Horde Application Framework 'icon_browser.php' Cross-Site Scripting Vulnerability

Horde Framework is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may help the attacke...

Horde Application Framework 3.3.8 - 'icon_browser.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/43001/info Horde Application Framework is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting us...

SyndeoCMS Local File Include, Cross Site Scripting, and HTML Injection Vulnerabilities

SyndeoCMS is prone to a local file-include, a cross-site scripting, and an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input. Exploiting the local file-include issue allows remote attackers to view or execute local files within the context of the...

NuSOAP 0.9.5 - 'nusoap.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/42959/info NuSOAP is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...

OneCMS 2.6.1 - index.php Cross-Site Scripting

OneCMS 2.6.1 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/42949/info OneCMS is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the...

Nagios XI < 2009R1.3 multiple vulnerabilities

Nagios XI is prone to multiple vulnerabilities. 1. Nagios XI is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

PHPFinance 'group.php' SQL Injection and HTML Injection Vulnerabilities

PHPFinance is prone to an SQL-injection vulnerability and an HTML- injection vulnerability because it fails to sufficiently sanitize user- supplied input. An attacker may exploit the HTML-injection issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...

HP Insight Diagnostics Online Edition 8.4 - &#039;globals.php?tabpage&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/42888/info HP Insight Diagnostics Online Edition is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of ...

HP Insight Diagnostics Online Edition 8.4 - parameters.php?device Cross-Site Scripting

HP Insight Diagnostics Online Edition 8.4 - parameters.php?device Cross-Site Scripting source: https://www.securityfocus.com/bid/42888/info HP Insight Diagnostics Online Edition is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An...

HP Insight Diagnostics Online Edition 8.4 - &#039;survey.php?category&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/42888/info HP Insight Diagnostics Online Edition is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of ...

HP Insight Diagnostics Online Edition 8.4 - &#039;parameters.php?device&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/42888/info HP Insight Diagnostics Online Edition is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of ...

BlastChat Client 3.3 - Cross-Site Scripting

BlastChat Client 3.3 - Cross-Site Scripting source: https://www.securityfocus.com/bid/42734/info BlastChat Client is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...

BlastChat Client 3.3 - Cross-Site Scripting

source: https://www.securityfocus.com/bid/42734/info BlastChat Client is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

Nagios XI - &#039;login.php&#039; Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/42604/info Nagios XI is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

Nagios XI - login.php Multiple Cross-Site Scripting Vulnerabilities

Nagios XI - login.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/42604/info Nagios XI is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

123 Flash Chat 7.8 - Multiple Vulnerabilities

123 Flash Chat 7.8 - Multiple Vulnerabilities source: https://www.securityfocus.com/bid/42478/info 123 Flash Chat is prone to multiple security vulnerabilities. These vulnerabilities include a cross-site scripting vulnerability, multiple information-disclosure vulnerabilities, and a...

CMSimple 3.3 - Cross-Site Scripting Cross-Site Request Forgery

CMSimple 3.3 - Cross-Site Scripting Cross-Site Request Forgery source: https://www.securityfocus.com/bid/42470/info CMSimple is prone to multiple cross-site scripting vulnerabilities and a cross-site request-forgery vulnerability. An attacker can exploit these vulnerabilities to execute arbitrary...

Zomplog 3.9 - &#039;message&#039; Cross-Site Scripting

souce: https://www.securityfocus.com/bid/42457/info Zomplog is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

Edit-X PHP CMS - &#039;search_text&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/42442/info Edit-X PHP CMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the contex...

Nasim Guest Book - &#039;page&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/42503/info Nasim Guest Book is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...