Lucene search
K

4775 matches found

exploitpack
exploitpack
added 2008/11/04 12:0 a.m.10 views

firmCHANNEL Indoor Outdoor Digital Signage 3.24 - Cross-Site Scripting

firmCHANNEL Indoor Outdoor Digital Signage 3.24 - Cross-Site Scripting source: https://www.securityfocus.com/bid/32107/info firmCHANNEL Indoor & Outdoor Digital SIGNAGE is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2008/10/31 12:0 a.m.19 views

Opera Web Browser 9.62 - History Search Input Validation

Opera Web Browser 9.62 - History Search Input Validation source: https://www.securityfocus.com/bid/32015/info Opera Web Browser is prone to an input-validation vulnerability because of the way it stores data used for the History Search feature. Attacker-supplied HTML and script code would run in...

Exploits0
exploitpack
exploitpack
added 2008/10/30 12:0 a.m.19 views

SonicWALL - Content Filtering Blocked Site Error Page Cross-Site Scripting

SonicWALL - Content Filtering Blocked Site Error Page Cross-Site Scripting source: https://www.securityfocus.com/bid/31998/info SonicWALL Content Filtering is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input when displaying URI...

6.8AI score
Exploits0
Exploit DB
Exploit DB
added 2008/10/29 12:0 a.m.23 views

KKE Info Media Kmita Gallery - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/31970/info Kmita Gallery is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2008/10/29 12:0 a.m.21 views

Dorsa CMS - 'Default_.aspx' Cross-Site Scripting

source: https://www.securityfocus.com/bid/31992/info Dorsa CMS is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context ...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2008/10/28 12:0 a.m.22 views

KKE Info Media Kmita Catalogue 2 - 'search.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/31968/info Kmita Catalogue is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the conte...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2008/10/24 12:0 a.m.12 views

iPeGuestbook 1.72.0 - pg Cross-Site Scripting

iPeGuestbook 1.72.0 - pg Cross-Site Scripting source: https://www.securityfocus.com/bid/31911/info iPei Guestbook is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input data. An attacker may leverage this issue to execute arbitrary script co...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2008/10/23 12:0 a.m.21 views

Jetbox CMS 2.1 - liste Cross-Site Scripting

Jetbox CMS 2.1 - liste Cross-Site Scripting source: https://www.securityfocus.com/bid/31890/info Jetbox CMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the brows...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2008/10/23 12:0 a.m.15 views

Adam Wright HTMLTidy 0.5 - html-tidy-logic.php Cross-Site Scripting

Adam Wright HTMLTidy 0.5 - html-tidy-logic.php Cross-Site Scripting source: https://www.securityfocus.com/bid/31908/info Adam Wright HTMLTidy is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2008/10/16 12:0 a.m.12 views

Habari 0.5.1 - habari_username Cross-Site Scripting

Habari 0.5.1 - habariusername Cross-Site Scripting source: https://www.securityfocus.com/bid/31794/info Habari is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input data. An attacker may leverage this issue to execute arbitrary script code ...

6.8AI score
Exploits0
CVE
CVE
added 2008/10/14 8:0 p.m.50 views

CVE-2008-4400

CVE-2008-4400 affects CA ARCserve Backup (BrightStor ARCserve Backup) r11.1–r12.0. The vulnerability is in asdbapi.dll and stems from insufficient validation of authentication credentials, allowing remote attackers to cause a denial of service by crashing multiple services. Remediation is availab...

5CVSS6.7AI score0.03382EPSS
Exploits1References7Affected Software5
exploitpack
exploitpack
added 2008/10/14 12:0 a.m.16 views

Elxis CMS 2008.1 - PHPSESSID Variable Session Fixation

Elxis CMS 2008.1 - PHPSESSID Variable Session Fixation source: https://www.securityfocus.com/bid/31764/info Elxis CMS is prone to multiple cross-site scripting and session-fixation vulnerabilities because it fails to sufficiently sanitize user-supplied data. The application is also prone to a...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2008/10/14 12:0 a.m.23 views

Elxis CMS 2008.1 - PHPSESSID Variable Session Fixation

source: https://www.securityfocus.com/bid/31764/info Elxis CMS is prone to multiple cross-site scripting and session-fixation vulnerabilities because it fails to sufficiently sanitize user-supplied data. The application is also prone to a session-fixation vulnerability. An attacker may leverage...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2008/10/09 12:0 a.m.17 views

Proxim Tsunami MP.11 2411 Wireless Access Point - system.sysName.0 SNMP HTML Injection

Proxim Tsunami MP.11 2411 Wireless Access Point - system.sysName.0 SNMP HTML Injection source: https://www.securityfocus.com/bid/31666/info The Proxim Tsunami MP.11 2411 Wireless Access Point is prone to an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied input...

0.3AI score
Exploits0
Metasploit
Metasploit
added 2008/10/02 10:43 p.m.20 views

Authentication Capture: Telnet

This module provides a fake Telnet service that is designed to capture authentication credentials. DONTs and WONTs are sent to the client for all option negotiations, except for ECHO at the time of the password prompt since the server controls that for a bit more realism. This module requires...

0.7AI score
Exploits0
exploitpack
exploitpack
added 2008/10/02 12:0 a.m.7 views

Dreamcost HostAdmin 3.1 - index.php Cross-Site Scripting

Dreamcost HostAdmin 3.1 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/31538/info Dreamcost HostAdmin is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input data. An attacker may leverage this issue to execute...

6.8AI score
Exploits0
Exploit DB
Exploit DB
added 2008/10/02 12:0 a.m.31 views

Dreamcost HostAdmin 3.1 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/31538/info Dreamcost HostAdmin is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2008/10/01 12:0 a.m.9 views

WikyBlog 1.7.1 - Multiple Cross-Site Scripting Vulnerabilities

WikyBlog 1.7.1 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/31525/info WikyBlog is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

Exploits0
Exploit DB
Exploit DB
added 2008/10/01 12:0 a.m.23 views

WikyBlog 1.7.1 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/31525/info WikyBlog is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2008/09/30 12:0 a.m.34 views

MySQL 5 - Command Line Client HTML Special Characters HTML Injection

source: https://www.securityfocus.com/bid/31486/info MySQL is prone to an HTML-injection vulnerability because the application's command-line client fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code would run in...

7AI score
Exploits0
Rows per page
Query Builder