5777 matches found
phpMyAdmin < 2.6.4 Multiple XSS
According to its banner, the version of phpMyAdmin installed on the remote host may suffer from two cross-site scripting vulnerabilities due to its failure to sanitize user input to the 'error' parameter of the 'error.php' script and in 'libraries/auth/cookie.auth.lib.php'. A remote attacker may...
SaveWebPortal 3.4 - Multiple Remote File Inclusions
source: https://www.securityfocus.com/bid/14641/info SaveWebPortal is prone to multiple remote file include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issues to execute arbitrary server-side...
RunCMS 1.1/1.2 Module Newbb_plus/Messages - SQL Injection
source: https://www.securityfocus.com/bid/14631/info RunCMS is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Successful exploitation could result in a compromise of the...
ATutor 1.5.1 - 'login.php?course' Cross-Site Scripting
source: https://www.securityfocus.com/bid/14598/info ATutor is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of an...
W-Agora 4.2 - 'Site' Directory Traversal
source: https://www.securityfocus.com/bid/14597/info W-Agora is prone to a directory traversal vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An unauthorized user can retrieve arbitrary files by supplying directory traversal strings '../...
PHPFreeNews 1.40 - searchresults.php Multiple Cross-Site Scripting Vulnerabilities
PHPFreeNews 1.40 - searchresults.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/14590/info PHPFreeNews is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied...
PHPTB Topic Board 2.0 - 'dev_o.php?absolutepath' Remote File Inclusion
source: https://www.securityfocus.com/bid/14592/info PHPTB is prone to multiple remote file include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issues to execute arbitrary server-side script...
MyBulletinBoard (MyBB) RC4 - action SQL Injection
MyBulletinBoard MyBB RC4 - action SQL Injection source: https://www.securityfocus.com/bid/14553/info MyBulletinBoard is prone to multiple SQL injection vulnerability. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries...
MyBulletinBoard (MyBB) RC4 - 'Username' SQL Injection
source: https://www.securityfocus.com/bid/14553/info MyBulletinBoard is prone to multiple SQL injection vulnerability. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in SQL queries. Successful exploitation could result in a compromise...
ezUpload 2.2 - initialize.php?path Remote File Inclusion
ezUpload 2.2 - initialize.php?path Remote File Inclusion source: https://www.securityfocus.com/bid/14534/info ezUpload is affected by multiple remote file include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may levera...
ezUpload 2.2 - 'form.php?path' Remote File Inclusion
source: https://www.securityfocus.com/bid/14534/info ezUpload is affected by multiple remote file include vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issues to execute arbitrary server-side...
FunkBoard 0.66 - newtopic.php Multiple Cross-Site Scripting Vulnerabilities
FunkBoard 0.66 - newtopic.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/14507/info FunkBoard is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An...
Dvbbs 7.18.2 - boardhelp.asp Multiple Cross-Site Scripting Vulnerabilities
Dvbbs 7.18.2 - boardhelp.asp Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/14498/info DVBBS is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these...
FunkBoard 0.66 - reply.php Multiple Cross-Site Scripting Vulnerabilities
FunkBoard 0.66 - reply.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/14507/info FunkBoard is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An...
FunkBoard 0.66 - profile.php Multiple Cross-Site Scripting Vulnerabilities
FunkBoard 0.66 - profile.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/14507/info FunkBoard is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An...
Dvbbs 7.1/8.2 - 'dispuser.asp?name' Cross-Site Scripting
source: https://www.securityfocus.com/bid/14498/info DVBBS is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary code in the browser of an unsuspecting user in th...
FunkBoard 0.66 - 'profile.php' Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/14507/info FunkBoard is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issues to have arbitrary script code...
FunkBoard 0.66 - 'editpost.php' Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/14507/info FunkBoard is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issues to have arbitrary script code...
FunkBoard 0.66 - 'reply.php' Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/14507/info FunkBoard is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issues to have arbitrary script code...
EMC Navisphere Manager 6.x - Directory Traversal Information Disclosure
EMC Navisphere Manager 6.x - Directory Traversal Information Disclosure source: https://www.securityfocus.com/bid/14487/info EMC Navisphere Manager is affected by directory traversal and information disclosure vulnerabilities. These issues are due to a failure in the application to properly...