Partial access to local files via CSS in Internet Explorer

Via .oFile.cssText property of Link object it's possible to get partial content of any file with structure close to CSS...

CVE-2001-0658

CVE-2001-0658 affects Microsoft Internet Security and Acceleration (ISA) Server 2000. The issue is a cross-site scripting (CSS) vulnerability where malicious script delivered in an invalid URL, not properly quoted in an error message, can cause other clients to execute scripts or read cookies. Th...

CVE-2001-0948

CVE-2001-0948 affects ValiCert Enterprise Validation Authority (EVA) versions 3.3–4.2.1 . A cross‑site scripting flaw allows remote attackers to cause arbitrary code execution or display false information by injecting HTML/script into a certificate’s description, which runs when the certificate i...

CSS in PHPNuke add-on

/phptonuke.php?filnavn=scriptalert document.cookie/script " and ' aren't authorized...

WebSphere - Minor CSS Issue.

Hi folks, Something i came across while testing some of our WebSphere installations these have been fixed in the current versions of vanilla Apache, so i assume these are just an inherited problem from the old Apache codebase.. Makes you wonder what else there is? :^ Retreiving:...

CVE-2001-0019

Arrowpoint (Cisco Content Services) is affected by a local DoS vulnerability where a long argument to the commands show script, clear script, show archive, clear archive, show log, or clear log can cause denial of service. The CVE description and NVD entry specify local access and partial availab...

Expression Web 4 Service Pack 1 (KB2519900)

Microsoft Expression Web 4 Service Pack 1 contains significant fixes and improvements. It includes HTML 5 and CSS 3 support for Web and authentication forms support for SuperPreview in addition to bug fixes and other enhancements...