IFOBS - regclientprint.jsp Multiple HTML Injection Vulnerabilities

IFOBS - regclientprint.jsp Multiple HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/55561/info IFOBS is prone to multiple HTML-injection vulnerabilities. Exploiting these issues may allow an attacker to execute HTML and script code in the context of the affected site, to...

Atlassian Confluence 3.4.x - Error Page Cross-Site Scripting

Atlassian Confluence 3.4.x - Error Page Cross-Site Scripting source: https://www.securityfocus.com/bid/55509/info Atlassian Confluence is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute...

Atlassian Confluence 3.4.x - Error Page Cross-Site Scripting

source: https://www.securityfocus.com/bid/55509/info Atlassian Confluence is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in t...

Microsoft System Center Configuration Manager CVE-2012-2536 Cross Site Scripting Vulnerability

Description Microsoft System Center Configuration Manager is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...

Slackware Advisory SSA:2003-213-01 KDE packages updated

The remote host is missing an update as announced via advisory SSA:2003-213-01. OpenVAS Vulnerability Test $Id: esoftslkssa200321301.nasl 6598 2017-07-07 09:36:44Z cfischer $ Description: Auto-generated from the corresponding slackware advisory Authors: Thomas Reinke Copyright: Copyright c 2012...

Slackware: Security Advisory (SSA:2003-213-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

VICIDIAL Call Center Suite - Multiple SQL Injections

source: https://www.securityfocus.com/bid/55476/info VICIDIAL Call Center Suite is prone to multiple SQL-injection vulnerabilities and cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these vulnerabilities could allow an attacker to...

Pinterestclones - Security Bypass HTML Injection

Pinterestclones - Security Bypass HTML Injection source: https://www.securityfocus.com/bid/55469/info Pinterestclones is prone to a security-bypass vulnerability and an HTML-injection vulnerability because it fails to properly validate user permissions and sanitize user-supplied input. An attacke...

Pinterestclones - Security Bypass / HTML Injection

source: https://www.securityfocus.com/bid/55469/info Pinterestclones is prone to a security-bypass vulnerability and an HTML-injection vulnerability because it fails to properly validate user permissions and sanitize user-supplied input. An attacker may leverage the HTML-injection issue to inject...

Cm3 CMS - search.asp Multiple Cross-Site Scripting Vulnerabilities

Cm3 CMS - search.asp Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/55395/info Cm3 CMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

Flogr - index.php Multiple Cross-Site Scripting Vulnerabilities

Flogr - index.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/55418/info Flogr is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrar...

Cm3 CMS - 'search.asp' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/55395/info Cm3 CMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

Kayako Fusion - 'download.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/55417/info Kayako Fusion is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context...

PHPFox 3.0.1 - ajax.php Multiple Cross-Site Scripting Vulnerabilities

PHPFox 3.0.1 - ajax.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/55405/info phpFox is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

DataWatch Monarch BI v5.1 admin section reflected cross-site scripting

Class: Input Validation Error Remote: Yes Local: No Published: 26/06/2012 Credit: Raymond Rizk of Dionach Limited [email protected] Vulnerable: DataWatch Monarch BI v5.1 DataWatch's Monarch BI admin section is prone to a reflected cross-site scripting vulnerability because it fails to sufficientl...

DataWatch Monarch Business Intelligence (BI) v5.1 admin section stored cross-site scripting

DataWatch Monarch BI v5.1 admin section stored cross-site scripting Class: Input Validation Error Remote: Yes Local: No Published: 26/06/2012 Credit: Raymond Rizk of Dionach Limited [email protected] Vulnerable: DataWatch Monarch BI v5.1 DataWatch's Monarch BI admin section is prone to a stored...

TomatoCart - example_form.ajax.php Cross-Site Scripting

TomatoCart - exampleform.ajax.php Cross-Site Scripting source: https://www.securityfocus.com/bid/55295/info TomatoCart is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code i...

WordPress Plugin Download Monitor - 'dlsearch' Cross-Site Scripting

source: https://www.securityfocus.com/bid/55487/info The Download Monitor plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

Crowbar - 'file' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/55315/info Crowbar is prone to multiple cross-site scripting vulnerabilities because it fails to sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of...

TomatoCart - 'example_form.ajax.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/55295/info TomatoCart is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...