7610 matches found
CVE-2006-6300
Cross-site scripting XSS vulnerability in CuteNews 1.3.6 allows remote attackers to inject arbitrary web script or HTML via the result parameter...
JVN#38746816 TikiWiki cross-site scripting vulnerability
Impact An arbitrary script may be executed on the user's web browser. Solution Products Affected TikiWiki version 1.9.5 and earlier...
Cerberus Helpdesk 2.x - Spellwin.php Cross-Site Scripting
Cerberus Helpdesk 2.x - Spellwin.php Cross-Site Scripting source: https://www.securityfocus.com/bid/21423/info Cerberus Helpdesk is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have...
CVE-2006-6197
Multiple cross-site scripting XSS vulnerabilities in b2evolution 1.8.2 through 1.9 beta allow remote attackers to inject arbitrary web script or HTML via the 1 appname parameter in a 404notfound.page.php, b 410statsgone.page.php, and c refererspam.page.php in inc/VIEW/errors/; the 2 baseurl...
Woltlab Burning Board 2.3.x - register.php Cross-Site Scripting
Woltlab Burning Board 2.3.x - register.php Cross-Site Scripting source: https://www.securityfocus.com/bid/21370/info Woltlab Burning Board is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue t...
cPanel WebHost Manager 3.1 - park?ndomain Cross-Site Scripting
cPanel WebHost Manager 3.1 - park?ndomain Cross-Site Scripting source: https://www.securityfocus.com/bid/21288/info WebHost Manager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have...
cPanel WebHost Manager 3.1 - 'park?ndomain' Cross-Site Scripting
source: https://www.securityfocus.com/bid/21288/info WebHost Manager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the browser of an unsuspecting...
cPanel WebHost Manager 3.1 - 'dochangeemail?email' Cross-Site Scripting
source: https://www.securityfocus.com/bid/21288/info WebHost Manager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the browser of an unsuspecting...
cPanel WebHost Manager 3.1 - editpkg?pkg Cross-Site Scripting
cPanel WebHost Manager 3.1 - editpkg?pkg Cross-Site Scripting source: https://www.securityfocus.com/bid/21288/info WebHost Manager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have...
PMOS Help Desk 2.3 - 'ticketview.php' Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/21250/info InverseFlow Help Desk is prone to multiple cross-site scripting vulnerabilities. An attacker may leverage these issues to have arbitrary script code execute in the browser of an unsuspecting user in the context of the affected site. This may he...
PMOS Help Desk 2.3 - 'ticket.php?email' Cross-Site Scripting
source: https://www.securityfocus.com/bid/21250/info InverseFlow Help Desk is prone to multiple cross-site scripting vulnerabilities. An attacker may leverage these issues to have arbitrary script code execute in the browser of an unsuspecting user in the context of the affected site. This may he...
PMOS Help Desk 2.3 - ticketview.php Multiple Cross-Site Scripting Vulnerabilities
PMOS Help Desk 2.3 - ticketview.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/21250/info InverseFlow Help Desk is prone to multiple cross-site scripting vulnerabilities. An attacker may leverage these issues to have arbitrary script code execute in th...
CuteNews 1.4.5 - rss_title Cross-Site Scripting
CuteNews 1.4.5 - rsstitle Cross-Site Scripting source: https://www.securityfocus.com/bid/21233/info CuteNews is prone to multiple input-validation vulnerabilities, including an HTML-injection vulnerability, cross-site scripting vulnerabilities, and information-disclosure vulnerabilities. An...
CuteNews 1.4.5 - show_news.php Cross-Site Scripting
CuteNews 1.4.5 - shownews.php Cross-Site Scripting source: https://www.securityfocus.com/bid/21233/info CuteNews is prone to multiple input-validation vulnerabilities, including an HTML-injection vulnerability, cross-site scripting vulnerabilities, and information-disclosure vulnerabilities. An...
Blog:CMS 4.1.3 - 'list.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/21173/info BLOG:CMS is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting user i...
Odysseus Blog 1.0 - blog.php Cross-Site Scripting
Odysseus Blog 1.0 - blog.php Cross-Site Scripting source: https://www.securityfocus.com/bid/21128/info Odysseus Blog is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code...
BlogTorrent Preview 0.92 - 'Announce.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/21125/info BlogTorrent Preview is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser of an...
Selenium Web Server 1.0 - Cross-Site Scripting
source: https://www.securityfocus.com/bid/21100/info Biba Selenium Web Server is prone to a cross-site scripting because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting...
Selenium Web Server 1.0 - Cross-Site Scripting
Selenium Web Server 1.0 - Cross-Site Scripting source: https://www.securityfocus.com/bid/21100/info Biba Selenium Web Server is prone to a cross-site scripting because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script...
cPanel 10 - newuser.html Multiple Cross-Site Scripting Vulnerabilities
cPanel 10 - newuser.html Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/21027/info cPanel is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have...