1931 matches found
Unfixed Script Insertion vulnerability at www.lespac.com
Security researcher h3xStream, has submitted on 24/07/2010 a Script Insertion vulnerability affecting www.lespac.com, which at the time of submission ranked 10677 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 15/12/2011. It is currently...
Multiple Vulnerabilities in Amethyst
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Amethyst which could be exploited to perform cross-site scripting, script insertion and cross-site request forgery attacks. 1 Cross-site scripting XSS vulnerability in Amethyst The vulnerability exists due to inp...
Unfixed XSS vulnerability at www.wingclips.com
Security researcher nullbyt3, has submitted on 17/07/2010 a cross-site-scripting XSS vulnerability affecting www.wingclips.com, which at the time of submission ranked 372738 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 13/12/2011. It is...
Multiple Vulnerabilities in Pixie
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Pixie which could be exploited to perform cross-site scripting, script insertions and cross-site request forgery attacks. 1 Cross-site scripting XSS vulnerability in Pixie The vulnerability exists due to input...
Unfixed Script Insertion vulnerability at www.tinyurlscript.info
Security researcher Ravac, has submitted on 28/06/2010 a Script Insertion vulnerability affecting www.tinyurlscript.info, which at the time of submission ranked 1469036 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 24/12/2011. It is currently...
Unfixed Script Insertion vulnerability at www.theworldcafe.com
Security researcher solipsistic, has submitted on 27/06/2010 a Script Insertion vulnerability affecting www.theworldcafe.com, which at the time of submission ranked 788817 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 30/10/2010. It is...
Unfixed Script Insertion vulnerability at www.conversationasaradicalact.com
Security researcher solipsistic, has submitted on 27/06/2010 a Script Insertion vulnerability affecting www.conversationasaradicalact.com, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 30/10/2010. It i...
Cross-site Scripting (XSS) Vulnerabilities in CruxPA
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in CruxPA which could be exploited to perform cross-site scripting and script insertion attacks. 1 Cross-site scripting XSS vulnerability in CruxPA: CVE-2010-2718 The vulnerability exists due to input sanitation err...
Fixed Script Insertion vulnerability at cazey.friendsmix.net
Security researcher benzo, has submitted on 20/06/2010 a Script Insertion vulnerability affecting cazey.friendsmix.net, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 02/04/2012. It is currently fixed...
Invision Power Board 3.0.5 Calendar Application Script Insertion Vulnerability
No description provided by source. Credits ============ Discovered by: David Vieira-Kurz http://www.majorsecurity.info/penetrationstest.php Affected Products: ---------------------------- Invision Power Board 3.0.5 and prior Introduction ============ Invision Power Board is a widely used forums...
Unfixed Script Insertion vulnerability at rapi.nl
Security researcher Killer-TR, has submitted on 06/10/2010 a Script Insertion vulnerability affecting rapi.nl, which at the time of submission ranked 5970364 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 20/12/2011. It is currently unfixed. I...
Apple Webkit ProcessInstruction Target Error Message Insertion Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple's Webkit. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with how WebKit inserts...
Cross-site Scripting (XSS) Vulnerabilities in synType CMS
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in synType CMS which could be exploited to perform cross-site scripting and script insertion attacks. 1 Cross-site scripting XSS vulnerability in synType CMS The vulnerability exists due to input sanitation error in...
Multiple Vulnerabilities in AneCMS
High-Tech Bridge SA Security Research Lab has discovered three vulnerabilities in AneCMS which could be exploited to perform cross-site scripting and script insertion attacks and execute arbitrary SQL commands in applications database. 1 Cross-site scripting XSS vulnerability in AneCMS The...
TomatoCMS Script Insertion Vulnerabilities
1 Affected Software TomatoCMS version 2.0.4. NOTE: Other versions may also be affected. ====================================================================== 2 Severity Rating: Less critical Impact: Cross Site Scripting Where: From remote...
HP System Management Homepage < 6.1.0.102 / 6.1.0-103 Multiple Vulnerabilities
According to the web server banner, the version of HP System Management Homepage SMH running on the remote host is potentially affected by the following vulnerabilities : - Session renegotiations are not handled properly, which could be exploited to insert arbitrary plaintext by a...
Multiple Vulnerabilities in LightNEasy CMS
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in LightNEasy CMS which could be exploited to perform script insertion, cross-site scripting and cross-site request forgery attacks. 1 Cross-site scripting XSS vulnerability in LightNEasy CMS 1.1 The vulnerability...
Secunia Research: TomatoCMS Script Insertion Vulnerabilities
====================================================================== Secunia Research 10/05/2010 - TomatoCMS Script Insertion Vulnerabilities - ====================================================================== Table of Contents Affected...
vBulletin BB Code Script Insertion Vulnerability
No description provided by source. vBulletin 3.x / 4.x MaXe has reported a vulnerability in vBulletin, which can be exploited by malicious users to conduct script insertion attacks. The vulnerability exists in the parsing of BB Code when creating content that uses custom tags. This can be exploit...
Multiple Vulnerabilities in NPDS REvolution
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in NPDS REvolution which could be exploited to perform cross-site scripting XSS, script insertion and CSRF attacks and execute arbitrary SQL commands in applications database. 1 Cross-site scripting vulnerabilities ...