Istgah For Centerhost - 'view_ad.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/39330/info Istgah for Centerhost is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

IBM WebSphere Application Server multiple vulnerabilities

IBM WebSphere Application Server WAS is prone to multiple vulnerabilities. 1. A cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in...

OSSIM 2.2.1 - '$_SERVER['PHP_SELF']' Cross-Site Scripting

source: https://www.securityfocus.com/bid/39145/info OSSIM is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of t...

RepairShop2 - index.php?Prod Cross-Site Scripting

RepairShop2 - index.php?Prod Cross-Site Scripting source: https://www.securityfocus.com/bid/38907/info RepairShop 2 is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials...

agXchange ESM - ucquerydetails.jsp Cross-Site Scripting

agXchange ESM - ucquerydetails.jsp Cross-Site Scripting source: https://www.securityfocus.com/bid/38896/info agXchange ESM is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script co...

PHPAuthent 0.2.1 - useradd.php Multiple HTML Injection Vulnerabilities

PHPAuthent 0.2.1 - useradd.php Multiple HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/38908/info phpAuthent is prone to multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input. Successful exploits will allow attacker-supplied HT...

agXchange ESM - 'ucquerydetails.jsp' Cross-Site Scripting

source: https://www.securityfocus.com/bid/38896/info agXchange ESM is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context...

RepairShop2 - 'index.php?Prod' Cross-Site Scripting

source: https://www.securityfocus.com/bid/38907/info RepairShop 2 is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, control how the site is rendered to the user,...

PHPWind 6.0 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/38867/info PHPWind is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting...

ViewVC 'lib/viewvc.py' Cross Site Scripting Vulnerability

ViewVC is prone to a cross-site scripting vulnerability because the application fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site and steal cookie-based...

Dojo Toolkit 1.4.1 - dohrunner.html Multiple Cross-Site Scripting Vulnerabilities

Dojo Toolkit 1.4.1 - dohrunner.html Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/38739/info Dojo is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues...

Dojo Toolkit 1.4.1 - dijittests_testCommon.js?theme Cross-Site Scripting

Dojo Toolkit 1.4.1 - dijitteststestCommon.js?theme Cross-Site Scripting source: https://www.securityfocus.com/bid/38739/info Dojo is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execut...

Joomla! Component com_d-greinar - maintree Cross-Site Scripting

Joomla! Component comd-greinar - maintree Cross-Site Scripting source: https://www.securityfocus.com/bid/38714/info The Joomla! 'comd-greinar' component is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue ...

Joomla! Component com_d-greinar - 'maintree' Cross-Site Scripting

source: https://www.securityfocus.com/bid/38714/info The Joomla! 'comd-greinar' component is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

pMyAdmin 3.3.5.1 - db_create.php Cross-Site Scripting

pMyAdmin 3.3.5.1 - dbcreate.php Cross-Site Scripting source: https://www.securityfocus.com/bid/38707/info phpMyAdmin is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code ...

DDL CMS 2.1 - blacklist.php Cross-Site Scripting

DDL CMS 2.1 - blacklist.php Cross-Site Scripting source: https://www.securityfocus.com/bid/38643/info DDL CMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...

Max Network Technology BBSMAX 4.2 - 'threadid' Cross-Site Scripting

source: https://www.securityfocus.com/bid/38630/info Max Network Technology BBSMAX is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting use...

60cycleCMS - 'select.php' Multiple HTML Injection Vulnerabilities

source: https://www.securityfocus.com/bid/38637/info 60cycleCMS is prone to multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input. Successful exploits will allow attacker-supplied HTML and script code to run in the context of the affected browser,...

IBM ENOVIA SmarTeam - 'LoginPage.aspx' Cross-Site Scripting

source: https://www.securityfocus.com/bid/38612/info IBM ENOVIA SmarTeam is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

DvBBS 8.2.x Cross Site Scripting

Home Page : http://www.dvbbs.net/ Dvbbs is prone to an cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...