BookReview 1.0 - 'add_classification.htm?isbn' Cross-Site Scripting

source: https://www.securityfocus.com/bid/13783/info BookReview is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in...

BookReview 1.0 - 'search.htm?submit string' Cross-Site Scripting

source: https://www.securityfocus.com/bid/13783/info BookReview is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in...

BookReview 1.0 - 'contact.htm?user' Cross-Site Scripting

source: https://www.securityfocus.com/bid/13783/info BookReview is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in...

Sambar Server 5.x6.06.1 - results.stm indexname Cross-Site Scripting

Sambar Server 5.x6.06.1 - results.stm indexname Cross-Site Scripting source: https://www.securityfocus.com/bid/13722/info Sambar Server administrative interface does not adequately filter some HTML code thus making it prone to cross-site scripting attacks. It is possible for a remote attacker to...

Sambar Server 5.x6.06.1 - logout RCredirect Cross-Site Scripting

Sambar Server 5.x6.06.1 - logout RCredirect Cross-Site Scripting source: https://www.securityfocus.com/bid/13722/info Sambar Server administrative interface does not adequately filter some HTML code thus making it prone to cross-site scripting attacks. It is possible for a remote attacker to crea...

Sambar Server 5.x6.06.1 - Server Referer Cross-Site Scripting

Sambar Server 5.x6.06.1 - Server Referer Cross-Site Scripting source: https://www.securityfocus.com/bid/13722/info Sambar Server administrative interface does not adequately filter some HTML code thus making it prone to cross-site scripting attacks. It is possible for a remote attacker to create ...

Sambar Server 5.x/6.0/6.1 - Server Referer Cross-Site Scripting

source: https://www.securityfocus.com/bid/13722/info Sambar Server administrative interface does not adequately filter some HTML code thus making it prone to cross-site scripting attacks. It is possible for a remote attacker to create a malicious link containing script code which will be executed...

Sambar Server 5.x/6.0/6.1 - logout RCredirect Cross-Site Scripting

source: https://www.securityfocus.com/bid/13722/info Sambar Server administrative interface does not adequately filter some HTML code thus making it prone to cross-site scripting attacks. It is possible for a remote attacker to create a malicious link containing script code which will be executed...

Sambar Server 5.x/6.0/6.1 - 'results.stm' indexname Cross-Site Scripting

source: https://www.securityfocus.com/bid/13722/info Sambar Server administrative interface does not adequately filter some HTML code thus making it prone to cross-site scripting attacks. It is possible for a remote attacker to create a malicious link containing script code which will be executed...

cPanel 9.1 - User Cross-Site Scripting

cPanel 9.1 - User Cross-Site Scripting source: https://www.securityfocus.com/bid/13996/info It is reported that cPanel is prone to a cross-site scripting vulnerability that may allow a remote attacker to execute HTML or script code in a user's browser. The issue presents itself due to insufficien...

JGS-Portal 3.0.13.0.2 - jgs_portal.php?anzahl_beitraege SQL Injection

JGS-Portal 3.0.13.0.2 - jgsportal.php?anzahlbeitraege SQL Injection source: https://www.securityfocus.com/bid/13650/info JGS-Portal is prone to multiple cross-site scripting and SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied...

MonoChat 1.0 - HTML Injection

source: https://www.securityfocus.com/bid/17983/info MonoChat is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code would be executed in the contex...

Ultimate PHP Board 1.8/1.9 - 'viewforum.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/13621/info Ultimate PHP Board is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the...

PWSPHP 1.2 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/13561/info PwsPHP is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the...

MegaBook 2.02.1 - Admin.cgi?EntryID Cross-Site Scripting

MegaBook 2.02.1 - Admin.cgi?EntryID Cross-Site Scripting source: https://www.securityfocus.com/bid/13522/info MegaBook is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue ...

MidiCart PHP - Item_List.php?SecondGroup Cross-Site Scripting

MidiCart PHP - ItemList.php?SecondGroup Cross-Site Scripting source: https://www.securityfocus.com/bid/13517/info MidiCart PHP is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage thi...

MidiCart PHP - Search_List.php?SearchString Cross-Site Scripting

MidiCart PHP - SearchList.php?SearchString Cross-Site Scripting source: https://www.securityfocus.com/bid/13516/info MidiCart PHP is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage...

MegaBook 2.0/2.1 - 'Admin.cgi?EntryID' Cross-Site Scripting

source: https://www.securityfocus.com/bid/13522/info MegaBook is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of ...

MidiCart PHP - 'Item_List.php?SecondGroup' Cross-Site Scripting

source: https://www.securityfocus.com/bid/13517/info MidiCart PHP is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser...

Gossamer Threads Links 2.x - 'User.cgi' Cross-Site Scripting

source: https://www.securityfocus.com/bid/13484/info Gossamer Threads Links is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in t...