WebStudio CMS - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/24297/info WebStudio CMS is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user i...

Linker 2.0.4 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/24277/info Codelib Linker is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user ...

Buttercup WFM - Title Cross-Site Scripting

Buttercup WFM - Title Cross-Site Scripting source: https://www.securityfocus.com/bid/24269/info Buttercup WFM Web File Manager is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute...

PHPLive! 3.2.2 - adminheader.php?admin[name] Cross-Site Scripting

PHPLive! 3.2.2 - adminheader.php?adminname Cross-Site Scripting source: https://www.securityfocus.com/bid/24276/info PHP Live! is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

PHPLive! 3.2.2 - chat.php?sid Cross-Site Scripting

PHPLive! 3.2.2 - chat.php?sid Cross-Site Scripting source: https://www.securityfocus.com/bid/24276/info PHP Live! is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script...

PHPLive! 3.2.2 - 'help.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/24276/info PHP Live! is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

PHPLive! 3.2.2 - '/admin/header.php?admin[name]' Cross-Site Scripting

source: https://www.securityfocus.com/bid/24276/info PHP Live! is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

PHPLive! 3.2.2 - '/setup/footer.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/24276/info PHP Live! is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

Evenzia Content Management Systems (CMS) - Cross-Site Scripting

source: https://www.securityfocus.com/bid/24270/info Evenzia CMS is prone to a cross-site script vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

PHP JackKnife 2.21 - (PHPJK) UserAreaNewAccountsindex.php?sAccountUnq Cross-Site Scripting

PHP JackKnife 2.21 - PHPJK UserAreaNewAccountsindex.php?sAccountUnq Cross-Site Scripting source: https://www.securityfocus.com/bid/24253/info PHP JackKnife is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues. Exploiting these issues could...

PHP JackKnife 2.21 - (PHPJK) G_Display.php?iCategoryUnq SQL Injection

PHP JackKnife 2.21 - PHPJK GDisplay.php?iCategoryUnq SQL Injection source: https://www.securityfocus.com/bid/24253/info PHP JackKnife is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues. Exploiting these issues could allow an attacker to...

PHP JackKnife 2.21 - '/(PHPJK) Search/DisplayResults.php?iSearchID' SQL Injection

source: https://www.securityfocus.com/bid/24253/info PHP JackKnife is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, compromise the...

PHP JackKnife 2.21 - '/(PHPJK) UserArea/NewAccounts/index.php?sAccountUnq' Cross-Site Scripting

source: https://www.securityfocus.com/bid/24253/info PHP JackKnife is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, compromise the...

UebiMiau 2.7.10 - '/demo/pop3/error.php?selected_theme' Cross-Site Scripting

source: https://www.securityfocus.com/bid/24210/info Uebimiau is prone to multiple input-validation vulnerabilities, including cross-site scripting issues and an information-disclosure issue, because the application fails to properly sanitize user-supplied input. Attackers can exploit these issue...

Ruby on Rails 1.2.3 To_JSON - Script Injection

source: https://www.securityfocus.com/bid/24161/info Ruby on Rails is prone to a script-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied script code would run in the context of the...

Cisco CallManager 4.1 - Search Form Cross-Site Scripting

Cisco CallManager 4.1 - Search Form Cross-Site Scripting source: https://www.securityfocus.com/bid/24119/info Cisco CallManager is prone to a cross-site scripting vulnerability because the application fails to sufficiently sanitize user-supplied input. Exploiting this vulnerability could allow an...

WYYS 1.0 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/24117/info WÝYS is prone to a cross-site scripting vulnerability. Exploiting this vulnerability may allow an attacker to perform cross-site scripting attacks on unsuspecting users in the context of the affected website. As a result, the attacker may be...

Cisco CallManager 4.1 - Search Form Cross-Site Scripting

source: https://www.securityfocus.com/bid/24119/info Cisco CallManager is prone to a cross-site scripting vulnerability because the application fails to sufficiently sanitize user-supplied input. Exploiting this vulnerability could allow an attacker to perform cross-site scripting attacks on...

PsychoStats 3.0.6b - Multiple Scripts Multiple Cross-Site Scripting Vulnerabilities

PsychoStats 3.0.6b Multiple Scripts Multiple Cross-Site Scripting Vulnerabilities. Webapps exploit for php platform source: http://www.securityfocus.com/bid/24106/info PsychoStats is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. ...

ClonusWiki 0.5 - 'index.php' HTML Injection

source: https://www.securityfocus.com/bid/24101/info ClonusWiki is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code would run in the context of t...