JBC Explorer 7.20 - 'arbre.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/37423/info JBC Explorer is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context ...

Pluxml-Blog 4.2 - '/core/admin/auth.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/37384/info Pluxml-Blog is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context o...

PHP 5.2.11 - 'htmlspecialCharacters()' Malformed Multibyte Character Cross-Site Scripting (2)

source: https://www.securityfocus.com/bid/37389/info PHP is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...

cPanel 11.x - fileop Multiple Cross-Site Scripting Vulnerabilities

cPanel 11.x - fileop Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/37394/info cPanel is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input An attacker may leverage these issues...

BOLDfx Recipe Script 5.0 - Multiple Remote Vulnerabilities

source: https://www.securityfocus.com/bid/41787/info BOLDfx Recipe Script is prone to multiple remote vulnerabilities, including multiple cross-site request-forgery vulnerabilities, an arbitrary file upload vulnerability, multiple HTML-injection vulnerabilities and multiple cross-site scripting...

BOLDfx eUploader 3.1.1 - 'admin.php' Multiple Remote Vulnerabilities

source: https://www.securityfocus.com/bid/41783/info BOLDfx eUploader is prone to multiple remote vulnerabilities, including a cross-site request-forgery vulnerability, a security-bypass vulnerability, and an HTML-injection vulnerability. Attacker-supplied HTML and script code could run in the...

iSupport 1.8 - 'index.php?which' Cross-Site Scripting

source: https://www.securityfocus.com/bid/37380/info iDevSpot iSupport is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input An attacker may leverage these issues to execute arbitrary script code in the browser of an...

BOLDfx eUploader 3.1.1 - admin.php Multiple Remote Vulnerabilities

BOLDfx eUploader 3.1.1 - admin.php Multiple Remote Vulnerabilities source: https://www.securityfocus.com/bid/41783/info BOLDfx eUploader is prone to multiple remote vulnerabilities, including a cross-site request-forgery vulnerability, a security-bypass vulnerability, and an HTML-injection...

BOLDfx Recipe Script 5.0 - Multiple Remote Vulnerabilities

BOLDfx Recipe Script 5.0 - Multiple Remote Vulnerabilities source: https://www.securityfocus.com/bid/41787/info BOLDfx Recipe Script is prone to multiple remote vulnerabilities, including multiple cross-site request-forgery vulnerabilities, an arbitrary file upload vulnerability, multiple...

APC Network Management Card - Cross-Site Request Forgery / Cross-Site Scripting

source: https://www.securityfocus.com/bid/37338/info The APC Network Management Card is prone to multiple cross-site request-forgery and cross-site scripting vulnerabilities. An attacker can exploit the cross-site request forgery issues to alter the settings on affected devices, which may lead to...

Scriptsez Ez FAQ Maker 1.0 - Cross-Site Scripting Cross-Site Request Forgery

Scriptsez Ez FAQ Maker 1.0 - Cross-Site Scripting Cross-Site Request Forgery source: https://www.securityfocus.com/bid/41806/info ScriptsEz Ez FAQ Maker is prone to a cross-site scripting vulnerability and a cross-site request-forgery vulnerability. An attacker can exploit these vulnerabilities t...

Ez Poll Hoster - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/41742/info Ez Poll Hoster is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an...

Ez Cart - 'sid' Cross-Site Scripting

source: https://www.securityfocus.com/bid/37311/info Ez Cart is prone to is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...

Oracle E-Business Suite Multiple Remote Vulnerabilities

Exploit for unknown platform in category web applications ======================================================= Oracle E-Business Suite Multiple Remote Vulnerabilities ======================================================= Oracle E-Business Suite is prone to multiple authentication-bypass and...

Ez Cart - sid Cross-Site Scripting

Ez Cart - sid Cross-Site Scripting source: https://www.securityfocus.com/bid/37311/info Ez Cart is prone to is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

Zeecareers 2.0 - Cross-Site Scripting Authentication Bypass

Zeecareers 2.0 - Cross-Site Scripting Authentication Bypass source: https://www.securityfocus.com/bid/41689/info Zeecareers is prone to a cross-site scripting vulnerability and multiple authentication-bypass vulnerabilities. An attacker may leverage the cross-site scripting issue to execute...

Ruby on Rails 'strip_tags' XSS Vulnerability (Nov 2009)

Ruby on Rails is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Advanced Image Hosting Script 2.x - search.php Cross-Site Scripting

Advanced Image Hosting Script 2.x - search.php Cross-Site Scripting source: https://www.securityfocus.com/bid/37233/info YABSoft Advanced Image Hosting Script is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this...

Clixint Technologies DPI - Cross-Site Scripting

Clixint Technologies DPI - Cross-Site Scripting source: https://www.securityfocus.com/bid/41986/info DPI is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser ...

Joomla! Component YOOtheme Warp5 - yt_color Cross-Site Scripting

Joomla! Component YOOtheme Warp5 - ytcolor Cross-Site Scripting source: https://www.securityfocus.com/bid/37239/info The Warp5 component for Joomla! is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to...