SunShop Shopping Cart 3.5 - Multiple Cross-Site Scripting Vulnerabilities

SunShop Shopping Cart 3.5 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/17770/info SunShop Shopping Cart is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied...

Collaborative Portal Server 3.4 - 'POS' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17774/info Collaborative Portal Server is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed...

TextFileBB 1.0.16 - Multiple Tag Script Injection Vulnerabilities

TextFileBB 1.0.16 - Multiple Tag Script Injection Vulnerabilities source: https://www.securityfocus.com/bid/17750/info TextFileBB is prone to multiple script-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before including i...

W-Agora 4.2 - BBCode Script Injection

W-Agora 4.2 - BBCode Script Injection source: https://www.securityfocus.com/bid/17751/info W-Agora is prone to a script-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before including it in dynamically generated content. W-Agora...

TextFileBB 1.0.16 - Multiple Tag Script Injection Vulnerabilities

source: https://www.securityfocus.com/bid/17750/info TextFileBB is prone to multiple script-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before including it in dynamically generated content. Attacker-supplied HTML and...

W-Agora 4.2 - BBCode Script Injection

source: https://www.securityfocus.com/bid/17751/info W-Agora is prone to a script-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before including it in dynamically generated content. W-Agora can be configured to send all user...

DevBB 1.0 - 'member.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17703/info DevBB is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of an...

CuteNews 1.4.1 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/17700/info CuteNews is prone to multiple cross-site scripting vulnerabilities. These issues are due to the application's failure to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in the...

NextAge Shopping Cart - Multiple HTML Injection Vulnerabilities

NextAge Shopping Cart - Multiple HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/17685/info NextAge Shopping Cart is prone to multiple HTML-injection vulnerabilities; the application fails to properly sanitize user-supplied input before using it in dynamically generated...

Instant Photo Gallery 1.0 - portfolio_photo_popup.php?id Cross-Site Scripting

Instant Photo Gallery 1.0 - portfoliophotopopup.php?id Cross-Site Scripting source: https://www.securityfocus.com/bid/17696/info Instant Photo Gallery is prone to multiple cross-site scripting vulnerabilities. These issues are due to the application's failure to properly sanitize user-supplied...

Instant Photo Gallery 1.0 - member.php?member Cross-Site Scripting

Instant Photo Gallery 1.0 - member.php?member Cross-Site Scripting source: https://www.securityfocus.com/bid/17696/info Instant Photo Gallery is prone to multiple cross-site scripting vulnerabilities. These issues are due to the application's failure to properly sanitize user-supplied input. An...

Instant Photo Gallery 1.0 - 'portfolio_photo_popup.php?id' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17696/info Instant Photo Gallery is prone to multiple cross-site scripting vulnerabilities. These issues are due to the application's failure to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code...

Simplog 0.9.3 - ImageList.php Cross-Site Scripting

Simplog 0.9.3 - ImageList.php Cross-Site Scripting source: https://www.securityfocus.com/bid/17653/info Simplog is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have...

MKPortal 1.1 - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/17651/info MKPortal is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful...

phpLDAPadmin 0.9.8 - rename_form.php Cross-Site Scripting

phpLDAPadmin 0.9.8 - renameform.php Cross-Site Scripting source: https://www.securityfocus.com/bid/17643/info PHPLDAPAdmin is prone to multiple input-validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit...

phpLDAPadmin 0.9.8 - 'compare_form.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17643/info PHPLDAPAdmin is prone to multiple input-validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to execute arbitrary HTML and script code in...

phpLDAPadmin 0.9.8 - 'search.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17643/info PHPLDAPAdmin is prone to multiple input-validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to execute arbitrary HTML and script code in...

phpLDAPadmin 0.9.8 - 'template_engine.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17643/info PHPLDAPAdmin is prone to multiple input-validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to execute arbitrary HTML and script code in...

EasyGallery 1.17 EasyGallery.PHP Cross-Site Scripting Vulnerability

EasyGallery 1.17 EasyGallery.PHP Cross-Site Scripting Vulnerability. CVE-2006-1972. Webapps exploit for php platform source: http://www.securityfocus.com/bid/17624/info EasyGallery is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly...

Net Clubs Pro 4.0 - imessage.cgi?Username Cross-Site Scripting

Net Clubs Pro 4.0 - imessage.cgi?Username Cross-Site Scripting source: https://www.securityfocus.com/bid/17622/info Net Clubs Pro is prone to multiple cross-site scripting vulnerabilities. These issues are due to the application's failure to properly sanitize user-supplied input. An attacker may...