WebAsyst Shop-Script - Cross-Site Scripting HTML Injection

WebAsyst Shop-Script - Cross-Site Scripting HTML Injection source: https://www.securityfocus.com/bid/46250/info WebAsyst Shop-Script is prone to a cross-site-scripting vulnerability and an HTML-injection vulnerability because it fails to properly sanitize user-supplied input before using it in...

UMI CMS 2.8.1.2 - Multiple Cross-Site Scripting Vulnerabilities

UMI CMS 2.8.1.2 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/46280/info UMI CMS is prone to multiple cross-site-scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

UMI CMS 2.8.1.2 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/46280/info UMI CMS is prone to multiple cross-site-scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

ViArt Shop 4.0.5 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/46256/info ViArt Shop is prone to multiple cross-site-scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

Podcast Generator <= 1.3 Multiple Vulnerabilities - Active Check

Podcast Generator is prone to a local file include LFI vulnerability and a cross-site scripting XSS vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are...

Firebook - index.html Cross-Site Scripting

Firebook - index.html Cross-Site Scripting source: https://www.securityfocus.com/bid/46143/info Firebook is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting these issues will allow an attacker to execute arbitrary script code ...

Firebook - &#039;index.html&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/46143/info Firebook is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting these issues will allow an attacker to execute arbitrary script code in the browser of an unsuspecting user in t...

TCExam 11.1.16 - user_password Cross-Site Scripting

TCExam 11.1.16 - userpassword Cross-Site Scripting source: https://www.securityfocus.com/bid/46096/info TCExam is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the...

Moodle 2.0.1 - PHPCOVERAGE_HOME Cross-Site Scripting

Moodle 2.0.1 - PHPCOVERAGEHOME Cross-Site Scripting source: https://www.securityfocus.com/bid/46085/info Moodle is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. Exploiting this vulnerability may allow an attacker to perform cross-site...

TinyWebGallery 1.8.3 - Cross-Site Scripting / Local File Inclusion

source: https://www.securityfocus.com/bid/46086/info TinyWebGallery is prone to local file-include and cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. A remote attacker may leverage the cross-site scripting issue to execute arbitrary...

Moodle 2.0.1 - &#039;PHPCOVERAGE_HOME&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/46085/info Moodle is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. Exploiting this vulnerability may allow an attacker to perform cross-site scripting attacks on unsuspecting users in the context ...

eSyndiCat Directory Software 2.22.3 - preview Cross-Site Scripting

eSyndiCat Directory Software 2.22.3 - preview Cross-Site Scripting source: https://www.securityfocus.com/bid/46082/info eSyndiCat Directory Software is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to...

vBSEO 3.2.2/3.5.2 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/46068/info vBSEO is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

Vanilla Forums 2.0.16 - &#039;Target&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/46039/info Vanilla Forums is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

PRTG Network Monitor 'errormsg' Parameter Multiple Cross Site Scripting Vulnerabilities

PRTG Network Monitor is prone to multiple cross-site-scripting vulnerabilities because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

SimpGB 1.49.2 - &#039;Guestbook.php&#039; Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/46033/info SimpGB is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

WordPress Videox7 UGC Plugin 2.5.3.2 - Cross-Site Scripting Vulnerability

This WordPress Videox7 UGC plugin's "listid" parameter is prone to a cross-site scripting vulnerability. It fails to properly clean up user-supplied input. An attacker may execute arbitrary script code in the browser of an user in the context of the affected site. In this way the attacker can ste...

PivotX 2.2 - pivotxincludestimwrapper.php?src Cross-Site Scripting

PivotX 2.2 - pivotxincludestimwrapper.php?src Cross-Site Scripting source: https://www.securityfocus.com/bid/45996/info PivotX is prone to multiple cross-site-scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

web@all 1.1 - url Cross-Site Scripting

web@all 1.1 - url Cross-Site Scripting source: https://www.securityfocus.com/bid/45976/info web@all is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of...

PivotX 2.2.2 - module_image.php Cross-Site Scripting

PivotX 2.2.2 - moduleimage.php Cross-Site Scripting source: https://www.securityfocus.com/bid/45983/info PivotX is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in th...