CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

No description provided by source. source: http://www.securityfocus.com/bid/10276/info It has been reported that FuseTalk is affected by an administrator command execution vulnerability in the adduser.cfm script. This issue is due to a failure of the application to properly validate the origin of...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•15 views

FuseTalk <= 4.0 AuthError.CFM Multiple Cross Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/24564/info FuseTalk is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker can exploit these issues to steal cookie-based...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•21 views

FuseTalk <= 4.0 forum/include/common/comfinish.cfm FTVAR_SCRIPTRUN Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/24563/info FuseTalk is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker can exploit these issues to steal cookie-based...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•8 views

FuseTalk <= 4.0 blog/include/common/comfinish.cfm FTVAR_SCRIPTRUN Parameter XSS

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•9 views

FuseTalk 2.0/3.0 AuthError.CFM SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/24528/info FuseTalk is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to...

7.1AI score

Exploits0

NVD•added 2012/10/04 5:55 p.m.•9 views

CVE-2012-5295

Cross-site scripting XSS vulnerability in login.cfm in FuseTalk Forums 3.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the windowed parameter...

4.3CVSS5.7AI score0.00896EPSS

Exploits1References5

Prion•added 2012/10/04 5:55 p.m.•8 views

Cross site scripting

Cross-site scripting XSS vulnerability in login.cfm in FuseTalk Forums 3.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the windowed parameter...

4.3CVSS6.2AI score0.00896EPSS

Exploits1References5Affected Software1

Cvelist•added 2012/10/04 5:0 p.m.•13 views

CVE-2012-5295

Cross-site scripting XSS vulnerability in login.cfm in FuseTalk Forums 3.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the windowed parameter...

5.7AI score0.00896EPSS

Exploits1References5

CVE•added 2012/10/04 5:0 p.m.•43 views

CVE-2012-5295

CVE-2012-5295 is an XSS vulnerability in FuseTalk Forums (

4.3CVSS5.9AI score0.00896EPSS

Exploits1References5Affected Software2

exploitpack•added 2012/01/02 12:0 a.m.•8 views

FuseTalk Forums 3.2 - windowed Cross-Site Scripting

FuseTalk Forums 3.2 - windowed Cross-Site Scripting source: https://www.securityfocus.com/bid/51227/info FuseTalk Forums is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker could leverage this issue to execute arbitrary script co...

6.8AI score

Exploits0

Packet Storm•added 2012/01/02 12:0 a.m.•45 views

FuseTalk Forums 3.2 Cross Site Scripting

Exploit Title: FuseTalk Forums v3.2 Cross Site Scripting Date: 2.01.2012 Author: Sony Software Link: http://www.fusetalk.com/ Google Dorks: inurl:/login.cfm?windowed=yes Version: v3.2, maybe another version Web Browser : Mozilla Firefox Blog : http://st2tea.blogspot.com PoC:...

0.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by