IBM Tivoli Access Manager for E-Business - '/ibm/wpm/group?method' Cross-Site Scripting

source: https://www.securityfocus.com/bid/44382/info IBM Tivoli Access Manager for e-business is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser ...

IBM Tivoli Access Manager for E-Business - '/ivt/ivtserver?parm1' Cross-Site Scripting

source: https://www.securityfocus.com/bid/44382/info IBM Tivoli Access Manager for e-business is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser ...

IBM Tivoli Access Manager for E-Business - '/ibm/wpm/domain?method' Cross-Site Scripting

source: https://www.securityfocus.com/bid/44382/info IBM Tivoli Access Manager for e-business is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser ...

IBM Tivoli Access Manager for E-Business - '/ibm/wpm/gsogroup?method' Cross-Site Scripting

source: https://www.securityfocus.com/bid/44382/info IBM Tivoli Access Manager for e-business is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser ...

IBM Tivoli Access Manager for E-Business - '/ibm/wpm/webseal?method' Cross-Site Scripting

source: https://www.securityfocus.com/bid/44382/info IBM Tivoli Access Manager for e-business is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser ...

IBM Tivoli Access Manager for E-Business - '/ibm/wpm/user?method' Cross-Site Scripting

source: https://www.securityfocus.com/bid/44382/info IBM Tivoli Access Manager for e-business is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser ...

IBM Tivoli Access Manager for E-Business - '/ibm/wpm/rule?method' Cross-Site Scripting

source: https://www.securityfocus.com/bid/44382/info IBM Tivoli Access Manager for e-business is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser ...

IBM Tivoli Access Manager for E-Business - '/ibm/wpm/pop?method' Cross-Site Scripting

source: https://www.securityfocus.com/bid/44382/info IBM Tivoli Access Manager for e-business is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser ...

PhreeBooks Multiple Remote Vulnerabilities

PhreeBooks is prone to multiple input-validation vulnerabilities. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify data, exploit latent vulnerabilities in the underlying database, or obtain potentially...

pecio CMS 2.0.5 - 'target' Cross-Site Scripting

source: https://www.securityfocus.com/bid/44304/info pecio cms is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context...

Apache 2.0.x < 2.0.64 Multiple Vulnerabilities

According to its banner, the version of Apache 2.0.x running on the remote host is prior to 2.0.64. It is, therefore, affected by the following vulnerabilities : - An unspecified error exists in the handling of requests without a path segment. CVE-2010-1452 - Several modules, including...

eXV2 CMS - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/44169/info eXV2 CMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

TWiki 5.0 - &#039;/bin/view?rev&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/44103/info TWiki is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

PluXml 5.0.1 - Multiple Cross-Site Scripting HTML Injection Vulnerabilities

PluXml 5.0.1 - Multiple Cross-Site Scripting HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/44069/info PluXml is prone to multiple cross-site scripting and HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in...

XSS vulnerability in Ronny CMS

Vulnerability ID: HTB22622 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinronnycms.html Product: Ronny CMS Vendor: TO4KA Programming Team http://ronny-cms.ru/ Vulnerable Version: 1.1 r935 and probably prior versions Vendor Notification: 29 September 2010 Vulnerability Type: Stored X...

Ronny CMS 1.1 r935 - Multiple HTML Injection Vulnerabilities

Ronny CMS 1.1 r935 - Multiple HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/44066/info Ronny CMS is prone to multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Successful...

PluXml 5.0.1 - Multiple Cross-Site Scripting / HTML Injection Vulnerabilities

source: https://www.securityfocus.com/bid/44069/info PluXml is prone to multiple cross-site scripting and HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Successful exploits will allow attacker-supplied HTM...

Oracle Fusion Middleware 10.1.210.1.3 - BPEL Console Cross-Site Scripting

Oracle Fusion Middleware 10.1.210.1.3 - BPEL Console Cross-Site Scripting source: https://www.securityfocus.com/bid/43954/info Oracle Fusion Middleware is prone to a cross-site scripting vulnerability in BPEL Console. The vulnerability can be exploited over the 'HTTP' protocol. For an exploit to...

Joomla! Mambo Component com_trade - PID Cross-Site Scripting

Joomla! Mambo Component comtrade - PID Cross-Site Scripting source: https://www.securityfocus.com/bid/43915/info The 'comtrade' component for Joomla! and Mambo is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this...

XSS vulnerability in Lantern CMS

Vulnerability ID: HTB22621 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinlanterncms1.html Product: Lantern CMS Vendor: Lantern http://www.lanterncms.com/www/html/7-home-page.asp Vulnerable Version: Current at 18.09.2010 and Probably Prior Versions Vendor Notification: 22 September...