AneCMS 1.3 - Persistent Cross-Site Scripting

AneCMS 1.3 - Persistent Cross-Site Scripting Exploit Title: AneCMS 1.3 Persistant XSS Date: 17.1.2011 Author: Penguin Visit: www.null-sector.info Software Link: http://anecms.com/anecms.zip Version: 1.3 Tested on: Linux I Vulnerability ---------------------- You can add blogpost comments that doe...

AneCMS 1.3 - Persistent Cross-Site Scripting

Exploit Title: AneCMS 1.3 Persistant XSS Date: 17.1.2011 Author: Penguin Visit: www.null-sector.info Software Link: http://anecms.com/anecms.zip Version: 1.3 Tested on: Linux I Vulnerability ---------------------- You can add blogpost comments that does not get filtered for HTML-Code. Simply add ...

Zhumadian-day U.S.-China food network v3. 0 Business Edition XSS add management-vulnerability warning-the black bar safety net

Version:Zhumadian days of the U.S. Food network v3. 0 Business Edition Keywords:inurl:wenhuadisplay. asp XSS Code: iframe src=http:// 空间 的 域名 /xss.html Html Code: form name="admin" action="http:// 这里 目标 站 域名 /admin/adminaddsave.asp" method="POST" onSubmit="return validatethis" input type="text"...

Mandriva Update for git MDVSA-2010:256 (git)

Check for the Version of git OpenVAS Vulnerability Test Mandriva Update for git MDVSA-2010:256 git Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

Social Share 2010-06-05 Cross Site Scripting

www.eVuln.com advisory: "search" - Non-persistent XSS in Social Share Summary: http://evuln.com/vulns/169/summary.html Details: http://evuln.com/vulns/169/description.html -----------Summary----------- eVuln ID: EV0169 Software: Social Share Vendor: n/a Version: 2010-06-05 Critical Level: low Typ...

Cross-site Request Forgery (CSRF) Vulnerabilities in PHP MicroCMS

High-Tech Bridge SA Security Research Lab has discovered vulnerabilities in PHP MicroCMS which could be exploited to perform cross-site request forgery attacks. 1 Cross-site request forgery CSRF vulnerabilities in PHP MicroCMS 1.1 The vulnerability exists due to insufficient validation of the...

Social Share Cross Site Scripting

=========================================== www.eVuln.com advisory: "title" and "ur"l - Non-persistent XSS in Social Share Summary: http://evuln.com/vulns/164/summary.html Details: http://evuln.com/vulns/164/description.html -----------Summary----------- eVuln ID: EV0164 Software: Social Share...

slickMsg 0.7-alpha Cross Site Scripting

www.eVuln.com advisory: error - Non-persistent XSS in slickMsg Summary: http://evuln.com/vulns/163/summary.html Details: http://evuln.com/vulns/163/description.html -----------Summary----------- eVuln ID: EV0163 Software: slickMsg Vendor: n/a Version: 0.7-alpha Critical Level: low Type: Cross Sit...

Gitweb 1.7.3.3 Cross Site Scripting

-8 Description 8--8 Proof Of Concept 8- " -8 Credits 8--8 Notes 8--8 Responsible Disclosure 8- 13-12-2010 Initial contact with upstream and vendor-sec 13-12-2010 Vendor Response and CVE-2010-3906 assignation 15-12-2010 Public Disclosure...

gitWeb 1.7.3.3 - Cross-Site Scripting

gitWeb 1.7.3.3 - Cross-Site Scripting -8 Description 8--8 Proof Of Concept 8- " -8 Credits 8- -8 Responsible Disclosure 8- 13-12-2010 Initial contact with upstream and vendor-sec 13-12-2010 Vendor Response and CVE-2010-3906 assignation 15-12-2010 Public Disclosure...

gitWeb 1.7.3.3 - Cross-Site Scripting

-8 Description 8--8 Proof Of Concept 8- " -8 Credits 8- -8 Responsible Disclosure 8- 13-12-2010 Initial contact with upstream and vendor-sec 13-12-2010 Vendor Response and CVE-2010-3906 assignation 15-12-2010 Public Disclosure...

slickMsg 0.7-alpha Cross Site Scripting

www.eVuln.com advisory: "url" BBCode XSS in slickMsg Summary: http://evuln.com/vulns/160/summary.html Details: http://evuln.com/vulns/160/description.html -----------Summary----------- eVuln ID: EV0160 Software: slickMsg Vendor: n/a Version: 0.7-alpha Critical Level: low Type: Cross Site Scriptin...

phpMyAdmin 'error.php' Cross Site Scripting Vulnerability

phpMyAdmin is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

www.eVuln.com : Non-persistent XSS in BizDir

www.eVuln.com advisory: Non-persistent XSS in BizDir Summary: http://evuln.com/vulns/158/summary.html Details: http://evuln.com/vulns/158/description.html -----------Summary----------- eVuln ID: EV0158 Software: BizDir Vendor: LEXIPIXEL Version: v.05.10 Critical Level: low Type: Cross Site...

slickMsg 0.7-alpha Cross Site Scripting

www.eVuln.com advisory: Non-persistent XSS in slickMsg Summary: http://evuln.com/vulns/159/summary.html Details: http://evuln.com/vulns/159/description.html -----------Summary----------- eVuln ID: EV0159 Software: slickMsg Version: 0.7-alpha Critical Level: low Type: Cross Site Scripting Status:...

BizDir 5.10 Cross Site Scripting

www.eVuln.com advisory: Non-persistent XSS in BizDir Summary: http://evuln.com/vulns/158/summary.html Details: http://evuln.com/vulns/158/description.html -----------Summary----------- eVuln ID: EV0158 Software: BizDir Vendor: LEXIPIXEL Version: v.05.10 Critical Level: low Type: Cross Site...

WWWThreads 5.0.8 Pro Cross Site Scripting

www.eVuln.com advisory: Non-persistent XSS in WWWThreads perl version Summary: http://evuln.com/vulns/157/summary.html Details: http://evuln.com/vulns/157/description.html -----------Summary----------- eVuln ID: EV0157 Software: n/a Vendor: WWWThreads Version: v5.0.8 Pro perl version Critical...

Cross-site Scripting (XSS) Vulnerability in ImpressCMS

High-Tech Bridge SA Security Research Lab has discovered vulnerability in ImpressCMS which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in ImpressCMS: CVE-2010-4616 The vulnerability exists due to input sanitation error in the...

Multiple Vulnerabilities in BLOG:CMS

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in BLOG:CMS which could be exploited to perform cross-site scripting, script insertion and cross-site request forgery attacks. 1 Cross-site scripting XSS vulnerabilities in BLOG:CMS: CVE-2010-4749 1.1 The...

Pecio CMS 'target' Parameter Cross Site Scripting Vulnerability

The host is running Pecio CMS and is prone to Cross-Site Scripting vulnerability. OpenVAS Vulnerability Test $Id: gbpeciocmsxssvuln.nasl 5794 2017-03-30 13:52:29Z cfi $ pecio cms 'target' Parameter Cross Site Scripting Vulnerability Authors: Antu Sanadi Copyright: Copyright c 2010 Greenbone...