8 matches found
Mensajeitor 1.8.9 IP Parameter HTML Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/14071/info Mensajeitor is prone to an HTML injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in dynamically generated content...
SelectaPix Image Gallery 1.4.1 Cross Site Scripting
Vulnerability ID: HTB22964 Reference: http://www.htbridge.ch/advisory/xssinselectapiximagegallery.html Product: SelectaPix Image Gallery Vendor: http://www.outofthetrees.co.uk/ http://www.outofthetrees.co.uk/ Vulnerable Version: 1.4.1 Vendor Notification: 19 April 2011 Vulnerability Type: XSS Cro...
MiniBB 2.5 Cross Site Scripting / SQL Injection
====================================== Vulnerability ID: HTB22670 Reference: http://www.htbridge.ch/advisory/bbcodexssinminibb.html Product: MiniBB Vendor: MiniBB.com http://www.minibb.com/ Vulnerable Version: 2.5 Vendor Notification: 21 October 2010 Vulnerability Type: XSS Cross Site Scripting...
XSS vulnerability in Amiro.CMS FAQ
Vulnerability ID: HTB22590 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinamirocms1.html Product: Amiro.CMS Vendor: Amiro http://www.amiro.ru/ Vulnerable Version: 5.8.4.0 and Probably Prior Versions Vendor Notification: 18 August 2010 Vulnerability Type: Stored XSS Cross Site...
H-Sphere 2.5.1 - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/18677/info H-Sphere is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in th...
iFoto 0.20 - 'index.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/18391/info iFoto is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser of an...
Jax PHP Scripts 1.01.342.143.31 - jax_linklists.php Multiple Cross-Site Scripting Vulnerabilities
Jax PHP Scripts 1.01.342.143.31 - jaxlinklists.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/14481/info Jax PHP Scripts are affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure in the applications to properly...
Active Auction House - 'default.asp' Multiple SQL Injections
source: https://www.securityfocus.com/bid/13032/info Active Auction House is reportedly affected by multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Successful exploitation could...