SWFupload - Multiple Content Spoofing Cross-Site Scripting Vulnerabilities

SWFupload - Multiple Content Spoofing Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/58417/info SWFUpload is prone to multiple cross-site scripting and content spoofing vulnerabilities because it fails to sanitize user-supplied input. An attacker may leverage these...

McAfee Vulnerability Manager - cert_cn Cross-Site Scripting

McAfee Vulnerability Manager - certcn Cross-Site Scripting source: https://www.securityfocus.com/bid/58401/info McAfee Vulnerability Manager is prone to a cross-site scripting vulnerability. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting use...

Matrix42 Service Store - default.aspx Cross-Site Scripting

Matrix42 Service Store - default.aspx Cross-Site Scripting source: https://www.securityfocus.com/bid/59290/info Matrix42 Service Store is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitra...

Matrix42 Service Store - 'default.aspx' Cross-Site Scripting

source: https://www.securityfocus.com/bid/59290/info Matrix42 Service Store is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in th...

Batavi - index.php Cross-Site Scripting

Batavi - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/58151/info Batavi is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

Batavi - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/58151/info Batavi is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...

JForum - jforum.page Multiple Cross-Site Scripting Vulnerabilities

JForum - jforum.page Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/58164/info JForum is prone to multiple cross-site scripting vulnerabilities because it fails to sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary...

JForum - 'jforum.page' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/58164/info JForum is prone to multiple cross-site scripting vulnerabilities because it fails to sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of t...

WordPress Plugin Smart Flv - jwplayer.swf Multiple Cross-Site Scripting Vulnerabilities

WordPress Plugin Smart Flv - jwplayer.swf Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/58135/info The Smart Flv plugin for WordPress is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An...

Alt-N MDaemon's WorldClient Disclosure of Authentication Credentials Vulnerability

========================================================================================== Alt-N MDaemon's WorldClient Disclosure of Authentication Credentials Vulnerability ========================================================================================== Software: Alt-N MDaemon v13.0.3...

OpenEMR - site Cross-Site Scripting

OpenEMR - site Cross-Site Scripting source: https://www.securityfocus.com/bid/58085/info OpenEMR is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

Alt-N MDaemon 13.0.3 and 12.5.6 Email Body HTML/JS Injection Vulnerability

Exploit for windows platform in category web applications VULNERABILITY DESCRIPTION: ========================== Alt-N MDaemon is prone to an HTML/Javascript injection vulnerability because it fails to sanitize user-supplied input. Attacker-supplied HTML and/or JavaScript code could run in the...

WordPress Plugin Pretty Link - Cross-Site Scripting

source: https://www.securityfocus.com/bid/58072/info The Pretty Link plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

Squirrelcart - 'table' Cross-Site Scripting

source: https://www.securityfocus.com/bid/58025/info Squirrelcart is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...

Dell SonicWALL Scrutinizer - Multiple HTML Injection Vulnerabilities

Dell SonicWALL Scrutinizer - Multiple HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/57949/info The Dell SonicWALL Scrutinizer is prone to multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input. Successful exploits will allow...

Sonar - Multiple Cross-Site Scripting Vulnerabilities

Sonar - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/57982/info Sonar is prone to multiple cross-site scripting vulnerabilities because it fails to sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in th...

WordPress Theme Pinboard - 'tab' Cross-Site Scripting

source: https://www.securityfocus.com/bid/57873/info The Pinboard theme for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting...

ezStats for Battlefield 3 - '/ezStats2/compare.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/57759/info ezStats for Battlefield 3 is prone to multiple cross-site scripting vulnerabilities and a local file include vulnerability. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

WordPress Flashnews Theme - Multiple Input Validation Vulnerabilities

This Flashnews theme is prone to multiple input-validation vulnerabilities. An attacker to disclose sensitive information, execute arbitrary script code in the browser, cause denial-of-service conditions or steal cookie-based authentication credentials. Other attacks are also possible. Solution...

WordPress Theme flashnews - Multiple Input Validation Vulnerabilities

WordPress Theme flashnews - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/57676/info The flashnews Theme for WordPress is prone to multiple input-validation vulnerabilities. An attacker may leverage these issues to cause denial-of-service conditions, disclose...