Dick Copits PDEstore 1.8 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/15898/info Dick Copits PDEstore is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code...

DCForum 1-6 DCBoard Script - 'Page' Cross-Site Scripting

source: https://www.securityfocus.com/bid/15885/info DCForum is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of a...

Atlant Pro 8.0.9 - Cross-Site Scripting

source: https://www.securityfocus.com/bid/15886/info Atlant Pro is prone to cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in the...

Soft4e ECW-Cart 2.0.3 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/15890/info ECW-Cart is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in t...

CourseForum Technologies ProjectForum 4.7 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/15850/info ProjectForum is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed ...

WikkaWiki 1.1.6 - TextSearch.php Cross-Site Scripting

WikkaWiki 1.1.6 - TextSearch.php Cross-Site Scripting source: https://www.securityfocus.com/bid/15860/info WikkaWiki is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to...

CourseForum Technologies ProjectForum 4.7 - Multiple Cross-Site Scripting Vulnerabilities

CourseForum Technologies ProjectForum 4.7 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/15850/info ProjectForum is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize...

News Module for Envolution - 'modules.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/15857/info Envolution is prone to multiple input validation vulnerabilities. Successful exploitation of these vulnerabilities could result in a compromise of the application, disclosure or modification of data, the theft of cookie-based authentication...

McGallery 1.01.12.2 - index.php?album SQL Injection

McGallery 1.01.12.2 - index.php?album SQL Injection source: https://www.securityfocus.com/bid/15845/info mcGallery PRO is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of...

Plogger Beta 2 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/15839/info Plogger is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabilities could result in a compromise of the...

McGallery 1.0/1.1/2.2 - 'index.php?language' Traversal Local File Inclusion

source: https://www.securityfocus.com/bid/15845/info mcGallery PRO is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these vulnerabilities could result in a compromise of...

LocazoList Classifieds 1.0 - 'SearchDB.asp' Input Validation

source: https://www.securityfocus.com/bid/15812/info LocazoList Classifieds is prone to an input validation vulnerability that allows cross-site scripting and SQL injection attacks. An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user i...

CVE-2005-3661

Dell TrueMobile 2300 Wireless Broadband Router running firmware 3.0.0.8 and 5.1.1.6, and possibly other versions, allows remote attackers to reset authentication credentials, then change configuration or firmware, via a direct request to apply.cgi with the Page parameter set to advpassword.asp...

Thwboard Beta 2.8 - v_profile.php?user SQL Injection

Thwboard Beta 2.8 - vprofile.php?user SQL Injection source: https://www.securityfocus.com/bid/15763/info ThWboard is prone to multiple input validation vulnerabilities. The application is vulnerable to HTML injection, cross-site scripting, and SQL injection; these issues are due to a lack of prop...

Thwboard Beta 2.8 - 'calendar.php?year' SQL Injection

source: https://www.securityfocus.com/bid/15763/info ThWboard is prone to multiple input validation vulnerabilities. The application is vulnerable to HTML injection, cross-site scripting, and SQL injection; these issues are due to a lack of proper sanitization of user-supplied input. A remote...

NetAuctionHelp 3.0 - Multiple Cross-Site Scripting Vulnerabilities

NetAuctionHelp 3.0 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/15737/info NetAuctionHelp is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An...

DuWare DuPortalPro 3.4.3 - Password.asp Cross-Site Scripting

DuWare DuPortalPro 3.4.3 - Password.asp Cross-Site Scripting source: https://www.securityfocus.com/bid/15731/info DuPortalPro is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this...

RWAuction Pro 4.0 - search.asp Cross-Site Scripting

RWAuction Pro 4.0 - search.asp Cross-Site Scripting source: https://www.securityfocus.com/bid/15740/info The 'rwAuction Pro' application is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may...

DuWare DuPortalPro 3.4.3 - 'Password.asp' Cross-Site Scripting

source: https://www.securityfocus.com/bid/15731/info DuPortalPro is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser ...

RWAuction Pro 4.0 - 'search.asp' Cross-Site Scripting

source: https://www.securityfocus.com/bid/15740/info The 'rwAuction Pro' application is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code...