Dokeos 1.8.6 2 - style Cross-Site Scripting

Dokeos 1.8.6 2 - style Cross-Site Scripting source: https://www.securityfocus.com/bid/46370/info Dokeos is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser o...

Dokeos 1.8.6 2 - 'style' Cross-Site Scripting

source: https://www.securityfocus.com/bid/46370/info Dokeos is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...

Apache Continuum Cross Site Scripting Vulnerability

Apache Continuum is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may let the attacker...

ManageEngine ADSelfService Plus 4.4 - 'EmployeeSearch.cc' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/46331/info ManageEngine ADSelfService Plus is prone to multiple vulnerabilities, including multiple security-bypass and cross-site scripting vulnerabilities. Attackers can exploit these issues to bypass certain security restrictions and to execute arbitra...

PHPXref 0.7 - nav.html Cross-Site Scripting

PHPXref 0.7 - nav.html Cross-Site Scripting source: https://www.securityfocus.com/bid/46302/info PHPXref is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting these issues will allow an attacker to execute arbitrary script code ...

CVE-2011-0924

The client in HP Data Protector does not verify the contents of files associated with the EXECCMD command, which allows remote attackers to execute arbitrary script code by providing this code with a trusted filename, as demonstrated by omnichkds.sh...

N-13 News Cross-Site Request Forgery Vulnerability

This host is running N-13 News and is prone to Cross-Site Request Forgery vulnerability. OpenVAS Vulnerability Test $Id: gbn13newscsrfvuln.nasl 7015 2017-08-28 11:51:24Z teissa $ N-13 News Cross-Site Request Forgery Vulnerability Authors: Madhuri D Copyright: Copyright c 2011 Greenbone Networks...

UMI CMS 2.8.1.2 - Multiple Cross-Site Scripting Vulnerabilities

UMI CMS 2.8.1.2 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/46280/info UMI CMS is prone to multiple cross-site-scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

ViArt Shop 4.0.5 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/46256/info ViArt Shop is prone to multiple cross-site-scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

Podcast Generator Local File Include and Cross Site Scripting Vulnerabilities

Podcast Generator is prone to a local file-include vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit the local file-include vulnerability using directory-traversal strings to view and execute local files withi...

TCExam 11.1.16 - user_password Cross-Site Scripting

TCExam 11.1.16 - userpassword Cross-Site Scripting source: https://www.securityfocus.com/bid/46096/info TCExam is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the...

TinyWebGallery Cross Site Scripting and Local File Include Vulnerabilities

TinyWebGallery is prone to local file-include and cross-site scripting vulnerabilities because the application fails to properly sanitize user- supplied input. A remote attacker may leverage the cross-site scripting issue to execute arbitrary script code in the browser of an unsuspecting user in...

WordPress Plugin TagNinja 1.0 - 'id' Cross-Site Scripting

source: https://www.securityfocus.com/bid/46090/info The TagNinja plugin for WordPress is prone to a cross-site-scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting...

WordPress Plugin TagNinja 1.0 - id Cross-Site Scripting

WordPress Plugin TagNinja 1.0 - id Cross-Site Scripting source: https://www.securityfocus.com/bid/46090/info The TagNinja plugin for WordPress is prone to a cross-site-scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute...

vBSEO 3.2.23.5.2 - Multiple Cross-Site Scripting Vulnerabilities

vBSEO 3.2.23.5.2 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/46068/info vBSEO is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitra...

eSyndiCat Directory Software 2.2/2.3 - 'preview' Cross-Site Scripting

source: https://www.securityfocus.com/bid/46082/info eSyndiCat Directory Software is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user...

vBSEO 3.2.2/3.5.2 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/46068/info vBSEO is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

Vanilla Forums 2.0.16 - Target Cross-Site Scripting

Vanilla Forums 2.0.16 - Target Cross-Site Scripting source: https://www.securityfocus.com/bid/46039/info Vanilla Forums is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script...

Vanilla Forums 2.0.16 - 'Target' Cross-Site Scripting

source: https://www.securityfocus.com/bid/46039/info Vanilla Forums is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

PRTG Network Monitor 'errormsg' Parameter Multiple Cross Site Scripting Vulnerabilities

PRTG Network Monitor is prone to multiple cross-site-scripting vulnerabilities because it fails to properly sanitize user- supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may le...