Lucene search
K

128 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.13 views

Saxon 5.4 Menu.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/26237/info Saxon is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

PECL Alternative PHP Cache Local 3 HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/32934/info PECL Alternative PHP Cache is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.22 views

Adobe RoboHelp Frameset-7.HTML Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/23878/info RoboHelp is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.39 views

Mailman 2.1.x Multiple Input Validation Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/20021/info Mailman is prone to multiple input-validation vulnerabilities because the application fails to sanitize user-input. These issues include multiple cross-site scripting vulnerabilities and a CRLF-injection...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2014/01/07 12:0 a.m.33 views

Dredge School Administration System - DSMloader.php Cross-Site Request Forgery (Admin Account Manipulation)

Dredge School Administration System - DSMloader.php Cross-Site Request Forgery Admin Account Manipulation source: https://www.securityfocus.com/bid/64720/info Dredge School Administration System is prone to the following security vulnerabilities: 1. An SQL-injection vulnerability 2. A cross-site...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2014/01/07 12:0 a.m.22 views

Dredge School Administration System - DSMloader.php?Id SQL Injection

Dredge School Administration System - DSMloader.php?Id SQL Injection source: https://www.securityfocus.com/bid/64720/info Dredge School Administration System is prone to the following security vulnerabilities: 1. An SQL-injection vulnerability 2. A cross-site request forgery vulnerability 3. A...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2014/01/07 12:0 a.m.19 views

Dredge School Administration System - DSMloader.php Account Information Disclosure

Dredge School Administration System - DSMloader.php Account Information Disclosure source: https://www.securityfocus.com/bid/64720/info Dredge School Administration System is prone to the following security vulnerabilities: 1. An SQL-injection vulnerability 2. A cross-site request forgery...

7.2AI score
Exploits0
Exploit DB
Exploit DB
added 2014/01/07 12:0 a.m.33 views

Dredge School Administration System - '/DSM/loader.php?Id' SQL Injection

source: https://www.securityfocus.com/bid/64720/info Dredge School Administration System is prone to the following security vulnerabilities: 1. An SQL-injection vulnerability 2. A cross-site request forgery vulnerability 3. A cross-site scripting vulnerability 4. An information-disclosure...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2013/12/17 12:0 a.m.17 views

Piwigo - admin.php Cross-Site Request Forgery (User Creation)

Piwigo - admin.php Cross-Site Request Forgery User Creation source: https://www.securityfocus.com/bid/64357/info Piwigo is prone to cross-site request-forgery and HTML-injection vulnerabilities. Exploiting these issues may allow a remote attacker to perform certain unauthorized actions, execute...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2013/12/17 12:0 a.m.19 views

Piwigo - 'admin.php' Cross-Site Request Forgery (User Creation)

source: https://www.securityfocus.com/bid/64357/info Piwigo is prone to cross-site request-forgery and HTML-injection vulnerabilities. Exploiting these issues may allow a remote attacker to perform certain unauthorized actions, execute arbitrary script or HTML code within the context of the...

7AI score
Exploits0
exploitpack
exploitpack
added 2013/08/16 12:0 a.m.14 views

AlgoSec Firewall Analyzer - Cross-Site Scripting

AlgoSec Firewall Analyzer - Cross-Site Scripting source: https://www.securityfocus.com/bid/61733/info AlgoSec Firewall Analyzer is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary scri...

6.8AI score
Exploits0
0day.today
0day.today
added 2013/08/16 12:0 a.m.37 views

WordPress Trafficanalyzer Plugin XSS Vulnerability

WordPress Trafficanalyzer Plugin is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the...

6.8AI score
Exploits0
Patchstack
Patchstack
added 2013/05/27 12:0 a.m.12 views

WordPress ADIF Log Search Widget Plugin - Cross Site Scripting

WordPressADIF Log Search Widget plugin's "logbooksearch.php" is prone to a cross-site scripting vulnerability. It fails to properly clean up user-supplied input. An attacker may execute arbitrary script code in the browser of an user in the context of the affected site. In this way the attacker c...

2.3AI score
Exploits0References1Affected Software1
Exploit DB
Exploit DB
added 2013/05/24 12:0 a.m.28 views

Matterdaddy Market - Multiple Vulnerabilities

source: https://www.securityfocus.com/bid/60150/info Matterdaddy Market is prone to multiple security vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to execute arbitrary script code, upload arbitrary files, steal...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2013/05/15 12:0 a.m.36 views

Jojo CMS - 'search' Cross-Site Scripting

source: https://www.securityfocus.com/bid/59933/info Jojo CMS is prone to a cross-site scripting vulnerability. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2013/03/13 12:0 a.m.23 views

Cisco Video Surveillance Operations Manager - Multiple Vulnerabilities

source: https://www.securityfocus.com/bid/58476/info Cisco Video Surveillance Operations Manager is prone to multiple security vulnerabilities, including: 1. Multiple local file-include vulnerabilities 2. A security-bypass vulnerability 3. Multiple cross-site scripting vulnerabilities An attacker...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2013/02/09 12:0 a.m.37 views

WordPress Theme Pinboard - 'tab' Cross-Site Scripting

source: https://www.securityfocus.com/bid/57873/info The Pinboard theme for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2013/01/09 12:0 a.m.23 views

TinyBrowser - 'edit.php' Directory Listing

source: https://www.securityfocus.com/bid/57230/info TinyBrowser is prone to multiple vulnerabilities. An attacker may leverage these issues to obtain potentially sensitive information and to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2013/01/08 12:0 a.m.31 views

WordPress Plugin NextGEN Gallery - 'test-head' Cross-Site Scripting

source: https://www.securityfocus.com/bid/57200/info The NextGEN Gallery plugin for WordPress is prone to a cross-site-scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2012/10/18 12:0 a.m.12 views

Amateur Photographers Image Gallery - plist.php?albumid SQL Injection

Amateur Photographers Image Gallery - plist.php?albumid SQL Injection source: https://www.securityfocus.com/bid/56110/info Amateur Photographer's Image Gallery is prone to multiple SQL injection vulnerabilities, a cross-site scripting vulnerability, and an arbitrary file-disclosure vulnerability...

0.3AI score
Exploits0
Rows per page
Query Builder