Livor 2.5 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/23353/info Livor is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

Atlassian JIRA 3.4.2 - IssueNavigator.JSPA Cross-Site Scripting

source: https://www.securityfocus.com/bid/23244/info Atlassian JIRA is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

Mephisto Blog 0.7.3 - Search Function Cross-Site Scripting

source: https://www.securityfocus.com/bid/23141/info Mephisto Blog is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user...

PHPX 3.5.153.5.16 - print.php SQL Injection

PHPX 3.5.153.5.16 - print.php SQL Injection source: https://www.securityfocus.com/bid/23033/info PHPX is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-based...

WordPress Core < 2.1.2 - 'PHP_Self' Cross-Site Scripting

source: https://www.securityfocus.com/bid/23027/info WordPress is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user. This...

PHPX 3.5.153.5.16 - users.php SQL Injection

PHPX 3.5.153.5.16 - users.php SQL Injection source: https://www.securityfocus.com/bid/23033/info PHPX is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-based...

Oracle Portal 10g - 'P_OldURL' Cross-Site Scripting

source: https://www.securityfocus.com/bid/22999/info Oracle Portal is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user i...

Adobe Reader plug-in AcroPDF.dll 8.0.0.0 Resource Consumption

No description provided by source. ------------------------------------------------------------------------------- Adobe PDF Reader plug-in AcroPDF.dll ver. 8.0.0.0 Resource Consumption author: shinnai mail: shinnaiatautisticidotorg site: http://www.shinnai.altervista.org...

Adobe Reader plug-in AcroPDF.dll 8.0.0.0 Resource Consumption

Exploit for unknown platform in category dos / poc ============================================================= Adobe Reader plug-in AcroPDF.dll 8.0.0.0 Resource Consumption =============================================================...

Adobe Reader Plugin AcroPDF.dll 8.0.0.0 - Resource Consumption

Adobe Reader Plugin AcroPDF.dll 8.0.0.0 - Resource Consumption !-------------------------------------------------------------------------------- Adobe PDF Reader plug-in AcroPDF.dll ver. 8.0.0.0 Resource Consumption author: shinnai mail: shinnaiatautisticidotorg site:...

Adobe Reader Plugin 'AcroPDF.dll' 8.0.0.0 - Resource Consumption

!-------------------------------------------------------------------------------- Adobe PDF Reader plug-in AcroPDF.dll ver. 8.0.0.0 Resource Consumption author: shinnai mail: shinnaiatautisticidotorg site: http://www.shinnai.altervista.org Well, Adobe guys do a good job after the publication of a...

WordPress 2.1.1 - post.php Cross-Site Scripting

WordPress 2.1.1 - post.php Cross-Site Scripting source: https://www.securityfocus.com/bid/22735/info Wordpress is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script...

Active Calendar 1.2 - '/data/y_3.php?css' Cross-Site Scripting

source: https://www.securityfocus.com/bid/22705/info Active Calendar is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user i...

Active Calendar 1.2 - datajs.php?css Cross-Site Scripting

Active Calendar 1.2 - datajs.php?css Cross-Site Scripting source: https://www.securityfocus.com/bid/22705/info Active Calendar is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

Active Calendar 1.2 - '/data/y_2.php?css' Cross-Site Scripting

source: https://www.securityfocus.com/bid/22705/info Active Calendar is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user i...

CedStat 1.31 - index.php Cross-Site Scripting

CedStat 1.31 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/22653/info CedStat is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code ...

AbleDesign MyCalendar 2.20.3 - index.php Multiple Cross-Site Scripting Vulnerabilities

AbleDesign MyCalendar 2.20.3 - index.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/22635/info MyCalendar is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage thes...

AbleDesign MyCalendar 2.20.3 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/22635/info MyCalendar is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

Spyce 2.1.3 - spyce/examples/automaton.spy Direct Request Error Message Information Disclosure

source: https://www.securityfocus.com/bid/27898/info Spyce is prone to multiple input-validation vulnerabilities that can lead to information disclosure or client-side script execution. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user i...

Spyce 2.1.3 - docsexampleshandlervalidate.spy?x Cross-Site Scripting

Spyce 2.1.3 - docsexampleshandlervalidate.spy?x Cross-Site Scripting source: https://www.securityfocus.com/bid/27898/info Spyce is prone to multiple input-validation vulnerabilities that can lead to information disclosure or client-side script execution. An attacker may leverage these issues to...