Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Etano 1.22 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 user, 2 email, 3 email2, 4 f17zip, or 5 agree parameter to join.php; 6 PATHINFO, 7 st, 8 f17city, 9 f17country, 10 f17state, 11 f17zip, 12 f19, 13...

Etano 1.x <= Multiple Cross Site Scripting Vulnerabilities

OVERVIEW Etano 1.x versions are vulnerable to Cross Site Scripting. 2. BACKGROUND The community builder script we provide - Etano - was built entirely based on requests from customers of our previous dating package Dating Site Builder. Almost every feature ever requested was built into Etano to...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Datemill 1.0 allow remote attackers to inject arbitrary web script or HTML via the 1 return parameter to photoview.php, and st parameter to 2 photosearch.php and 3 search.php...

CVE-2009-3360

Datemill 1.0 is affected by multiple XSS vulnerabilities. The issues arise from unsafely reflected input in the return parameter to photo_view.php and the st parameter to photo_search.php and search.php, enabling remote script injection. No explicit remediation or patch details are provided in th...

CVE-2009-3360

Multiple cross-site scripting XSS vulnerabilities in Datemill 1.0 allow remote attackers to inject arbitrary web script or HTML via the 1 return parameter to photoview.php, and st parameter to 2 photosearch.php and 3 search.php...