16 matches found
EUVD-2014-9287
Malware in sbrugna...
EUVD-2007-0304
Malware in sbrugna...
CVE-2014-9468
Multiple cross-site scripting XSS vulnerabilities in InstantASP InstantForum.NET 4.1.3, 4.1.2, 4.1.1, 4.0.0, 4.1.0, and 3.4.0 allow remote attackers to inject arbitrary web script or HTML via the SessionID parameter to 1 Join.aspx or 2 Logon.aspx...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in InstantASP InstantForum.NET 4.1.3, 4.1.2, 4.1.1, 4.0.0, 4.1.0, and 3.4.0 allow remote attackers to inject arbitrary web script or HTML via the SessionID parameter to 1 Join.aspx or 2 Logon.aspx...
CVE-2014-9468
Multiple cross-site scripting XSS vulnerabilities in InstantASP InstantForum.NET 4.1.3, 4.1.2, 4.1.1, 4.0.0, 4.1.0, and 3.4.0 allow remote attackers to inject arbitrary web script or HTML via the SessionID parameter to 1 Join.aspx or 2 Logon.aspx...
CVE-2014-9468
InstantASP InstantForum.NET has multiple XSS vulnerabilities (CVE-2014-9468) affecting versions 4.1.3, 4.1.2, 4.1.1, 4.0.0, 4.1.0 and 3.4.0. The issue is a reflected cross-site scripting vulnerability: attacker-supplied input in the SessionID parameter is echoed in Join.aspx or Logon.aspx, enabli...
InstantASP InstantForum.NET 3.x / 4.x Cross Site Scripting
CVE-2014-9468 InstantASP InstantForum.NET Multiple XSS Cross-Site Scripting Security Vulnerabilities Exploit Title: InstantASP InstantForum.NET Multiple XSS Cross-Site Scripting Security Vulnerabilities Product: InstantForum.NET Vendor: InstantASP Vulnerable Versions: v4.1.3 v4.1.1 v4.1.2 v4.0.0...
InstantASP 4.1 Logon.aspx SessionID Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/22052/info InstantForum.NET is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker can exploit these issues to steal cookie-based...
CVE-2007-0302
Multiple cross-site scripting XSS vulnerabilities in InstantASP 4.1.0 allow remote attackers to inject arbitrary web script or HTML via the 1 SessionID parameter to a Logon.aspx, and the 2 Username and 3 Update parameters to b Members1.aspx...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in InstantASP 4.1.0 allow remote attackers to inject arbitrary web script or HTML via the 1 SessionID parameter to a Logon.aspx, and the 2 Username and 3 Update parameters to b Members1.aspx...
CVE-2007-0302
CVE-2007-0302 affects InstantASP 4.1.0 with multiple cross-site scripting (XSS) flaws. An attacker can inject arbitrary script/HTML via (1) SessionID to Logon.aspx and (2) Username and (3) Update to Members1.aspx, enabling web-script injection. The NVD CVSS2 base score is 6.8 (MEDIUM) with networ...
CVE-2007-0302
Multiple cross-site scripting XSS vulnerabilities in InstantASP 4.1.0 allow remote attackers to inject arbitrary web script or HTML via the 1 SessionID parameter to a Logon.aspx, and the 2 Username and 3 Update parameters to b Members1.aspx...
InstantASP 4.1 - Members1.aspx Multiple Cross-Site Scripting Vulnerabilities
InstantASP 4.1 - Members1.aspx Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/22052/info InstantForum.NET is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker can...
InstantASP 4.1 - Logon.aspx?sessionid Cross-Site Scripting
InstantASP 4.1 - Logon.aspx?sessionid Cross-Site Scripting source: https://www.securityfocus.com/bid/22052/info InstantForum.NET is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker can exploit these issu...
InstantASP 4.1 - 'Members1.aspx' Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/22052/info InstantForum.NET is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker can exploit these issues to steal cookie-based authentication credentials and...
InstantASP 4.1 - 'Logon.aspx?sessionid' Cross-Site Scripting
source: https://www.securityfocus.com/bid/22052/info InstantForum.NET is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker can exploit these issues to steal cookie-based authentication credentials and...