Lucene search
K

6 matches found

Prion
Prion
added 2006/05/17 10:6 a.m.16 views

Cross site scripting

Cross-site scripting XSS vulnerability in ftplogin/index.php in Confixx 3.1.2 allows remote attackers to inject arbitrary web script or HTML via the login parameter...

4.3CVSS6.1AI score0.02088EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2006/05/17 10:0 a.m.18 views

CVE-2006-2423

Cross-site scripting XSS vulnerability in ftplogin/index.php in Confixx 3.1.2 allows remote attackers to inject arbitrary web script or HTML via the login parameter...

5.7AI score0.02088EPSS
Exploits0References8
securityvulns
securityvulns
added 2006/05/16 12:0 a.m.143 views

Confixx 3.1.2 <= Code Injection

// Confixx 3.1.2 = Code Injection // ----------------------------------------------------------------- Advisory by: LoK-Crew - Exploit: http://www.example.com/ftplogin/?login="XSSdiv style= - Googledork: inurl:confixx inurl:login|anmeldung + Greetz to: Bluegeek + Visit: www.LoK-Crew.de...

1.2AI score
Exploits0
CVE
CVE
added 2006/04/13 1:0 a.m.52 views

CVE-2006-1759

CVE-2006-1759 describes a Cross-site Scripting (XSS) vulnerability in SWSoft Confixx 3.1.2, specifically in the file allgemein_transfer.php . The issue arises through the jahr parameter, enabling remote attackers to inject arbitrary web script or HTML. The entry notes the vulnerability as applica...

2.6CVSS5.7AI score0.01995EPSS
Exploits1References6Affected Software1
Exploit DB
Exploit DB
added 2006/04/11 12:0 a.m.17 views

SWSoft Confixx 3.1.2 - 'Jahr' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17466/info Confixx is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of a...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2006/04/11 12:0 a.m.33 views

Confixx 3.1.2 <= Cross Site Scripting Vuln

// Confixx 3.1.2 = Cross Site Scripting Vuln // ----------------------------------------------------------------- Advistory by: LoK-Crew Snake23 - Exploit: http://www.victim.com/allgemeintransfer.php?monat=4&jahr=XSS - Googledork: - + Greetz to: Bluegeek and Team.Rootbox + Visit: www.LoK-Crew.de....

0.5AI score
Exploits0
Rows per page
Query Builder