JSPWiki 2.5.139 - 'edit.jsp?edittime' Cross-Site Scripting

source: https://www.securityfocus.com/bid/25803/info JSPWiki is prone to multiple input-validation vulnerabilities, including multiple cross-site scripting issues and an HTML-injection issue, because the application fails to adequately sanitize user-supplied input. Attacker-supplied HTML and scri...

SimpGB 1.46.2 - '/admin/emoticonlist.php?l_emoticonlist' Cross-Site Scripting

source: https://www.securityfocus.com/bid/25808/info SimpGB is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspectin...

SimpNews 2.41.3 - l_username Cross-Site Scripting

SimpNews 2.41.3 - lusername Cross-Site Scripting source: https://www.securityfocus.com/bid/25809/info SimpNews is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage these issues to execute...

[Full-disclosure] [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Title: CAID 35673, 35674, 35675, 35676, 35677: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities CA Vuln ID CAID: 35673, 35674, 35675, 35676, 35677 CA Advisory Date: 2007-09-20 Reported By: Sean Larsson VeriSign iDefense Labs...

webbatch-xss.txt

HSC WebBatch Applications Cross Site Scripting Vulrnability This issue is due to a failure in the application to properly sanitize user-supplied input. Attackers may exploit this issue via a web client. An attacker may leverage this issue to have arbitrary script code execute in the browser of an...

WebBatch Applications Cross Site Scripting Vulrnability

HSC WebBatch Applications Cross Site Scripting Vulrnability This issue is due to a failure in the application to properly sanitize user-supplied input. Attackers may exploit this issue via a web client. An attacker may leverage this issue to have arbitrary script code execute in the browser of an...

WebBatch - webbatch.exe Cross-Site Scripting

WebBatch - webbatch.exe Cross-Site Scripting source: https://www.securityfocus.com/bid/25744/info WebBatch is prone to a cross-site scripting vulnerability and an information-disclosure vulnerability because it fails to adequately sanitize user-supplied input. An attacker may leverage the...

WebBatch - 'webbatch.exe?dumpinputdata' Remote Information Disclosure

source: https://www.securityfocus.com/bid/25744/info WebBatch is prone to a cross-site scripting vulnerability and an information-disclosure vulnerability because it fails to adequately sanitize user-supplied input. An attacker may leverage the cross-site scripting issue to execute arbitrary scri...

Vigile CMS 1.8 Wiki Module - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/25752/info The Vigile CMS wiki module is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an...

b1gMail 6.3.1 - hilfe.php Cross-Site Scripting

b1gMail 6.3.1 - hilfe.php Cross-Site Scripting source: https://www.securityfocus.com/bid/25699/info b1gMail is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. Exploiting this vulnerability may allow an attacker to perform cross-site scripti...

Coppermine Photo Gallery 1.4.12 - 'log' Local File Inclusion

source: https://www.securityfocus.com/bid/25698/info Coppermine Photo Gallery is prone to a cross-site scripting issue and a local file-include issue. Attackers can exploit these issues to steal cookie-based authentication credentials, execute arbitrary code, and retrieve arbitrary content within...

Coppermine Photo Gallery 1.4.12 - 'referer' Cross-Site Scripting

source: https://www.securityfocus.com/bid/25698/info Coppermine Photo Gallery is prone to a cross-site scripting issue and a local file-include issue. Attackers can exploit these issues to steal cookie-based authentication credentials, execute arbitrary code, and retrieve arbitrary content within...

PHPMyQuote 0.20 - index.php SQL Injection Cross-Site Scripting

PHPMyQuote 0.20 - index.php SQL Injection Cross-Site Scripting source: https://www.securityfocus.com/bid/25615/info phpMyQuote is prone to multiple input-validation vulnerabilities, including a cross-site scripting issue and an SQL-injection issue, because the application fails to sanitize...

Toms Gastebuch 1.00/1.01 - 'header.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/25598/info Toms Gastebuch is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in...

Toms Gästebuch 1.00 - form.php Multiple Cross-Site Scripting Vulnerabilities

Toms Gästebuch 1.00 - form.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/25507/info Toms Gästebuch is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these...

Toms Gästebuch 1.00 - 'form.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/25507/info Toms Gästebuch is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user i...

Claroline 1.x - adminadminusers.php?dir Cross-Site Scripting

Claroline 1.x - adminadminusers.php?dir Cross-Site Scripting source: https://www.securityfocus.com/bid/25521/info Claroline is prone to a local file-include vulnerability and multiple cross-site scripting vulnerabilities. An attacker could exploit these issues to execute local script code in the...

Absolute Poll Manager XE 4.1 - xlaapmview.asp Cross-Site Scripting

Absolute Poll Manager XE 4.1 - xlaapmview.asp Cross-Site Scripting source: https://www.securityfocus.com/bid/25492/info Absolute Poll Manager XE is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. Exploiting this vulnerability may allow an...

Absolute Poll Manager XE 4.1 - 'xlaapmview.asp' Cross-Site Scripting

source: https://www.securityfocus.com/bid/25492/info Absolute Poll Manager XE is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. Exploiting this vulnerability may allow an attacker to perform cross-site scripting attacks on unsuspecting use...

InterWorx-CP Multiple HTML Injections Vulnerabilitie

HSC InterWorx-CP Multiple HTMl Injection Vulnerabilities The InterWorx Hosting Control Panel InterWorx-CP is a dedicated server control panel. InterWorx suffers from multiple HTMl injection vulnerabilities. JavaScript and Cross site scripting are just few found vulns, more sophisticated attacks...