4774 matches found
Appweb Web Server 3.2.2-1 - Cross-Site Scripting
Appweb Web Server 3.2.2-1 - Cross-Site Scripting source: https://www.securityfocus.com/bid/45568/info Appweb is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...
Social Share - search Cross-Site Scripting
Social Share - search Cross-Site Scripting source: https://www.securityfocus.com/bid/45566/info Social Share is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the...
Appweb Web Server 3.2.2-1 - Cross-Site Scripting
source: https://www.securityfocus.com/bid/45568/info Appweb is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...
WordPress Plugin Accept Signups 0.1 - email Cross-Site Scripting
WordPress Plugin Accept Signups 0.1 - email Cross-Site Scripting source: https://www.securityfocus.com/bid/45548/info The Accept Signups Plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this...
Injader CMS Multiple Vulnerabilities
Exploit for php platform in category web applications Vulnerability ID: HTB22745 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityininjadercms1.html Product: Injader CMS Vendor: http://www.injader.com/ http://www.injader.com/ Vulnerable Version: 2.4.4 Vendor Notification: 07 December 20...
Calibre 0.7.34 - Cross-Site Scripting Directory Traversal
Calibre 0.7.34 - Cross-Site Scripting Directory Traversal source: https://www.securityfocus.com/bid/45532/info Calibre is prone to a cross-site scripting vulnerability and a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting these issues wi...
OpenFiler - device Cross-Site Scripting
OpenFiler - device Cross-Site Scripting source: https://www.securityfocus.com/bid/45523/info Openfiler is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser...
XSS vulnerability in Habari
Vulnerability ID: HTB22731 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinhabari.html Product: Habari Vendor: Habari http://habariproject.org/en/ Vulnerable Version: 0.6.5 Vendor Notification: 02 December 2010 Vulnerability Type: XSS Cross Site Scripting Status: Fixed by Vendor Risk...
Habari Blog - Multiple Vulnerabilities
Vulnerability ID: HTB22732 Reference: http://www.htbridge.ch/advisory/pathdisclosureinhabari.html Product: Habari Vendor: Habari http://habariproject.org/en/ Vulnerable Version: 0.6.5 Vendor Notification: 02 December 2010 Vulnerability Type: Path disclosure Status: Fixed by Vendor Risk level: Low...
Radius Manager 3.6 - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/45481/info Radius Manager is prone to multiple cross-site-scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in...
Social Share - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/45485/info Social Share is prone to multiple cross-site-scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in t...
HP Insight Diagnostics Online Edition 8.4 - search.php Cross-Site Scripting
HP Insight Diagnostics Online Edition 8.4 - search.php Cross-Site Scripting source: https://www.securityfocus.com/bid/45420/info HP Insight Diagnostics Online Edition is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker m...
XSS vulnerability in BEdita
Vulnerability ID: HTB22723 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinbedita.html Product: BEdita Vendor: Chialab ChannelWeb http://www.bedita.com/ Vulnerable Version: 3.0.1.2550 "betula" and probably prior versions Vendor Notification: 30 November 2010 Vulnerability Type: XSS...
Blog:CMS 4.2.1 e - Multiple HTML Injections / Cross-Site Scripting
source: https://www.securityfocus.com/bid/45432/info BLOG:CMS is prone to a cross-site-scripting vulnerability and multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Successful exploits will allow...
BlogCFC 5.9.6.001 - Multiple Cross-Site Scripting Vulnerabilities
BlogCFC 5.9.6.001 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/45395/info BlogCFC is prone to multiple cross-site-scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...
Articlems 2.0 - c[] Cross-Site Scripting
Articlems 2.0 - c Cross-Site Scripting source: https://www.securityfocus.com/bid/41511/info ArticleMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of ...
PHP TopSites 2.1 - '/rate.php' Cross-Site Scripting / SQL Injection
source: https://www.securityfocus.com/bid/45389/info PHP TopSites is prone to a cross-site scripting vulnerability and an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to execute arbitrary script code in t...
Articlems 2.0 - 'c[]' Cross-Site Scripting
source: https://www.securityfocus.com/bid/41511/info ArticleMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...
ManageEngine EventLog Analyzer 6.1 - Multiple Cross-Site Scripting Vulnerabilities
ManageEngine EventLog Analyzer 6.1 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/45334/info ManageEngine EventLog Analyzer is prone to multiple cross-site-scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker m...
BizDir 05.10 - f_srch Cross-Site Scripting
BizDir 05.10 - fsrch Cross-Site Scripting source: https://www.securityfocus.com/bid/45342/info BizDir is prone to a cross-site-scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of ...