Maran PHP Blog - comments.php Cross-Site Scripting

Maran PHP Blog - comments.php Cross-Site Scripting source: https://www.securityfocus.com/bid/30309/info Maran PHP Blog is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code i...

EasyE-Cards 3.10 - SQL Injection Cross-Site Scripting

EasyE-Cards 3.10 - SQL Injection Cross-Site Scripting source: https://www.securityfocus.com/bid/30328/info EasyE-Cards is prone to multiple input-validation vulnerabilities, including an SQL-injection issue and multiple cross-site scripting issues, because it fails to sufficiently sanitize...

EasyBookMarker 4.0 - 'ajaxp_backend.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/30304/info EasyBookMarker is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user ...

EasyE-Cards 3.10 - SQL Injection / Cross-Site Scripting

source: https://www.securityfocus.com/bid/30328/info EasyE-Cards is prone to multiple input-validation vulnerabilities, including an SQL-injection issue and multiple cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an...

XOOPS 2.0.18 - '/modules/system/admin.php?fct' Traversal Local File Inclusion

source: https://www.securityfocus.com/bid/30330/info XOOPS is prone to a local file-include vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit the local file-include vulnerability using directory-traversal...

Maran PHP Blog - 'comments.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/30309/info Maran PHP Blog is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the contex...

PHPFreeChat 1.1 - demo21_with_hardocded_urls.php Cross-Site Scripting

PHPFreeChat 1.1 - demo21withhardocdedurls.php Cross-Site Scripting source: https://www.securityfocus.com/bid/30292/info phpFreeChat is prone to an unspecified cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execu...

IBM Maximo 4.15.2 - debug.jsp HTML Injection Information Disclosure

IBM Maximo 4.15.2 - debug.jsp HTML Injection Information Disclosure source: https://www.securityfocus.com/bid/30180/info IBM Maximo is prone to multiple HTML-injection vulnerabilities and an information-disclosure vulnerability. An attacker may leverage these issues to obtain potentially sensitiv...

Hudson 1.223 - q Cross-Site Scripting

Hudson 1.223 - q Cross-Site Scripting source: https://www.securityfocus.com/bid/30184/info Hudson is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...

Hudson 1.223 - 'q' Cross-Site Scripting

source: https://www.securityfocus.com/bid/30184/info Hudson is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

TGS Content Management 0.3.2r2 - login.php Multiple Cross-Site Scripting Vulnerabilities

TGS Content Management 0.3.2r2 - login.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/30157/info TGS Content Management is prone to an HTML-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to properly sanitize...

vBulletin 3.7.1 - admincpfaq.php?Injection adminlog.php Cross-Site Scripting

vBulletin 3.7.1 - admincpfaq.php?Injection adminlog.php Cross-Site Scripting source: https://www.securityfocus.com/bid/30134/info vBulletin is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated...

Zoph 0.7.2.1 - SQL Injection

Zoph 0.7.2.1 - SQL Injection source: https://www.securityfocus.com/bid/30116/info Zoph is prone to a cross-site scripting vulnerability and multiple SQL-injection vulnerabilities. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, compromise the...

Zoph 0.7.2.1 - search.php?_off Cross-Site Scripting

Zoph 0.7.2.1 - search.php?off Cross-Site Scripting source: https://www.securityfocus.com/bid/30116/info Zoph is prone to a cross-site scripting vulnerability and multiple SQL-injection vulnerabilities. Exploiting these issues could allow an attacker to steal cookie-based authentication credential...

Zoph 0.7.2.1 - SQL Injection

source: https://www.securityfocus.com/bid/30116/info Zoph is prone to a cross-site scripting vulnerability and multiple SQL-injection vulnerabilities. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify dat...

The Rat CMS - viewarticle2.php?id Cross-Site Scripting

The Rat CMS - viewarticle2.php?id Cross-Site Scripting source: https://www.securityfocus.com/bid/29959/info The Rat CMS is prone to multiple input-validation vulnerabilities, including SQL-injection issues and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied...

Commtouch Anti-Spam Enterprise Gateway - Cross-Site Scripting

Commtouch Anti-Spam Enterprise Gateway - Cross-Site Scripting source: https://www.securityfocus.com/bid/29957/info Commtouch Anti-Spam Enterprise Gateway is prone to a cross-site scripting vulnerability because the device fails to properly sanitize user-supplied input. An attacker may leverage th...

The Rat CMS - viewarticle.php?id SQL Injection

The Rat CMS - viewarticle.php?id SQL Injection source: https://www.securityfocus.com/bid/29959/info The Rat CMS is prone to multiple input-validation vulnerabilities, including SQL-injection issues and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data...

The Rat CMS - viewarticle2.php?id SQL Injection

The Rat CMS - viewarticle2.php?id SQL Injection source: https://www.securityfocus.com/bid/29959/info The Rat CMS is prone to multiple input-validation vulnerabilities, including SQL-injection issues and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data...

The Rat CMS - viewarticle.php Multiple Cross-Site Scripting Vulnerabilities

The Rat CMS - viewarticle.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/29959/info The Rat CMS is prone to multiple input-validation vulnerabilities, including SQL-injection issues and cross-site scripting issues, because it fails to sufficiently...