Swiki 1.5 - HTML Injection Cross-Site Scripting

Swiki 1.5 - HTML Injection Cross-Site Scripting source: https://www.securityfocus.com/bid/28680/info Swiki is prone to an HTML-injection vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execu...

Tiny Portal 1.0 - 'shouts' Cross-Site Scripting

source: https://www.securityfocus.com/bid/28630/info Tiny Portal is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context o...

mcGallery 1.1 - resize.php?lang Cross-Site Scripting

mcGallery 1.1 - resize.php?lang Cross-Site Scripting source: https://www.securityfocus.com/bid/28587/info mcGallery is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary...

mcGallery 1.1 - 'resize.php?lang' Cross-Site Scripting

source: https://www.securityfocus.com/bid/28587/info mcGallery is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in t...

DivXDB 2002 0.94b - Multiple Cross-Site Scripting Vulnerabilities

DivXDB 2002 0.94b - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/28566/info DivXDB 2002 is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

@lex Poll 1.2 - setup.php Cross-Site Scripting

@lex Poll 1.2 - setup.php Cross-Site Scripting source: https://www.securityfocus.com/bid/28520/info @lex Poll is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...

Jack (tR) Jax LinkLists 1.00 - jax_linklists.php Cross-Site Scripting

Jack tR Jax LinkLists 1.00 - jaxlinklists.php Cross-Site Scripting source: https://www.securityfocus.com/bid/28518/info Jax LinkLists is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrar...

@lex Guestbook 4.0.5 - 'index.php?test' Cross-Site Scripting

source: https://www.securityfocus.com/bid/28519/info @lex Guestbook is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in...

@lex Guestbook 4.0.5 - index.php?test Cross-Site Scripting

@lex Guestbook 4.0.5 - index.php?test Cross-Site Scripting source: https://www.securityfocus.com/bid/28519/info @lex Guestbook is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

DigiDomain 2.2 - 'suggest_result.asp' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/28475/info DigiDomain is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

BlackBoard Academic Suite 6/7 - '/webapps/BlackBoard/execute/viewCatalog?searchText' Cross-Site Scripting

source: https://www.securityfocus.com/bid/28455/info Blackboard Academic Suite is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of...

GeeCarts - view.php?id Cross-Site Scripting

GeeCarts - view.php?id Cross-Site Scripting source: https://www.securityfocus.com/bid/28470/info GeeCarts is prone to multiple input-validation vulnerabilities, including remote file-include and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting...

GeeCarts - search.php?id Cross-Site Scripting

GeeCarts - search.php?id Cross-Site Scripting source: https://www.securityfocus.com/bid/28470/info GeeCarts is prone to multiple input-validation vulnerabilities, including remote file-include and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploitin...

BlackBoard Academic Suite 67 - bincommonannouncement.pl?data__announcements___pk1_pk2__subject Cross-Site Scripting

BlackBoard Academic Suite 67 - bincommonannouncement.pl?dataannouncementspk1pk2subject Cross-Site Scripting source: https://www.securityfocus.com/bid/28455/info Blackboard Academic Suite is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize...

GeeCarts - show.php?id Cross-Site Scripting

GeeCarts - show.php?id Cross-Site Scripting source: https://www.securityfocus.com/bid/28470/info GeeCarts is prone to multiple input-validation vulnerabilities, including remote file-include and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting...

cPanel 11.18.311.21 - manpage.html Cross-Site Scripting

cPanel 11.18.311.21 - manpage.html Cross-Site Scripting source: https://www.securityfocus.com/bid/28403/info cPanel is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary...

Elastic Path 4.1 - managerFileManager.jsp?dir Traversal Arbitrary Directory Listing

Elastic Path 4.1 - managerFileManager.jsp?dir Traversal Arbitrary Directory Listing source: https://www.securityfocus.com/bid/28352/info Elastic Path is prone to multiple input-validation vulnerabilities because it fails to properly sanitize user-supplied input. These issues include: - A local...

News-Template 0.5beta - print.php Multiple Cross-Site Scripting Vulnerabilities

News-Template 0.5beta - print.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/28353/info News-Template is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these...

News-Template 0.5beta - 'print.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/28353/info News-Template is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user ...

MyBlog 1.x - SQL Injection / Remote File Inclusion

source: https://www.securityfocus.com/bid/28313/info MyBlog is prone to multiple input-validation vulnerabilities, including: - Multiple SQL-injection vulnerabilities - Multiple remote file-include vulnerabilities - A privilege-escalation vulnerability An attacker may exploit these issues to...