affects the search feature in Polymita BPM-Suite and CollagePortal . The vulnerabilities are described as cross-site scripting (XSS) weaknesses that allow remote attackers to inject arbitrary web script or HTML via the parameters _q and lucene_index_field_value . The sources consist...

Unfixed XSS vulnerability at www.fh-jena.de

Security researcher Fabian Fingerle, has submitted on 18/02/2008 a cross-site-scripting XSS vulnerability affecting www.fh-jena.de, which at the time of submission ranked 201106 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/03/2008. It is...

Cross site scripting

Cross-site scripting XSS vulnerability in Webmin 1.370 and 1.390 and Usermin 1.300 and 1.320 allows remote attackers to inject arbitrary web script or HTML via the search parameter to webminsearch.cgi aka the search section, and possibly other components accessed through a "search box" or "open...

Cross site scripting

Cross-site scripting XSS vulnerability in OpenLD before 1.1.9, and 1.1-modified before 1.1-modified3, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors in the Search feature, possibly the term parameter...

CVE-2007-2610

Cross-site scripting XSS vulnerability in OpenLD before 1.1.9, and 1.1-modified before 1.1-modified3, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors in the Search feature, possibly the term parameter...

PT-2007-3929 · Openld · Openld

Name of the Vulnerable Software and Affected Versions: OpenLD versions prior to 1.1.9 OpenLD 1.1-modified versions prior to 1.1-modified3 Description: A cross-site scripting XSS issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors in the Search feature,...

CVE-2005-0650

Multiple cross-site scripting XSS vulnerabilities in ProjectBB 0.4.5.1 allow remote attackers to inject arbitrary web script or HTML via 1 the pages parameter to divers.php incorrectly referred to as "drivers.php" by some sources, 2 in the search feature text area, 3 forum name, 4 site name or 5...

First class information leak

By using search option it's possible to view content of any directory...

phpLinks < 2.1.2 - Multiple Vulnerabilities

phpLinks Multiple Vulnerabilities Vendor: destiney.com Product: phpLinks Version: = 2.1.2 Website: http://phplinks.sourceforge.net/ BID: 6632 6633 Description: phpLinks is an open source free PHP script. phpLinks allows you to run a very powerful link farm or search engine. phpLinks has multileve...

phpLinks 2.1.2 - Multiple Vulnerabilities

phpLinks 2.1.2 - Multiple Vulnerabilities phpLinks Multiple Vulnerabilities Vendor: destiney.com Product: phpLinks Version: = 2.1.2 Website: http://phplinks.sourceforge.net/ BID: 6632 6633 Description: phpLinks is an open source free PHP script. phpLinks allows you to run a very powerful link far...