14 matches found
EUVD-2014-9724
Malware in sbrugna...
EUVD-2014-9721
Malware in sbrugna...
EUVD-2014-9723
Malware in sbrugna...
Cross site scripting
An issue was discovered in Bilboplanet 2.0. Stored XSS exists in the userid parameter to signup.php...
Cross site scripting
An issue was discovered in Bilboplanet 2.0. Stored XSS exists in the fullname parameter to signup.php...
CVE-2014-9917
An issue was discovered in Bilboplanet 2.0. There is a stored XSS vulnerability when adding a tag via the user/?page=tribes tags parameter...
Cross site scripting
An issue was discovered in Bilboplanet 2.0. There is a stored XSS vulnerability when adding a tag via the user/?page=tribes tags parameter...
CVE-2014-9918
An issue was discovered in Bilboplanet 2.0. Stored XSS exists in the userid parameter to signup.php...
CVE-2014-9918
An issue was discovered in Bilboplanet 2.0. Stored XSS exists in the userid parameter to signup.php...
CVE-2014-9919
An issue was discovered in Bilboplanet 2.0. Stored XSS exists in the fullname parameter to signup.php...
CVE-2014-9919
CVE-2014-9919 affects Bilboplanet 2.0 with a Stored XSS in the signup.php fullname parameter. The NVD entry lists a CVSS‑v3 base score of 6.1 (MEDIUM): AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N, i.e., network attack, no availability impact, but partial confidentiality/integrity impact with user interac...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Bilboplanet 2.0 allow remote attackers to inject arbitrary web script or HTML via the 1 tribename or 2 tags parameter in a tribes page request to user/ or the 3 userid or 4 fullname parameter to signup.php...
CVE-2014-9916
Multiple cross-site scripting XSS vulnerabilities in Bilboplanet 2.0 allow remote attackers to inject arbitrary web script or HTML via the 1 tribename or 2 tags parameter in a tribes page request to user/ or the 3 userid or 4 fullname parameter to signup.php...
CVE-2014-9916
Multiple cross-site scripting XSS vulnerabilities in Bilboplanet 2.0 allow remote attackers to inject arbitrary web script or HTML via the 1 tribename or 2 tags parameter in a tribes page request to user/ or the 3 userid or 4 fullname parameter to signup.php...