CVE-2006-5168

Cross-site scripting XSS vulnerability in the search functionality in Simon Brown Pebble 2.0.0 RC1 and RC2 allows remote attackers to inject arbitrary web script or HTML via the query string...

Pebble 2.0.0 RC[1,2] XSS vulnerability

Software: Pebble Version: 2.0.0 RC1 - 2.0.0 RC2 Author: Simon Brown Homepage: http://pebble.sourceforge.net Abstract Pebble is a blogging system built upon java and XML. There is no database to store the data into but just XML is used instead. Description Vulnerability: XSS vulnerability in...

e107XSS.txt

http://target.xx/search.php?q=&r=0&s=Search&in=1&ex=1&ep= %27%3E%3Cscript%3Ealert%28%2FXSS%2F%29%3C%2Fscript% 3E&be=1&t=1&adv=1&type=all&on=new&time=any&author= ------------------ Submit comment Subject: 'alert/XSS/ Click Reply to this you comment. Ellipsis Security http://www.ellsec.org...

Sphider.txt

--------------------------------------------- Sphider Multiple Xss Vulnerabilities --------------------------------------------- Site: http://www.cs.ioc.ee/ando/sphider/ Bug: 1- http://victim/path/search.php/"alert/Soot/ 2- http://victim/path/search.php?category="alert/Soot/...

CVE-2006-0699

Cross-site scripting XSS vulnerability in search.php in QWikiWiki 1.5, and possibly 1.5.1 and other versions, allows remote attackers to inject arbitrary web script or HTML via the query parameter...

CVE-2006-0639

Cross-site scripting XSS vulnerability in search.php in MyBB aka MyBulletinBoard 1.0.2 allows remote attackers with knowledge of the table prefix to inject arbitrary web script or HTML via a URL encoded value of the keywords parameter, as demonstrated by %3Cscript%3E...

CVE-2006-0639

Cross-site scripting XSS vulnerability in search.php in MyBB aka MyBulletinBoard 1.0.2 allows remote attackers with knowledge of the table prefix to inject arbitrary web script or HTML via a URL encoded value of the keywords parameter, as demonstrated by %3Cscript%3E...

CVE-2006-0466

Cross-site scripting XSS vulnerability in search.asp in Goldstag Content Management System allows remote attackers to inject arbitrary web script or HTML via the text parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in search.asp in Goldstag Content Management System allows remote attackers to inject arbitrary web script or HTML via the text parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in search.php in My Amazon Store Manager 1.0 allows remote attackers to inject arbitrary web script or HTML via the Keywords parameter. NOTE: some sources claim that the affected parameter is "q", but the only public archive of the original researcher...

CVE-2005-4862

The search functionality in XWiki 0.9.793 indexes cleartext user passwords, which allows remote attackers to obtain sensitive information via a search string that matches a password...

SEC Consult SA-20051211-0 :: Several XSS issues in Horde Framework, Kronolith Calendar, Mnemo Notes, Nag Tasks and Turba Addressbook

SEC Consult Security Advisory 20051211-0 ========================================================================== title: Several XSS issues in Horde Framework, Kronolith Calendar, Mnemo Notes, Nag Tasks and Turba Addressbook program: Horde Application Framework + Modules vulnerable version:...

CVE-2005-3998

Cross-site scripting XSS vulnerability in search.asp in Solupress News 1.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the keywords parameter...

[SA15173] enVivo!CMS SQL Injection Vulnerabilities

---------------------------------------------------------------------- Want a new IT Security job? Vacant positions at Secunia: http://secunia.com/secuniavacancies/ ---------------------------------------------------------------------- TITLE: enVivo!CMS SQL Injection Vulnerabilities SECUNIA...

XSS in ACS blog

XSS vulnerability exist in the ACS blog ASP WEBLOG SYSTEM . Vulnerable : ACS Blog v 0.8 ACS Blog v 0.9 ACS Blog v 1.0 ACS Blog v 1.1b Code : /search.asp?search=223Cbr3E3Ciframe+src3D22http3A2F2Fgoogle.com223E3C2Fiframe3E or goto /search.asp and copy this code : "briframe...

Bing bar WLCMD

...