14 matches found
EUVD-2019-13498
Malware in sbrugna...
CVE-2025-59768
Cross-site scripting XSS vulnerability reflected in AndSoft's e-TMS v25.03. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending them a malicious URL. The relationship between parameter and assigned identifier is 'l, demo, demo2, TNTLOGIN, UO and...
SAP NetWeaver AS ABAP Multiple Vulnerabilities
The remote SAP NetWeaver ABAP server may be affected by multiple vulnerabilies. - SAP NetWeaver Application Server ABAP and ABAP Platform allows an unauthenticated attacker to create a malicious link which they can make publicly available. When an authenticated victim clicks on this malicious lin...
Escapade 0.2.1 Beta Scripting Engine - PAGE Cross-Site Scripting
Escapade 0.2.1 Beta Scripting Engine - PAGE Cross-Site Scripting source: https://www.securityfocus.com/bid/8573/info A cross-site scripting vulnerability has been reported for Escapade. The vulnerability exists due to insufficient sanitization of some user-supplied values. An attacker could explo...
Softshoe - Parse-file Cross-Site Scripting
Softshoe - Parse-file Cross-Site Scripting source: https://www.securityfocus.com/bid/8294/info Softshoe is allegedly prone to cross-site scripting attacks. An attacker can exploit this issue by creating a malicious link that contains hostile HTML or script code to a site that is hosting the...
Infinity CGI Exploit Scanner 3.11 - Cross-Site Scripting
Infinity CGI Exploit Scanner 3.11 - Cross-Site Scripting source: https://www.securityfocus.com/bid/7910/info Infinity CGI Exploit Scanner is reported to be prone to a cross-site scripting vulnerability. An attacker could exploit this issue to creating a malicious link to a site hosting the softwa...
Bandmin 1.4 - Cross-Site Scripting
Bandmin 1.4 - Cross-Site Scripting source: https://www.securityfocus.com/bid/7729/info It has been reported that a cross-site scripting vulnerability exists in Bandmin. Because of this, an attacker may be able to execute script code or HTML in the context of the site hosting Bandmin by enticing a...
Michael Schatz Books 0.540.6 PostNuke Module - Cross-Site Scripting
Michael Schatz Books 0.540.6 PostNuke Module - Cross-Site Scripting source: https://www.securityfocus.com/bid/5882/info Books is a module written for PostNuke. Reportedly, Books is prone to cross site scripting attacks. An attacker may exploit this vulnerability by enticing a victim user to follo...
PostNuke 0.72 - 'modules.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/5809/info A cross site scripting vulnerability has been reported for PostNuke. An attacker may exploit this vulnerability by enticing a victim user to follow a malicious link. Attacker-supplied HTML and script code may be executed on a web client in the...
BlackBoard 5.0 - Cross-Site Scripting
source: https://www.securityfocus.com/bid/5137/info Blackboard is reportedly prone to cross-site scripting attacks. This issue was reported to be in the login.pl script. The vulnerable script fails to sanitize HTML tags from CGI parameters. Attackers may exploit this condition via a malicious lin...
Teekai Tracking Online 1.0 - Cross-Site Scripting
Teekai Tracking Online 1.0 - Cross-Site Scripting source: https://www.securityfocus.com/bid/4924/info Teekai's Tracking Online does not adequately filter HTML tags from certain URL parameters, making it prone to cross-site scripting attacks. Attackers may exploit this by creating a malicious link...
ViewCVS 0.9.2 - Cross-Site Scripting
source: https://www.securityfocus.com/bid/4818/info ViewCVS does not filter HTML tags from certain URL parameters, making it prone to cross-site scripting attacks. An attacker may exploit this by constructing a malicious link with script code to a site running ViewCVS and sending it to a legitima...
Burning Board 1.1.1 - 'URL' Manipulation
source: https://www.securityfocus.com/bid/4512/info Burning Board is web forum software. It is written in PHP, back-ended by MySQL, and will run on most Unix and Linux variants as well as Microsoft Windows. An attacker may allegedly create a malicious link which is capable of causing actions to b...
Powie PForum 1.1x - Username Cross-Site Scripting
Powie PForum 1.1x - Username Cross-Site Scripting source: https://www.securityfocus.com/bid/4165/info Powie PForum is web forum software, written in PHP and back-ended by MySQL. It will run on most Unix and Linux variants, as well as Microsoft Windows operating systems. PForum is prone to...