3295 matches found
XSS vulnerability in i-Web Suite
Vulnerability ID: HTB22544 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityiniwebsuite.html Product: i-Web Suite Vendor: immediaC world wide Inc http://www.immediac.com/ Vulnerable Version: Current at 27.07.2010 and Probably Prior Versions Vendor Notification: 27 July 2010 Vulnerabilit...
i-Web Suite SQL Injection / Cross Site Scripting
========================================= Vulnerability ID: HTB22544 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityiniwebsuite.html Product: i-Web Suite Vendor: immediaC world wide Inc http://www.immediac.com/ Vulnerable Version: Current at 27.07.2010 and Probably Prior Versions Vend...
XSS vulnerability in BXR search
Vulnerability ID: HTB22505 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinbxrsearch.html Product: BXR Vendor: Hulihan Applications http://hulihanapplications.com/projects/bxr Vulnerable Version: 0.6.8 and Probably Prior Versions Vendor Notification: 22 July 2010 Vulnerability Type:...
XSS vulnerability in Amethyst
Vulnerability ID: HTB22501 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinamethyst1.html Product: Amethyst Vendor: Hulihan Applications http://hulihanapplications.com/projects/amethyst Vulnerable Version: 0.1.5 and Probably Prior Versions Vendor Notification: 22 July 2010...
Design/Logic Flaw
Mozilla Firefox 3.6.x before 3.6.7 and Thunderbird 3.1.x before 3.1.1 do not properly implement access to a content object through a SafeJSObjectWrapper aka SJOW wrapper, which allows remote attackers to execute arbitrary JavaScript code with chrome privileges by leveraging "access to an object...
XSS vulnerability in WebPress
Vulnerability ID: HTB22478 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinwebpress.html Product: WebPress Vendor: YWP http://www.goywp.com/ Vulnerable Version: Current at 01.07.2010 and Probably Prior Versions Vendor Notification: 01 July 2010 Vulnerability Type: XSS Cross Site...
XSS vulnerability in Taggon CMS
Vulnerability ID: HTB22477 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityintaggoncms.html Product: Taggon CMS Vendor: Onison http://www.onison.com/articles/3 Vulnerable Version: Current at 01.07.2010 and Probably Prior Versions Vendor Notification: 01 July 2010 Vulnerability Type: XS...
XSS vulnerability in WebPress
Vulnerability ID: HTB22480 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinwebpress2.html Product: WebPress Vendor: YWP http://www.goywp.com/ Vulnerable Version: Current at 01.07.2010 and Probably Prior Versions Vendor Notification: 01 July 2010 Vulnerability Type: XSS Cross Site...
Lion Wiki 3.2.3 Cross Site Scripting
------------------------------------------------------------------------ Software................Lion Wiki 3.2.3 Vulnerability...........Reflected Cross-site Scripting Download................http://lionwiki.0o.cz/ Release Date............7/11/2010 Tested On...............Windows Vista + XAMPP...
RunCMS 2.1 Magpie RSS Module Cross Site Scripting
------------------------------------------------------------------------ Software................RunCMS 2.1 Magpie RSS Module Vulnerability...........Reflected Cross-site Scripting Download................http://www.runcms.org/ Release Date............7/5/2010 Tested On...............Windows Vist...
PeteWiki 0.6 Cross Site Scripting
------------------------------------------------------------------------ Software................PeteWiki 0.6 Vulnerability...........Reflected Cross-site Scripting Download................http://code.google.com/p/petewiki/downloads/list Release Date............7/11/2010 Tested...
NetworX 1.0.3 Cross Site Scripting
------------------------------------------------------------------------ Software................NetworX 1.0.3 Vulnerability...........Reflected XSS Download................http://sourceforge.net/projects/networx/ Release Date............7/5/2010 Tested On...............Windows Vista + XAMPP...
odCMS 1.07 Cross Site Scripting
------------------------------------------------------------------------ Software................odCMS 1.07 Vulnerability...........Reflected XSS Download................http://odcms.org/index.php?Page=Download Release Date............7/5/2010 Tested On...............Windows Vista + XAMPP...
NewsOffice 2.0.18 Cross Site Scripting
------------------------------------------------------------------------ Software................NewsOffice 2.0.18 Vulnerability...........Reflected XSS Download................http://newsoffice.newanz.com/ Release Date............7/5/2010 Tested On...............Windows Vista + XAMPP...
Fedora 12 : python-paste-1.7.4-1.fc12 (2010-10383)
1.7.4 The only real change is to paste.httpexceptions, which was using insecure quoting of some parameters and allowed an XSS hole, most specifically with its 404 messages. The most notably WSGI application using this is paste.urlparse.StaticURLParser and PkgResourcesParser. By directing someone ...
XSS vulnerability in Scribe CMS
Vulnerability ID: HTB22420 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinscribecms.html Product: Scribe CMS Vendor: Sigmer Technologies Vulnerable Version: Current at 03.06.2010 and Probably Prior Versions Vendor Notification: 07 June 2010 Vulnerability Type: XSS Cross Site Scripti...
boastMachine 3.1 Cross Site Scripting
Vulnerability ID: HTB22399 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinboastmachine.html Product: boastMachine Vendor: Kailash Nadh Vulnerable Version: 3.1 and Probably Prior Versions Vendor Notification: 20 May 2010 Vulnerability Type: XSS Cross Site Scripting Status: Not Fixed,...
XSS vulnerability in RuubikCMS
Vulnerability ID: HTB22380 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinruubikcms.html Product: RuubikCMS Vendor: Piuha Vulnerable Version: 1.0.3 and Probably Prior Versions Vendor Notification: 10 May 2010 Vulnerability Type: XSS Cross Site Scripting Status: Not Fixed, Vendor...
XSS vulnerability in LiSK CMS
Vulnerability ID: HTB22372 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinproduct.html Product: LiSK CMS Vendor: Createch-group Vulnerable Version: 4.4 Vendor Notification: 05 May 2010 Vulnerability Type: XSS Cross Site Scripting Status: Not Fixed, Vendor Alerted, Awaiting Vendor...
Saurus CMS 4.7.0 Cross Site Scripting
Vulnerability ID: HTB22361 Reference: http://www.htbridge.ch/advisory/xssinsauruscms.html Product: Saurus CMS Community Editon Vendor: Saurused Ltd Vulnerable Version: 4.7.0 Vendor Notification: 27 April 2010 Vulnerability Type: XSS Cross Site Scripting Status: Not Fixed, Vendor Alerted, Awaiting...