10 matches found
CKEditor < 4.4.3 Preview Plugin Unspecified XSS Vulnerability
The preview plugin for CKEditor is prone to an unspecified cross-site scripting XSS vulnerability. Copyright C 2016 SCHUTZWERK GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later...
Cisco ASA Web VPN Vulnerabilities
Trustwave's SpiderLabs Security Advisory TWSL2009-002: Cisco ASA Web VPN Multiple Vulnerabilities Published: 2009-06-24 Version: 1.0 Vendor: Cisco Systems, Inc. http://www.cisco.com Versions affected: 8.04, 8.1.2, and 8.2.1 Description: Cisco's Adaptive Security Appliance ASA provides a number of...
Linksys WVC54GCA 1.00R221.00R24 (Wireless-G) - Multiple Cross-Site Scripting Vulnerabilities
Linksys WVC54GCA 1.00R221.00R24 Wireless-G - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/34714/info Linksys WVC54GCA Wireless-G Internet Home Monitoring Camera is prone to multiple cross-site scripting vulnerabilities because the software fails to...
ATutor 1.5.3 - Multiple Input Validation Vulnerabilities
source: https://www.securityfocus.com/bid/18898/info ATutor is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because the application fails to properly sanitize user-supplied input. A successful exploit of these vulnerabilities could...
PostNuke 0.720.75 Reviews Module - Cross-Site Scripting
PostNuke 0.720.75 Reviews Module - Cross-Site Scripting source: https://www.securityfocus.com/bid/10802/info PostNuke is reported prone to a cross-site scripting vulnerability. This issue affects the 'title' parameter of 'Reviews' script. Exploitation of this issue could allow for theft of...
Xitami testssi.ssi HTTP Header XSS
The remote Xitami server is distributed with a script for testing server-side includes, '/testssi.ssi'. This script is vulnerable to a cross-site scripting issue when sent a request with a malformed Host or User-Agent header. An attacker may exploit this flaw the steal the authentication...
VirtuaSystems VirtuaNews 1.0.x (Multiple Modules) - Cross-Site Scripting
source: https://www.securityfocus.com/bid/9812/info It has been reported that the VirtuaNews non-default modules 'Files' and 'Vulns' are prone to multiple cross-site scripting vulnerabilities. These problems surround the application's failure to properly validate user supplied URI input. When...
Software602 602Pro LAN Suite - Web Mail Cross-Site Scripting
Software602 602Pro LAN Suite - Web Mail Cross-Site Scripting source: https://www.securityfocus.com/bid/9777/info It has been reported that 602Pro LAN Suite Web Mail is prone to a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user input...
Citrix Metaframe XP - Cross-Site Scripting
Citrix Metaframe XP - Cross-Site Scripting source: https://www.securityfocus.com/bid/8939/info Citrix Metaframe XP is prone to cross-site scripting attacks when returning error messages to users. The error message is generated when invalid authentication credentials are transmitted to the log-in...
DeleGate 7.7.1 - Cross-Site Scripting
source: https://www.securityfocus.com/bid/3749/info DeleGate is a proxy server which runs on Linux , Unix, Microsoft Windows and OS/2 platforms. It is capable of translating a number of protocolsHTTP, FTP, NNTP, POP, Telnet, etc. between client and server. DeleGate is prone to cross-site scriptin...