SqWebMail 5.0.4 - HTML Email IMG Tag Script Injection

SqWebMail 5.0.4 - HTML Email IMG Tag Script Injection source: https://www.securityfocus.com/bid/14676/info SqWebMail is affected by a vulnerability that may allow remote attackers to inject and execute arbitrary script code in a user's browser. This may allow for various attacks including session...

SqWebMail 5.0.4 - HTML Email IMG Tag Script Injection

source: https://www.securityfocus.com/bid/14676/info SqWebMail is affected by a vulnerability that may allow remote attackers to inject and execute arbitrary script code in a user's browser. This may allow for various attacks including session hijacking due to the theft of user credentials...

jawsGlossary.txt

XSS Bug in Jaws Glossary v 0.4 - 0.5.1 latest version STATUS: The vendor has been contacted, fixed in cvs. Jaws is a Framework and Content Management System for building dynamic web sites. It aims to be User Friendly giving ease of use and lots of ways to customize web sites, but at the same time...

Jax PHP Scripts 1.01.342.143.31 - ips2block Banned IP Disclosure

Jax PHP Scripts 1.01.342.143.31 - ips2block Banned IP Disclosure source: https://www.securityfocus.com/bid/14482/info Jax PHP Scripts are affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure in the applications to properly sanitize user-supplied input. An...

Jax PHP Scripts 1.0/1.34/2.14/3.31 - logfile.csv User IP Disclosure

source: https://www.securityfocus.com/bid/14482/info Jax PHP Scripts are affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure in the applications to properly sanitize user-supplied input. An attacker may leverage any of these issues to have arbitrary script...

Jax PHP Scripts 1.0/1.34/2.14/3.31 - ips2block Banned IP List Disclosure

source: https://www.securityfocus.com/bid/14482/info Jax PHP Scripts are affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure in the applications to properly sanitize user-supplied input. An attacker may leverage any of these issues to have arbitrary script...

Jax PHP Scripts 1.01.342.143.31 - jax_linklists.php Multiple Cross-Site Scripting Vulnerabilities

Jax PHP Scripts 1.01.342.143.31 - jaxlinklists.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/14481/info Jax PHP Scripts are affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure in the applications to properly...

Jax PHP Scripts 1.01.342.143.31 - jax_calendar.php Multiple Cross-Site Scripting Vulnerabilities

Jax PHP Scripts 1.01.342.143.31 - jaxcalendar.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/14481/info Jax PHP Scripts are affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure in the applications to properly...

Jax PHP Scripts 1.01.342.143.31 - sign_in.php?language Cross-Site Scripting

Jax PHP Scripts 1.01.342.143.31 - signin.php?language Cross-Site Scripting source: https://www.securityfocus.com/bid/14481/info Jax PHP Scripts are affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure in the applications to properly sanitize user-supplied...

Web Content Management - 'list.php?strTable' Cross-Site Scripting

source: https://www.securityfocus.com/bid/14464/info Web content management is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issues to have arbitrary scri...

Easypx41 - Multiple Cross-Site Scripting Vulnerabilities

Easypx41 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/14416/info Easypx41 is prone to cross-site scripting vulnerabilities. An attacker may leverage these issue to have arbitrary script code executed in the browser of an unsuspecting user in the contex...

Easypx41 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/14416/info Easypx41 is prone to cross-site scripting vulnerabilities. An attacker may leverage these issue to have arbitrary script code executed in the browser of an unsuspecting user in the context of the affected site. These may facilitate the theft of...

SPI Dynamics WebInspect 5.0.196 - Cross Application Script Injection

SPI Dynamics WebInspect 5.0.196 - Cross Application Script Injection source: https://www.securityfocus.com/bid/14385/info WebInspect is vulnerable to a cross-application script injection vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied data prior...

Pyrox Search 1.0.5 - Newsearch.php Whatdoreplace Cross-Site Scripting

Pyrox Search 1.0.5 - Newsearch.php Whatdoreplace Cross-Site Scripting source: https://www.securityfocus.com/bid/14343/info A cross-site scripting vulnerability affects Pyrox Search. This issue is due to a failure of the application to properly sanitize user-supplied URI input that will be output ...

Mozilla Thunderbird: Multiple vulnerabilities

Background Mozilla Thunderbird is the next-generation mail client from the Mozilla project. Description The following vulnerabilities were found and fixed in Mozilla Thunderbird: "mozbugra4" and "shutdown" discovered that Thunderbird was improperly cloning base objects MFSA 2005-56. "mozbugra4"...

Simple Message Board 2.0 beta1 - 'Thread.cfm' Cross-Site Scripting

source: https://www.securityfocus.com/bid/14268/info A cross-site scripting vulnerability affects Simple Message Board. This issue is due to a failure of the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the...

PPA 0.5.6 - 'ppa_root_path' File Inclusion

source: https://www.securityfocus.com/bid/14209/info PPA is susceptible to a remote file include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary server-side script code on an affect...

Community Server Forums - SearchResults.aspx Cross-Site Scripting

Community Server Forums - SearchResults.aspx Cross-Site Scripting source: https://www.securityfocus.com/bid/14078/info Community Server Forums is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker...

Hosting Controller 6.1 - error.asp Cross-Site Scripting

Hosting Controller 6.1 - error.asp Cross-Site Scripting source: https://www.securityfocus.com/bid/14080/info Hosting Controller is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input to the 'error.asp' script. A...

Whois.Cart 2.2.x - profile.php Cross-Site Scripting

Whois.Cart 2.2.x - profile.php Cross-Site Scripting source: https://www.securityfocus.com/bid/14044/info Whois.Cart is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to...