149 matches found
Google Chrome 2.0.172 - 'chrome://history/' URI Cross-Site Scripting
source: https://www.securityfocus.com/bid/35841/info Google Chrome is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to execute arbitrary script code in the context of the user running the application and...
phpBB <= 2.0.18 Multiple Cross-Site Scripting Flaws
The remote web server contains a PHP application that is affected by several flaws. Description : According to its version number, the remote version of this software is vulnerable to Javascript injection issues using 'url' bbcode tags and, if HTML tags are enabled, HTML more generally. This may...
n8cms 1.1/1.2 - 'mailto.php?userid' Cross-Site Scripting
source: https://www.securityfocus.com/bid/16858/info The 'n8cms' script is prone to multiple input-validation vulnerabilities. These issues are due to the application's failure to properly sanitize user-supplied input. Successful exploitation could allow an attacker to compromise the application,...
V-Webmail 1.6.2 - Multiple Cross-Site Scripting Vulnerabilities
V-Webmail 1.6.2 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/16706/info V-webmail is prone to multiple cross-site scripting vulnerabilities. These issues are due to a lack of proper sanitization of user-supplied input. An attacker may leverage these...
VCD-db 0.9x Search Module - batch Cross-Site Scripting
VCD-db 0.9x Search Module - batch Cross-Site Scripting source: https://www.securityfocus.com/bid/15840/info VCD-db is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of these...
Looking Glass - Cross-Site Scripting
Looking Glass - Cross-Site Scripting source: https://www.securityfocus.com/bid/14680/info Looking Glass is prone to a cross-site scripting vulnerability. This issue may be exploited to steal cookie-based authentication credentials from legitimate users of the software. Other attacks are also...
NEPHP 3.0.4 - 'browse.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/14626/info nePHP is prone to a cross-site scripting vulnerability. This issue is due to a lack of sanitization of user-supplied input. This vulnerability will allow a malicious user to perform attacks on an unsuspecting user in the context of the site...
CVE-2002-0933
Datalex PLC BookIt! Consumer before 2.2 stores usernames and passwords in plaintext in a cookie, which could allow remote attackers to gain privileges via Cross-site scripting or sniffing attacks...
Opera 5.0/5.1 - Same Origin Policy Circumvention
source: https://www.securityfocus.com/bid/3553/info Opera is a popular, freely available web browser that is supported across many different platforms. Opera is prone to an issue which may allow for the execution of script code across domains, allowing for circumvention of the web browser's...