249 matches found
CMSimple index.php search Function XSS
The remote host is running CMSimple, a CMS written in PHP. The version of CMSimple installed on the remote host is prone to cross-site scripting attacks due to its failure to sanitize user-supplied input to the search field. %NASLMINLEVEL 70300 Josh Zlatin-Amishav josh at ramat dot cc GPLv2 Chang...
CMSimple Guestbook Module index.php XSS
The remote host is running CMSimple, a CMS written in PHP. The version of CMSimple installed on the remote host is prone to cross-site scripting attacks due to its failure to sanitize user-supplied input to both the search and guestbook modules. %NASLMINLEVEL 70300 Josh Zlatin-Amishav josh at ram...
CVE-2005-2392
CMSimple is affected by a cross-site scripting (XSS) vulnerability in index.php via the search parameter in the search function. The issue affects CMSimple 2.4 and earlier, arising from failure to sanitize user-supplied input in the search field. Public references in the provided documents confir...
CVE-2005-2392
Cross-site scripting XSS vulnerability in index.php for CMSimple 2.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the search parameter in the search function...
CVE-2005-2392
Cross-site scripting XSS vulnerability in index.php for CMSimple 2.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the search parameter in the search function...
[SA16147] CMSimple "search" Cross-Site Scripting Vulnerability
---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...
CMSimpleXSS.txt
CMSimple 'search' variable XSS Vendor urL:http://www.cmsimple.dk/ Advisory:http://lostmon.blogspot.com/2005/07/ cmsimple-search-variable-xss.html vendor Url fix:http://www.cmsimple.dk/forum/viewtopic.php?t=2470 Vendor confirmed:YES exploit available:yes CMSimple is a simple content management...
CMSimple < 2.5 Beta 3 Search Function XSS
Binary data 3103.prm...
CMSimple < 2.4 Beta 5 Multiple Remote Input Validation Vulnerabilities
Binary data 2544.prm...