476 matches found
CVE-2008-0793
Multiple cross-site scripting XSS vulnerabilities in search.asp in Tendenci CMS allow remote attackers to inject arbitrary web script or HTML via the 1 category, 2 searchtext, 3 jobcategoryid, 4 contactcompany, and unspecified other parameters. NOTE: some of these details are obtained from third...
Unfixed XSS vulnerability at www.pc-ware.com
Security researcher Fabian Fingerle, has submitted on 13/02/2008 a cross-site-scripting XSS vulnerability affecting www.pc-ware.com, which at the time of submission ranked 356949 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 06/03/2008. It is...
Unfixed XSS vulnerability at www.prcenter.de
Security researcher Fabian Fingerle, has submitted on 02/06/2008 a cross-site-scripting XSS vulnerability affecting www.prcenter.de, which at the time of submission ranked 56286 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 06/06/2008. It is...
Unfixed XSS vulnerability at www.emiliaromagnalavoro.it
Security researcher Langy, has submitted on 18/12/2007 a cross-site-scripting XSS vulnerability affecting www.emiliaromagnalavoro.it, which at the time of submission ranked 3937609 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 19/12/2007. It ...
Unfixed XSS vulnerability at www.oekotest.de
Security researcher TotalSchaden, has submitted on 12/02/2007 a cross-site-scripting XSS vulnerability affecting www.oekotest.de, which at the time of submission ranked 73185 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 12/02/2007. It is...
Unfixed XSS vulnerability at www.bibel-online.net
Security researcher TotalSchaden, has submitted on 12/02/2007 a cross-site-scripting XSS vulnerability affecting www.bibel-online.net, which at the time of submission ranked 275395 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 12/02/2007. It ...
Unfixed XSS vulnerability at www.cbidirectory.co.uk
Security researcher Genocide, has submitted on 27/11/2007 a cross-site-scripting XSS vulnerability affecting www.cbidirectory.co.uk, which at the time of submission ranked 994004 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 29/11/2007. It is...
Unfixed XSS vulnerability at www.twbookjuice.co.uk
Security researcher By Encore, has submitted on 11/04/2007 a cross-site-scripting XSS vulnerability affecting www.twbookjuice.co.uk, which at the time of submission ranked 3574562 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 11/04/2007. It i...
Unfixed XSS vulnerability at www.ikmagazine.com
Security researcher 0ssi3, has submitted on 11/02/2007 a cross-site-scripting XSS vulnerability affecting www.ikmagazine.com, which at the time of submission ranked 3419337 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 12/02/2007. It is...
Unfixed XSS vulnerability at www.rubne.com
Security researcher BackDoor, has submitted on 24/09/2007 a cross-site-scripting XSS vulnerability affecting www.rubne.com, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 28/09/2007. It is currently...
Unfixed XSS vulnerability at www.satagear.com
Security researcher tenest, has submitted on 22/09/2007 a cross-site-scripting XSS vulnerability affecting www.satagear.com, which at the time of submission ranked 1195424 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 28/09/2007. It is...
simpcms-sql.txt
SimpCMS = all Remote SQL Injection Vulnerability Found By : ú Cold z3ro , http://www.hackteach.org/ Script : http://www.simpcms.com/ ==================================== Exploit : /index.php?site=search&keyword=1'//union//select//0,1,2,3,name,5,6//from//categories/ OR /index.php?site=search in...
Unfixed XSS vulnerability at search.burlingtoncoatfactory.com
Security researcher tenest, has submitted on 16/09/2007 a cross-site-scripting XSS vulnerability affecting search.burlingtoncoatfactory.com, which at the time of submission ranked 38072 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 20/09/2007...
Unfixed XSS vulnerability at www.moviebox.se
Security researcher By Encore, has submitted on 16/09/2007 a cross-site-scripting XSS vulnerability affecting www.moviebox.se, which at the time of submission ranked 459655 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 20/09/2007. It is...
CVE-2005-4862
The search functionality in XWiki 0.9.793 indexes cleartext user passwords, which allows remote attackers to obtain sensitive information via a search string that matches a password...
Unfixed XSS vulnerability at www.kreuzberg.de
Security researcher Renoized, has submitted on 30/08/2007 a cross-site-scripting XSS vulnerability affecting www.kreuzberg.de, which at the time of submission ranked 1055546 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 30/08/2007. It is...
Unfixed XSS vulnerability at insideedition.com
Security researcher kRuSaDeR, has submitted on 29/08/2007 a cross-site-scripting XSS vulnerability affecting insideedition.com, which at the time of submission ranked 168785 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 30/08/2007. It is...
Unfixed XSS vulnerability at www.municipia.it
Security researcher Langy, has submitted on 24/08/2007 a cross-site-scripting XSS vulnerability affecting www.municipia.it, which at the time of submission ranked 1083240 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 28/08/2007. It is current...
Unfixed XSS vulnerability at search.dunyagazetesi.com.tr
Security researcher St@rExT, has submitted on 19/08/2007 a cross-site-scripting XSS vulnerability affecting search.dunyagazetesi.com.tr, which at the time of submission ranked 47501 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 21/08/2007. It...
CVE-2007-4386
SQL injection vulnerability in search.php in GetMyOwnArcade allows remote attackers to execute arbitrary SQL commands via the query parameter...