280 matches found
Prontus CMS - page Cross-Site Scripting
Prontus CMS - page Cross-Site Scripting source: https://www.securityfocus.com/bid/48637/info Prontus CMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage this issue...
Prontus CMS - 'page' Cross-Site Scripting
source: https://www.securityfocus.com/bid/48637/info Prontus CMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage this issue to execute arbitrary script code in the...
FanUpdate 3.0 - pageTitle Cross-Site Scripting
FanUpdate 3.0 - pageTitle Cross-Site Scripting source: https://www.securityfocus.com/bid/48392/info FanUpdate is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage this...
FanUpdate 3.0 - 'pageTitle' Cross-Site Scripting
source: https://www.securityfocus.com/bid/48392/info FanUpdate is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage this issue to execute arbitrary script code in the...
Sitemagic CMS 2010.04.17 - 'SMExt' Cross-Site Scripting
source: https://www.securityfocus.com/bid/48355/info Sitemagic CMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage this issue to execute arbitrary script code in t...
Sitemagic CMS 2010.04.17 - SMExt Cross-Site Scripting
Sitemagic CMS 2010.04.17 - SMExt Cross-Site Scripting source: https://www.securityfocus.com/bid/48355/info Sitemagic CMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may...
HP SiteScope Cross Site Scripting and HTML Injection Vulnerabilities
HP SiteScope is prone to a cross-site scripting vulnerability and an HTML-injection vulnerability because it fails to properly sanitize user- supplied input before using it in dynamically generated content. Successful exploits will allow attacker-supplied HTML and script code to run in the contex...
eyeOS 1.9.0.2 - Image File Handling HTML Injection
eyeOS 1.9.0.2 - Image File Handling HTML Injection source: https://www.securityfocus.com/bid/47629/info eyeOS is prone to an HTML-injection vulnerability because it fails to properly sanitize user-supplied input passed through image content before using it in dynamically generated content...
Yaws-Wiki 1.88-1 - Multiple Cross-Site Scripting / HTML Injection Vulnerabilities
source: https://www.securityfocus.com/bid/47158/info Yaws-Wiki is prone to multiple cross-site scripting vulnerabilities and an HTML-injection vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Successful exploits will allow...
PHP-Fusion 'articles.php' Cross-Site Scripting Vulnerability
PHP-Fusion 'articles.php' Cross Site Scripting Vulnerability. Webapps exploit for php platform source: http://www.securityfocus.com/bid/47130/info PHP-Fusion is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically...
AWCM 2.x - search.php Cross-Site Scripting
AWCM 2.x - search.php Cross-Site Scripting source: https://www.securityfocus.com/bid/47126/info AWCM is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage this issue to...
XOOPS - 'view_photos.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/47085/info XOOPS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage this issue to execute arbitrary script code in the brows...
XOOPS - view_photos.php Cross-Site Scripting
XOOPS - viewphotos.php Cross-Site Scripting source: https://www.securityfocus.com/bid/47085/info XOOPS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage this issue t...
Claroline 1.10 - Multiple HTML Injection Vulnerabilities
Claroline 1.10 - Multiple HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/47073/info Claroline is prone to multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Successful exploi...
OrangeHRM 2.6.2 - jobVacancy.php Cross-Site Scripting
OrangeHRM 2.6.2 - jobVacancy.php Cross-Site Scripting source: https://www.securityfocus.com/bid/47046/info OrangeHRM is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverag...
netjukebox 'skin' Parameter Cross Site Scripting Vulnerability
netjukebox is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...
netjukebox 4.01B5.25 - skin Cross-Site Scripting
netjukebox 4.01B5.25 - skin Cross-Site Scripting source: https://www.securityfocus.com/bid/47027/info netjukebox is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage th...
netjukebox 4.01B/5.25 - 'skin' Cross-Site Scripting
source: https://www.securityfocus.com/bid/47027/info netjukebox is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage this issue to execute arbitrary script code in the...
Newsportal 0.37 - post.php Cross-Site Scripting
Newsportal 0.37 - post.php Cross-Site Scripting source: https://www.securityfocus.com/bid/46961/info NewsPortal is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage thi...
PluggedOut Blog 1.9.9 - 'year' Cross-Site Scripting
source: https://www.securityfocus.com/bid/46962/info PluggedOut Blog is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage this issue to execute arbitrary script code in...