DirectAdmin 1.281.29 - CMD_EMAIL_VACATION_MODIFY Cross-Site Scripting

DirectAdmin 1.281.29 - CMDEMAILVACATIONMODIFY Cross-Site Scripting source: https://www.securityfocus.com/bid/21049/info DirectAdmin is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

DirectAdmin 1.281.29 - CMD_SHOW_RESELLER Cross-Site Scripting

DirectAdmin 1.281.29 - CMDSHOWRESELLER Cross-Site Scripting source: https://www.securityfocus.com/bid/21049/info DirectAdmin is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

DirectAdmin 1.281.29 - CMD_SHOW_USER Cross-Site Scripting

DirectAdmin 1.281.29 - CMDSHOWUSER Cross-Site Scripting source: https://www.securityfocus.com/bid/21049/info DirectAdmin is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

DirectAdmin 1.281.29 - CMD_TICKET Cross-Site Scripting

DirectAdmin 1.281.29 - CMDTICKET Cross-Site Scripting source: https://www.securityfocus.com/bid/21049/info DirectAdmin is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary...

DirectAdmin 1.281.29 - CMD_TICKET_CREATE Cross-Site Scripting

DirectAdmin 1.281.29 - CMDTICKETCREATE Cross-Site Scripting source: https://www.securityfocus.com/bid/21049/info DirectAdmin is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

DirectAdmin 1.28/1.29 - 'CMD_TICKET_CREATE' Cross-Site Scripting

source: https://www.securityfocus.com/bid/21049/info DirectAdmin is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in th...

DirectAdmin 1.28/1.29 - 'CMD_SHOW_USER' Cross-Site Scripting

source: https://www.securityfocus.com/bid/21049/info DirectAdmin is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in th...

DirectAdmin 1.28/1.29 - 'CMD_EMAIL_FORWARDER_MODIFY' Cross-Site Scripting

source: https://www.securityfocus.com/bid/21049/info DirectAdmin is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in th...

DirectAdmin 1.28/1.29 - 'CMD_EMAIL_LIST' Cross-Site Scripting

source: https://www.securityfocus.com/bid/21049/info DirectAdmin is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in th...

DirectAdmin 1.28/1.29 - 'CMD_SHOW_RESELLER' Cross-Site Scripting

source: https://www.securityfocus.com/bid/21049/info DirectAdmin is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in th...

DirectAdmin 1.28/1.29 - 'CMD_FTP_SHOW' Cross-Site Scripting

source: https://www.securityfocus.com/bid/21049/info DirectAdmin is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in th...

DirectAdmin 1.28/1.29 - 'CMD_EMAIL_VACATION_MODIFY' Cross-Site Scripting

source: https://www.securityfocus.com/bid/21049/info DirectAdmin is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in th...

DirectAdmin 1.28/1.29 - 'CMD_TICKET' Cross-Site Scripting

source: https://www.securityfocus.com/bid/21049/info DirectAdmin is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in th...

Cross site scripting

Cross-site scripting XSS vulnerability in HTMPASSWD in DirectAdmin Hosting Management allows remote attackers to inject arbitrary web script or HTML via the domain parameter...

CVE-2006-2153

Cross-site scripting XSS vulnerability in HTMPASSWD in DirectAdmin Hosting Management allows remote attackers to inject arbitrary web script or HTML via the domain parameter...

CVE-2006-2153

Cross-site scripting XSS vulnerability in HTMPASSWD in DirectAdmin Hosting Management allows remote attackers to inject arbitrary web script or HTML via the domain parameter...

CVE-2006-2153

CVE-2006-2153 describes a cross-site scripting (XSS) vulnerability in DirectAdmin Hosting Management, specifically in the HTM_PASSWD component. The vulnerability allows remote attackers to inject arbitrary web script or HTML via the domain parameter. This is the explicit vulnerability described i...

DirectAdmin.txt

''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''' Aria-Security.net Advisory Discovered by: O.U.T.L.A.W [email protected] Gr33t to:A.u.r.a & R@1D3N & Cl0wn & Dtrap...

XSS Attack On DirectAdmin Hosting Managment

''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''''' Aria-Security.net Advisory Discovered by: O.U.T.L.A.W [email protected] Gr33t to:A.u.r.a & R@1D3N & Cl0wn & Dtrap...