CVE-2007-4975

The cited CVE-2007-4975 describes a Cross-site Scripting (XSS) vulnerability in hilfe.php of b1gMail 6.3.1, where an attacker can inject arbitrary script/HTML via the chapter parameter. Affected product appears to be b1gMail 6.3.1, with the vulnerable component/function being hilfe.php. The publi...

b1gmail Cross Site Scripting

b1gmail Cross Site Scripting ============================ Version: 6.3.1 site: http://www.b1gmail.de Profile: Cross Site Scripting Method: POST location:hilfe.php strings: "+onmouseover=alert1898233298+ http://site.com/hilfe.php?chapter="+onmouseover=alert1898233298+ credits: malibu.r...

b1gmail-xss.txt

b1gmail Cross Site Scripting ============================ Version: 6.3.1 site: http://www.b1gmail.de Profile: Cross Site Scripting Method: POST location: hilfe.php strings: "+onmouseover=alert1898233298+ http://site.com/hilfe.php?chapter="+onmouseover=alert1898233298+ credits: malibu.r powered by...

Unfixed XSS vulnerability at www.fick-mit.com

Security researcher T-Ping, has submitted on 18/09/2007 a cross-site-scripting XSS vulnerability affecting www.fick-mit.com, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 21/09/2007. It is currently...

Unfixed XSS vulnerability at www.netwizz.de

Security researcher T-Ping, has submitted on 18/09/2007 a cross-site-scripting XSS vulnerability affecting www.netwizz.de, which at the time of submission ranked 1697456 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 22/09/2007. It is currentl...

CVE-2006-3571

Multiple cross-site scripting XSS vulnerabilities in interna/hilfe.php in Papoo 3 RC3 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 titel or 2 ausgabe parameters...