46 matches found
EUVD-2006-4152
Malware in sbrugna...
EUVD-2006-0734
Malware in sbrugna...
EUVD-2006-1037
Malware in sbrugna...
EUVD-2006-0733
Malware in sbrugna...
Dragonfly CMS 9.0.6 .1 Surveys Module Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/16784/info Dragonfly is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the...
Dragonfly CMS 9.0.6 .1 Web_Links Module Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/16784/info Dragonfly is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the...
Dragonfly CMS 9.0.6 .1 Coppermine Module album Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/16784/info Dragonfly is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the...
Dragonfly CMS 9.0.6 .1 Your_Account Module Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/16784/info Dragonfly is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the...
Dragonfly CMS 9.0.6 .1 News Module Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/16784/info Dragonfly is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the...
Dragonfly CMS 9.0.6 .1 Stories_Archive Module Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/16784/info Dragonfly is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the...
Dragonfly CMS 9.3.3.0 Cross Site Request Forgery
================================================================================================= Vulnerable Software: Dragonfly CMS v9.3.3.0 Downloaded and tested from: http://dragonflycms.org/Downloads/get=28/ Fileinfo:dragonflycms.org Dragonfly9.3.3.0.zip 2.25 MB 70aea682301253637844d7caa10c3e...
CPG Dragonfly CMS 9.3.3.0 - Multiple Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/52100/info Dragonfly CMS is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user ...
dragonflyCMS.txt
HeLiOsZ - Dark End Team - Internet Security Team Dragonfly CMS 9.0.6.1 and prior XSS IRC: darkend.sytes.net darkend , http://darkend.sytes.net & http://www.darkend.org Rish : Medium Type : web applet Creator: http://www.cpgnuke.com/ Exploit: - The vuln is in the search section,it don't validate t...
CVE-2006-4162
Cross-site scripting XSS vulnerability in Dragonfly CMS 9.0.6.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the search field...
CVE-2006-4162
The CVE-2006-4162 entry reports a Cross-site Scripting (XSS) vulnerability in Dragonfly CMS 9.0.6.1 and earlier. The flaw allows remote attackers to inject arbitrary web script or HTML via the search field. The provided connected documents confirm the affected product (Dragonfly CMS) and the vuln...
CVE-2006-4162
Cross-site scripting XSS vulnerability in Dragonfly CMS 9.0.6.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the search field...
Dragonfly CMS 9.0.6.1 and prior XSS
HeLiOsZ - Dark End Team - Internet Security Team Dragonfly CMS 9.0.6.1 and prior XSS IRC: darkend.sytes.net darkend , http://darkend.sytes.net & http://www.darkend.org Rish : Medium Type : web applet Creator: http://www.cpgnuke.com/ Exploit: - The vuln is in the search section,it don't validate t...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Dragonfly CMS before 9.0.6.1 allow remote attackers to inject arbitrary web script or HTML via 1 uname, 2 error, 3 profile or 4 the username filed parameter to the a YourAccount module, 5 catid, 6 sid, 7 Story Text or 8 Extended text text field...
CVE-2006-1033
Multiple cross-site scripting XSS vulnerabilities in Dragonfly CMS before 9.0.6.1 allow remote attackers to inject arbitrary web script or HTML via 1 uname, 2 error, 3 profile or 4 the username filed parameter to the a YourAccount module, 5 catid, 6 sid, 7 Story Text or 8 Extended text text field...
CVE-2006-1033
Multiple cross-site scripting XSS vulnerabilities in Dragonfly CMS before 9.0.6.1 allow remote attackers to inject arbitrary web script or HTML via 1 uname, 2 error, 3 profile or 4 the username filed parameter to the a YourAccount module, 5 catid, 6 sid, 7 Story Text or 8 Extended text text field...