28 matches found
BIT-LIFERAY-2023-33941
Multiple cross-site scripting XSS vulnerabilities in the Plugin for OAuth 2.0 module's OAuth2ProviderApplicationRedirect class in Liferay Portal 7.4.3.41 through 7.4.3.52, and Liferay DXP 7.4 update 41 through 52 allow remote attackers to inject arbitrary web script or HTML via the 1 code, or 2...
GHSA-5JQ3-8437-X35P Multiple cross-site scripting (XSS) vulnerabilities in Roundup
Multiple cross-site scripting XSS vulnerabilities in Roundup before 1.4.20 allow remote attackers to inject arbitrary web script or HTML via the 1 @okmessage or 2 @errormessage parameter to issue...
PEGA Platform <= 7.2 ML0 - Missing Access Control / Cross-Site Scripting Vulnerabilities
Exploit for multiple platform in category web applications Summary ======= 1. Missing access control CVE-2017-11356 2. Multiple cross-site scripting CVE-2017-11355 Vendor ====== "Pegasystems Inc. is the leader in software for customer engagement and operational excellence. Pega’s adaptive,...
phpMyAdmin 4.0.x < 4.0.10.6 / 4.1.x < 4.1.14.7 / 4.2.x < 4.2.12 Multiple Vulnerabilities (PMASA-2014-13 through 16)
Binary data 8583.prm...
PHD Help Desk 1.43 atributo_list.php Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/37029/info PHD Help Desk is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied data. Attacker-supplied HTML or JavaScript code could run in the...
PHPJabbers Pet Listing Script 1.0 - Multiple Vulnerabilities
No description provided by source. Pet Listing Script V1.0 - Multiple Vulnerabilities ==================================================================== .:. Author : HackXBack .:. Contact : [email protected] .:. Home : http://www.iphobos.com/blog/ .:. Script :...
QwikiWiki 1.4/1.5 login.php Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/17064/info QwikiWiki is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have...
Invision Power Services Invision Board 2.1 admin.php Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/15344/info Invision Power Board is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issu...
XMB Forum 1.8 forumdisplay.php Multiple Parameter SQL Injection
No description provided by source. source: http://www.securityfocus.com/bid/9726/info XMB Forum has been reported prone to multiple cross-site scripting, HTML injection and SQL injection vulnerabilities. The issues present themselves due to insufficient sanitization of remote user supplied data. ...
PHPJabbers Vacation Packages Listing 2.0 - Multiple Vulnerabilities
No description provided by source. Vacation Packages Listing V2.0 - Multiple Vulnerabilities ==================================================================== .:. Author : HackXBack .:. Contact : [email protected] .:. Home : http://www.iphobos.com/blog/ .:. Script :...
Cezanne 6.5.1/7 - CFLookUP.asp Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/28772/info Cezanne Software is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. Authenticated attackers may leverage these issues to execute arbitrary scrip...
SeaMonkey Multiple XSS Vulnerabilities (Feb 2014) - Windows
SeaMonkey is prone to multiple cross site scripting vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Vacation Rental Script 3.0 CSRF / XSS / File Disclosure
Vacation Rental Script V3.0 - Multiple Vulnerabilties ==================================================================== .:. Author : HackXBack .:. Contact : [email protected] .:. Home : http://www.iphobos.com/blog/ .:. Script : http://www.phpjabbers.com/vacation-rental-script/ .:. Tested On Demo :...
PHPJabbers Job Listing Script - Multiple Vulnerabilities
PHPJabbers Job Listing Script - Multiple Vulnerabilities Job Listing Script - Multiple Vulnerabilties ==================================================================== .:. Author : HackXBack .:. Contact : [email protected] .:. Home : http://www.iphobos.com/blog/ .:. Script :...
PHPJabbers Job Listing Script - Multiple Vulnerabilities
Job Listing Script - Multiple Vulnerabilties ==================================================================== .:. Author : HackXBack .:. Contact : [email protected] .:. Home : http://www.iphobos.com/blog/ .:. Script : http://www.phpjabbers.com/preview/job-listing-script/ === Exploit === 1 Cross Sit...
Event Booking Calendar 2.0 CSRF / XSS / SQL Injection
Event Booking Calendar V2.0 - Multiple Vulnerabilties ==================================================================== .:. Author : HackXBack .:. Contact : [email protected] .:. Home : http://www.iphobos.com/blog/ .:. Script : www.phpjabbers.com/event-booking-calendar/ .:. Tested On Demo :...
PT-2013-70: Multiple Cross-Site Scripting (XSS) in Serv-U File Server
The specialists of the Positive Research center have detected Multiple Cross-Site Scripting vulnerabilities in Serv-U File Server. The application does not perform sufficient validation of parameters, which are sent by client and used in HTM scripts. This vulnerability allows an attacker to execu...
MantisBT < 1.2.3 Multiple XSS Vulnerabilities
MantisBT is prone to multiple cross-site scripting XSS vulnerabilities. Copyright C 2010 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...
moziloCMS Multiple Cross Site Scripting Vulnerabilities
The host is running moziloCMS and is prone to Multiple Cross Site Scripting Vulnerabilities OpenVAS Vulnerability Test $Id: gbmoziloCMSmultxssvuln.nasl 4869 2016-12-29 11:01:45Z teissa $ moziloCMS Multiple Cross Site Scripting Vulnerabilities Authors: Antu Sanadi Copyright: Copyright c 2009...
IBM Rational RequisitePro 7.10 and ReqWebHelp Multiple CSS
Exploit for jsp platform in category web applications =========================================================================== IBM Rational RequisitePro 7.10 and ReqWebHelp Multiple Cross Site Scripting =========================================================================== Attackers can...