WordPress Plugin Cimy Counter 0.9.4 - HTTP Response Splitting Cross-Site Scripting

WordPress Plugin Cimy Counter 0.9.4 - HTTP Response Splitting Cross-Site Scripting source: https://www.securityfocus.com/bid/41132/info Cimy Counter for WordPress is prone to an HTTP response-splitting vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize...

Mango Blog 1.4.1 - '/archives.cfm/search' Cross-Site Scripting

source: https://www.securityfocus.com/bid/39864/info Mango Blog is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...

Apache ActiveMQ version 5.3.x XSS Vulnerabilities

Exploit for php platform in category web applications ================================================= Apache ActiveMQ version 5.3.x XSS Vulnerabilities ================================================= Severity: Medium Overview: --------- Apache ActiveMQ is prone to cross-site scripting...

Apache ActiveMQ 'admin/queueBrowse' Cross Site Scripting Vulnerability

Apache ActiveMQ is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Apache ActiveMQ 5.3 - adminqueueBrowse Cross-Site Scripting

Apache ActiveMQ 5.3 - adminqueueBrowse Cross-Site Scripting source: https://www.securityfocus.com/bid/39771/info Apache ActiveMQ is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary...

ProArcadeScript - 'search.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/39749/info ProArcadeScript is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the conte...

Ektron CMS400.NET 7.5.2 - Multiple Vulnerabilities

source: https://www.securityfocus.com/bid/39679/info Ektron CMS400.NET is prone to multiple security vulnerabilities, including multiple cross-site scripting issues, an information-disclosure issue, a cookie-manipulation issue, a directory-traversal issue, a security-bypass issue, and a URI...

Kasseler CMS 2.0.5 - index.php Cross-Site Scripting

Kasseler CMS 2.0.5 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/39703/info Kasseler CMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in...

Kasseler CMS 2.0.5 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/39703/info Kasseler CMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context ...

PowerEasy 2006 - ComeUrl Cross-Site Scripting

PowerEasy 2006 - ComeUrl Cross-Site Scripting source: https://www.securityfocus.com/bid/39696/info PowerEasy is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the...

PowerEasy 2006 - 'ComeUrl' Cross-Site Scripting

source: https://www.securityfocus.com/bid/39696/info PowerEasy is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context ...

vBulletin Two-Step External Link Module - externalredirect.php Cross-Site Scripting

vBulletin Two-Step External Link Module - externalredirect.php Cross-Site Scripting source: https://www.securityfocus.com/bid/39597/info Two-Step External Link module for vBulletin is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied...

Atlassian JIRA 500page.jsp Referer XSS

"The Atlassian JIRA installation hosted on the remote web server is affected by a cross-site scripting XSS vulnerability in the 500page.jsp file due to an HTTP 'referer' field not being properly sanitized before being displayed in the page. A remote attacker can exploit this, by tricking a user...

Kleophatra CMS 0.1.1 - 'module' Cross-Site Scripting

source: https://www.securityfocus.com/bid/39593/info Kleophatra CMS is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

Axon Virtual PBX 2.13 Multiple Remote Vulnerabilities

NCH Software Axon virtual PBX is prone to multiple remote vulnerabilities, including: - A cross-site scripting vulnerability. - A cross-site request forgery vulnerability. - An arbitrary file deletion vulnerability. - A directory traversal vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG...

Ziggurat Farsi CMS - 'id' Cross-Site Scripting

source: https://www.securityfocus.com/bid/39311/info Ziggurat Farsi CMS is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

Ziggurat Farsi CMS - id Cross-Site Scripting

Ziggurat Farsi CMS - id Cross-Site Scripting source: https://www.securityfocus.com/bid/39311/info Ziggurat Farsi CMS is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code ...

Zikula Application Framework 1.2.2 - 'ZLanguage.php?lang' Cross-Site Scripting

source: https://www.securityfocus.com/bid/39717/info Zikula Application Framework is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting...

Istgah For Centerhost - 'view_ad.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/39330/info Istgah for Centerhost is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

Piwik 0.5.5 - 'form_url' Cross-Site Scripting

source: https://www.securityfocus.com/bid/39144/info Piwik is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of t...