Blank'N'Berg 0.2 Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/17346/info Blank'N'Berg is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary...

AutoLinks 2.1 Pro Al_initialize.PHP Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/14686/info AutoLinks Pro is prone to a remote file include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrar...

PHPWCMS 1.2.5 -DEV Multiple Cross-Site Scripting Vulnerabilities

No description provided by source. !/usr/bin/env python coding: utf-8 from pocsuite.net import req from pocsuite.poc import POCBase, Output from pocsuite.utils import register from urlparse import urljoin class TestPOCPOCBase: vulID = 'SSV-80148' vul ID version = '1' author = 'fenghh' vulDate =...

ExtCalendar 2.0 ExtCalendar.php Remote File Include Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/18876/info ExtCalendar is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include arbitrary...

Invision Power Services Invision Board 2.1 admin.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/15344/info Invision Power Board is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issu...

Foing 0.x - Remote File Inclusion

source: https://www.securityfocus.com/bid/18392/info Foing is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP...

TalentSoft Web+ Shop 5.0 - Deptname Cross-Site Scripting

TalentSoft Web+ Shop 5.0 - Deptname Cross-Site Scripting source: https://www.securityfocus.com/bid/17418/info Web+ Shop is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue...

Verisign MPKI 6.0 - Haydn.exe Cross-Site Scripting

Verisign MPKI 6.0 - Haydn.exe Cross-Site Scripting source: https://www.securityfocus.com/bid/17170/info MPKI 6.0 is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to spo...

BookReview 1.0 - add_classification.htm?isbn Cross-Site Scripting

BookReview 1.0 - addclassification.htm?isbn Cross-Site Scripting source: https://www.securityfocus.com/bid/13783/info BookReview is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker ma...