Monstra CMS 1.2.1 - Multiple HTML Injection Vulnerabilities

Monstra CMS 1.2.1 - Multiple HTML Injection Vulnerabilities Monstra 1.2.1 Multiple HTML Injection Vulnerabilities alert1;' / alert2;' / input type="hidden" name="csrf" value="a7de775dce681ae31b7e89...

Sourcefabric Campsite Articles - HTML Injection

source: https://www.securityfocus.com/bid/41780/info Sourcefabric Campsite is prone to an HTML-injection vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Successful exploits will allow attacker-supplied HTML and script code ...

Power Phlogger 2.2.x - Cross-Site Scripting

Power Phlogger 2.2.x - Cross-Site Scripting source: https://www.securityfocus.com/bid/37150/info Power Phlogger is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. Attackers can exploit this issue to steal cookie-based...

PostNuke 0.6x/0.7x NS-Languages Module - 'language' SQL Injection

source: https://www.securityfocus.com/bid/16752/info PostNuke is prone to multiple input-validation vulnerabilities. These issues are due to the application's failure to properly sanitize user-supplied input. Successful exploitation could allow an attacker to compromise the application, access or...

Apache Tomcat Geronimo 1.0 - Sample Script cal2.jsp?time Cross-Site Scripting

Apache Tomcat Geronimo 1.0 - Sample Script cal2.jsp?time Cross-Site Scripting source: https://www.securityfocus.com/bid/16260/info Apache Geronimo is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. A successful exploit cou...

PHP Web Statistik 1.4 - Content Injection

PHP Web Statistik 1.4 - Content Injection source: https://www.securityfocus.com/bid/15603/info PHP Web Statistik is prone to multiple content injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. The vulnerabilities could allow f...