12 matches found
EUVD-2011-5184
Malware in sbrugna...
CVE-2011-5285
Multiple cross-site scripting XSS vulnerabilities in BugFree 2.1.3 allow remote attackers to inject arbitrary web script or HTML via 1 the ActionType parameter to Bug.php, the ReportMode parameter to 2 Report.php or 3 ReportLeft.php, or the PATHINFO to 4 AdminProjectList.php, 5 AdminGroupList.php...
CVE-2011-5285
Multiple cross-site scripting XSS vulnerabilities in BugFree 2.1.3 allow remote attackers to inject arbitrary web script or HTML via 1 the ActionType parameter to Bug.php, the ReportMode parameter to 2 Report.php or 3 ReportLeft.php, or the PATHINFO to 4 AdminProjectList.php, 5 AdminGroupList.php...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in BugFree 2.1.3 allow remote attackers to inject arbitrary web script or HTML via 1 the ActionType parameter to Bug.php, the ReportMode parameter to 2 Report.php or 3 ReportLeft.php, or the PATHINFO to 4 AdminProjectList.php, 5 AdminGroupList.php...
CVE-2011-5285
Multiple cross-site scripting XSS vulnerabilities in BugFree 2.1.3 allow remote attackers to inject arbitrary web script or HTML via 1 the ActionType parameter to Bug.php, the ReportMode parameter to 2 Report.php or 3 ReportLeft.php, or the PATHINFO to 4 AdminProjectList.php, 5 AdminGroupList.php...
CVE-2011-5285
The provided connected sources confirm concrete details for CVE-2011-5285: BugFree 2.1.3 is affected by multiple cross-site scripting (XSS) vulnerabilities. Specifically, attacker-controlled input can be passed via (1) ActionType in Bug.php, (2) ReportMode in Report.php, (3) ReportMode in ReportL...
Multiple vulnerabilities in BugFree
Vulnerability ID: HTB23048 Reference: https://www.htbridge.ch/advisory/multiplevulnerabilitiesinbugfree.html Product: BugFree Vendor: www.bugfree.org.cn http://www.bugfree.org.cn/ Vulnerable Version: 2.1.3 and probably prior Tested Version: 2.1.3 Vendor Notification: 21 September 2011 Vulnerabili...
BugFree plurality of defect and repair-vulnerability warning-the black bar safety net
Product: BugFree The development of this website: www.bugfree.org.cn Affected version: 2.1.3 and probably prior Tested version: 2.1.3 Defect type: XSS Cross Site Scripting Technical analysis: High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in BugFree , which can ...
BugFree 2.1.3 Cross Site Scripting
Vulnerability ID: HTB23048 Reference: https://www.htbridge.ch/advisory/multiplevulnerabilitiesinbugfree.html Product: BugFree Vendor: www.bugfree.org.cn http://www.bugfree.org.cn/ Vulnerable Version: 2.1.3 and probably prior Tested Version: 2.1.3 Vendor Notification: 21 September 2011 Vulnerabili...
BugFree 2.1.3 - Multiple Cross-Site Scripting Vulnerabilities
BugFree 2.1.3 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/50083/info BugFree is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied data. An attacker could exploit these...
BugFree 2.1.3 - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/50083/info BugFree is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied data. An attacker could exploit these vulnerabilities to execute arbitrary script code in the context of the...
Multiple vulnerabilities in BugFree
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in BugFree which can be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerabilities in BugFree 1.1 Input passed via the "ActionType" GET parameter to Bug.php is not properly sanitis...