ArtGK CMS - Cross-Site Scripting / HTML Injection

source: https://www.securityfocus.com/bid/42923/info ArtGK CMS is prone to a cross-site scripting vulnerability and an HTML-injection vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Successful exploits will allow...

Rumba XML 2.4 - 'index.php' Multiple HTML Injection Vulnerabilities

source: https://www.securityfocus.com/bid/42914/info Rumba XML is prone to multiple HTML-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Successful exploits will allow attacker-supplied HTML and...

ArtGK Cross Site Scripting

===================================== Vulnerability ID: HTB22588 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinartgkcms1.html Product: ArtGK CMS Vendor: ArtGK http://artgk-cms.ru/ Vulnerable Version: 2009-08-28 16:00:00 and Probably Prior Versions Vendor Notification: 18 August 201...

HP Insight Diagnostics Online Edition 8.4 - parameters.php?device Cross-Site Scripting

HP Insight Diagnostics Online Edition 8.4 - parameters.php?device Cross-Site Scripting source: https://www.securityfocus.com/bid/42888/info HP Insight Diagnostics Online Edition is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An...

HP Insight Diagnostics Online Edition 8.4 - 'idstatusframe.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/42888/info HP Insight Diagnostics Online Edition is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of ...

HP Insight Diagnostics Online Edition 8.4 - 'custom.php?testmode' Cross-Site Scripting

source: https://www.securityfocus.com/bid/42888/info HP Insight Diagnostics Online Edition is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of ...

HP Insight Diagnostics Online Edition 8.4 - 'survey.php?category' Cross-Site Scripting

source: https://www.securityfocus.com/bid/42888/info HP Insight Diagnostics Online Edition is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of ...

XSS vulnerability in TCMS

Vulnerability ID: HTB22574 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityintcms.html Product: TCMS Vendor: Target CMS http://targetcms.com/ Vulnerable Version: 100728 and Probably Prior Versions Vendor Notification: 09 August 2010 Vulnerability Type: XSS Cross Site Scripting Status:...

WebsiteKit Gbplus - Name Body HTML Injection

WebsiteKit Gbplus - Name Body HTML Injection source: https://www.securityfocus.com/bid/42842/info Gbplus is prone to multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Successful exploits will allow...

Valarsoft WebMatic 3.0.5 - Multiple HTML Injection Vulnerabilities

source: https://www.securityfocus.com/bid/42767/info Valarsoft WebMatic is prone to multiple HTML-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Successful exploits will allow attacker-supplied HTM...

Auto CMS 1.6 - autocms.php Cross-Site Scripting

Auto CMS 1.6 - autocms.php Cross-Site Scripting source: https://www.securityfocus.com/bid/42764/info Auto CMS is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script co...

Nagios XI - login.php Multiple Cross-Site Scripting Vulnerabilities

Nagios XI - login.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/42604/info Nagios XI is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

XSS vulnerability in CMSimple

Vulnerability ID: HTB22558 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityincmsimple.html Product: CMSimple Vendor: Peter Andreas Harteg http://www.cmsimple.org/ Vulnerable Version: 3.3 and Probably Prior Versions Vendor Notification: 02 August 2010 Vulnerability Type: XSS Cross Site...

Zomplog 3.9 - message Cross-Site Scripting

Zomplog 3.9 - message Cross-Site Scripting souce: https://www.securityfocus.com/bid/42457/info Zomplog is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the...

XSS vulnerability in CMS Source

Vulnerability ID: HTB22549 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityincmssource1.html Product: CMS Source Vendor: Proud Daddy Web Design http://www.prouddaddy.net/ Vulnerable Version: Current at 28.07.2010 and Probably Prior Versions Vendor Notification: 28 July 2010 Vulnerabili...

Edit-X PHP CMS - search_text Cross-Site Scripting

Edit-X PHP CMS - searchtext Cross-Site Scripting source: https://www.securityfocus.com/bid/42442/info Edit-X PHP CMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in...

CMS Source - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/42437/info CMS Source is prone to multiple input-validation vulnerabilities because it fails to adequately sanitize user-supplied input. These vulnerabilities include local file-include, SQL-injection, and cross-site-scripting issues. Exploiting these...

Onyx - Multiple Cross-Site Scripting Vulnerabilities

Onyx - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/42446/info Onyx is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script cod...

Preation Eden Platform 27.7.2010 - Multiple HTML Injection Vulnerabilities

Preation Eden Platform 27.7.2010 - Multiple HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/42321/info Preation Eden Platform is prone to multiple HTML-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in...

Allinta CMS 22.07.2010 - Multiple SQL Injections / Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/42320/info Allinta CMS is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these vulnerabilities could allow an attacker to steal...