7 matches found
EUVD-2007-4228
Malware in sbrugna...
CVE-2007-4245
Cross-site scripting XSS vulnerability in Search.php in DiMeMa CONTENTdm CDM allows remote attackers to inject arbitrary web script or HTML via a search, probably related to the CISOBOX1 parameter to results.php in CDM 4.2...
Cross site scripting
Cross-site scripting XSS vulnerability in Search.php in DiMeMa CONTENTdm CDM allows remote attackers to inject arbitrary web script or HTML via a search, probably related to the CISOBOX1 parameter to results.php in CDM 4.2...
CVE-2007-4245
DiMeMa CONTENTdm (CDM) 4.2 is affected by an XSS in Search.php, allowing remote attackers to inject arbitrary scripts via a search, likely tied to the CISOBOX1 parameter in results.php. The vulnerability concerns the search functionality within CDM and is documented across multiple sources as a C...
CVE-2007-4245
Cross-site scripting XSS vulnerability in Search.php in DiMeMa CONTENTdm CDM allows remote attackers to inject arbitrary web script or HTML via a search, probably related to the CISOBOX1 parameter to results.php in CDM 4.2...
ContentDM Search.php XSS Vulnerability
ContentDM has a XSS vulnerability. Many .gov sites run this software. CDM fails to block special charachters etc so by searching for scriptalert'XSS';/script We can make a popup saying XSS. An attacker could steal cookies, redirect the page etc. Found by MeRhys Phillips Date found: 3rd August 200...
Unfixed XSS vulnerability at contentdm.lib.byu.edu
Security researcher rhys, has submitted on 05/11/2007 a cross-site-scripting XSS vulnerability affecting contentdm.lib.byu.edu, which at the time of submission ranked 8872 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 05/11/2007. It is...