3351 matches found
WordPress Theme Ambience - src Cross-Site Scripting
WordPress Theme Ambience - src Cross-Site Scripting source: https://www.securityfocus.com/bid/60458/info The Ambience theme for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute...
Telaen 2.7.x - Cross-Site Scripting
source: https://www.securityfocus.com/bid/60288/info Telaen is prone to a cross-site-scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...
Elastix - Multiple Cross-Site Scripting Vulnerabilities
Elastix - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/60262/info Elastix is prone to multiple cross-site scripting vulnerabilities because it fails to sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code i...
WordPress ADIF Log Search Widget Plugin - Cross Site Scripting
WordPressADIF Log Search Widget plugin's "logbooksearch.php" is prone to a cross-site scripting vulnerability. It fails to properly clean up user-supplied input. An attacker may execute arbitrary script code in the browser of an user in the context of the affected site. In this way the attacker c...
Matterdaddy Market - Multiple Vulnerabilities
source: https://www.securityfocus.com/bid/60150/info Matterdaddy Market is prone to multiple security vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to execute arbitrary script code, upload arbitrary files, steal...
Jojo CMS - 'search' Cross-Site Scripting
source: https://www.securityfocus.com/bid/59933/info Jojo CMS is prone to a cross-site scripting vulnerability. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal...
Open Flash Chart - 'get-data' Cross-Site Scripting
source: https://www.securityfocus.com/bid/59928/info Open Flash Chart is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...
WordPress Plugin Securimage-WP - 'siwp_test.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/59816/info The Securimage-WP plugin for WordPress is prone to a cross-site-scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...
Securimage - 'example_form.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/59796/info Securimage is prone to a cross-site scripting vulnerability. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal...
GetSimple CMS /admin/filebrowser.php Multiple Parameter XSS
GetSimple CMS /admin/filebrowser.php Multiple Parameter XSS. CVE-2013-1420. Webapps exploit for php platform source: http://www.securityfocus.com/bid/59600/info GetSimple CMS is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. A...
WordPress Theme Colormix - Multiple Vulnerabilities
source: https://www.securityfocus.com/bid/59371/info The Colormix theme for WordPress is prone to multiple security vulnerabilities, including: 1. A cross-site scripting vulnerability 2. A path-disclosure vulnerability 3. Multiple content-spoofing vulnerabilities An attacker may leverage these...
WordPress Plugin Traffic Analyzer - 'aoid' Cross-Site Scripting
source: https://www.securityfocus.com/bid/58948/info The Traffic Analyzer plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...
WordPress Plugin Traffic Analyzer - aoid Cross-Site Scripting
WordPress Plugin Traffic Analyzer - aoid Cross-Site Scripting source: https://www.securityfocus.com/bid/58948/info The Traffic Analyzer plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this...
C2 WebResource - File Cross-Site Scripting
C2 WebResource - File Cross-Site Scripting source: https://www.securityfocus.com/bid/58838/info C2 WebResource is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...
C2 WebResource - 'File' Cross-Site Scripting
source: https://www.securityfocus.com/bid/58838/info C2 WebResource is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the contex...
WordPress Plugin Feedweb - wp_post_id Cross-Site Scripting
WordPress Plugin Feedweb - wppostid Cross-Site Scripting source: https://www.securityfocus.com/bid/58771/info Feedweb plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute...
WordPress Plugin Feedweb - 'wp_post_id' Cross-Site Scripting
source: https://www.securityfocus.com/bid/58771/info Feedweb plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting...
OrionDB Web Directory - Multiple Cross-Site Scripting Vulnerabilities
OrionDB Web Directory - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/58720/info OrionDB Web Directory is prone to multiple cross-site scripting vulnerabilities because it fails to sanitize user-supplied input. An attacker may leverage these issues to...
Atmail WebMail - searchResultsTab5?filter Reflected Cross-Site Scripting
Atmail WebMail - searchResultsTab5?filter Reflected Cross-Site Scripting source: https://www.securityfocus.com/bid/65408/info Atmail is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execut...
Jaow CMS - add_ons Cross-Site Scripting
Jaow CMS - addons Cross-Site Scripting source: https://www.securityfocus.com/bid/58658/info Jaow CMS is prone to a cross-site scripting vulnerability. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site...