EUVD-2006-3140

Malware in sbrugna...

CVE-2006-3143

Cross-site scripting XSS vulnerability in icuelogin.asp in Maximus SchoolMAX 4.0.1 and earlier iCue and iParent applications allows remote attackers to inject arbitrary web script or HTML via the errormsg parameter...

CVE-2006-3143

The CVE CVE-2006-3143 affects Maximus SchoolMAX 4.0.1 and earlier iCue/iParent applications, where the icue_login.asp page is vulnerable to reflected cross-site scripting via the error_msg parameter. The underlying issue is improper handling of user-supplied input, allowing an attacker to inject ...

CVE-2006-3143

Cross-site scripting XSS vulnerability in icuelogin.asp in Maximus SchoolMAX 4.0.1 and earlier iCue and iParent applications allows remote attackers to inject arbitrary web script or HTML via the errormsg parameter...

Maximus SchoolMAX 4.0.1 - Error_msg Cross-Site Scripting

Maximus SchoolMAX 4.0.1 - Errormsg Cross-Site Scripting source: https://www.securityfocus.com/bid/18563/info Maximus SchoolMAX is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input before displaying it to users of the application. An attacker may levera...

XSS Vulnerability in Maximus SchoolMAX

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 The InfoGuard Group Vulnerability Summary 2006-04 Application: Maximus' iCue and iParent http://www.schoolmax.net Versions: All Bugs: Cross-Site Scripting XSS Date: 18 June 2006 Author: Charles H. E-mail: [email protected] Website:...

Maximus SchoolMAX 4.0.1 - 'Error_msg' Cross-Site Scripting

source: https://www.securityfocus.com/bid/18563/info Maximus SchoolMAX is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input before displaying it to users of the application. An attacker may leverage this issue to have arbitrary script code execute in t...