Microsoft Forefront Unified Access Gateway (CVE-2011-1896) Cross-Site Scripting Vulnerability

Description Microsoft Forefront Unified Access Gateway is prone to a cross-site scripting vulnerability because Web Monitor fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...

2Moons 1.4 - Multiple Remote File Inclusions

source: https://www.securityfocus.com/bid/50046/info 2Moons is prone to multiple remote file-include vulnerabilities because the application fails to sufficiently sanitize user-supplied input. Exploiting these issues may allow a remote attacker to obtain sensitive information or execute arbitrary...

6KBBS 8.0 build 20101201 - Cross-Site Scripting Information Disclosure

6KBBS 8.0 build 20101201 - Cross-Site Scripting Information Disclosure source: https://www.securityfocus.com/bid/50050/info 6KBBS is prone to multiple cross-site scripting and information-disclosure vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverag...

Jaws 0.8.14 - Multiple Remote File Inclusions

source: https://www.securityfocus.com/bid/50022/info Jaws is prone to multiple remote file-include vulnerabilities because the application fails to sufficiently sanitize user-supplied input. Exploiting these issues may allow a remote attacker to obtain sensitive information or execute arbitrary...

Active CMS 1.2 - mod Cross-Site Scripting

Active CMS 1.2 - mod Cross-Site Scripting source: https://www.securityfocus.com/bid/50001/info Active CMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage this issu...

Novell GroupWise WebAccess Directory.Item Parameters XSS

The version of Novell GroupWise installed on the remote Windows host is earlier than 8.0.2 HP3. It is, therefore, reportedly affected by a cross-site scripting vulnerability because the application fails to sanitize user-supplied input to the 'Directory.Item.name' and 'Directory.Item.displayName'...

Mozilla Products Same Origin Policy Bypass Vulnerability - Windows

Mozilla Firefox/Thunderbird/Seamonkey is prone to same origin policy bypass vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

vTiger CRM 5.2.1 - index.php Multiple Cross-Site Scripting Vulnerabilities (1)

vTiger CRM 5.2.1 - index.php Multiple Cross-Site Scripting Vulnerabilities 1 source: https://www.securityfocus.com/bid/49927/info vtiger CRM is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues t...

vTiger CRM 5.2.1 - 'PHPrint.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/49927/info vtiger CRM is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

Phorum 5.2.18 - adminindex.php Cross-Site Scripting

Phorum 5.2.18 - adminindex.php Cross-Site Scripting source: https://www.securityfocus.com/bid/49920/info Phorum is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...

Phorum 5.2.18 - '/admin/index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/49920/info Phorum is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...

WordPress Theme RedLine 1.65 - s Cross-Site Scripting

WordPress Theme RedLine 1.65 - s Cross-Site Scripting source: https://www.securityfocus.com/bid/49880/info The RedLine theme for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute...

JVN#09789751: BaserCMS vulnerable to cross-site scripting

BaserCMS is an open-source Contents Management System CMS. BaserCMS contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. Solution Update the software Update to the latest version according to the information provided by the developer...

Digital College 'basepath' Parameter Multiple Remote File Include Vulnerabilities

Digital College is prone to multiple remote file-include vulnerabilities because the application fails to sufficiently sanitize user-supplied input. Exploiting these issues may allow a remote attacker to obtain sensitive information or to execute arbitrary script code in the context of the Web...

Digital College <= 1.1 Multiple RFI Vulnerabilities - Active Check

Digital College is prone to multiple remote file-include vulnerabilities because the application fails to sufficiently sanitize user-supplied input. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective...

MyNews 1.2 'basepath' Parameter Multiple Remote File Include Vulnerabilities

MyNews 1.2 is prone to multiple remote file-include vulnerabilities because the application fails to sufficiently sanitize user- supplied input. Exploiting these issues may allow a remote attacker to obtain sensitive information or to execute arbitrary script code in the context of the Web server...

WordPress Theme EvoLve 1.2.5 - &#039;s&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/49872/info The EvoLve theme for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting us...

Bitweaver 2.8.1 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/49864/info Bitweaver is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

Joomla! &lt; 1.7.0 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/49853/info Joomla! is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker could leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

Adobe ColdFusion 7 - Multiple Cross-Site Scripting Vulnerabilities

Adobe ColdFusion 7 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/49787/info Adobe ColdFusion is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied data. An attacker could exploit...