300 matches found
XRms 1.99.2 - 'opportunity_title' Cross-Site Scripting
source: https://www.securityfocus.com/bid/31008/info XRMS CRM is prone to multiple input-validation vulnerabilities, including an unspecified SQL-injection issue, an HTML-injection issue, and multiple cross-site scripting issues. The vulnerabilities occur because the application fails to...
DEV Web Management System 1.5 - Multiple Input Validation Vulnerabilities
DEV Web Management System 1.5 - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/30447/info DEV Web Management System is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. The issues include local...
EasyDynamicPages 3.0 - Multiple SQL Injections Cross-Site Scripting Vulnerabilities
EasyDynamicPages 3.0 - Multiple SQL Injections Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/30305/info EasyDynamicPages is prone to multiple input-validation vulnerabilities, including an SQL-injection issue and a cross-site scripting issue, because it fails to...
EasyE-Cards 3.10 - SQL Injection / Cross-Site Scripting
source: https://www.securityfocus.com/bid/30328/info EasyE-Cards is prone to multiple input-validation vulnerabilities, including an SQL-injection issue and multiple cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an...
Claroline 1.8.9 - announcementsannouncements.php Cross-Site Scripting
Claroline 1.8.9 - announcementsannouncements.php Cross-Site Scripting source: https://www.securityfocus.com/bid/30269/info Claroline is prone to multiple input-validation vulnerabilities: 1. Multiple cross-site scripting vulnerabilities. 2. A remote URI-redirection vulnerability. An attacker may...
Claroline 1.8.9 - phpBBreply.php Cross-Site Scripting
Claroline 1.8.9 - phpBBreply.php Cross-Site Scripting source: https://www.securityfocus.com/bid/30269/info Claroline is prone to multiple input-validation vulnerabilities: 1. Multiple cross-site scripting vulnerabilities. 2. A remote URI-redirection vulnerability. An attacker may leverage these...
Claroline 1.8.9 - 'work/work.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/30269/info Claroline is prone to multiple input-validation vulnerabilities: 1. Multiple cross-site scripting vulnerabilities. 2. A remote URI-redirection vulnerability. An attacker may leverage these issues to execute arbitrary script code in the browser ...
Claroline 1.8.9 - 'phpBB/reply.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/30269/info Claroline is prone to multiple input-validation vulnerabilities: 1. Multiple cross-site scripting vulnerabilities. 2. A remote URI-redirection vulnerability. An attacker may leverage these issues to execute arbitrary script code in the browser ...
Claroline 1.8.9 - 'exercise/exercise.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/30269/info Claroline is prone to multiple input-validation vulnerabilities: 1. Multiple cross-site scripting vulnerabilities. 2. A remote URI-redirection vulnerability. An attacker may leverage these issues to execute arbitrary script code in the browser ...
CVE-2008-3081
Multiple unspecified "input validation" vulnerabilities in the Web management interface aka Messaging Administration interface in Avaya Message Storage Server MSS 3.x and 4.0, and possibly Communication Manager 3.1.x, allow remote authenticated administrators to execute arbitrary commands as user...
The Rat CMS - viewarticle2.php?id SQL Injection
The Rat CMS - viewarticle2.php?id SQL Injection source: https://www.securityfocus.com/bid/29959/info The Rat CMS is prone to multiple input-validation vulnerabilities, including SQL-injection issues and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data...
The Rat CMS - 'viewarticle.php' Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/29959/info The Rat CMS is prone to multiple input-validation vulnerabilities, including SQL-injection issues and cross-site scripting issues, because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could allow an attacker to...
ClassSystem 2.02.3 - MessageReply.php?teacher_id SQL Injection
ClassSystem 2.02.3 - MessageReply.php?teacherid SQL Injection source: https://www.securityfocus.com/bid/29372/info ClassSystem is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. These issues include multiple SQL-injection...
Campus Bulletin Board 3.4 - post3book.asp?review Cross-Site Scripting
Campus Bulletin Board 3.4 - post3book.asp?review Cross-Site Scripting source: https://www.securityfocus.com/bid/29375/info Campus Bulletin Board is prone to multiple input-validation vulnerabilities, including multiple SQL-injection issues and a cross-site scripting issue, because it fails to...
ClassSystem 2.02.3 - classApplyDB.php Unrestricted Arbitrary File Upload Arbitrary Code Execution
ClassSystem 2.02.3 - classApplyDB.php Unrestricted Arbitrary File Upload Arbitrary Code Execution source: https://www.securityfocus.com/bid/29372/info ClassSystem is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. These issues inclu...
Campus Bulletin Board 3.4 - '/post3/view.asp?id' SQL Injection
source: https://www.securityfocus.com/bid/29375/info Campus Bulletin Board is prone to multiple input-validation vulnerabilities, including multiple SQL-injection issues and a cross-site scripting issue, because it fails to sufficiently sanitize user-supplied data. Exploiting these issues could...
Cuteflow Bin 1.5 - pages/showcirculation.php language Parameter XSS
Cuteflow Bin 1.5 pages/showcirculation.php language Parameter XSS. CVE-2008-1630. Webapps exploit for php platform source: http://www.securityfocus.com/bid/28500/info CuteFlow Bin is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied data. T...
Alkacon OpenCMS 7.0.3 - logfileViewSettings.jsp?filePath.0 Arbitrary File Access
Alkacon OpenCMS 7.0.3 - logfileViewSettings.jsp?filePath.0 Arbitrary File Access source: https://www.securityfocus.com/bid/28152/info Alkacon OpenCms is prone to multiple input-validation vulnerabilities, including one cross-site scripting issue and a file-disclosure issue, because the applicatio...
Dokeos 1.8.4 - mainmySpaceindex.php?tracking_list_coaches_column SQL Injection
Dokeos 1.8.4 - mainmySpaceindex.php?trackinglistcoachescolumn SQL Injection source: https://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one...
Dokeos 1.8.4 - maincreate_courseadd_course.php?tutor_name SQL Injection
Dokeos 1.8.4 - maincreatecourseaddcourse.php?tutorname SQL Injection source: https://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one...