9 matches found
EUVD-2011-1078
Malware in sbrugna...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Cherry-Design Photopad 1.2.0 allow remote attackers to inject arbitrary web script or HTML via the 1 id or 2 datatitle parameters in an edit action to files.php, or 3 id parameter in a view action to gallery.php...
CVE-2011-1063
Multiple cross-site scripting XSS vulnerabilities in Cherry-Design Photopad 1.2.0 allow remote attackers to inject arbitrary web script or HTML via the 1 id or 2 datatitle parameters in an edit action to files.php, or 3 id parameter in a view action to gallery.php...
CVE-2011-1063
CVE-2011-1063 affects Cherry-Design Photopad 1.2.0. The vulnerability is due to input sanitation errors in files.php (parameters id and data[title]) and gallery.php (parameter id in view action), enabling remote XSS attacks. Exploitation could allow injection of arbitrary HTML/JavaScript in the v...
HTB22826: Multiple XSS vulnerabilities in Wikipad
Vulnerability ID: HTB22826 Reference: http://www.htbridge.ch/advisory/multiplexssvulnerabilitiesinwikipad.html Product: Wikipad Vendor: Cherry-Design http://www.cherry-software.spb.ru/ Vulnerable Version: 1.6.0 Vendor Notification: 01 February 2011 Vulnerability Type: XSS Cross Site Scripting Ris...
HTB22827: File Content Disclosure in Wikipad
Vulnerability ID: HTB22827 Reference: http://www.htbridge.ch/advisory/filecontentdisclosureinwikipad.html Product: Wikipad Vendor: Cherry-Design http://www.cherry-software.spb.ru/ Vulnerable Version: 1.6.0 Vendor Notification: 01 February 2011 Vulnerability Type: File Content Disclosure Risk leve...
Wikipad 1.6.0 Cross Site Scripting / File Disclosure
===================================== Vulnerability ID: HTB22827 Reference: http://www.htbridge.ch/advisory/filecontentdisclosureinwikipad.html Product: Wikipad Vendor: Cherry-Design http://www.cherry-software.spb.ru/ Vulnerable Version: 1.6.0 Vendor Notification: 01 February 2011 Vulnerability...
HTB22828: Multiple XSS vulnerabilities in Photopad
Vulnerability ID: HTB22828 Reference: http://www.htbridge.ch/advisory/multiplexssvulnerabilitiesinphotopad.html Product: Photopad Vendor: Cherry-Design http://www.cherry-software.spb.ru/ Vulnerable Version: 1.2.0 Vendor Notification: 01 February 2011 Vulnerability Type: XSS Cross Site Scripting...
Photopad 1.2.0 Cross Site Scripting
Vulnerability ID: HTB22828 Reference: http://www.htbridge.ch/advisory/multiplexssvulnerabilitiesinphotopad.html Product: Photopad Vendor: Cherry-Design http://www.cherry-software.spb.ru/ Vulnerable Version: 1.2.0 Vendor Notification: 01 February 2011 Vulnerability Type: XSS Cross Site Scripting...