734 matches found
Cybozu Products Images XSS Vulnerability
Cybozu Office or Cybozu Garoon is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
OPEN IT OverLook 'title.php' Cross Site Scripting Vulnerability
OverLook is prone to a cross-site scripting vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:openit:overlook";...
Xymon Monitor Unspecified Multiple Cross Site Scripting Vulnerabilities
This host is running Xymon Monitor and is prone to unspecified multiple cross site scripting vulnerabilities. OpenVAS Vulnerability Test $Id: secpodxymonmonitorunspecifiedmultvuln.nasl 7015 2017-08-28 11:51:24Z teissa $ Xymon Monitor Unspecified Multiple Cross Site Scripting Vulnerabilities...
docuFORM Mercury WebApp 6.16a5.20 - Multiple Cross-Site Scripting Vulnerabilities
docuFORM Mercury WebApp 6.16a5.20 - Multiple Cross-Site Scripting Vulnerabilities docuFORM Mercury WebApp 6.16a Multiple Cross-Site Scripting Vulnerabilities function xss1document.forms"xss1".submit; function xss2document.forms"xss2".submit; alert1" / input type="hidden" name="aacfunc" value="O...
Mahara Cross Site Scripting and Cross Site Request Forgery Vulnerabilities
This host is running Mahara and is prone to cross site scripting and cross site request forgery vulnerabilities. OpenVAS Vulnerability Test $Id: secpodmaharaxssncsrfvuln.nasl 7029 2017-08-31 11:51:40Z teissa $ Mahara Cross Site Scripting and Cross Site Request Forgery Vulnerabilities Authors:...
MG2 0.5.1 Cross Site Scripting
MG2 0.5.1 Multiple XSS Vulnerabilities Vendor: MiniGal Product web page: http://www.minigal.dk Affected version: 0.5.1 Summary: MG2 is the sequel to the popular image gallery script MiniGal. One of the highlights of MG2 is, that it supports PHP running in safe mode which is unsupported by almost...
SurgeMail < 4.3g XSS Vulnerability - Active Check
SurgeMail is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:netwin:surgemail"...
jSchool Advanced Cross Site Scripting
TITLE: jSchool Advanced "action" Cross-Site Scripting PRODUCT: jSchool Advanced PRODUCT URL: http://jogjacamp.com/script4jSchoolAdvanced.html RESEARCHERS: underground-stockholm.com RESEARCHERS URL: http://underground-stockholm.com/ BUG: Input passed via the "action" parameter to index.php is not...
Pecio CMS 'target' Parameter Cross Site Scripting Vulnerability
The host is running Pecio CMS and is prone to Cross-Site Scripting vulnerability. OpenVAS Vulnerability Test $Id: gbpeciocmsxssvuln.nasl 5794 2017-03-30 13:52:29Z cfi $ pecio cms 'target' Parameter Cross Site Scripting Vulnerability Authors: Antu Sanadi Copyright: Copyright c 2010 Greenbone...
Pecio CMS 2.0.5 Cross Site Scripting
Pecio Content Management System CMS v2.0.5 Cross-Site scripting Vulnerability SecPod Technologies www.secpod.com Author: Antu Sanadi SecPod ID: 1006 09/10/2010 Issue Discovered 09/21/2010 Vendor Notified 09/21/2010 Vendor Confirmed Solution not available. Class: Cross-Site Scripting Severity:...
NetArt Media Car Portal Multiple Cross-site Scripting Vulnerabilities
NetArt Media Car Portal is prone to multiple cross-site scripting vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...
SmarterTools SmarterTrack XSS Vulnerabilities
SmarterTools SmarterTrack is prone to cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Sun Java System Portal Server Multiple Cross Site Scripting Vulnerabilities
This host is running Sun Java System Portal Server and is prone to multiple unspecified Cross site scripting vulnerabilities. OpenVAS Vulnerability Test $Id: gbsunjavasystemportalserverxssvuln.nasl 5373 2017-02-20 16:27:48Z teissa $ Sun Java System Portal Server Multiple Cross Site Scripting...
ViArt CMS 'admin_articles.php' Cross Site Scripting Vulnerability
ViArt CMS is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Orbis CMS 'editor-body.php' Cross Site Scripting Vulnerability
This host is running Orbis CMS and is prone to cross site scripting vulnerability. OpenVAS Vulnerability Test $Id: gborbiscmsxssvuln.nasl 5323 2017-02-17 08:49:23Z teissa $ Orbis CMS 'editor-body.php' Cross Site Scripting Vulnerability Authors: Madhuri D Copyright: Copyright C 2010 Greenbone...
Invision Power Board 3.0.5 Calendar Application Script Insertion Vulnerability
No description provided by source. Credits ============ Discovered by: David Vieira-Kurz http://www.majorsecurity.info/penetrationstest.php Affected Products: ---------------------------- Invision Power Board 3.0.5 and prior Introduction ============ Invision Power Board is a widely used forums...
动易(PowerEasy) SiteWeaver "ComeUrl" Cross-Site Scripting Vulnerability
动易SiteWeaver,它可以被恶意的人利用来进行跨站点脚本攻击漏洞。 输入传递到"ComeUrl"在User/UserChkLogin.asp中没有正确地处理返回给用户参数。这可以被用来执行在用户在受影响的浏览器会话中任意HTML和脚本代码。 这个安全漏洞在版本6.8报告。其它版本也可能受到影响。 PowerEasy SiteWeaver 6.x SEBUG临时解决办法 对User/UserChkLogin.asp,"ComeUrl"进行过滤处理 参考官方补丁 http://www.powereasy.net/...
Profi Einzelgebots Auktions System Cross Site Scripting
x Author: Andrea Bocchetti x Homepage : www.geekit.it // Software Info Name : Profi Einzelgebots Auktions System Demo : http://hiweb-wiesbaden.de/hammerdealv3/ Price : 399.99 Exploit : http://www.site.com/hammerdealv3/suche.php This script is possibly vulnerable to Cross Site Scripting XSS attack...
SurgeFTP 2.x - surgeftpmgr.cgi Multiple Cross-Site Scripting Vulnerabilities
SurgeFTP 2.x - surgeftpmgr.cgi Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/37844/info SurgeFTP is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied data. Attacker-supplied HTML or...
VMware Server Multiple XSS Vulnerabilities - Windows
VMWare Server is prone to multiple cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...