OrbitHYIP 2.0 - signup.php?referral Cross-Site Scripting

OrbitHYIP 2.0 - signup.php?referral Cross-Site Scripting source: https://www.securityfocus.com/bid/17766/info OrbitHYIP is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverag...

Cross site scripting

Cross-site scripting XSS vulnerability in signup.php in @1 File Store 2006.03.07 allows remote attackers to inject arbitrary web script or HTML via the 1 realname, 2 email, and 3 login parameters...

CVE-2006-1277

Cross-site scripting XSS vulnerability in signup.php in @1 File Store 2006.03.07 allows remote attackers to inject arbitrary web script or HTML via the 1 realname, 2 email, and 3 login parameters...

CVE-2006-1277

The CVE-2006-1277 entry describes a cross-site scripting (XSS) vulnerability in signup.php of @1 File Store 2006.03.07, where remote attackers can inject arbitrary web script or HTML via the real_name, email, or login parameters. The vulnerability is classified as XSS with a medium base score (CV...

PT-2005-4293 · Php · Php Handicapper

Name of the Vulnerable Software and Affected Versions: PHP Handicapper affected versions not specified Description: A SQL injection issue allows remote attackers to execute arbitrary SQL commands via the serviceid parameter in the process signup.php file. The vendor initially disputed this issue,...