OneFileCMS 1.1.1 - 'onefilecms.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/49257/info OneFileCMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage this issue to execute arbitrary script code in the...

Zabbix < 1.8.6 XSS Vulnerability

Zabbix is prone to a cross-site scripting XSS vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to...

awiki <= 20100125 Multiple LFI Vulnerabilities - Active Check

awiki is prone to multiple local file include LFI vulnerabilities because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Adobe ColdFusion - &#039;probe.cfm&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/49220/info Adobe ColdFusion is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker could exploit this vulnerability to execute arbitrary script code in the context of the affected website...

AeroMail Cross Site Request Forgery, HTML Injection and Cross Site Scripting Vulnerabilities

AeroMail is prone to multiple remote vulnerabilities, including: 1. A cross-site scripting vulnerability. 2. Multiple HTML-injection vulnerabilities. 3. Multiple cross-site request forgery vulnerabilities. The attacker can exploit the cross-site scripting issue to execute arbitrary script code in...

WordPress Plugin Fast Secure Contact Form 3.0.3.1 - index.php Cross-Site Scripting

WordPress Plugin Fast Secure Contact Form 3.0.3.1 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/49193/info The Fast Secure Contact Form plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An...

phpWebSite - &#039;page_id&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/49176/info phpWebSite is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...

CVE-2011-0550

Multiple cross-site scripting XSS vulnerabilities in the Web Interface in the Endpoint Protection Manager in Symantec Endpoint Protection SEP 11.0.600x through 11.0.6300 allow remote attackers to inject arbitrary web script or HTML via 1 the token parameter to portal/Help.jsp or 2 the URI in a...

OpenEMR Multiple Cross Site Scripting Vulnerabilities

OpenEMR is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the...

WordPress Plugin eShop 6.2.8 - Multiple Cross-Site Scripting Vulnerabilities

WordPress Plugin eShop 6.2.8 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/49117/info eShop plugin for WordPress is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverag...

Microsoft Visual Studio Report Viewer 2005 Control - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/49033/info Microsoft Visual Studio is prone to multiple cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting...

WordPress Plugin WP E-Commerce 3.8.6 - &#039;cart_messages[]&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/49009/info The WP e-Commerce plug-in for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

mt LinkDatenbank - b Cross-Site Scripting

mt LinkDatenbank - b Cross-Site Scripting source: https://www.securityfocus.com/bid/48967/info mt LinkDatenbank is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in th...

mt LinkDatenbank - &#039;b&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/48967/info mt LinkDatenbank is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

Andy's PHP Knowledgebase Multiple Cross-Site Scripting Vulnerabilities

This host is running Andy's PHP Knowledgebase and is prone to multiple cross site scripting vulnerabilities. OpenVAS Vulnerability Test $Id: gbaphpkbmultxssvuln.nasl 5840 2017-04-03 12:02:24Z cfi $ Andy's PHP Knowledgebase Multiple Cross-Site Scripting Vulnerabilities Authors: Sooraj KS Copyright...

Open Handset Alliance Android 2.3.43.1 - Browser Sandbox Security Bypass

Open Handset Alliance Android 2.3.43.1 - Browser Sandbox Security Bypass source: https://www.securityfocus.com/bid/48954/info Open Handset Alliance Android is prone to a vulnerability that may allow a bypass of the browser sandbox. Successful exploits will allow attackers to execute arbitrary...

Chyrp 2.x - &#039;/includes/lib/gz.php?File&#039; Traversal Arbitrary File Access

source: https://www.securityfocus.com/bid/48672/info Chyrp is prone to multiple cross-site scripting vulnerabilities, a local file-include vulnerability, an arbitrary file-upload vulnerability, and a directory-traversal vulnerability. An attacker may leverage these issues to execute arbitrary...

Chyrp 2.x - &#039;action&#039; Traversal Local File Inclusion

source: https://www.securityfocus.com/bid/48672/info Chyrp is prone to multiple cross-site scripting vulnerabilities, a local file-include vulnerability, an arbitrary file-upload vulnerability, and a directory-traversal vulnerability. An attacker may leverage these issues to execute arbitrary...

Plone vulnerable to cross-site scripting

Overview Plone contains a cross-site scripting vulnerability. Plone is an open source content management system CMS. Plone contains a cross-site scripting vulnerability. Daiki Fukumori of Cyber Defense Institute, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer...

Tiki Wiki CMS Groupware 7.2 - snarf_ajax.php Cross-Site Scripting

Tiki Wiki CMS Groupware 7.2 - snarfajax.php Cross-Site Scripting source: https://www.securityfocus.com/bid/48806/info Tiki Wiki CMS Groupware is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execu...