Worxware DCP-Portal 7.0 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/41453/info Worxware DCP-Portal is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting us...

Exponent CMS 0.97 - 'Slideshow.js.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/41447/info Exponent CMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context ...

RunCMS 2.1 - 'check.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/41448/info RunCms is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...

RunCMS 2.1 - check.php Cross-Site Scripting

RunCMS 2.1 - check.php Cross-Site Scripting source: https://www.securityfocus.com/bid/41448/info RunCms is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser o...

nuBuilder Local File Include and Cross Site Scripting Vulnerabilities

nuBuilder is prone to a local file-include vulnerability and a cross- site scripting vulnerability because it fails to properly sanitize user- supplied input. An attacker can exploit the local file-include vulnerability using directory-traversal strings to view and execute local files within the...

i-Net Solution Matrimonial Script 2.0.3 - alert.php Cross-Site Scripting

i-Net Solution Matrimonial Script 2.0.3 - alert.php Cross-Site Scripting source: https://www.securityfocus.com/bid/41387/info i-Net Solution Matrimonial Script is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this...

Bitweaver 2.7 - fImg Cross-Site Scripting

Bitweaver 2.7 - fImg Cross-Site Scripting source: https://www.securityfocus.com/bid/41421/info Bitweaver is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser ...

NewsOffice 2.0.18 - news_show.php Cross-Site Scripting

NewsOffice 2.0.18 - newsshow.php Cross-Site Scripting source: https://www.securityfocus.com/bid/41419/info NewsOffice is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in...

Orbis CMS 1.0.2 - editor-body.php Cross-Site Scripting

Orbis CMS 1.0.2 - editor-body.php Cross-Site Scripting source: https://www.securityfocus.com/bid/41390/info Orbis CMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in...

odCMS 1.07 - archive.php Cross-Site Scripting

odCMS 1.07 - archive.php Cross-Site Scripting source: https://www.securityfocus.com/bid/41422/info odCMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser ...

Orbis CMS 1.0.2 - 'editor-body.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/41390/info Orbis CMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...

Mahara Multiple Remote Vulnerabilities

Mahara is prone to multiple remote vulnerabilities, including: 1. Multiple HTML-injection vulnerabilities 2. A cross-site request-forgery vulnerability 3. Multiple SQL-injection vulnerabilities 4. An authentication-bypass vulnerability Exploiting these issues could allow an attacker to steal...

FuseTalk 3.24.0 - Multiple Cross-Site Scripting Vulnerabilities

FuseTalk 3.24.0 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/42157/info FuseTalk is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

FuseTalk 3.2/4.0 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/42157/info FuseTalk is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

Xplico 0.5.7 - add.ctp Cross-Site Scripting (2)

Xplico 0.5.7 - add.ctp Cross-Site Scripting 2 source: https://www.securityfocus.com/bid/41322/info Xplico is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser...

Flatnux 2010-06.09 - find Cross-Site Scripting

Flatnux 2010-06.09 - find Cross-Site Scripting source: https://www.securityfocus.com/bid/41282/info Flatnux is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the brows...

DPScms - q SQL Injection Cross-Site Scripting

DPScms - q SQL Injection Cross-Site Scripting source: https://www.securityfocus.com/bid/41273/info DPScms is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attack...

Wiki Web Help 0.2.7 - Cross-Site Scripting / HTML Injection

source: https://www.securityfocus.com/bid/41306/info Wiki Web Help is prone to a cross-site scripting vulnerability and multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and...

Iatek PortalApp 3.34.0 - login.asp Multiple Cross-Site Scripting Vulnerabilities

Iatek PortalApp 3.34.0 - login.asp Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/41224/info Iatek PortalApp is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these...

Grafik CMS - admin.php SQL Injection Cross-Site Scripting

Grafik CMS - admin.php SQL Injection Cross-Site Scripting source: https://www.securityfocus.com/bid/41227/info Grafik CMS is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these...