AeroMail Cross Site Request Forgery, HTML Injection and Cross Site Scripting Vulnerabilities

AeroMail is prone to multiple remote vulnerabilities, including: 1. A cross-site scripting vulnerability. 2. Multiple HTML-injection vulnerabilities. 3. Multiple cross-site request forgery vulnerabilities. The attacker can exploit the cross-site scripting issue to execute arbitrary script code in...

8Pixel Blog CMS v4.2 - Cross Site Scripting Vulnerability

Document Title: =============== 8Pixel Blog CMS v4.2 - Cross Site Scripting Vulnerability Release Date: ============= 2011-08-14 Vulnerability Laboratory ID VL-ID: ==================================== 1 Product & Service Introduction: =============================== 8pixel.net developes...

Community Server 'TagSelector.aspx' Cross Site Scripting Vulnerability

Community Server is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the...

Community Server <= 2008 XSS Vulnerability - Active Check

Community Server is prone to a cross-site scripting XSS vulnerability because it fails to sufficiently sanitize user-supplied data. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

WordPress Plugin eShop 6.2.8 - Multiple Cross-Site Scripting Vulnerabilities

WordPress Plugin eShop 6.2.8 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/49117/info eShop plugin for WordPress is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverag...

OpenEMR Multiple Cross Site Scripting Vulnerabilities

OpenEMR is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the...

Microsoft Internet Explorer Shift JIS Character Encoding Information Disclosure Vulnerability

Description Microsoft Internet Explorer is prone to a cross-domain information-disclosure vulnerability. An attacker can exploit this issue to access local files or content from a browser window in another domain or security zone. This may allow the attacker to obtain sensitive information that m...

Microsoft Visual Studio Report Viewer Control Multiple Cross Site Scripting Vulnerabilities

Description Microsoft Visual Studio is prone to multiple cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site...

Microsoft Visual Studio Report Viewer 2005 Control - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/49033/info Microsoft Visual Studio is prone to multiple cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting...

AContent 1.1 Multiple Cross-Site Scripting Vulnerabilities

Summary AContent is an open source learning content authoring system and respository used to create interoperable, accessible, adaptive Web-based learning content. It can be used along with learning management systems to develop, share, and archive learning materials. Description AContent suffers...

ATutor AContent 1.1 / 1.3 Cross Site Scripting

AContent 1.1 Multiple Cross-Site Scripting Vulnerabilities Vendor: ATutor Inclusive Design Institute Product web page: http://www.atutor.ca Affected version: 1.1 build r296 Summary: AContent is an open source learning content authoring system and respository used to create interoperable,...

Ecava IntegraXor Multiple Cross-Site Scripting Vulnerabilities - Windows

Ecava IntegraXor is prone to cross site scripting vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

WordPress Plugin WP E-Commerce 3.8.6 - &#039;cart_messages[]&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/49009/info The WP e-Commerce plug-in for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

Community Server 2007/2008 - &#039;TagSelector.aspx&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/49022/info Community Server is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

Community Server 20072008 - TagSelector.aspx Cross-Site Scripting

Community Server 20072008 - TagSelector.aspx Cross-Site Scripting source: https://www.securityfocus.com/bid/49022/info Community Server is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute...

BESNI OKUL PORTAL - sayfa.asp Cross-Site Scripting

BESNI OKUL PORTAL - sayfa.asp Cross-Site Scripting source: https://www.securityfocus.com/bid/48969/info BESNI OKUL PORTAL is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script...

mt LinkDatenbank - b Cross-Site Scripting

mt LinkDatenbank - b Cross-Site Scripting source: https://www.securityfocus.com/bid/48967/info mt LinkDatenbank is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in th...

Multiple XSS in HESK

Vulnerability ID: HTB23030 Reference: http://www.htbridge.ch/advisory/multiplexssinhesk.html Product: HESK Vendor: Klemen Stirn http://www.hesk.com/ Vulnerable Version: 2.2 and probably prior Tested on: 2.2 Vendor Notification: 06 July 2011 Vulnerability Type: XSS Cross Site Scripting Risk level:...

BESNI OKUL PORTAL - &#039;sayfa.asp&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/48969/info BESNI OKUL PORTAL is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

mt LinkDatenbank - &#039;b&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/48967/info mt LinkDatenbank is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...