5 matches found
GeoClassifieds Enterprise 2.0.5.x Index.PHP Multiple Cross-Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/19196/info GeoClassifieds Enterprise is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage any of these issues to have arbitrary scri...
CVE-2006-7072
CVE-2006-7072 corresponds to a cross-site scripting (XSS) vulnerability in GeoClassifieds Enterprise 2.0.5.2 and earlier. The flaw permits remote attackers to inject arbitrary web script and HTML via input parameters: b[username] and c to index.php, b[username] to admin/index.php, and c[phone] to...
CVE-2006-7072
Cross-site scripting XSS vulnerability in GeoClassifieds Enterprise 2.0.5.2 and earlier allows remote attackers to inject arbitrary web script and HTML via the 1 busername and 2 c parameters to a index.php, the busername parameter to b admin/index.php, and 3 cphone parameter to register.php...
GeoClassifieds Enterprise <= 2.0.5.2 Cross Site Scripting
GeoClassifieds Enterprise 2.0.5.2 http://geodesicsolutions.com/products/classifieds/classifiedsenterprise.htm -------------------------- Cross Site Scripting XSS -------------------------- POST http://target.xx:80/index.php?a=10 HTTP/1.0 Host: target.xx Content-Type:...
GeoClassifieds Enterprise 2.0.5.x - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/19196/info GeoClassifieds Enterprise is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage any of these issues to have arbitrary script code execute in the browser of ...