Total Shop UK eCommerce CodeIgniter - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/54985/info Total Shop UK eCommerce CodeIgniter is prone to multiple unspecified cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the...

mIRC - projects.php Cross-Site Scripting

mIRC - projects.php Cross-Site Scripting source: https://www.securityfocus.com/bid/54989/info mIRC is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

mIRC - 'projects.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/54989/info mIRC is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...

phpList 2.10.18 - 'unconfirmed' Cross-Site Scripting

source: https://www.securityfocus.com/bid/54887/info PHPList is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of th...

ConcourseSuite - Multiple Cross-Site Scripting / Cross-Site Request Forgery Vulnerabilities

source: https://www.securityfocus.com/bid/54881/info The ConcourseSuite is prone to a cross-site request-forgery vulnerability and multiple cross-site scripting vulnerabilities. An attacker can exploit these vulnerabilities to execute arbitrary script code in the browser of an unsuspecting user i...

PBBoard - 'member_id' Validation Password Manipulation

source: https://www.securityfocus.com/bid/54916/info PBBoard is prone to multiple security vulnerabilities including: 1. Multiple SQL-injection vulnerabilities 2. A security-bypass vulnerability 3. An arbitrary file upload vulnerability Exploiting these issues could allow an attacker to carry out...

PBBoard - member_id Validation Password Manipulation

PBBoard - memberid Validation Password Manipulation source: https://www.securityfocus.com/bid/54916/info PBBoard is prone to multiple security vulnerabilities including: 1. Multiple SQL-injection vulnerabilities 2. A security-bypass vulnerability 3. An arbitrary file upload vulnerability Exploiti...

PBBoard - admin.php?xml_name Arbitrary PHP Code Execution

PBBoard - admin.php?xmlname Arbitrary PHP Code Execution source: https://www.securityfocus.com/bid/54916/info PBBoard is prone to multiple security vulnerabilities including: 1. Multiple SQL-injection vulnerabilities 2. A security-bypass vulnerability 3. An arbitrary file upload vulnerability...

Opera Multiple Vulnerabilities (Aug 2012) - Windows

Opera is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

PBBoard - 'admin.php?xml_name' Arbitrary PHP Code Execution

source: https://www.securityfocus.com/bid/54916/info PBBoard is prone to multiple security vulnerabilities including: 1. Multiple SQL-injection vulnerabilities 2. A security-bypass vulnerability 3. An arbitrary file upload vulnerability Exploiting these issues could allow an attacker to carry out...

Opera Multiple Vulnerabilities - August12 (Mac OS X)

This host is installed with Opera and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gboperamultvulnaug12macosx.nasl 5912 2017-04-10 09:01:51Z teissa $ Opera Multiple Vulnerabilities - August12 Mac OS X Authors: Rachana Shetty Copyright: Copyright c 2012 Greenbone Networks...

WordPress SimpleMail Plugin 1.0.6 - Stored XSS

WordPress SimpleMail plugin is prone to a stored XSS vulnerability. It fails to properly clean up user-supplied input. An attacker may execute arbitrary script code in the browser of an user in the context of the affected site. In this way the attacker can steal cookie-based authentication...

Opera Multiple Vulnerabilities - August12 (Windows)

This host is installed with Opera and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gboperamultvulnaug12win.nasl 5963 2017-04-18 09:02:14Z teissa $ Opera Multiple Vulnerabilities - August12 Windows Authors: Rachana Shetty Copyright: Copyright c 2012 Greenbone Networks GmbH...

ntop 'arbfile' Parameter XSS Vulnerability

ntop is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

PolarisCMS Cross Site Scripting

PolarisCMS blog.aspx Remote URI Based Cross-Site Scripting Vulnerability Vendor: PolarisCMS Product web page: http://www.polariscms.com Affected version: 2012 Summary: PolarisCMS is a White Label CMS content management System providing more features, functions and flexibility to global web...

Open Constructor - usersusers.php?keyword Cross-Site Scripting

Open Constructor - usersusers.php?keyword Cross-Site Scripting source: https://www.securityfocus.com/bid/54822/info Open Constructor is prone to multiple input-validation vulnerabilities because it fails to properly sanitize user-supplied input. Exploiting these vulnerabilities could allow an...

Open Constructor - '/data/file/edit.php?result' Cross-Site Scripting

source: https://www.securityfocus.com/bid/54822/info Open Constructor is prone to multiple input-validation vulnerabilities because it fails to properly sanitize user-supplied input. Exploiting these vulnerabilities could allow an attacker to execute arbitrary script code, steal cookie-based...

Open Constructor - confirm.php?q Cross-Site Scripting

Open Constructor - confirm.php?q Cross-Site Scripting source: https://www.securityfocus.com/bid/54822/info Open Constructor is prone to multiple input-validation vulnerabilities because it fails to properly sanitize user-supplied input. Exploiting these vulnerabilities could allow an attacker to...

Open Constructor - datafileedit.php?result Cross-Site Scripting

Open Constructor - datafileedit.php?result Cross-Site Scripting source: https://www.securityfocus.com/bid/54822/info Open Constructor is prone to multiple input-validation vulnerabilities because it fails to properly sanitize user-supplied input. Exploiting these vulnerabilities could allow an...

Elefant CMS - id Cross-Site Scripting

Elefant CMS - id Cross-Site Scripting source: https://www.securityfocus.com/bid/54805/info Elefant CMS is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...