4048 matches found
PHP Arena PAFileDB 3.1 - Multiple Remote Cross Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/12758/info Multiple remote cross-site scripting vulnerabilities affect PHP Arena PaFileDB. These issues are due to a failure of the application to properly sanitize user-supplied input prior to including it in dynamically...
Web Wiz Forums 7.01 Members.ASP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/20054/info Web Wiz Forums is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to have arbitrary script code execute in the...
BizDesign ImageFolio 2.x/3.0.1 imageFolio.cgi direct Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/6265/info Reportedly, ImageFolio is prone to cross site scripting attacks due to insufficient sanitization of user-supplied input. The vulnerability exists in various cgi scripts included with ImageFolio. As a result, it ...
MODx 0.9.6 index.php Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/27672/info MODx is prone to an HTML-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...
PerlDiver 2.31 Perldiver.CGI Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/14894/info PerlDiver is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary scri...
Fixit iDMS Pro Image Gallery showfile.asp fid Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/21282/info Fixit iDMS Pro is prone to multiple input-validation vulnerabilities, including SQL-injection issues and an HTML-injection issue, because the application fails to properly sanitize user-supplied input. Successf...
GenPortal 'buscarCat.php' Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/30957/info GenPortal is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an...
Alteon AceDirector Half-Closed HTTP Request IP Address Revealing Vulnerabililty
No description provided by source. source: http://www.securityfocus.com/bid/3964/info Alteon ACEdirector is a hardware solution distributed by Nortel Networks. ACEdirector runs the Nortel WebOS operating system. It is possible to retrieve the real IP addresses of webservers that are managed by an...
AlstraSoft Template Seller Pro 3.25 Fullview.PHP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/16233/info Template Seller Pro is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary code in the...
Web Chat Manager 2.0 HTML Code Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7190/info It has been reported that Web Chat Manager is prone to HTML injection attacks. This problem occurs due to insufficient sanitization of user-supplied input. As a result of this insufficiency an attacker may embed...
Max Network Technology BBSMAX <= 4.2 'post.aspx' Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/38592/info Max Network Technology BBSMAX is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in...
Dragonfly CMS 9.0.6 .1 Web_Links Module Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/16784/info Dragonfly is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the...
agXchange ESM 'ucquerydetails.jsp' Cross Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/38896/info agXchange ESM is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of a...
Complete PHP Counter Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/15112/info Complete PHP Counter is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have...
common solutions csphonebook 1.02 'index.php' Cross Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/30485/info The 'csphonebook' program from common solutions is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitra...
Newtelligence DasBlog 1.x Request Log HTML Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/11086/info DasBlog is reportedly susceptible to an HTML injection vulnerability in its request log. This vulnerability is due to a failure of the application to properly sanitize user-supplied input data before using it i...
WordPress 2.3.2 - wp-admin/users.php inviteemail Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/28139/info WordPress is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the brows...
DBSite wb CMS 'index.php' Multiple Cross Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/39613/info DBSite wb CMS is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script...
Joomla! ProofReader 1.0 RC9 Component Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/37145/info The Joomla! ProofReader component is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrar...
Openfire <= 3.5.2 'login.jsp' Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/30696/info Openfire is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input data. An attacker may leverage this issue to execute arbitrary script code in the browser ...