yasalte.com XSS vulnerability

Vulnerable URL: https://www.yasalte.com/busqueda.php?categorias=&tipo-busqueda;=2=1&texto-busqueda;=%22%3E%3C%2Ftitle%3E%27%3E%3B%3C%2Fscript%3E%3Csvg%2Fonload%3Dalert%28%2FOPENBUGBOUNTY%2F%29%3E&cfwaftk=095702002v8yS0MUksCZM5vde0Ra8LmXN2HE Details: Description| Value ---|--- Patched:| No Latest...

aag.org.gt XSS vulnerability

Vulnerable URL: https://aag.org.gt/busqueda.php?tag=%22%3E%3C/title%3E%27%3E;%3C/script%3E%3Csvg/onload=alert/OPENBUGBOUNTY/%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank|...

Unfixed XSS vulnerability at www.clasificados.co.cr

Security researcher Venom23, has submitted on 03/09/2007 a cross-site-scripting XSS vulnerability affecting www.clasificados.co.cr, which at the time of submission ranked 21655 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 08/09/2007. It is...

CVE-2006-4608

Multiple cross-site scripting XSS vulnerabilities in Longino Jacome php-Revista 1.1.2 allow remote attackers to inject arbitrary web script or HTML via the 1 cadena parameter in busqueda.php and the 2 email parameter in lista.php...

CVE-2006-4608

Multiple cross-site scripting XSS vulnerabilities in Longino Jacome php-Revista 1.1.2 allow remote attackers to inject arbitrary web script or HTML via the 1 cadena parameter in busqueda.php and the 2 email parameter in lista.php...

CVE-2006-4608

CVE-2006-4608 affects Longino Jacome php-Revista 1.1.2 with two XSS vulnerabilities: an injected script/HTML via the cadena parameter in busqueda.php and via the email parameter in lista.php. The description explicitly states remote attackers can inject arbitrary script, implying client-side scri...