SiteBar 3.3.8 - index.php?target Cross-Site Scripting

SiteBar 3.3.8 - index.php?target Cross-Site Scripting source: https://www.securityfocus.com/bid/26126/info SiteBar is prone to multiple input-validation vulnerabilities because it fails to properly sanitize user-supplied input. These issues include: - A local file-include vulnerability - Multiple...

SiteBar 3.3.8 - command.php?Modify User Action uid Cross-Site Scripting

SiteBar 3.3.8 - command.php?Modify User Action uid Cross-Site Scripting source: https://www.securityfocus.com/bid/26126/info SiteBar is prone to multiple input-validation vulnerabilities because it fails to properly sanitize user-supplied input. These issues include: - A local file-include...

SiteBar 3.3.8 - integrator.php?lang Cross-Site Scripting

SiteBar 3.3.8 - integrator.php?lang Cross-Site Scripting source: https://www.securityfocus.com/bid/26126/info SiteBar is prone to multiple input-validation vulnerabilities because it fails to properly sanitize user-supplied input. These issues include: - A local file-include vulnerability -...

SiteBar 3.3.8 - translator.php?updcmdActionedit Arbitrary PHP Code Execution

SiteBar 3.3.8 - translator.php?updcmdActionedit Arbitrary PHP Code Execution source: https://www.securityfocus.com/bid/26126/info SiteBar is prone to multiple input-validation vulnerabilities because it fails to properly sanitize user-supplied input. These issues include: - A local file-include...

SiteBar 3.3.8 - 'command.php?Modify User Action uid' Cross-Site Scripting

source: https://www.securityfocus.com/bid/26126/info SiteBar is prone to multiple input-validation vulnerabilities because it fails to properly sanitize user-supplied input. These issues include: - A local file-include vulnerability - Multiple arbitrary-script-code-execution vulnerabilities -...

Stringbeans Portal 3.2 Projects Script - Cross-Site Scripting

Stringbeans Portal 3.2 Projects Script - Cross-Site Scripting source: https://www.securityfocus.com/bid/26082/info Stringbeans Portal is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to...

Stringbeans Portal 3.2 Projects Script - Cross-Site Scripting

source: https://www.securityfocus.com/bid/26082/info Stringbeans Portal is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting...

Nucleus CMS 3.0.1 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/26035/info Nucleus CMS is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in...

UMI CMS - index.php Cross-Site Scripting

UMI CMS - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/26033/info UMI CMS is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in th...

OpenBSD 4.1 - bgplg cmd Cross-Site Scripting

OpenBSD 4.1 - bgplg cmd Cross-Site Scripting source: https://www.securityfocus.com/bid/27535/info OpenBSD bgplg is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script...

OpenBSD 4.1 - bgplg 'cmd' Cross-Site Scripting

source: https://www.securityfocus.com/bid/27535/info OpenBSD bgplg is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user i...

NetWin DNews - Dnewsweb.exe Multiple Cross-Site Scripting Vulnerabilities

NetWin DNews - Dnewsweb.exe Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/25981/info DNews is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these...

NetWin DNews - 'Dnewsweb.exe' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/25981/info DNews is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting use...

SNewsCMS 2.1 - 'News_page.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/25963/info SNewsCMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage this issue to execute arbitrary script code in the...

AfterLogic MailBee WebMail Pro 3.x - login.php?mode Cross-Site Scripting

AfterLogic MailBee WebMail Pro 3.x - login.php?mode Cross-Site Scripting source: https://www.securityfocus.com/bid/25942/info MailBee WebMail Pro is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker can...

AfterLogic MailBee WebMail Pro 3.x - 'login.php?mode' Cross-Site Scripting

source: https://www.securityfocus.com/bid/25942/info MailBee WebMail Pro is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker can exploit these issues to steal cookie-based authentication credentials and...

AfterLogic MailBee WebMail Pro 3.x - 'default.asp?mode2' Cross-Site Scripting

source: https://www.securityfocus.com/bid/25942/info MailBee WebMail Pro is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker can exploit these issues to steal cookie-based authentication credentials and...

GForge 4.64.53.1 - Verify.php Cross-Site Scripting

GForge 4.64.53.1 - Verify.php Cross-Site Scripting source: https://www.securityfocus.com/bid/25923/info GForge is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. A fix is available from the vendor. Exploiting this issue could allow an...

Stuffed Guys Stuffed Tracker - Multiple Cross-Site Scripting Vulnerabilities

Stuffed Guys Stuffed Tracker - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/25931/info Stuffed Tracker is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker may...

GForge 4.6/4.5/3.1 - 'Verify.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/25923/info GForge is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. A fix is available from the vendor. Exploiting this issue could allow an attacker to steal cookie-based authentication...