Cross-site Scripting (XSS)

pimcore/pimcore is vulnerable to Cross-site Scripting XSS. The vulnerability exists in setName of Rule.php due to improper sanitization of input name parameter which allows an attacker to inject and execute arbitrary javascript...

finance.nu.ac.th XSS vulnerability

Vulnerable URL: http://www.finance.nu.ac.th/web2014/..%5Cweb55%5Crule.php Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated Google Pagerank| 3 VIP website...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Horde Groupware Webmail 1.0 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors in 1 imp/search.php and 2 ingo/rule.php. NOTE: this issue has been disputed by the vendor, noting that the search.php...

CVE-2007-1679

Multiple cross-site scripting XSS vulnerabilities in Horde Groupware Webmail 1.0 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors in 1 imp/search.php and 2 ingo/rule.php. NOTE: this issue has been disputed by the vendor, noting that the search.php...

CVE-2007-1679

The CVE-2007-1679 entry concerns multiple XSS vulnerabilities in Horde Groupware Webmail 1.0, specifically in imp/search.php and ingo/rule.php. The issue is that remote authenticated users can inject script/HTML via unspecified vectors; however, the vendor disputes the existence of the search.php...