93 matches found
Advanced Image Hosting Script 2.x - search.php Cross-Site Scripting
Advanced Image Hosting Script 2.x - search.php Cross-Site Scripting source: https://www.securityfocus.com/bid/37233/info YABSoft Advanced Image Hosting Script is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this...
WebStatCaffe - statvisitorduration.php?nodayshow Cross-Site Scripting
WebStatCaffe - statvisitorduration.php?nodayshow Cross-Site Scripting source: https://www.securityfocus.com/bid/43339/info Gonafish WebStatCaffe is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issu...
ViArt Helpdesk - reviews.php?category_id Cross-Site Scripting
ViArt Helpdesk - reviews.php?categoryid Cross-Site Scripting source: https://www.securityfocus.com/bid/42543/info ViArt Helpdesk is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...
eXtrovert software Thyme 1.3 - 'add_calendars.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/31287/info Thyme is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of t...
PEGames - Multiple Cross-Site Scripting Vulnerabilities
PEGames - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/29865/info PEGames is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary...
@lex Guestbook 4.0.5 - 'setup.php?language_setup' Cross-Site Scripting
source: https://www.securityfocus.com/bid/28519/info @lex Guestbook is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in...
FreeWebShop 2.2.1 - Blind SQL Injection
!/usr/bin/perl Indonesian Newhack Security Advisory ------------------------------------ FreeWebshop version 2.2.1 - Multiple Remote SQL Injection Vulnerabilities Waktu : Dec 16 2007 01:50AM Software : FreeWebshop version 2.2.1 Vendor : http://www.freewebshop.org/ Demo Site :...
Microsoft SharePoint Server 3.0 - Cross-Site Scripting
source: https://www.securityfocus.com/bid/23832/info Microsoft SharePoint Server is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...
PHPwebnews 0.1 - 'bukutamu.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/23448/info The 'phpwebnews' package is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecti...
JavaScript code can cause the browser attack-vulnerability warning-the black bar safety net
Security researchers have found a Use JavaScript to scan the family and the enterprise network, and attacks on the network server, and the router and printer and other equipment of the method. Researchers say the malicious JavaScript code can be embedded in a Web page, use the browser to browse t...
Soft4e ECW-Cart 2.0.3 - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/15890/info ECW-Cart is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in t...
CityPost PHP Image Editor M1/M2/M3/Imgsrc/M4 - 'URI' Cross-Site Scripting
source: https://www.securityfocus.com/bid/13256/info source: https://www.securityfocus.com/bid/13257/info source: https://www.securityfocus.com/bid/13258/info source: https://www.securityfocus.com/bid/13259/info source: https://www.securityfocus.com/bid/13260/info CityPost Image Cropper/Resizer i...
DigitalHive 2.0 - msg.php Cross-Site Scripting
DigitalHive 2.0 - msg.php Cross-Site Scripting source: https://www.securityfocus.com/bid/12883/info DigitalHive is reportedly affected by a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this...