Unfixed XSS vulnerability at www.femina.in

Security researcher cueballr, has submitted on 26/05/2008 a cross-site-scripting XSS vulnerability affecting www.femina.in, which at the time of submission ranked 229799 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 07/11/2008. It is currentl...

Unfixed XSS vulnerability at thehipp.org

Security researcher xylitol, has submitted on 14/05/2008 a cross-site-scripting XSS vulnerability affecting thehipp.org, which at the time of submission ranked 1005795 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 09/07/2008. It is currently...

Unfixed XSS vulnerability at www.bit.ge

Security researcher pSyChOmOnkee, has submitted on 14/05/2008 a cross-site-scripting XSS vulnerability affecting www.bit.ge, which at the time of submission ranked 4500704 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 30/06/2008. It is...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in search.php in cpLinks 1.03 allow remote attackers to inject arbitrary web script or HTML via the 1 searchtext and 2 searchcategory parameters. NOTE: the XSS reportedly occurs in a forced SQL error message. NOTE: some of these details are obtain...

CVE-2008-2181

Multiple cross-site scripting XSS vulnerabilities in search.php in cpLinks 1.03 allow remote attackers to inject arbitrary web script or HTML via the 1 searchtext and 2 searchcategory parameters. NOTE: the XSS reportedly occurs in a forced SQL error message. NOTE: some of these details are obtain...

Cross site scripting

Cross-site scripting XSS vulnerability in search.php in CMS Faethon 2.2 Ultimate allows remote attackers to inject arbitrary web script or HTML via the what parameter. NOTE: some of these details are obtained from third party information...

CVE-2008-2127

Cross-site scripting XSS vulnerability in search.php in CMS Faethon 2.2 Ultimate allows remote attackers to inject arbitrary web script or HTML via the what parameter. NOTE: some of these details are obtained from third party information...

CVE-2008-2127

Cross-site scripting XSS vulnerability in search.php in CMS Faethon 2.2 Ultimate allows remote attackers to inject arbitrary web script or HTML via the what parameter. NOTE: some of these details are obtained from third party information...

Sphider 1.3.4 - 'query' Cross-Site Scripting

source: https://www.securityfocus.com/bid/29074/info Sphider is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

Unfixed XSS vulnerability at planetlotus.org

Security researcher .virex, has submitted on 05/04/2008 a cross-site-scripting XSS vulnerability affecting planetlotus.org, which at the time of submission ranked 795466 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 05/04/2008. It is currentl...

Unfixed XSS vulnerability at www.gopetition.com

Security researcher Azat Harutyunyan, has submitted on 30/04/2008 a cross-site-scripting XSS vulnerability affecting www.gopetition.com, which at the time of submission ranked 25543 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 20/06/2008. It...

CVE-2008-1987

CVE-2008-1987 affects EncapsGallery 2.0.2, via the search.php vulnerability where an attacker can inject arbitrary HTML/script through the search parameter (XSS). The provided sources confirm the vulnerable component and parameter vector but do not include explicit exploit details, impacted versi...

Unfixed XSS vulnerability at www.worldemart.com

Security researcher cueballr, has submitted on 19/04/2008 a cross-site-scripting XSS vulnerability affecting www.worldemart.com, which at the time of submission ranked 360560 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 28/04/2008. It is...

Unfixed XSS vulnerability at www.thepoles.com

Security researcher cueballr, has submitted on 19/04/2008 a cross-site-scripting XSS vulnerability affecting www.thepoles.com, which at the time of submission ranked 730060 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 28/04/2008. It is...

Unfixed XSS vulnerability at www.liveanalsex.com

Security researcher Mystick, has submitted on 04/11/2008 a cross-site-scripting XSS vulnerability affecting www.liveanalsex.com, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 02/07/2009. It is currentl...

Unfixed XSS vulnerability at www.mymusicjob.com

Security researcher SaMTHG, has submitted on 04/07/2008 a cross-site-scripting XSS vulnerability affecting www.mymusicjob.com, which at the time of submission ranked 709062 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 08/07/2008. It is...

CVE-2008-1621

Multiple cross-site scripting XSS vulnerabilities in GeeCarts allow remote attackers to inject arbitrary web script or HTML via the id parameter to 1 show.php, 2 search.php, and 3 view.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...

Unfixed XSS vulnerability at www.urscorp.com

Security researcher Kaospunk, has submitted on 29/03/2008 a cross-site-scripting XSS vulnerability affecting www.urscorp.com, which at the time of submission ranked 223983 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 03/04/2008. It is...

CVE-2008-1352

Directory traversal vulnerability in search.php in EdiorCMS ecms 3.0 allows remote attackers to read arbitrary files via a .. dot dot in the SearchTemplate parameter during a Title search...

CVE-2008-1352

Directory traversal vulnerability in search.php in EdiorCMS ecms 3.0 allows remote attackers to read arbitrary files via a .. dot dot in the SearchTemplate parameter during a Title search...