WordPress Theme Purity - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/55605/info Purity theme for WordPress is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an...

Cm3 CMS - search.asp Multiple Cross-Site Scripting Vulnerabilities

Cm3 CMS - search.asp Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/55395/info Cm3 CMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

Extcalendar 2.0 - Multiple SQL Injections / HTML Injection Vulnerabilities

source: https://www.securityfocus.com/bid/55424/info ExtCalendar is prone to multiple SQL-injection vulnerabilities and an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting these issues may allow an attacker to compromise the application, acces...

Kayako Fusion - 'download.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/55417/info Kayako Fusion is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context...

Flogr - 'index.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/55418/info Flogr is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

Flogr - index.php Multiple Cross-Site Scripting Vulnerabilities

Flogr - index.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/55418/info Flogr is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrar...

Extcalendar 2.0 - Multiple SQL Injections HTML Injection Vulnerabilities

Extcalendar 2.0 - Multiple SQL Injections HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/55424/info ExtCalendar is prone to multiple SQL-injection vulnerabilities and an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied input. Exploitin...

PHPFox 3.0.1 - 'ajax.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/55405/info phpFox is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

DataWatch Monarch BI v5.1 admin section reflected cross-site scripting

Class: Input Validation Error Remote: Yes Local: No Published: 26/06/2012 Credit: Raymond Rizk of Dionach Limited [email protected] Vulnerable: DataWatch Monarch BI v5.1 DataWatch's Monarch BI admin section is prone to a reflected cross-site scripting vulnerability because it fails to sufficientl...

Sitemax Maestro - SQL Injection / Local File Inclusion

source: https://www.securityfocus.com/bid/55386/info Sitemax Maestro is prone to SQL-injection and local file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker can exploit these vulnerabilities to compromise the application, access or modify data,...

DataWatch Monarch Business Intelligence (BI) v5.1 admin section stored cross-site scripting

DataWatch Monarch BI v5.1 admin section stored cross-site scripting Class: Input Validation Error Remote: Yes Local: No Published: 26/06/2012 Credit: Raymond Rizk of Dionach Limited [email protected] Vulnerable: DataWatch Monarch BI v5.1 DataWatch's Monarch BI admin section is prone to a stored...

TomatoCart - example_form.ajax.php Cross-Site Scripting

TomatoCart - exampleform.ajax.php Cross-Site Scripting source: https://www.securityfocus.com/bid/55295/info TomatoCart is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code i...

XWiki <= 4.2-milestone-2 Multiple Stored XSS Vulnerabilities - Active Check

XWiki is prone to multiple stored cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

WordPress Plugin Download Monitor - dlsearch Cross-Site Scripting

WordPress Plugin Download Monitor - dlsearch Cross-Site Scripting source: https://www.securityfocus.com/bid/55487/info The Download Monitor plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage thi...

Crowbar - file Multiple Cross-Site Scripting Vulnerabilities

Crowbar - file Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/55315/info Crowbar is prone to multiple cross-site scripting vulnerabilities because it fails to sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script...

TomatoCart - &#039;example_form.ajax.php&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/55295/info TomatoCart is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...

WordPress Plugin Download Monitor - &#039;dlsearch&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/55487/info The Download Monitor plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

Ad Manager Pro Multiple SQL Injection And XSS Vulnerabilities

Ad Manager Pro is prone to multiple sql injection and cross site scripting vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

JW Player - logo.link Cross-Site Scripting

JW Player - logo.link Cross-Site Scripting source: https://www.securityfocus.com/bid/55199/info JW Player is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser...

Phorum 5.2.18 - Multiple Cross-Site Scripting Vulnerabilities

Phorum 5.2.18 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/55275/info Phorum is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary...