330 matches found
Land Down Under 601602700701800801 - events.php HTML Injection
Land Down Under 601602700701800801 - events.php HTML Injection source: https://www.securityfocus.com/bid/14746/info Land Down Under is prone to an HTML injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in dynamicall...
Land Down Under 601/602/700/701/800/801 - 'events.php' HTML Injection
source: https://www.securityfocus.com/bid/14746/info Land Down Under is prone to an HTML injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code wou...
Unclassified NewsBoard 1.5.3 - 'Description' HTML Injection
source: https://www.securityfocus.com/bid/14748/info Unclassified NewsBoard is prone to an HTML injection vulnerability. This is due to a lack of proper sanitization of user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code would be executed i...
Advanced Guestbook User-Agent Header HTML Injection
The remote host is running Advanced Guestbook, a free guestbook written in PHP. The installed version of Advanced Guestbook fails to properly sanitize the 'HTTPUSERAGENT' environment variable before using it in dynamically-generated content. An attacker can exploit this flaw to launch cross-site...
CodetoSell ViArt Shop Enterprise 2.1.6 - products.php Multiple Cross-Site Scripting Vulnerabilities
CodetoSell ViArt Shop Enterprise 2.1.6 - products.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/13462/info ViArt Shop is affected by multiple cross-site scripting and HTML injection vulnerabilities. These issues are due to a failure in the application...
CodetoSell ViArt Shop Enterprise 2.1.6 - page.php?page Cross-Site Scripting
CodetoSell ViArt Shop Enterprise 2.1.6 - page.php?page Cross-Site Scripting source: https://www.securityfocus.com/bid/13462/info ViArt Shop is affected by multiple cross-site scripting and HTML injection vulnerabilities. These issues are due to a failure in the application to properly sanitize...
CodetoSell ViArt Shop Enterprise 2.1.6 - 'reviews.php' Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/13462/info ViArt Shop is affected by multiple cross-site scripting and HTML injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in dynamically generated content...
WebCT Discussion Board 4.1 - HTML Injection
WebCT Discussion Board 4.1 - HTML Injection source: https://www.securityfocus.com/bid/13101/info WebCT is reportedly affected by an HTML injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input prior to using it in dynamically generated...
Phorum 5.0.14 - Multiple Subject and Attachment HTML Injection Vulnerabilities
source: https://www.securityfocus.com/bid/12800/info Phorum is reportedly affected by multiple HTML injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in dynamically generated content. The attacker-supplied HTML...
PABox 2.0 - Post Icon HTML Injection
source: https://www.securityfocus.com/bid/12796/info paBox is reportedly affected by a HTML injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in dynamically generated content. The attacker-supplied HTML and script...