Adam Webb NukeJokes 1.7/2.0 Module modules.php jokeid Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/10306/info It has been reported that the NukeJokes module is affected by multiple input validation vulnerabilities. These issues are due to a failure of the application to properly sanitize user supplied user input...

Webfroot Shoutbox 2.32 Viewshoutbox.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9289/info Webfroot Shoutbox is prone to a cross-site scripting vulnerability in the 'viewshoutbox.php' script. The source of the problem is that HTML and script code are not adequately sanitized from input supplied via UR...

Blog Torrent 0.80 BTDownload.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11839/info It is reported that Blog Torrent is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This issue could permit a...

IBM Lotus Domino 6.x Cross-Site Scripting and HTML Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/11458/info It is reported that Lotus Domino is susceptible to a cross-site scripting and an HTML injection vulnerability. These issues are due to a failure of the application to properly sanitize user-supplied input. The...

PHP Code Snippet Library 0.8 - Multiple Cross-Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/11038/info PHP Code Snippet Library is reported prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure of the application to properly sanitize user-supplied URI input. These issues could...

AzDGDatingLite 2.1.1 index.php language Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/10084/info Multiple cross-site scripting vulnerabilities have been reported in AzDGDatingLite. These issues may be exploited by enticing a victim user to visit a malicious link that includes hostile HTML and script code...

LiveJournal 1.1 CSS HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9727/info LiveJournal is reportedly prone to HTML injection via Cascading Style Sheet CSS tags. It is possible to inject hostile HTML and script code into journal entries through this vulnerability. This could potentially...

OpenBB 1.0.x post.php TID Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/10214/info It has been reported that OpenBB is affected by multiple input validation vulnerabilities. These issues are due to a failure of the application to properly sanitize user supplied user input. The SQL issues may...

L-Soft 1.8 Listserv Multiple Cross-Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/9307/info Multiple cross-site scripting vulnerabilities have been reported in L-Soft Listserv. An attacker may exploit these issues by embedding hostile HTML and script code in a link to a site hosting the software. This...

Blackboard Learning System 5.x/6.0 - Multiple Cross-Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/10101/info Blackboard Learning System has been reported prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure of the application to properly validate user supplied URI input. The first...

Pinterestclones - Security Bypass HTML Injection

Pinterestclones - Security Bypass HTML Injection source: https://www.securityfocus.com/bid/55469/info Pinterestclones is prone to a security-bypass vulnerability and an HTML-injection vulnerability because it fails to properly validate user permissions and sanitize user-supplied input. An attacke...

perl-cal-29920.txt

------=Part1714122617522.1134045408185 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline Vendor: Perl-Cal Version tested: Perl-Cal 2.99.20 , other versions may also be affected. Type: Cross Site Scripting Severity: Medium...

Cerberus Helpdesk 0.97.3/2.6.1 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/13897/info Cerberus Helpdesk is affected by various cross-site scripting vulnerabilities. These issues could permit a remote attacker to create a malicious URI link that includes hostile HTML and script code. If this link were to be followed, the hostile...

UseModWiki 1.0 - Wiki.pl Cross-Site Scripting

UseModWiki 1.0 - Wiki.pl Cross-Site Scripting source: https://www.securityfocus.com/bid/11924/info It is reported that UseModWiki is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input before outputting i...

Mark Zuckerberg Thefacebook - Multiple Cross-Site Scripting Vulnerabilities

Mark Zuckerberg Thefacebook - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/11676/info It is reported that Thefacebook is affected by various cross-site scripting vulnerabilities. These issues are due to a failure of the application to properly sanitize...

Microsoft Internet Explorer 5.x - Valid File Drag and Drop Embedded Code (MS04-038)

Microsoft Internet Explorer 5.x - Valid File Drag and Drop Embedded Code MS04-038 source: https://www.securityfocus.com/bid/11466/info The Microsoft cumulative Internet Explorer patch MS04-038 attempted to limit what files may be dragged and dropped onto the local computer from the Internet Zone ...

PhotoADay - 'Pad_selected' Cross-Site Scripting

source: https://www.securityfocus.com/bid/11009/info It is reported that PhotoADay is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This issue could permit a remote attacker to create a malicious U...

Mantis Bug Tracker 0.x - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/10994/info Mantis is a web-based bug tracking system. It is written in PHP and supported by a MySQL database. It is reported that Mantis is affected by cross-site scripting vulnerabilities. These issues are due to a failure of the application to properly...

Mantis Bug Tracker 0.x - Multiple Cross-Site Scripting Vulnerabilities

Mantis Bug Tracker 0.x - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/10994/info Mantis is a web-based bug tracking system. It is written in PHP and supported by a MySQL database. It is reported that Mantis is affected by cross-site scripting...

EZBoard 7.3 - Font Tag HTML Injection

source: https://www.securityfocus.com/bid/9725/info ezboard is prone to an HTML injection vulnerability. An attacker may exploit this issue by including hostile HTML and script code encapsulated in font tags of posts to the bulletin board. This code may be rendered in the web browser of a user wh...