930 matches found
CVE-2007-2423
Cross-site scripting XSS vulnerability in index.php in MoinMoin 1.5.7 allows remote attackers to inject arbitrary web script or HTML via the do parameter in an AttachFile action, a different vulnerability than CVE-2007-0857. NOTE: the provenance of this information is unknown; the details are...
Cross site scripting
Cross-site scripting XSS vulnerability in the AJAX features in index.php in MediaWiki 1.9.x before 1.9.0rc2, and 1.8.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the rs parameter. NOTE: this issue might be a duplicate of CVE-2007-0177...
WordPress < 2.0.6 HTML Parameter Injection
Binary data 3873.prm...
CVE-2006-6534
Multiple cross-site scripting XSS vulnerabilities in osCommerce 3.0a3 allow remote attackers to inject arbitrary web script or HTML via the 1 set parameter to admin/modules.php, the 2 selectedbox parameter to definitiva/admin/customers.php, the 3 lID parameter to admin/languagesdefinitions.php, o...
CVE-2006-3426
Directory traversal vulnerability in a PatchLink Update Server PLUS before 6.1 P1 and 6.2.x before 6.2 SR1 P1 and b Novell ZENworks 6.2 SR1 and earlier allows remote attackers to overwrite arbitrary files and directories via a .. dot dot sequence in the 1 action, 2 agentid, or 3 index parameters ...
CVE-2006-0534
Multiple cross-site scripting XSS vulnerabilities in default.asp in CyberShop Ultimate E-commerce allow remote attackers to inject arbitrary web script or HTML via the 1 ortak or 2 kat parameter...
CVE-2006-0534
Multiple cross-site scripting XSS vulnerabilities in default.asp in CyberShop Ultimate E-commerce allow remote attackers to inject arbitrary web script or HTML via the 1 ortak or 2 kat parameter...
CVE-2005-4675
Cross-site scripting XSS vulnerability in list.php in Complete PHP Counter allows remote attackers to inject arbitrary web script or HTML via the c parameter...
CVE-2005-2396
Cross-site scripting XSS vulnerability in MediaWiki 1.4.6 and earlier allows remote attackers to inject arbitrary web script or HTML via a parameter to the page move template...
CVE-2005-2004
Multiple cross-site scripting vulnerabilities in Ultimate PHP Board UPB 1.9.6 GOLD and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 ref parameter to login.php, 2 id or 3 page parameter to viewtopic.php, id parameter to 4 profile.php, 5 newpost.php, 6 email.php, ...