Miro Broadcast Machine 0.9.9 - login.php Cross-Site Scripting

Miro Broadcast Machine 0.9.9 - login.php Cross-Site Scripting source: https://www.securityfocus.com/bid/26407/info Miro Broadcast Machine is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue allows attackers to execut...

Roundcube Webmail 0.1 - CSS Expression Input Validation

Roundcube Webmail 0.1 - CSS Expression Input Validation source: https://www.securityfocus.com/bid/26800/info Roundcube Webmail is prone to an input-validation vulnerability because it fails to sanitize HTML email messages. Attackers can exploit this issue to execute arbitrary script code in the...

Falcon Series One 1.4.3 stable - Multiple Input Validation Vulnerabilities

Falcon Series One 1.4.3 stable - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/26798/info Falcon Series One is prone to multiple input-validation vulnerabilities because it fails to properly sanitize user-supplied input. These issues include a remote...

Roundcube Webmail 0.1 - CSS Expression Input Validation

source: https://www.securityfocus.com/bid/26800/info Roundcube Webmail is prone to an input-validation vulnerability because it fails to sanitize HTML email messages. Attackers can exploit this issue to execute arbitrary script code in the browser of an unsuspecting user. Successful attacks can...

Bitweaver 1.x/2.0 - 'users/register.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/26801/info Bitweaver is prone to multiple input-validation vulnerabilities because the application fails to sufficiently sanitize user-supplied input including multiple cross-site scripting vulnerabilities, multiple HTML-injection vulnerabilities, and an...

Bitweaver 1.x2.0 - usersregister.php Cross-Site Scripting

Bitweaver 1.x2.0 - usersregister.php Cross-Site Scripting source: https://www.securityfocus.com/bid/26801/info Bitweaver is prone to multiple input-validation vulnerabilities because the application fails to sufficiently sanitize user-supplied input including multiple cross-site scripting...

Ubuntu 6.06 LTS / 6.10 / 7.04 : fetchmail vulnerabilities (USN-520-1)

Gaetan Leurent discovered a vulnerability in the APOP protocol based on MD5 collisions. As fetchmail supports the APOP protocol, this vulnerability can be used by attackers to discover a portion of the APOP user's authentication credentials. CVE-2007-1558 Earl Chew discovered that fetchmail can b...

Computer Associates SiteMinder - Web Agent Smpwservices.FCC Cross-Site Scripting

source: https://www.securityfocus.com/bid/26375/info Computer Associates SiteMinder Web Agent is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue allows attackers to execute arbitrary HTML or script code in a user's...

Helios Calendar 1.11.2 - adminindex.php Cross-Site Scripting

Helios Calendar 1.11.2 - adminindex.php Cross-Site Scripting source: https://www.securityfocus.com/bid/26312/info Helios Calendar is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue allows attackers to execute...

Helios Calendar 1.1/1.2 - 'admin/index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/26312/info Helios Calendar is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue allows attackers to execute arbitrary HTML or script code in a user's browser session in the...

Smart-Shop - index.php Multiple Cross-Site Scripting Vulnerabilities

Smart-Shop - index.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/26232/info SMART-SHOP is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. Exploiting these vulnerabiliti...

Omnistar Live - KB.php Cross-Site Scripting

Omnistar Live - KB.php Cross-Site Scripting source: https://www.securityfocus.com/bid/26234/info Omnistar Live is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script...

Saxon 5.4 - 'Menu.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/26237/info Saxon is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

SearchSimon Lite 1.0 - Filename.asp Cross-Site Scripting

SearchSimon Lite 1.0 - Filename.asp Cross-Site Scripting source: https://www.securityfocus.com/bid/26142/info SearchSimon Lite is prone to a cross-site scripting vulnerability because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execut...

SearchSimon Lite 1.0 - 'Filename.asp' Cross-Site Scripting

source: https://www.securityfocus.com/bid/26142/info SearchSimon Lite is prone to a cross-site scripting vulnerability because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting...

rNote 0.9.7 - 'rnote.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/26140/info rNote is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. Exploiting these vulnerabilities may allow an attacker to perform cross-site scripting attacks on...

Design/Logic Flaw

Unspecified vulnerability in Symantec Altiris Deployment Solution allows attackers to obtain authentication credentials via unknown vectors, aka "Authentication Credentials Information Leakage in Altiris Deployment Solution." NOTE: this description is based on a vague pre-advisory with no...

CVE-2007-5555

Unspecified vulnerability in Symantec Altiris Deployment Solution allows attackers to obtain authentication credentials via unknown vectors, aka "Authentication Credentials Information Leakage in Altiris Deployment Solution." NOTE: this description is based on a vague pre-advisory with no...

CVE-2007-5555

Unspecified vulnerability in Symantec Altiris Deployment Solution allows attackers to obtain authentication credentials via unknown vectors, aka "Authentication Credentials Information Leakage in Altiris Deployment Solution." NOTE: this description is based on a vague pre-advisory with no...

CVE-2007-5555

Technical details for CVE-2007-5555 are not publicly available in the provided documents; no affected products, root cause, impact or fix are disclosed. Monitor for updates.