Immophp 1.1.1 - Cross-Site Scripting SQL Injection

Immophp 1.1.1 - Cross-Site Scripting SQL Injection source: https://www.securityfocus.com/bid/48341/info Immophp is prone to a cross-site scripting vulnerability and multiple SQL-injection vulnerabilities because the application fails to sufficiently sanitize user-supplied input. Exploiting these...

Cisco Unified Operations Manager 8.5 - iptmeventmon Multiple Cross-Site Scripting Vulnerabilities

Cisco Unified Operations Manager 8.5 - iptmeventmon Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/47901/info Cisco Unified Operations Manager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied...

Cisco Unified Operations Manager 8.5 - iptmlogicalTopo.do Multiple Cross-Site Scripting Vulnerabilities

Cisco Unified Operations Manager 8.5 - iptmlogicalTopo.do Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/47901/info Cisco Unified Operations Manager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-suppli...

miniblog 1.0 - Multiple Cross-Site Scripting Vulnerabilities

miniblog 1.0 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/48281/info miniblog is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to execute arbitrary...

JVN#73643130: Microsoft MSXML vulnerability in HTTP request processing

MSXML provided by Microsoft contains a vulnerability where HTTP requests for XMLHTTP objects are not processed properly. As a result, when going through a proxy server, information may be sent to another server. Impact When going through a proxy server, information such as authentication...

vBTube 1.2.9 - 'vBTube.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/48280/info vBTube is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

Silex <= 1.5.4.2 XSS Vulnerability - Active Check

Silex is prone to a cross-site scripting XSS vulnerability because it fails to sufficiently sanitize user-supplied data. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Moderate: Red Hat Security Advisory: cyrus-imapd security update

Updated cyrus-imapd packages that fix one security issue are now available for Red Hat Enterprise Linux 4, 5, and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

Blog:CMS 4.2 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/48132/info BLOG:CMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

The Pacer Edition CMS 2.1 - email Cross-Site Scripting

The Pacer Edition CMS 2.1 - email Cross-Site Scripting source: https://www.securityfocus.com/bid/48215/info The Pacer Edition CMS is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary...

vBulletin vBExperience 'sortorder' Parameter Cross Site Scripting Vulnerability

vBulletin vBExperience is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user- supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow th...

Multiple WordPress WooThemes Themes - &#039;test.php&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/48110/info Multiple WordPress WooThemes Live Wire are prone to a cross-site scripting vulnerability because they fail to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

Nakid CMS 1.0.2 - &#039;CKEditorFuncNum&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/48109/info Nakid CMS is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context ...

vBulletin vBExperience 3 - &#039;sortorder&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/48106/info vBulletin vBExperience is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in...

Squiz Matrix 4 - &#039;colour_picker.php&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/48118/info Squiz Matrix is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the conte...

vBulletin vBExperience 3 - sortorder Cross-Site Scripting

vBulletin vBExperience 3 - sortorder Cross-Site Scripting source: https://www.securityfocus.com/bid/48106/info vBulletin vBExperience is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute...

Nakid CMS 1.0.2 - CKEditorFuncNum Cross-Site Scripting

Nakid CMS 1.0.2 - CKEditorFuncNum Cross-Site Scripting source: https://www.securityfocus.com/bid/48109/info Nakid CMS is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code...

Nmap NSE net: informix-query

Runs a query against IBM Informix Dynamic Server using the given authentication credentials see also: informix-brute. SYNTAX: informix.instance: specifies the Informix instance to connect to informix-query.database: The name of the database to connect to default: sysmaster informix-query.username...

Nagios 3.2.3 - expand Cross-Site Scripting

Nagios 3.2.3 - expand Cross-Site Scripting source: https://www.securityfocus.com/bid/48087/info Nagios is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser...

ARSC Really Simple Chat 3.3-rc2 - Cross-Site Scripting Multiple SQL Injections

ARSC Really Simple Chat 3.3-rc2 - Cross-Site Scripting Multiple SQL Injections source: https://www.securityfocus.com/bid/48083/info ARSC Really Simple Chat is prone to a cross-site scripting vulnerability and multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize...