ASPPlayGround.NET Forum 2.4.5 - 'Calendar.asp' Cross-Site Scripting

source: https://www.securityfocus.com/bid/20335/info ASPPlayground.NET Forum Advanced Edition is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser of...

Simpnews 2.x - index.php Cross-Site Scripting

Simpnews 2.x - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/20714/info SimpNews is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input data. An attacker may leverage these issues to have arbitrary script...

Simpnews 2.x - 'pwlost.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/20714/info SimpNews is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input data. An attacker may leverage these issues to have arbitrary script code execute in the browser of an unsuspecting...

Simpnews 2.x - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/20714/info SimpNews is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input data. An attacker may leverage these issues to have arbitrary script code execute in the browser of an unsuspecting...

WikiNi 0.4.x - Waka.php Multiple HTML Injection Vulnerabilities

WikiNi 0.4.x - Waka.php Multiple HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/20688/info WikiNi is prone to multiple HTML-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input data before using it in dynamically generated content. An...

cPanel 10.9 - 'dosetmytheme?theme' Cross-Site Scripting

source: https://www.securityfocus.com/bid/20683/info cPanel is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the browser of an unsuspecting user in th...

cPanel 10.9 - 'editzonetemplate?template' Cross-Site Scripting

source: https://www.securityfocus.com/bid/20683/info cPanel is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the browser of an unsuspecting user in th...

Zwahlen's Online Shop 5.2.2 - 'Cat' Cross-Site Scripting

source: https://www.securityfocus.com/bid/20682/info Zwahlen's Online Shop is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser of an...

Simple Machines Forum (SMF) 1.0/1.1 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/20629/info Simple Machines Forum is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser of an...

Webgenius Goop Gallery 2.0 - index.php Cross-Site Scripting

Webgenius Goop Gallery 2.0 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/20554/info GOOP Gallery is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have...

PowerMovieList 0.130.14 - Edit User HTML Injection

PowerMovieList 0.130.14 - Edit User HTML Injection source: https://www.securityfocus.com/bid/20564/info PowerMovieList is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content...

YaPiG 0.9x - Thanks_comment.php Cross-Site Scripting

YaPiG 0.9x - Thankscomment.php Cross-Site Scripting source: https://www.securityfocus.com/bid/19709/info Yapig is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. This may let an attacker steal cookie-based authentication credentials and...

Xoops 2.2.3 - 'search.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/20514/info Xoops is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting user in the context of...

4Images 1.7 - details.php Cross-Site Scripting

4Images 1.7 - details.php Cross-Site Scripting source: https://www.securityfocus.com/bid/20488/info 4images is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in...

phpList 2.x - Public Pages MultipleCross-Site Scripting Vulnerabilities

phpList 2.x - Public Pages MultipleCross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/20483/info phpList is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have...

phpList 2.x - Public Pages MultipleCross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/20483/info phpList is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in the browser of an unsuspecting user in...

osCommerce 2.2 - adminlanguages.php?page Cross-Site Scripting

osCommerce 2.2 - adminlanguages.php?page Cross-Site Scripting source: https://www.securityfocus.com/bid/20343/info osCommerce is prone to multiple cross-site scripting vulnerabilities. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting user...

osCommerce 2.2 - adminstats_products_purchased.php?page Cross-Site Scripting

osCommerce 2.2 - adminstatsproductspurchased.php?page Cross-Site Scripting source: https://www.securityfocus.com/bid/20343/info osCommerce is prone to multiple cross-site scripting vulnerabilities. An attacker may leverage this issue to have arbitrary script code execute in the browser of an...

osCommerce 2.2 - '/admin/tax_rates.php?page' Cross-Site Scripting

source: https://www.securityfocus.com/bid/20343/info osCommerce is prone to multiple cross-site scripting vulnerabilities. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting user in the context of the affected site. This may help the attack...

osCommerce 2.2 - '/admin/tax_classes.php?page' Cross-Site Scripting

source: https://www.securityfocus.com/bid/20343/info osCommerce is prone to multiple cross-site scripting vulnerabilities. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting user in the context of the affected site. This may help the attack...