6 matches found
XSS vulnerability in Lantern CMS
Vulnerability ID: HTB22621 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinlanterncms1.html Product: Lantern CMS Vendor: Lantern http://www.lanterncms.com/www/html/7-home-page.asp Vulnerable Version: Current at 18.09.2010 and Probably Prior Versions Vendor Notification: 22 September...
XSS vulnerability in Lantern CMS
Vulnerability ID: HTB22620 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinlanterncms.html Product: Lantern CMS Vendor: Lantern http://www.lanterncms.com/www/html/7-home-page.asp Vulnerable Version: Current at 18.09.2010 and Probably Prior Versions Vendor Notification: 22 September...
Lantern CMS Cross Site Scripting
================================== Vulnerability ID: HTB22621 Reference: http://www.htbridge.ch/advisory/xssvulnerabilityinlanterncms1.html Product: Lantern CMS Vendor: Lantern http://www.lanterncms.com/www/html/7-home-page.asp Vulnerable Version: Current at 18.09.2010 and Probably Prior Versions...
Lantern CMS - 11-login.asp Cross-Site Scripting
Lantern CMS - 11-login.asp Cross-Site Scripting source: https://www.securityfocus.com/bid/43865/info Lantern CMS is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in...
Lantern CMS - '11-login.asp' Cross-Site Scripting
source: https://www.securityfocus.com/bid/43865/info Lantern CMS is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the conte...
Cross-site Scripting (XSS) Vulnerabilities in Lantern CMS
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Lantern CMS which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in Lantern CMS 1.1 The vulnerability exists due to input sanitation error in the "signupemail...