Tecomat Foxtrot Default Password Security Bypass Vulnerability

Tecomat Foxtrot is prone to a security-bypass vulnerability. Successful attacks can allow an attacker to gain access to the affected application using the default authentication credentials. OpenVAS Vulnerability Test $Id: gbtecomat51602.nasl 6018 2017-04-24 09:02:24Z teissa $ Tecomat Foxtrot...

WordPress Plugin YouSayToo auto-publishing 1.0 - 'submit' Cross-Site Scripting

source: https://www.securityfocus.com/bid/51649/info YouSayToo auto-publishing for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

Acidcat ASP CMS 3.5 - Multiple Cross-Site Scripting Vulnerabilities

Acidcat ASP CMS 3.5 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/51608/info Acidcat ASP CMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated...

Lead Capture - login.php Script Cross-Site Scripting

Lead Capture - login.php Script Cross-Site Scripting source: https://www.securityfocus.com/bid/51785/info Lead Capture is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script cod...

Lead Capture - 'login.php' Script Cross-Site Scripting

source: https://www.securityfocus.com/bid/51785/info Lead Capture is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the conte...

Acidcat ASP CMS 3.5 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/51608/info Acidcat ASP CMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage these issues to execute arbitrary...

Syneto Unified Threat Management 1.3.31.4.2 - Multiple Cross-Site Scripting HTML Injection Vulnerabilities

Syneto Unified Threat Management 1.3.31.4.2 - Multiple Cross-Site Scripting HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/51597/info Syneto Unified Threat Management is prone to multiple cross-site scripting and HTML-injection vulnerabilities because it fails to properl...

Syneto Unified Threat Management 1.3.3/1.4.2 - Multiple Cross-Site Scripting / HTML Injection Vulnerabilities

source: https://www.securityfocus.com/bid/51597/info Syneto Unified Threat Management is prone to multiple cross-site scripting and HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Successful exploits will...

phpVideoPro Multiple Cross Site Scripting Vulnerabilities

phpVideoPro is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the...

OneOrZero AIMS - index.php Cross-Site Scripting

OneOrZero AIMS - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/51549/info OneOrZero AIMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in t...

Giveaway Manager - members.php Cross-Site Scripting

Giveaway Manager - members.php Cross-Site Scripting source: https://www.securityfocus.com/bid/51431/info Giveaway Manager is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script cod...

Beehive Forum 101 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/51424/info Beehive Forum 101 is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user...

Giveaway Manager - 'members.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/51431/info Giveaway Manager is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

PHP Membership Site Manager Script 2.1 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/51416/info PHP Membership Site Manager Script is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage this issue to execute...

phpVideoPro 0.8.x/0.9.7 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/51428/info phpVideoPro is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in th...

PHP Ringtone Website - ringtones.php Multiple Cross-Site Scripting Vulnerabilities

PHP Ringtone Website - ringtones.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/51418/info PHP Ringtone Website is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may...

PHP Ringtone Website - 'ringtones.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/51418/info PHP Ringtone Website is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspectin...

MailEnable XSS Vulnerability (Jan 2012) - Active Check

MailEnable is prone to a cross-site scripting XSS vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Microsoft AntiXSS Library Information Disclosure Vulnerability (2607664)

This host is missing an important security update according to Microsoft Bulletin MS12-007. OpenVAS Vulnerability Test $Id: secpodms12-007.nasl 5366 2017-02-20 13:55:38Z cfi $ Microsoft AntiXSS Library Information Disclosure Vulnerability 2607664 Authors: Madhuri D Copyright: Copyright c 2012...

w-CMS <= 2.0.1 Multiple Vulnerabilities - Active Check

w-CMS is prone to multiple HTML-injection vulnerabilities and a local file include LFI vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...