5 matches found
EUVD-2003-1337
Malware in sbrugna...
geminabox cross-site scripting vulnerability (CNVD-2017-36112)
geminabox aka Gem in a Box is a personal code hosting platform. A cross-site scripting vulnerability exists in geminabox versions prior to 0.13.10. The vulnerability can be exploited by remote attackers to inject arbitrary web scripts via the 'homepage' value of a .gemspec file...
Geeklog 1.3.7 Homepage User Field HTML Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6604/info Geeklog is prone to HTML injection attacks. The user account 'Homepage' field is not sufficiently sanitized of HTML and script code. As a result, a malicious user may inject malicious HTML and script code into...
CVE-2005-3552
Multiple cross-site scripting XSS vulnerabilities in PHPKIT 1.6.1 R2 and earlier allow remote attackers to inject arbitrary web script or HTML via multiple vectors in 1 login/profile.php, 2 login/userinfo.php, 3 admin/admin.php, 4 imcenter.php, and the 5 referer statistics, the 6 HTML title eleme...
PT-2004-3034 · Allwebscripts · Allwebscripts Mysqlguest
Name of the Vulnerable Software and Affected Versions: AllWebScripts MySQLGuest affected versions not specified Description: The issue is related to a cross-site scripting XSS vulnerability. This allows remote attackers to inject arbitrary HTML and PHP code via the Name, Email, Homepage, or...