EUVD-2009-0812

Malware in sbrugna...

Blogsa 1.0 'Widgets.aspx' Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/33957/info Blogsa is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

Flash Tag Cloud Control Cross Site Scripting

Hello Bugtraq! I want to warn you about security vulnerability in Flash Tag Cloud control for ASP.NET. ----------------------------- Advisory: Vulnerability in widget Flash Tag Cloud for Blogsa and other ASP.NET engines ----------------------------- URL: http://websecurity.com.ua/4213/...

Vulnerability in widget FlashTagCloud for Blogsa

Здравствуйте 3APA3A! Сообщаю вам о Cross-Site Scripting уязвимости в виджете FlashTagCloud для Blogsa. Данная XSS уязвимость идентична XSS уязвимости в WP-Cumulus и других веб приложениях, о которых я уже сообщал, т.к. приложение использует tagcloud.swf созданный автором WP-Cumulus. Про миллионы...

Cross site scripting

Cross-site scripting XSS vulnerability in Widgets.aspx in Blogsa 1.0 Beta 3 and earlier allows remote attackers to inject arbitrary web script or HTML via the searchText parameter...

CVE-2009-0814

CVE-2009-0814 is a reported Cross‑Site Scripting (XSS) vulnerability in the Widgets.aspx component of Blogsa 1.0 Beta 3 and earlier. The issue allows remote attackers to inject arbitrary web script or HTML via the searchText parameter, with an impact profile including partial integrity loss and n...

CVE-2009-0814

Cross-site scripting XSS vulnerability in Widgets.aspx in Blogsa 1.0 Beta 3 and earlier allows remote attackers to inject arbitrary web script or HTML via the searchText parameter...

Blogsa <= 1.0 Beta 3 XSS Vulnerability

Software: Blogsa = 1.0 Beta 3 XSS Vulnerability Software Site: blogsa.net Discovered by: Onur YILMAZ aka DJR Blog: http://www.onuryilmaz.info E-mail: contactatonuryilmazdotinfo XSS http://localhost/Widgets.aspx?w=Search&p=do&searchText=scriptalertdocument.cookie/script Screen...

Blogsa 1.0 Beta 3 Cross Site Scripting

Software: Blogsa onuryilmazinfo XSS http://localhost/Widgets.aspx?w=Search&p=do&searchText=alertdocument.cookie Screen http://img14.imageshack.us/img14/7803/12371681.jpg ---------------------------------------------------------------- This message was sent using IMP, the Internet Messaging Progra...

Blogsa 1.0 - Widgets.aspx Cross-Site Scripting

Blogsa 1.0 - Widgets.aspx Cross-Site Scripting source: https://www.securityfocus.com/bid/33957/info Blogsa is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the...

Blogsa 1.0 - 'Widgets.aspx' Cross-Site Scripting

source: https://www.securityfocus.com/bid/33957/info Blogsa is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...