LDAP Account Manager 3.4.0 - 'selfserviceSaveOk' Cross-Site Scripting

source: https://www.securityfocus.com/bid/47674/info LDAP Account Manager is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in t...

Atlassian Confluence Multiple Cross Site Scripting Vulnerabilities

Atlassian Confluence is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user- supplied data. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

Tine 2.0 - 'vbook.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/47669/info Tine is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of th...

WordPress Plugin WP Photo Album 1.5.1 - id Cross-Site Scripting

WordPress Plugin WP Photo Album 1.5.1 - id Cross-Site Scripting source: https://www.securityfocus.com/bid/47622/info The WP Photo Album plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this...

WordPress Plugin WP Photo Album 1.5.1 - 'id' Cross-Site Scripting

source: https://www.securityfocus.com/bid/47622/info The WP Photo Album plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

WordPress Plugin Daily Maui Photo Widget 0.2 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/47620/info The Daily Maui Photo Widget plugin for WordPress is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the...

phpGraphy 0.9.13b - 'theme_dir' Cross-Site Scripting

source: https://www.securityfocus.com/bid/47634/info phpGraphy is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context ...

Kusaba X 0.9 - Multiple Cross-Site Scripting Vulnerabilities

Kusaba X 0.9 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/47626/info Kusaba X is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute...

PHP F1 Maxs Photo Album - showimage.php Cross-Site Scripting

PHP F1 Maxs Photo Album - showimage.php Cross-Site Scripting source: https://www.securityfocus.com/bid/47582/info PHP F1 Max's Photo Album is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute...

WordPress Plugin WP Ajax Recent Posts 1.0.1 - 'do' Cross-Site Scripting

source: https://www.securityfocus.com/bid/47579/info The WP Ajax Recent Posts WordPress Plugin is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

phpList 2.10.x - 'email' Cross-Site Scripting

source: https://www.securityfocus.com/bid/47580/info PHPList is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

WordPress Plugin WP Ajax Recent Posts 1.0.1 - do Cross-Site Scripting

WordPress Plugin WP Ajax Recent Posts 1.0.1 - do Cross-Site Scripting source: https://www.securityfocus.com/bid/47579/info The WP Ajax Recent Posts WordPress Plugin is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage...

html-edit CMS 3.1.x - 'html_output' Cross-Site Scripting

source: https://www.securityfocus.com/bid/47576/info html-edit CMS is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

Dolibarr ERPCRM 3.0 - Local File Inclusion Cross-Site Scripting

Dolibarr ERPCRM 3.0 - Local File Inclusion Cross-Site Scripting source: https://www.securityfocus.com/bid/47542/info Dolibarr is prone to a local file-include vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit...

Automagick Tube Script 1.4.4 - 'module' Cross-Site Scripting

source: https://www.securityfocus.com/bid/47519/info Automagick Tube Script is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in...

webSPELL 4.2.2a - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/47500/info webSPELL is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

Oracle JD Edwards EnterpriseOne 8.9x Tools Web Runtime SEC - jdeMafletClose.mafService?RENDER_MAFLET Cross-Site Scripting

Oracle JD Edwards EnterpriseOne 8.9x Tools Web Runtime SEC - jdeMafletClose.mafService?RENDERMAFLET Cross-Site Scripting source: https://www.securityfocus.com/bid/47479/info Oracle JD Edwards EnterpriseOne is prone to multiple cross-site scripting vulnerabilities. An attacker may leverage these...

Oracle JD Edwards EnterpriseOne 8.9x Tools Web Runtime SEC - '/jde/E1Menu_OCL.mafService?e1.namespace' Cross-Site Scripting

source: https://www.securityfocus.com/bid/47479/info Oracle JD Edwards EnterpriseOne is prone to multiple cross-site scripting vulnerabilities. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This m...

webSPELL 4.2.2a - Multiple Cross-Site Scripting Vulnerabilities

webSPELL 4.2.2a - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/47500/info webSPELL is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

ChillyCMS 1.2.1 - Multiple Remote File Inclusions

ChillyCMS 1.2.1 - Multiple Remote File Inclusions source: https://www.securityfocus.com/bid/47395/info chillyCMS is prone to multiple remote file-include vulnerabilities because the application fails to sufficiently sanitize user-supplied input. Exploiting these issues may allow a remote attacker...