45 matches found
SiteBeater News 4.0 Archive.ASP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/15697/info SiteBeater News is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrar...
PHP-Nuke 2.0 AutoHTML Module Local File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/19525/info PHP-Nuke AutoHTML Module is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. A successful exploit may allow an attacker to execute arbitrary local scripts...
MySource 2.14 Span.php PEAR_PATH Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/15133/info MySource is prone to multiple remote and local file include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these...
Web News 1.1 feed.php config[root_ordner] Parameter Remote File Inclusion
No description provided by source. source: http://www.securityfocus.com/bid/25257/info WebNews is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these issues may allow an attacker to compromise the application and th...
PHPAlbum 0.2.2/0.2.3/4.1 Language.PHP File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/17526/info phpAlbum is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to execute arbitrary remote PHP code on an affected compute...
Valve Software Source Engine - Format String Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/36061/info Source Engine is prone to a format-string vulnerability because it fails to properly sanitize user-supplied input before passing it as the format specifier to a formatted-printing function. An attacker may...
agXchange ESM 'ucquerydetails.jsp' Cross Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/38896/info agXchange ESM is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of a...
Proxim Tsunami MP.11 2411 Wireless Access Point 'system.sysName.0' SNMP HTML Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/31666/info The Proxim Tsunami MP.11 2411 Wireless Access Point is prone to an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied input data. Attacker-supplied HTML and script code would r...
Jax PHP Scripts 1.0/1.34/2.14/3.31 logfile.csv User IP Disclosure
No description provided by source. source: http://www.securityfocus.com/bid/14482/info Jax PHP Scripts are affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure in the applications to properly sanitize user-supplied input. An attacker may leverage any of the...
PLS-Bannieres 1.21 Bannieres.PHP Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/20772/info PLS-Bannieres is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to include an arbitrary remote file containing malicio...
Boonex 2.0 Dolphin Index.php Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/21182/info Dolphin is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to have malicious PHP code execute in the context of the...
phpwcms 1.2.5 -DEV random_image.php imgdir Parameter Traversal Arbitrary File Access
No description provided by source. source: http://www.securityfocus.com/bid/15436/info phpWCMS is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to obtain sensitive information tha...
e107 0.7.5 Search.PHP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/18508/info e107 is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script co...
microBlog 2.0 Index.PHP Multiple SQL Injection Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/16270/info microBlog is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Successful exploitatio...
SiteBuilder-FX Top.PHP Remote File Include Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/18756/info SiteBuilder-FX is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit this issue to include an...
Beheer Systeem - pbs.cgi Remote Command Execution
Beheer Systeem - pbs.cgi Remote Command Execution source: https://www.securityfocus.com/bid/66489/info Beheer Systeem is prone to a remote command-execution vulnerability because the application fails to sufficiently sanitize user-supplied input data. An attacker may leverage this issue to execut...
AFCommerce - 'controlheader.php' Remote File Inclusion
source: https://www.securityfocus.com/bid/64541/info AFCommerce is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied input. An attacker can exploit these vulnerabilities to obtain potentially sensitive information or to execute arbitrary...
PHP Web Scripts Text Exchange Pro - 'page' Local File Inclusion
source: https://www.securityfocus.com/bid/55205/info PHP Web Scripts Text Exchange Pro is prone to a local file-include vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker can exploit this vulnerability to view files and execute local scripts in the context of...
iGuard Security Access Control Device Firmware 3.6.7427A - Cross-Site Scripting
iGuard Security Access Control Device Firmware 3.6.7427A - Cross-Site Scripting source: https://www.securityfocus.com/bid/53355/info iGuard Security Access Control is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input in the embedded web server...
Aspgwy Access 1.0 - 'matchword' Cross-Site Scripting
source: https://www.securityfocus.com/bid/49674/info Aspgwy Access is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context...