Citrix Metaframe XP Cross-site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8939/info Citrix Metaframe XP is prone to cross-site scripting attacks when returning error messages to users. The error message is generated when invalid authentication credentials are transmitted to the log-in page...

AlstraSoft Video Share Enterprise 4.x Multiple Input Validation Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/25019/info AlstraSoft Video Share Enterprise is affected by multiple input-validation vulnerabilities. These issues include multiple cross-site scripting vulnerabilities and multiple SQL-injection vulnerabilities...

Jax PHP Scripts 1.0/1.34/2.14/3.31 formmailer.log User Sent Mail Disclosure

No description provided by source. source: http://www.securityfocus.com/bid/14482/info Jax PHP Scripts are affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure in the applications to properly sanitize user-supplied input. An attacker may leverage any of the...

PHPNews 1.3 Link_Temp.PHP Multiple Cross-Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/21404/info PHPNews is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the...

Google Chrome 2.0.172 'chrome://history/' URI Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/35841/info Google Chrome is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to execute arbitrary script code in the context of th...

Horde 3.2 - MIME Attachment Filename Insufficient Filtering Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/31110/info Horde Framework is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser...

NextPage LivePublish 2.02 LPEXT.DLL Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/23270/info LivePublish is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...

Revize CMS HTTPTranslatorServlet Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/15484/info Revize CMS is prone to a cross-site scripting vulnerabilities. This is due to a lack of proper sanitization of user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in...

Opera 5.0/5.1 Same Origin Policy Circumvention Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/3553/info Opera is a popular, freely available web browser that is supported across many different platforms. Opera is prone to an issue which may allow for the execution of script code across domains, allowing for...

NPDS 4.8 /5.0 links.php Query Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/13803/info NPDS is affected by multiple vulnerabilities resulting from input validation errors. These issues may allow remote attackers to carry out HTML injection, cross-site scripting and SQL injection attacks. This may...

NPDS 4.8 /5.0 reviews.php title Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/13803/info NPDS is affected by multiple vulnerabilities resulting from input validation errors. These issues may allow remote attackers to carry out HTML injection, cross-site scripting and SQL injection attacks. This may...

NetauctionHelp 3.0 - Multiple Cross-Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/15737/info NetAuctionHelp is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to...

ScareCrow 2.13 forum.cgi forum Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/15915/info ScareCrow is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have...

Hosting Controller 1.x Error.ASP Cross-site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/18933/info Hosting Controller is prone to a cross-site scripting vulnerability because it fails to sanitize input before displaying it to users of the application. An attacker may leverage this issue to have arbitrary...

Rapid Classified 3.1 viewad.asp id Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/21197/info Rapid Classified is prone to multiple input-validation issues, including multiple cross-site scripting issues and an SQL-injection issue, because the application fails to properly sanitize user-supplied input. ...

fuzzylime (cms) 3.0 'usercheck.php' Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/31306/info fuzzylime cms is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. Exploiting this vulnerability may allow an attacker to perform cross-site scripting...

NOCC 1.0 filter_prefs.php html_filter_select Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/16793/info NOCC Webmail is prone to multiple input-validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to inject...

myBloggie 2.1.2/2.1.3 delcomment.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/17048/info MyBloggie is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have...

OSTicket 1.2/1.3 - Multiple Input Validation and Remote Code Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/13478/info osTicket is affected by multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Reportedly the application permits the inclusion...

ADP Forum 2.0.x Subject Field HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/17047/info ADP Forum is prone to an HTML-injection vulnerability. The application fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code wou...