9 matches found
EUVD-2005-3494
Malware in sbrugna...
CVE-2006-2809
CVE-2006-2809 corresponds to multiple XSS vulnerabilities in ar-blog 5.2, affecting index.php via parameters (count, and possibly next, Year_the_news, mo). Root cause is improper handling/validation of user-supplied input leading to script/HTML injection. Affected component is ar-blog 5.2, index....
CVE-2006-1893
Cross-site scripting XSS vulnerability in print.php in ar-blog 5.2 allows remote attackers to inject arbitrary web script or HTML via the id parameter...
CVE-2006-1893
CVE-2006-1893 describes a cross-site scripting (XSS) vulnerability in the print.php component of ar-blog 5.2, exploitable via the id parameter to inject arbitrary script/HTML. The vulnerability is documented across multiple sources (NVD, CVE List, PRION, etc.), with the impact described as enabli...
Cross site scripting
Cross-site scripting XSS vulnerability in ar-blog 5.2 allows remote attackers to inject arbitrary web script or HTML via the 1 month or 2 year parameter to index.php...
CVE-2006-0333
CVE-2006-0333: An XSS vulnerability in ar-blog 5.2 affects index.php, exploitable via the month or year parameters. Related entry CVE-2006-2809 expands the risk to additional parameters (count, next, Year_the_news, mo); note that the month/year vectors are already covered by CVE-2006-0333. No exp...
CVE-2005-3494
Cross-site scripting XSS vulnerability in Ar-blog 5.2 and earlier allows remote attackers to inject arbitrary web script or HTML via a blog comment...
CVE-2005-3494
Cross-site scripting XSS vulnerability in Ar-blog 5.2 and earlier allows remote attackers to inject arbitrary web script or HTML via a blog comment...
CVE-2005-3494
CVE-2005-3494 describes a cross-site scripting (XSS) flaw in Ar-blog versions 5.2 and earlier. The vulnerability allows a remote attacker to inject arbitrary web script or HTML through a blog comment, potentially compromising user sessions or displaying malicious content. The connected documents ...