ArcademSX 2.904 - cat Cross-Site Scripting

ArcademSX 2.904 - cat Cross-Site Scripting source: https://www.securityfocus.com/bid/41252/info ArcademSX is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser...

XSS vulnerability in PortalApp

Vulnerability ID: HTB22442 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinportalapp1.html Product: PortalApp Vendor: Latek Vulnerable Version: 4.0 and Probably Prior Versions Vendor Notification: 14 June 2010 Vulnerability Type: XSS Cross Site Scripting Status: Not Fixed, Vendor...

CANDID - '/image/view.php?image_id' Cross-Site Scripting

source: https://www.securityfocus.com/bid/41216/info CANDID is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based authentication...

MySpace Clone 2010 - SQL Injection Cross-Site Scripting

MySpace Clone 2010 - SQL Injection Cross-Site Scripting source: https://www.securityfocus.com/bid/41199/info MySpace Clone 2010 is prone to an SQL-injection and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow a...

MySpace Clone 2010 - SQL Injection / Cross-Site Scripting

source: https://www.securityfocus.com/bid/41199/info MySpace Clone 2010 is prone to an SQL-injection and a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based authentication...

OneCMS 2.6.1 - cat Cross-Site Scripting

OneCMS 2.6.1 - cat Cross-Site Scripting source: https://www.securityfocus.com/bid/41194/info OneCMS is prone to multiple SQL-injection and cross-site scripting vulnerabilities because it fails to sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-based...

Limny 2.1 - q Cross-Site Scripting

Limny 2.1 - q Cross-Site Scripting source: https://www.securityfocus.com/bid/41152/info Limny is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

OneCMS 2.6.1 - short1 Cross-Site Scripting

OneCMS 2.6.1 - short1 Cross-Site Scripting source: https://www.securityfocus.com/bid/41194/info OneCMS is prone to multiple SQL-injection and cross-site scripting vulnerabilities because it fails to sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-base...

OneCMS 2.6.1 - 'short1' Cross-Site Scripting

source: https://www.securityfocus.com/bid/41194/info OneCMS is prone to multiple SQL-injection and cross-site scripting vulnerabilities because it fails to sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, control how t...

OneCMS 2.6.1 - 'cat' Cross-Site Scripting

source: https://www.securityfocus.com/bid/41194/info OneCMS is prone to multiple SQL-injection and cross-site scripting vulnerabilities because it fails to sanitize user-supplied input. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, control how t...

Limny 2.1 - 'q' Cross-Site Scripting

source: https://www.securityfocus.com/bid/41152/info Limny is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...

Linksys WAP54Gv3 Wireless Router - 'debug.cgi' Cross-Site Scripting

source: https://www.securityfocus.com/bid/41061/info Linksys WAP54Gv3 Wireless Router is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. Attackers may exploit this issue by enticing victims into visiting a malicious site. An...

SoftComplex PHP Event Calendar 1.5 - Multiple Remote Vulnerabilities

SoftComplex PHP Event Calendar 1.5 - Multiple Remote Vulnerabilities source: https://www.securityfocus.com/bid/41043/info SoftComplex PHP Event Calendar is prone to multiple remote security vulnerabilities including cross-site scripting, HTML-injection, directory-traversal, and cross-site...

SoftComplex PHP Event Calendar 1.5 - Multiple Remote Vulnerabilities

source: https://www.securityfocus.com/bid/41043/info SoftComplex PHP Event Calendar is prone to multiple remote security vulnerabilities including cross-site scripting, HTML-injection, directory-traversal, and cross-site request-forgery issues. Attackers can exploit these issues to obtain sensiti...

PHP Quick Arcade SQL Injection and Cross Site Scripting Vulnerabilities

This host is running PHP Quick Arcade and is prone to SQL injection and cross site scripting Vulnerabilities. OpenVAS Vulnerability Test $Id: gbphpquickarcadesqlinjectionnxssvuln.nasl 5373 2017-02-20 16:27:48Z teissa $ PHP Quick Arcade SQL Injection and Cross Site Scripting Vulnerabilities Author...

Jamroom 4.0.24.1.x - forum.php Cross-Site Scripting

Jamroom 4.0.24.1.x - forum.php Cross-Site Scripting source: https://www.securityfocus.com/bid/41071/info Jamroom is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...

osCMax 2.0 - articles.php Cross-Site Scripting

osCMax 2.0 - articles.php Cross-Site Scripting source: https://www.securityfocus.com/bid/40998/info osCmax is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browse...

Sigmer Technologies Scribe CMS - copy_folder.php Cross-Site Scripting

Sigmer Technologies Scribe CMS - copyfolder.php Cross-Site Scripting source: https://www.securityfocus.com/bid/41000/info Sigmer Technologies Scribe CMS is prone to a cross-site scripting vulnerability because the application fails to sufficiently sanitize user-supplied input. An attacker may...

osCMax 2.0 - 'articles.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/40998/info osCmax is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...

Firebook - Multiple Cross-Site Scripting / Directory Traversal Vulnerabilities

source: https://www.securityfocus.com/bid/40941/info Firebook is prone to multiple cross-site scripting vulnerabilities and directory-traversal vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these issues will allow an attacker to execute arbitrary script...