6665 matches found
Dell OpenManage Server Administrator - Cross-Site Scripting
Dell OpenManage Server Administrator - Cross-Site Scripting source: https://www.securityfocus.com/bid/57212/info Dell OpenManage Server Administrator is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to...
tinybrowser - 'type' Cross-Site Scripting
source: https://www.securityfocus.com/bid/57230/info TinyBrowser is prone to multiple vulnerabilities. An attacker may leverage these issues to obtain potentially sensitive information and to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site...
Microsoft System Center Operations Manager XSS Vulnerabilities (2748552)
This host is missing an important security update according to Microsoft Bulletin MS13-003. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
WordPress Plugin NextGEN Gallery - 'test-head' Cross-Site Scripting
source: https://www.securityfocus.com/bid/57200/info The NextGEN Gallery plugin for WordPress is prone to a cross-site-scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...
SolarWinds Orion IPAM Reflected Cross-site Scripting (CVE-2012-4939)
A reflected cross-site scripting vulnerability exists in SolarWinds Orion IPAM. The vulnerability is due to insufficient sanitization of user-supplied input, which is echoed back to the user. A remote attacker could exploit this vulnerability by enticing an authenticated user to follow a crafted...
Joomla! 'Aclassif' Component Cross Site Scripting Vulnerability
This host is installed with Joomla! Aclassif component and is prone to cross site scripting vulnerability. OpenVAS Vulnerability Test $Id: gbjoomlacomaclassifxssvuln.nasl 6018 2017-04-24 09:02:24Z teissa $ Joomla! 'Aclassif' Component Cross Site Scripting Vulnerability Authors: Rachana Shetty...
Log Analyzer 3.6.0 Cross Site Scripting
Title: ====== Log Analyzer 3.6.0 - Cross Site Scripting Vulnerability Date: ===== 2012-12-20 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=792 Vendor:...
WHM - filtername Cross-Site Scripting
WHM - filtername Cross-Site Scripting source: https://www.securityfocus.com/bid/57061/info WHM is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...
cPanel WebHost Manager (WHM) - '/webmail/x3/mail/clientconf.html?acct' Cross-Site Scripting
source: https://www.securityfocus.com/bid/57060/info cPanel and WHM are prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user i...
Astaro Security Gateway 8.1 - HTML Injection
source: https://www.securityfocus.com/bid/51301/info Astaro Security Gateway is prone to an HTML-injection vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code would run in the context of t...
WHM - 'filtername' Cross-Site Scripting
source: https://www.securityfocus.com/bid/57061/info WHM is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...
cPanel - 'dir' Cross-Site Scripting
source: https://www.securityfocus.com/bid/57064/info cPanel is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...
cPanel - dir Cross-Site Scripting
cPanel - dir Cross-Site Scripting source: https://www.securityfocus.com/bid/57064/info cPanel is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...
Hero Framework - userslogin Username Cross-Site Scripting
Hero Framework - userslogin Username Cross-Site Scripting source: https://www.securityfocus.com/bid/57035/info Hero is prone to multiple cross-site scripting vulnerabilities and a cross-site request-forgery vulnerability. An attacker can exploit these vulnerabilities to execute arbitrary script...
Hero Framework - search?q Cross-Site Scripting
Hero Framework - search?q Cross-Site Scripting source: https://www.securityfocus.com/bid/57035/info Hero is prone to multiple cross-site scripting vulnerabilities and a cross-site request-forgery vulnerability. An attacker can exploit these vulnerabilities to execute arbitrary script code in the...
Log Analyzer 3.6.0 - Cross Site Scripting Vulnerability
Document Title: =============== Log Analyzer 3.6.0 - Cross Site Scripting Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=792 Vendor:...
OracleBI Discoverer <= 10.1.2.48.18 'node' XSS Vulnerability
OracleBI Discoverer is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
WordPress Rokbox Plugin Multiple Vulnerabilities
WordPress Rokbox Plugin is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wordpress:wordpress...
PHP Address Book - 'group' Cross-Site Scripting
source: https://www.securityfocus.com/bid/56937/info PHP Address Book is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...
SonicWALL CDP 5040 v6.x - Multiple Web Vulnerabilities
Title: ====== SonicWALL CDP 5040 v6.x - Multiple Web Vulnerabilities Date: ===== 2012-11-19 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=549 VL-ID: ===== 549 Common Vulnerability Scoring System: ==================================== 3.5 Introduction: =============...