280 matches found
ArtGK CMS - Cross-Site Scripting HTML Injection
ArtGK CMS - Cross-Site Scripting HTML Injection source: https://www.securityfocus.com/bid/42923/info ArtGK CMS is prone to a cross-site scripting vulnerability and an HTML-injection vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated...
WebsiteKit Gbplus - Name Body HTML Injection
WebsiteKit Gbplus - Name Body HTML Injection source: https://www.securityfocus.com/bid/42842/info Gbplus is prone to multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Successful exploits will allow...
Valarsoft WebMatic 3.0.5 - Multiple HTML Injection Vulnerabilities
Valarsoft WebMatic 3.0.5 - Multiple HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/42767/info Valarsoft WebMatic is prone to multiple HTML-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in dynamically...
Hulihan Applications Amethyst 0.1.5 - Multiple HTML Injection Vulnerabilities
source: https://www.securityfocus.com/bid/42253/info Hulihan Applications Amethyst is prone to multiple HTML-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code...
DiamondList - usermainupdate_category?category[description] Cross-Site Scripting
DiamondList - usermainupdatecategory?categorydescription Cross-Site Scripting source: https://www.securityfocus.com/bid/42252/info DiamondList is prone to a cross-site scripting vulnerability and an HTML-injection vulnerability because it fails to properly sanitize user-supplied input before usin...
DiamondList - '/user/main/update_category?category[description]' Cross-Site Scripting
source: https://www.securityfocus.com/bid/42252/info DiamondList is prone to a cross-site scripting vulnerability and an HTML-injection vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Successful exploits will allow...
Cetera eCommerce - Multiple Cross-Site Scripting / HTML Injection Vulnerabilities
source: https://www.securityfocus.com/bid/42059/info Cetera eCommerce is prone to multiple cross-site-scripting and HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code wou...
Impact Software AdPeeps - Cross-Site Scripting / HTML Injection
source: https://www.securityfocus.com/bid/42071/info Impact Software Ad Peeps is prone to multiple cross-site scripting vulnerabilities and multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content...
Sourcefabric Campsite Articles - HTML Injection
source: https://www.securityfocus.com/bid/41780/info Sourcefabric Campsite is prone to an HTML-injection vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Successful exploits will allow attacker-supplied HTML and script code ...
eliteCMS Multiple Cross Site Scripting Vulnerabilities
eliteCMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the conte...
eliteCMS 1.01 - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/41537/info eliteCMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage these issues to execute arbitrary script cod...
eliteCMS 1.01 - Multiple Cross-Site Scripting Vulnerabilities
eliteCMS 1.01 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/41537/info eliteCMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An...
SimpNews 2.47.3 - Multiple Cross-Site Scripting Vulnerabilities
SimpNews 2.47.3 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/41517/info SimpNews is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An...
Wiki Web Help 0.2.7 - Cross-Site Scripting HTML Injection
Wiki Web Help 0.2.7 - Cross-Site Scripting HTML Injection source: https://www.securityfocus.com/bid/41306/info Wiki Web Help is prone to a cross-site scripting vulnerability and multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in...
Wiki Web Help 0.2.7 - Cross-Site Scripting / HTML Injection
source: https://www.securityfocus.com/bid/41306/info Wiki Web Help is prone to a cross-site scripting vulnerability and multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and...
BoastMachine 3.1 - 'key' Cross-Site Scripting
source: https://www.securityfocus.com/bid/40623/info boastMachine is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage this issue to execute arbitrary script code in th...
JForum 2.1.8 - Username Cross-Site Scripting
JForum 2.1.8 - Username Cross-Site Scripting source: https://www.securityfocus.com/bid/40880/info JForum is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage this issue...
Hexjector 1.0.7.2 - hexjector.php Cross-Site Scripting
Hexjector 1.0.7.2 - hexjector.php Cross-Site Scripting source: https://www.securityfocus.com/bid/40509/info Hexjector is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may levera...
Hexjector 1.0.7.2 - 'hexjector.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/40509/info Hexjector is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage this issue to execute arbitrary script code in the...
wsCMS - 'news.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/40447/info wsCMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage this issue to execute arbitrary script code in the brows...