TomatoCart - 'example_form.ajax.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/55295/info TomatoCart is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...

WordPress Plugin Download Monitor - 'dlsearch' Cross-Site Scripting

source: https://www.securityfocus.com/bid/55487/info The Download Monitor plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

IBM Rational ClearQuest 8.0 - Multiple Vulnerabilities

source: https://www.securityfocus.com/bid/55125/info IBM Rational ClearQuest is prone to the following security vulnerabilities: 1. An HTML-injection vulnerability. 2. Multiple information-disclosure vulnerabilities. 3. A security-bypass vulnerability. Attackers may leverage these issues to obtai...

IBM Rational ClearQuest 8.0 - Multiple Vulnerabilities

IBM Rational ClearQuest 8.0 - Multiple Vulnerabilities source: https://www.securityfocus.com/bid/55125/info IBM Rational ClearQuest is prone to the following security vulnerabilities: 1. An HTML-injection vulnerability. 2. Multiple information-disclosure vulnerabilities. 3. A security-bypass...

CVE-2012-4675

CVE-2012-4675 is an XSS vulnerability in PluXml 5.1.6 that allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to file update. The issue is discussed across multiple records (NVD, CVE List, PRION, Debian tracker, etc.) and is characterized by a MEDIUM ba...

CVE-2012-4667

Multiple cross-site scripting XSS vulnerabilities in SquidClamav 5.x before 5.8 allow remote attackers to inject arbitrary web script or HTML via the 1 url, 2 virus, 3 source, or 4 user parameter to a clwarn.cgi, b clwarn.cgi.deDE, c clwarn.cgi.enEN, d clwarn.cgi.frFR, e clwarn.cgi.ptBR, or f...

CVE-2012-4667

Multiple cross-site scripting XSS vulnerabilities in SquidClamav 5.x before 5.8 allow remote attackers to inject arbitrary web script or HTML via the 1 url, 2 virus, 3 source, or 4 user parameter to a clwarn.cgi, b clwarn.cgi.deDE, c clwarn.cgi.enEN, d clwarn.cgi.frFR, e clwarn.cgi.ptBR, or f...

Cross site scripting

Cross-site scripting XSS vulnerability in Roundcube Webmail 0.8.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the signature in an email...

Web Wiz Forums - Multiple Cross-Site Scripting Vulnerabilities

Web Wiz Forums - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/55220/info Web Wiz Forums is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

LibGuides - Multiple Cross-Site Scripting Vulnerabilities

LibGuides - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/55222/info LibGuides is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary...

Mihalism Multi Host - users.php Cross-Site Scripting

Mihalism Multi Host - users.php Cross-Site Scripting source: https://www.securityfocus.com/bid/55237/info Mihalism Multi Host is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script...

Power-eCommerce - Multiple Cross-Site Scripting Vulnerabilities

Power-eCommerce - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/55216/info Power-eCommerce is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execut...

Websense Content Gateway - Multiple Cross-Site Scripting Vulnerabilities

Websense Content Gateway - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/55194/info Websense Content Gateway is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage thes...

SiNG cms - Password.php Cross-Site Scripting

SiNG cms - Password.php Cross-Site Scripting source: https://www.securityfocus.com/bid/55168/info SiNG cms is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browse...

Websense Content Gateway - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/55194/info Websense Content Gateway is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecti...

SiNG cms - 'Password.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/55168/info SiNG cms is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of t...

Open Technology Real Services cross-site scripting vulnerability

Overview Open Technology Real Services OTRS is susceptible to a cross-site scripting vulnerability. Description Open Technology Real Services OTRS contains a cross-site scripting CWE-79 vulnerability in the email body. An attacker may be able to load arbitrary script in the context of the user's...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the Database Structure page in phpMyAdmin 3.4.x before 3.4.11.1 and 3.5.x before 3.5.2.2 allow remote authenticated users to inject arbitrary web script or HTML via 1 a crafted table name during table creation, or a 2 Empty link or 3 Drop link...

Total Shop UK eCommerce CodeIgniter - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/54985/info Total Shop UK eCommerce CodeIgniter is prone to multiple unspecified cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in WinWebMail Server 3.8.1.6 allow remote attackers to inject arbitrary web script or HTML via an e-mail message body with 1 a SCRIPT element, 2 a crafted Cascading Style Sheets CSS expression property, 3 a CSS expression property in the STYLE...