PHPFaber TopSites - index.php Cross-Site Scripting

PHPFaber TopSites - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/17542/info phpFaber TopSites is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code...

JVN#35274905 FreeStyleWiki cross-site scripting vulnerability

Impact An rbitrary script may be executed on the user's web browser. In addition, if session information from a cookie is leaked, an attacker could possibly conduct session hijacking. Solution Products Affected FreeStyleWiki 3.5.10 and earlier...

Cross site scripting

Cross-site scripting XSS vulnerability in Adobe Document Server for Reader Extensions 6.0 allows remote attackers to inject arbitrary web script or HTML via 1 the actionID parameter in ads-readerext and 2 the op parameter in AlterCast. NOTE: it is not clear whether the vendor advisory addresses...

LifeType 1.0.3 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17529/info LifeType is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user in the contex...

Cross site scripting

Cross-site scripting XSS vulnerability in XMB Forum 1.9.5 allows remote attackers to inject arbitrary web script or HTML by uploading a Flash .SWF video that contains a getURL function call, which causes the video to be rendered without disabling ActionScript...

PHPMyForum 4.0 - 'page' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17420/info phpMyForum is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in...

TalentSoft Web+ Shop 5.0 - Deptname Cross-Site Scripting

TalentSoft Web+ Shop 5.0 - Deptname Cross-Site Scripting source: https://www.securityfocus.com/bid/17418/info Web+ Shop is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue...

SKForum 1.x - planning.View.action?time Cross-Site Scripting

SKForum 1.x - planning.View.action?time Cross-Site Scripting source: https://www.securityfocus.com/bid/17389/info SKForum is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may...

SKForum 1.x - user.View.action?userID Cross-Site Scripting

SKForum 1.x - user.View.action?userID Cross-Site Scripting source: https://www.securityfocus.com/bid/17389/info SKForum is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverag...

alcaricatier.txt

Hello Vulnerable: AL-Caricatier,V.2.5 http://www.php-ar.com Exploit : http://example.com/AL-Caricatier/viewcaricatier.php?CatName='alertdocument.cookie; http://example.com/AL-Caricatier/viewcaricatier.php?CaricatierID='alertdocument.cookie;...

RedCMS 0.1 - register.php Multiple Cross-Site Scripting Vulnerabilities

RedCMS 0.1 - register.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/17336/info RedCMS is prone to multiple input-validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. The application...

CVE-2006-1479

Multiple cross-site scripting XSS vulnerabilities in Serge Rey gtd-php aka Getting Things Done 0.5 allow remote attackers to inject arbitrary web script or HTML via the Description field in 1 newProject.php, 2 newList.php, and 3 newWaitingOn.php; the Title field in 4 newProject.php, 5 newList.php...

Cross site scripting

Cross-site scripting XSS vulnerability in accountlogon.cfm in classifiedZONE 1.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the rtn parameter...

CVE-2006-1427

Multiple cross-site scripting XSS vulnerabilities in WebAPP 0.9.9.3.2 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 action, 2 id, 3 num, 4 board, 5 cat, 6 real, 7 viewcat, 8 img, or 9 curcatname parameter in cgi-bin/index.cgi, or 10 vsSD parameter in...

PHPCOIN 1.2 - mod.php?fs Cross-Site Scripting

PHPCOIN 1.2 - mod.php?fs Cross-Site Scripting source: https://www.securityfocus.com/bid/17279/info phpCOIN is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issue...

FusionZONE CouponZONE 4.2 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/17272/info The couponZONE application is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script...

VihorDesign - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17226/info VihorDesign is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser ...

VihorDesign - index.php Cross-Site Scripting

VihorDesign - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/17226/info VihorDesign is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have...

Invision Power Services Invision Board 2.0.4 - Members Action Multiple Cross-Site Scripting Vulnerabilities

Invision Power Services Invision Board 2.0.4 - Members Action Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/17144/info Invision Power Board is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to...

Invision Power Board (IP.Board) 2.0.4 - Search Action Multiple Cross-Site Scripting Vulnerabilities

Invision Power Board IP.Board 2.0.4 - Search Action Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/17144/info Invision Power Board is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly...