4774 matches found
Helios Calendar 1.1/1.2 Admin/Index.PHP Cross Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/26312/info Helios Calendar is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue allows attackers to execute arbitrary HTML or script code in ...
Link Bank Iframe.PHP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/17001/info Link Bank is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before including it in dynamically generated HTML content. ...
TeamSpeak Server 2.0.23 Multiple Scripts Multiple Cross-Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/23933/info TeamSpeak Server is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary scri...
LiveCart 1.0.1 user/remindPassword return Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/27087/info LiveCart is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browse...
BestWebApp Dating Site Login Component Multiple Field SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/21158/info BestWebApp Dating Site is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An attacker...
URLStreet 1.0 - 'seeurl.php' Multiple Cross-Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/28650/info URLStreet is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code...
PhpGedView 2.5/2.6 Index.PHP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/11880/info It is reported that PhpGedView is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This issue could permit a remo...
BRS WebWeaver 1.0.7 ISAPISkeleton.dll Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9516/info BRS WebWeaver has been reported prone to a cross-site scripting vulnerability. An attacker may create a malicious link to the vulnerable server that includes embedded HTML and script code. If this link is follow...
FunkBoard 0.66 prefs.php Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/14507/info FunkBoard is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issues t...
MailBee WebMail Pro 3.4 Check_login.ASP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/23481/info MailBee WebMail Pro is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code ...
AfterLogic MailBee WebMail Pro 3.x default.asp mode2 Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/25942/info MailBee WebMail Pro is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker can exploit these issues to steal cookie-bas...
Chipmunk Blog photos.php membername Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/29883/info Chipmunk Blog is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in th...
ProfitCode Software PayProCart 3.0 Username Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13299/info PayProCart is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary...
PHPLive! 3.2.2 admin/header.php admin[name] Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/24276/info PHP Live! is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the brows...
ASP-Rider Remote SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/11933/info A remote SQL injection vulnerability reportedly affects ASP-Rider Web blog. This issue is due to a failure of the application to properly sanitize user-supplied input prior to including it in SQL queries. An...
ProfitCode Software PayProCart 3.0 Ckprvd Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/13303/info PayProCart is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary...
HitHost 1.0 viewuser.php hits Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/17025/info HitHost is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have...
SnapStream PVS Lite 2.0 Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9375/info SnapStream PVS Lite is prone to a cross-site scripting vulnerability. An attacker could exploit this issue by enticing a victim user to follow a malicious link to a system hosting the software that contains...
MGinternet Property Site Manager detail.asp p Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/21073/info MGinternet Property Site Manager is prone to multiple input-validation vulnerabilities, including cross-site scripting and SQL-injection issues, because it fails to sufficiently sanitize user-supplied input. An...
SiteBar <= 3.3.8 command.php Modify User Action uid Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/26126/info SiteBar is prone to multiple input-validation vulnerabilities because it fails to properly sanitize user-supplied input. These issues include: - A local file-include vulnerability - Multiple...