3 matches found
Cross-Site Scripting (XSS)
Glossarizer is vulnerable to Cross-Site Scripting XSS. The vulnerability is due to improperly converting encoded special characters into legitimate HTML, allowing attackers to inject a malicious XSS payload into a glossary entry...
Cross site scripting
Cross-site scripting XSS vulnerability in auth.php in Pineapple Technologies QuizShock 1.6.1 and earlier allows remote attackers to inject arbitrary web script or HTML via encoded special characters in the forwardto parameter, as demonstrated using """...
CVE-2007-1905
Cross-site scripting XSS vulnerability in auth.php in Pineapple Technologies QuizShock 1.6.1 and earlier allows remote attackers to inject arbitrary web script or HTML via encoded special characters in the forwardto parameter, as demonstrated using """...