CKEditor < 4.4.3 Preview Plugin Unspecified XSS Vulnerability

The preview plugin for CKEditor is prone to an unspecified cross-site scripting XSS vulnerability. Copyright C 2016 SCHUTZWERK GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later...

Cisco ASA Web VPN Vulnerabilities

Trustwave's SpiderLabs Security Advisory TWSL2009-002: Cisco ASA Web VPN Multiple Vulnerabilities Published: 2009-06-24 Version: 1.0 Vendor: Cisco Systems, Inc. http://www.cisco.com Versions affected: 8.04, 8.1.2, and 8.2.1 Description: Cisco's Adaptive Security Appliance ASA provides a number of...

Linksys WVC54GCA 1.00R221.00R24 (Wireless-G) - Multiple Cross-Site Scripting Vulnerabilities

Linksys WVC54GCA 1.00R221.00R24 Wireless-G - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/34714/info Linksys WVC54GCA Wireless-G Internet Home Monitoring Camera is prone to multiple cross-site scripting vulnerabilities because the software fails to...

ATutor 1.5.3 - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/18898/info ATutor is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because the application fails to properly sanitize user-supplied input. A successful exploit of these vulnerabilities could...

Xitami testssi.ssi HTTP Header XSS

The remote Xitami server is distributed with a script for testing server-side includes, '/testssi.ssi'. This script is vulnerable to a cross-site scripting issue when sent a request with a malformed Host or User-Agent header. An attacker may exploit this flaw the steal the authentication...

PostNuke 0.720.75 Reviews Module - Cross-Site Scripting

PostNuke 0.720.75 Reviews Module - Cross-Site Scripting source: https://www.securityfocus.com/bid/10802/info PostNuke is reported prone to a cross-site scripting vulnerability. This issue affects the 'title' parameter of 'Reviews' script. Exploitation of this issue could allow for theft of...

VirtuaSystems VirtuaNews 1.0.x (Multiple Modules) - Cross-Site Scripting

source: https://www.securityfocus.com/bid/9812/info It has been reported that the VirtuaNews non-default modules 'Files' and 'Vulns' are prone to multiple cross-site scripting vulnerabilities. These problems surround the application's failure to properly validate user supplied URI input. When...

Software602 602Pro LAN Suite - Web Mail Cross-Site Scripting

Software602 602Pro LAN Suite - Web Mail Cross-Site Scripting source: https://www.securityfocus.com/bid/9777/info It has been reported that 602Pro LAN Suite Web Mail is prone to a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user input...

Citrix Metaframe XP - Cross-Site Scripting

Citrix Metaframe XP - Cross-Site Scripting source: https://www.securityfocus.com/bid/8939/info Citrix Metaframe XP is prone to cross-site scripting attacks when returning error messages to users. The error message is generated when invalid authentication credentials are transmitted to the log-in...

DeleGate 7.7.1 - Cross-Site Scripting

source: https://www.securityfocus.com/bid/3749/info DeleGate is a proxy server which runs on Linux , Unix, Microsoft Windows and OS/2 platforms. It is capable of translating a number of protocolsHTTP, FTP, NNTP, POP, Telnet, etc. between client and server. DeleGate is prone to cross-site scriptin...