128 matches found
ForumJBC 4.0 - 'Haut.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/19992/info ForumJBC is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverge this issue to have arbitrary script code execute in the browser of an unsuspecting user in the conte...
Gphotos 1.41.5 - index.php?rep Cross-Site Scripting
Gphotos 1.41.5 - index.php?rep Cross-Site Scripting source: https://www.securityfocus.com/bid/17967/info Gphotos is prone to multiple input-validation vulnerabilities. The issues include information-disclosure and cross-site scripting vulnerabilities. These issues are due to a failure in the...
PHPGuestbook 0.0.2/1.0 - HTML Injection
source: https://www.securityfocus.com/bid/17537/info phpGuestbook is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code would be executed in the...
PHP-Fusion 6.0 - members.php Cross-Site Scripting
PHP-Fusion 6.0 - members.php Cross-Site Scripting source: https://www.securityfocus.com/bid/15931/info PHP-Fusion is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to ha...
Soft4e ECW-Cart 2.0.3 - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/15890/info ECW-Cart is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in t...
McGallery 1.01.12.2 - index.php?album SQL Injection
McGallery 1.01.12.2 - index.php?album SQL Injection source: https://www.securityfocus.com/bid/15845/info mcGallery PRO is prone to multiple input validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. Successful exploitation of...
SiteBeater News 4.0 - Archive.asp Cross-Site Scripting
SiteBeater News 4.0 - Archive.asp Cross-Site Scripting source: https://www.securityfocus.com/bid/15697/info SiteBeater News is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this...
MidiCart PHP - Item_List.php?SecondGroup Cross-Site Scripting
MidiCart PHP - ItemList.php?SecondGroup Cross-Site Scripting source: https://www.securityfocus.com/bid/13517/info MidiCart PHP is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage thi...