1057 matches found
ECshop 2.7.2 XSS
简要描述: 过滤不严 详细说明: 缺货登记-联系人处可保存任意脚本 漏洞证明: 脚本可利用privilege.php中update管理员的邮箱,通过找回密码,获取邮箱...
BaserCMS vulnerable to cross-site scripting
Overview BaserCMS contains a cross-site scripting vulnerability. BaserCMS is an open-source Contents Management System CMS. BaserCMS contains a cross-site scripting vulnerability. Masako Ohno reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security...
StarDevelop LiveHelp 2.0 - 'index.php' Local File Inclusion
source: https://www.securityfocus.com/bid/49650/info StarDevelop LiveHelp is prone to a local file-include vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and to execute arbitrary...
Joomla! JoomTouch Component 'controller' Parameter Local File Include Vulnerability
The JoomTouch component for Joomla! is prone to a local file- include vulnerability because it fails to properly sanitize user- supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitrary local scripts in the context of the webserve...
awiki 20100125 - Multiple Local File Inclusions
awiki 20100125 - Multiple Local File Inclusions source: https://www.securityfocus.com/bid/49187/info awiki is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive...
awiki 20100125 - Multiple Local File Inclusions
source: https://www.securityfocus.com/bid/49187/info awiki is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitrary local scripts ...
Joomla! Component com_jr_tfb - Controller Local File Inclusion
Joomla! Component comjrtfb - Controller Local File Inclusion source: https://www.securityfocus.com/bid/48558/info The 'comjrtfb' component for Joomla! is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerabili...
Joomla! Component com_jr_tfb - 'Controller' Local File Inclusion
source: https://www.securityfocus.com/bid/48558/info The 'comjrtfb' component for Joomla! is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute...
ASP.NET vulnerable to cross-site scripting
Overview ASP.NET contains a cross-site scripting vulnerability. ASP.NET contains an issue in the escape processes for string output. Web applications that use ASP.NET may contain a cross-site scripting vulnerability. Masato Anzai of Mitsui Bussan Secure Directions, Inc. reported this vulnerabilit...
Xataface Dataface '-action' Local File Inclusion Vulnerability
Xataface Dataface is prone to local file inclusion vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Media in Spot CMS 'page' Parameter Local File Include Vulnerability
Media in Spot CMS is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
OracleJSP Demos Multiple Cross Site Scripting Vulnerabilities
This host is running OracleJSP Demos and is prone to multiple cross site scripting vulnerabilities. OpenVAS Vulnerability Test $Id: secpodoraclejspdemosmultxssvuln.nasl 5796 2017-03-30 14:15:11Z cfi $ OracleJSP Demos Multiple Cross Site Scripting Vulnerabilities Authors: Antu Sanadi Copyright:...
Joomla! Component com_phocadownload - Local File Inclusion
Joomla! Component comphocadownload - Local File Inclusion source: https://www.securityfocus.com/bid/47399/info The 'comphocadownload' component for Joomla! is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this...
Joomla! Component com_phocadownload - Local File Inclusion
source: https://www.securityfocus.com/bid/47399/info The 'comphocadownload' component for Joomla! is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and...
UseBB 1.0.11 - admin.php Local File Inclusion
UseBB 1.0.11 - admin.php Local File Inclusion source: https://www.securityfocus.com/bid/47166/info UseBB is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information...
XOOPS 2.5 - banners.php Multiple Local File Inclusions
XOOPS 2.5 - banners.php Multiple Local File Inclusions source: https://www.securityfocus.com/bid/47174/info XOOPS is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these vulnerabilities to obtain potentially...
InterPhoto Image Gallery 2.4.2 - IPLANG Local File Inclusion
InterPhoto Image Gallery 2.4.2 - IPLANG Local File Inclusion source: https://www.securityfocus.com/bid/46759/info InterPhoto Image Gallery is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain...
InterPhoto Image Gallery 2.4.2 - 'IPLANG' Local File Inclusion
source: https://www.securityfocus.com/bid/46759/info InterPhoto Image Gallery is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and to execute arbitrary...
mySeatXT 0.164 - 'lang' Local File Inclusion
source: https://www.securityfocus.com/bid/46507/info mySeatXT is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and to execute arbitrary local scripts in...
Raja Natarajan Guestbook 'lang' Parameter Local File Include Vulnerability
The Raja Natarajan Guestbook is prone to a local file-include vulnerability because it fails to properly sanitize user- supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and to execute arbitrary local scripts in the context of the webserver...