MKPortal 1.2.1 - '/modules/blog/index.php' Home Template Textarea SQL Injection

source: https://www.securityfocus.com/bid/33300/info MKPortal is prone to multiple security vulnerabilities, including SQL-injection, HTML-injection, cross-site scripting, arbitrary-file-upload, and insecure-temporary-file-creation vulnerabilities. Attackers can exploit these issues to execute...

Cisco IOS 12.x - HTTP Server Multiple Cross-Site Scripting Vulnerabilities

Cisco IOS 12.x - HTTP Server Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/33260/info Cisco IOS HTTP Server is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage...

Cisco IOS 12.x - HTTP Server Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/33260/info Cisco IOS HTTP Server is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecti...

Openfire 3.6.2 - 'group-summary.jsp' Cross-Site Scripting

source: https://www.securityfocus.com/bid/32937/info Openfire is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

Plunet BusinessManager 4.1 - pagesUTF8Sys_DirAnzeige.jsp?Pfad Direct Request Information Disclosure

Plunet BusinessManager 4.1 - pagesUTF8SysDirAnzeige.jsp?Pfad Direct Request Information Disclosure source: https://www.securityfocus.com/bid/33153/info Plunet BusinessManager is prone to multiple security-bypass and HTML-injection vulnerabilities because it fails to properly sanitize user-supplie...

Plunet BusinessManager 4.1 - 'pagesUTF8/Sys_DirAnzeige.jsp?Pfad' Direct Request Information Disclosure

source: https://www.securityfocus.com/bid/33153/info Plunet BusinessManager is prone to multiple security-bypass and HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of a...

KDE Konqueror 4.1 - Multiple Cross-Site Scripting / Denial of Service Vulnerabilities

source: https://www.securityfocus.com/bid/33085/info KDE Konqueror is prone to multiple cross-site scripting vulnerabilities and multiple denial-of-service vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage these issues to execute...

ViArt Shop 3.5 - 'manuals_search.php?manuals_search' Cross-Site Scripting

source: https://www.securityfocus.com/bid/33043/info ViArt Shop is prone to multiple remote vulnerabilities: - Multiple cross-site scripting vulnerabilities - An information-disclosure vulnerability - An authentication-bypass vulnerability An attacker can exploit these issues to execute arbitrary...

ViArt Shop 3.5 - manuals_search.php?manuals_search Cross-Site Scripting

ViArt Shop 3.5 - manualssearch.php?manualssearch Cross-Site Scripting source: https://www.securityfocus.com/bid/33043/info ViArt Shop is prone to multiple remote vulnerabilities: - Multiple cross-site scripting vulnerabilities - An information-disclosure vulnerability - An authentication-bypass...

COMTREND CT-536 / HG-536 Routers - Multiple Remote Vulnerabilities

source: https://www.securityfocus.com/bid/32975/info COMTREND CT-536 and HG-536 are prone to multiple remote vulnerabilities: - Multiple unauthorized-access vulnerabilities - An information-disclosure vulnerability - Multiple cross-site scripting vulnerabilities - A denial-of-service vulnerabilit...

PHPcksec 0.2 - PHPcksec.php Cross-Site Scripting

PHPcksec 0.2 - PHPcksec.php Cross-Site Scripting source: https://www.securityfocus.com/bid/32890/info The 'phpcksec' script is prone to a cross-site scripting vulnerability. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context ...

TWiki < 4.2.4 Multiple XSS / Command Execution Vulnerabilities

TWiki is prone to multiple cross-site scripting XSS and command execution vulnerabilities. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE ...

PHPepperShop 1.4 - shopkontakt.php Cross-Site Scripting

PHPepperShop 1.4 - shopkontakt.php Cross-Site Scripting source: https://www.securityfocus.com/bid/32690/info PhPepperShop is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute...

PrestaShop 1.1 - &#039;/admin/login.php?PATH_INFO&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/32689/info PrestaShop is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

PHPepperShop 1.4 - index.php Cross-Site Scripting

PHPepperShop 1.4 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/32690/info PhPepperShop is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary...

Yappa-ng - Query String Cross-Site Scripting

Yappa-ng - Query String Cross-Site Scripting source: https://www.securityfocus.com/bid/32623/info The 'yappa-ng' program is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitra...

Yappa-ng - &#039;index.php?album&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/32623/info The 'yappa-ng' program is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an...

Softbiz Classifieds Script - &#039;/advertisers/signinform.php?msg&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/32569/info Softbiz Classifieds Script is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an...

IBM Rational ClearCase 78 - Cross-Site Scripting

IBM Rational ClearCase 78 - Cross-Site Scripting source: https://www.securityfocus.com/bid/32574/info IBM Rational ClearCase is prone to a cross-site scripting vulnerability because the software fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitra...

Pre ASP Job Board - &#039;emp_login.asp&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/32572/info Pre ASP Job Board is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...