ClanSphere 2009 - text Cross-Site Scripting

ClanSphere 2009 - text Cross-Site Scripting source: https://www.securityfocus.com/bid/35605/info ClanSphere is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the brows...

Google Chrome 0.3.154 - 'JavaScript:' URI in 'Refresh' Header Cross-Site Scripting

source: https://www.securityfocus.com/bid/35572/info Google Chrome is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to execute arbitrary script code in the context of the user running the application and...

Joomla! < 1.5.11 - Multiple Cross-Site Scripting / HTML Injection Vulnerabilities

source: https://www.securityfocus.com/bid/35189/info Joomla! is prone to multiple cross-site scripting and HTML-injection vulnerabilities because the application fails to sufficiently sanitize user-supplied input. These issues affect the 'comuser' component, the 'JAPurity' template, and the...

Flatnux 2009-03-27 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/44454/info FlatNux is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

Sitecore CMS 6.0.0 rev. 090120 - 'default.aspx' Cross-Site Scripting

source: https://www.securityfocus.com/bid/44405/info Sitecore CMS is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in...

PHP-Nuke 8.0 Downloads Module - 'query' Cross-Site Scripting

source: https://www.securityfocus.com/bid/35180/info PHP-Nuke is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of t...

phpMyAdmin 3.3.0 - db Cross-Site Scripting

phpMyAdmin 3.3.0 - db Cross-Site Scripting source: https://www.securityfocus.com/bid/35531/info phpMyAdmin is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the...

Achievo 1.3.4 - Multiple Cross-Site Scripting Vulnerabilities

Achievo 1.3.4 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/35140/info Achievo is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute...

Intergo Arcade Trade Script 1.0 - q Cross-Site Scripting

Intergo Arcade Trade Script 1.0 - q Cross-Site Scripting source: https://www.securityfocus.com/bid/44555/info Arcade Trade Script is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute...

LxBlog - Multiple Cross-Site Scripting SQL Injections

LxBlog - Multiple Cross-Site Scripting SQL Injections source: https://www.securityfocus.com/bid/35071/info LxBlog is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues coul...

LxBlog - Multiple Cross-Site Scripting / SQL Injections

source: https://www.securityfocus.com/bid/35071/info LxBlog is prone to an SQL-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to steal cookie-based authenticati...

DotNetNuke 4.9.3 - 'ErrorPage.aspx' Cross-Site Scripting

source: https://www.securityfocus.com/bid/35074/info DotNetNuke is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in t...

Sun Java System Communications Express 6.3 - search.xml Cross-Site Scripting

Sun Java System Communications Express 6.3 - search.xml Cross-Site Scripting source: https://www.securityfocus.com/bid/34154/info Sun Java System Communications Express is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may...

Cacti 0.8.7 - 'data_input.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/34991/info Cacti is prone to a cross-site scripting vulnerability because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in th...

Webmedia Explorer 5.0.9/5.10 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/35368/info Webmedia Explorer is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting...

GlassFish Enterprise Server Multiple Cross Site Scripting Vulnerabilities

GlassFish Enterprise Server is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Attacker-supplied HTML and script code would run in the context of the affected site, potentially allowing the attacker to steal cookie-based...

Claroline 1.8.11 - clarolinelinkernotfound.php Cross-Site Scripting

Claroline 1.8.11 - clarolinelinkernotfound.php Cross-Site Scripting source: https://www.securityfocus.com/bid/34883/info Claroline is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execut...

Claroline 1.8.11 - '/claroline/linker/notfound.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/34883/info Claroline is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in th...

Verlihub Control Panel 1.7 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/34856/info Verlihub Control Panel is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an...

GlassFish Enterprise Server 2.1 - Admin Console applicationsapplications.jsf URI Cross-Site Scripting

GlassFish Enterprise Server 2.1 - Admin Console applicationsapplications.jsf URI Cross-Site Scripting source: https://www.securityfocus.com/bid/34824/info GlassFish Enterprise Server is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied...