6 matches found
SchoolCenter 7.5 - Multiple Cross Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/29591/info SchoolCenter is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the...
SchoolCenter Web Tools 11.0.27 Cross Site Scripting
Exploit Title: SchoolCenter Web Tools Version 11.0.27 Cross Site Scripting Date: 11.04.2012 Author: Sony and Flexxpoint Software Link: www.thinqed.com Google Dorks: inurl:/education/components/calendar/ site:edu Web Browser : Mozilla Firefox Site : http://insecurity.ro PoC:...
SchoolCenter 7.5 - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/29591/info SchoolCenter is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user i...
SchoolCenter URL Handling Cross Site Scripting Vulnerability
SchoolCenter URL Handling Cross Site Scripting Vulnerability A vulnerability has been identified in SchoolCenter Software, which could be exploited to conduct cross site scripting attacks. Attackers can run arbitrary code that can be executed by the user's browser in the security context of an...
SchoolCenter 7.5 - Multiple Cross-Site Scripting Vulnerabilities
SchoolCenter 7.5 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/29591/info SchoolCenter is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execu...
schoolcenter-xss.txt
SchoolCenter URL Handling Cross Site Scripting Vulnerability A vulnerability has been identified in SchoolCenter Software, which could be exploited to conduct cross site scripting attacks. Attackers can run arbitrary code that can be executed by the user's browser in the security context of an...