153 matches found
CVE-2008-1061
Multiple cross-site scripting XSS vulnerabilities in the Sniplets 1.1.2 and 1.2.2 plugin for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 text parameter to a warning.php, b notice.php, and c inset.php in view/sniplets/, and possibly d modules/execute.php; the ...
CVE-2008-0980
Multiple cross-site scripting XSS vulnerabilities in Spyce - Python Server Pages PSP 2.1.3 allow remote attackers to inject arbitrary web script or HTML via 1 the url or type parameter to docs/examples/redirect.spy; 2 the x parameter to docs/examples/handlervalidate.spy; 3 the name parameter to...
CVE-2007-4530
Multiple cross-site scripting XSS vulnerabilities in TeamSpeak Server 2.0.20.1 allow remote attackers to inject arbitrary web script or HTML via 1 the errortext parameter to errorbox.html or 2 the oktitle parameter to okbox.html...
Vulnerability in AltaVista local search engine
Здравствуйте 3APA3A! Сообщаю вам о найденной мною Cross-Site Scripting уязвимости в поисковике AltaVista local search engine. Уязвимость в параметре text в главном скрипте. XSS: http://site/?text=3Cscript3Ealertdocument.cookie3C/script3E О данной уязвимости я писал в рамках моего проекта Month of...
CVE-2007-3486
Cross-site scripting XSS vulnerability in AltaVista search engine allows remote attackers to inject arbitrary web script or HTML via the text parameter to the default URI...
CVE-2007-3486
Cross-site scripting XSS vulnerability in AltaVista search engine allows remote attackers to inject arbitrary web script or HTML via the text parameter to the default URI...
Sql injection
Multiple SQL injection vulnerabilities in Joomla! 1.5.0 Beta allow remote attackers to execute arbitrary SQL commands via 1 the searchword parameter in certain files; the where parameter in 2 plugins/search/content.php or 3 plugins/search/weblinks.php; the text parameter in 4...
CVE-2006-0243
Cross-site scripting XSS vulnerability in SMBCMS 2.1 allows remote attackers to inject arbitrary web script or HTML via the text parameter, which is used by the "Search Site" field. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2005-4410
Cross-site scripting XSS vulnerability in NQcontent 3 allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters, possibly the text parameter...
CVE-2005-4410
CVE-2005-4410 concerns an Cross-site Scripting (XSS) vulnerability in NQcontent 3. The issue allows remote attackers to inject arbitrary web script or HTML through unspecified search parameters, possibly the text parameter. The available documents identify NQcontent 3 as the affected product and ...
CVE-2005-4410
Cross-site scripting XSS vulnerability in NQcontent 3 allows remote attackers to inject arbitrary web script or HTML via unspecified search parameters, possibly the text parameter...
CVE-2005-4295
Cross-site scripting XSS vulnerability in Absolute Image Gallery XE 2.x allows remote attackers to inject arbitrary web script or HTML via the text parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2005-4295
Cross-site scripting XSS vulnerability in Absolute Image Gallery XE 2.x allows remote attackers to inject arbitrary web script or HTML via the text parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...