Lucene search
+L

249 matches found

nessus
nessus
added 2005/09/14 12:0 a.m.49 views

CMSimple index.php search Function XSS

The remote host is running CMSimple, a CMS written in PHP. The version of CMSimple installed on the remote host is prone to cross-site scripting attacks due to its failure to sanitize user-supplied input to the search field. %NASLMINLEVEL 70300 Josh Zlatin-Amishav josh at ramat dot cc GPLv2 Chang...

4.3CVSS5.4AI score0.01406EPSS
Exploits0References4
nessus
nessus
added 2005/09/14 12:0 a.m.159 views

CMSimple Guestbook Module index.php XSS

The remote host is running CMSimple, a CMS written in PHP. The version of CMSimple installed on the remote host is prone to cross-site scripting attacks due to its failure to sanitize user-supplied input to both the search and guestbook modules. %NASLMINLEVEL 70300 Josh Zlatin-Amishav josh at ram...

5.4AI score
Exploits0References1
cve
cve
added 2005/07/27 4:0 a.m.48 views

CVE-2005-2392

CMSimple is affected by a cross-site scripting (XSS) vulnerability in index.php via the search parameter in the search function. The issue affects CMSimple 2.4 and earlier, arising from failure to sanitize user-supplied input in the search field. Public references in the provided documents confir...

4.3CVSS5.8AI score0.01406EPSS
Exploits0References8Affected Software1
nvd
nvd
added 2005/07/27 4:0 a.m.19 views

CVE-2005-2392

Cross-site scripting XSS vulnerability in index.php for CMSimple 2.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the search parameter in the search function...

4.3CVSS5.8AI score0.01406EPSS
Exploits0References8
cvelist
cvelist
added 2005/07/27 4:0 a.m.23 views

CVE-2005-2392

Cross-site scripting XSS vulnerability in index.php for CMSimple 2.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the search parameter in the search function...

5.8AI score0.01406EPSS
Exploits0References8
securityvulns
securityvulns
added 2005/07/22 12:0 a.m.33 views

[SA16147] CMSimple "search" Cross-Site Scripting Vulnerability

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

0.2AI score
Exploits0
packetstorm
packetstorm
added 2005/07/21 12:0 a.m.30 views

CMSimpleXSS.txt

CMSimple 'search' variable XSS Vendor urL:http://www.cmsimple.dk/ Advisory:http://lostmon.blogspot.com/2005/07/ cmsimple-search-variable-xss.html vendor Url fix:http://www.cmsimple.dk/forum/viewtopic.php?t=2470 Vendor confirmed:YES exploit available:yes CMSimple is a simple content management...

7.4AI score
Exploits0
nessus
nessus
added 2005/07/21 12:0 a.m.12 views

CMSimple < 2.5 Beta 3 Search Function XSS

Binary data 3103.prm...

4.3CVSS7.3AI score0.01406EPSS
Exploits0References1
nessus
nessus
added 2005/01/19 12:0 a.m.17 views

CMSimple < 2.4 Beta 5 Multiple Remote Input Validation Vulnerabilities

Binary data 2544.prm...

7.3AI score
Exploits0
Rows per page
Query Builder