Manila 9.0.1 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/17563/info Manila is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in the...

Calendarix 0.7 - 'YearCal.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17562/info Calendarix is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user in the...

PHPFaber TopSites - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17542/info phpFaber TopSites is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user in t...

PHPGuestbook 0.0.2/1.0 - HTML Injection

source: https://www.securityfocus.com/bid/17537/info phpGuestbook is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code would be executed in the...

PHPGuestbook 0.0.21.0 - HTML Injection

PHPGuestbook 0.0.21.0 - HTML Injection source: https://www.securityfocus.com/bid/17537/info phpGuestbook is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and...

Papoo 2.1.x - 'print.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17530/info Papoo is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user in the context o...

PlanetSearch + - 'Planetsearchplus.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17527/info PlanetSearch + is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user in the...

LifeType 1.0.3 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17529/info LifeType is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user in the contex...

Tritanium Bulletin Board 1.2.3 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/17473/info Tritanium Bulletin Board is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script co...

Microsoft FrontPage - Server Extensions Cross-Site Scripting

source: https://www.securityfocus.com/bid/17452/info Microsoft FrontPage Server Extensions are prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before it is rendered to other users. An attacker may leverage...

JetPhoto 1.0/2.0/2.1 - 'detail.php?page' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17449/info JetPhoto is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in t...

Microsoft FrontPage Server Extensions Cross-Site Scripting Vulnerability

Description Microsoft FrontPage Server Extensions are prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before it is rendered to other users. An attacker may leverage this issue to have arbitrary script code...

JetPhoto 1.02.02.1 - Slideshow.php?name Cross-Site Scripting

JetPhoto 1.02.02.1 - Slideshow.php?name Cross-Site Scripting source: https://www.securityfocus.com/bid/17449/info JetPhoto is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may...

VegaDNS 0.9.9 - 'index.php?cid' SQL Injection

source: https://www.securityfocus.com/bid/17433/info VegaDNS is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. A successfu...

Shadowed Portal 5.7 - 'Load.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17430/info Shadowed Portal is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the...

PHPMyForum 4.0 - 'page' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17420/info phpMyForum is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in...

JBook 1.3 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17419/info JBook is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of an...

Shadowed Portal 5.7 - Load.php Cross-Site Scripting

Shadowed Portal 5.7 - Load.php Cross-Site Scripting source: https://www.securityfocus.com/bid/17430/info Shadowed Portal is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issu...

JBook 1.3 - index.php Cross-Site Scripting

JBook 1.3 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/17419/info JBook is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary...

PHPMyForum 4.0 - index.php?type CRLF Injection

PHPMyForum 4.0 - index.php?type CRLF Injection source: https://www.securityfocus.com/bid/17420/info phpMyForum is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these...