Mambo Module MOStlyCE 2.4 - connector.php Cross-Site Scripting

Mambo Module MOStlyCE 2.4 - connector.php Cross-Site Scripting source: https://www.securityfocus.com/bid/27470/info The MOStlyCE module for Mambo is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this...

F5 BIG-IP Application Security Manager 9.4.3 - report_type Cross-Site Scripting

F5 BIG-IP Application Security Manager 9.4.3 - reporttype Cross-Site Scripting source: https://www.securityfocus.com/bid/27462/info F5 BIG-IP Application Security Manager is prone to a cross-site scripting vulnerability because the web management interface fails to properly sanitize user-supplied...

F5 BIG-IP Application Security Manager 9.4.3 - 'report_type' Cross-Site Scripting

source: https://www.securityfocus.com/bid/27462/info F5 BIG-IP Application Security Manager is prone to a cross-site scripting vulnerability because the web management interface fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in...

Fonality trixbox 2.4.2 - Cross-Site Scripting (2)

Fonality trixbox 2.4.2 - Cross-Site Scripting 2 source: https://www.securityfocus.com/bid/27460/info The 'trixbox' product is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to...

Fonality trixbox 2.4.2 - Cross-Site Scripting (2)

source: https://www.securityfocus.com/bid/27460/info The 'trixbox' product is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an...

Novemberborn sIFR 2.0.2/3 - 'txt' Cross-Site Scripting

source: https://www.securityfocus.com/bid/27394/info Novemberborn sIFR is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting us...

Novemberborn sIFR 2.0.23 - txt Cross-Site Scripting

Novemberborn sIFR 2.0.23 - txt Cross-Site Scripting source: https://www.securityfocus.com/bid/27394/info Novemberborn sIFR is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute...

DeluxeBB 1.1 - 'attachments_header.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/27401/info DeluxeBB is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

Nucleus CMS 3.22 - action.php Cross-Site Scripting

Nucleus CMS 3.22 - action.php Cross-Site Scripting source: https://www.securityfocus.com/bid/27492/info Nucleus CMS is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary...

Nucleus CMS 3.22 - 'action.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/27492/info Nucleus CMS is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in...

Debian Security Advisory DSA 914-1 (horde2)

The remote host is missing an update to horde2 announced via advisory DSA 914-1. A vulnerability has been discovered in horde2, a web application suite, that allows attackers to insert arbitrary script code into the error web page. The old stable distribution woody does not contain horde2 package...

PHP Running Management 1.0.2 - index.php Cross-Site Scripting

PHP Running Management 1.0.2 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/27268/info PHP Running Management is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute...

Joomla! Component SMF Forum 1.1.4 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/27218/info Joomla-SMF Forum is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user ...

IceWarp Mail Server 9.1.1 - '/admin/index.html' Cross-Site Scripting

source: https://www.securityfocus.com/bid/27189/info IceWarp Mail Server is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

eTicket 1.5.5.2 - admin.php Multiple SQL Injections

eTicket 1.5.5.2 - admin.php Multiple SQL Injections source: https://www.securityfocus.com/bid/27173/info eTicket is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. These vulnerabilities include multiple SQL-injection issue...

eTicket 1.5.5.2 - 'admin.php' Multiple SQL Injections

source: https://www.securityfocus.com/bid/27173/info eTicket is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. These vulnerabilities include multiple SQL-injection issues, a cross-site scripting issue, and an...

eTicket 1.5.5.2 - search.php Multiple SQL Injections

eTicket 1.5.5.2 - search.php Multiple SQL Injections source: https://www.securityfocus.com/bid/27173/info eTicket is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. These vulnerabilities include multiple SQL-injection...

eTicket 1.5.5.2 - 'view.php?s' Cross-Site Scripting

source: https://www.securityfocus.com/bid/27173/info eTicket is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. These vulnerabilities include multiple SQL-injection issues, a cross-site scripting issue, and an...

Snitz Forums 2000 3.4.5/3.4.6 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/27162/info Snitz Forums 2000 is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user...

Snitz Forums 2000 3.4.53.4.6 - Multiple Cross-Site Scripting Vulnerabilities

Snitz Forums 2000 3.4.53.4.6 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/27162/info Snitz Forums 2000 is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these...