6665 matches found
Ruubikcms 1.0.3 - head.php Cross-Site Scripting
Ruubikcms 1.0.3 - head.php Cross-Site Scripting source: https://www.securityfocus.com/bid/46794/info RuubikCMS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage this...
Kodak InSite 5.5.2 - '/Pages/login.aspx?Language' Cross-Site Scripting
source: https://www.securityfocus.com/bid/46762/info Kodak InSite is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in t...
phpWebSite 'local' Parameter Cross Site Scripting Vulnerability
phpWebSite is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to...
Pragyan CMS 3.0 Beta - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/46683/info Pragyan CMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in th...
phpWebSite 1.7.1 - local Cross-Site Scripting
phpWebSite 1.7.1 - local Cross-Site Scripting source: https://www.securityfocus.com/bid/46673/info phpWebSite is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...
phpWebSite 1.7.1 - 'local' Cross-Site Scripting
source: https://www.securityfocus.com/bid/46673/info phpWebSite is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...
Support Incident Tracker (SiT!) 3.62 - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/46671/info Support Incident Tracker SiT! is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an...
Support Incident Tracker (SiT!) 3.62 - Multiple Cross-Site Scripting Vulnerabilities
Support Incident Tracker SiT! 3.62 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/46671/info Support Incident Tracker SiT! is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker ma...
WordPress Plugin ComicPress Manager 1.4.9 - lang Cross-Site Scripting
WordPress Plugin ComicPress Manager 1.4.9 - lang Cross-Site Scripting source: https://www.securityfocus.com/bid/46590/info The ComicPress Manager plugin for WordPress is prone to a cross-site-scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may levera...
WordPress ComicPress Manager Plugin 1.4.9 - Cross-Site Scripting
ComicPress Manager plugin's "lang" parameter is prone to a cross-site scripting vulnerability. It fails to properly clean up user-supplied input. An attacker may execute arbitrary script code in the browser of an user in the context of the affected site. In this way the attacker can steal...
WordPress Plugin IGIT Posts Slider Widget 1.0 - 'src' Cross-Site Scripting
source: https://www.securityfocus.com/bid/46589/info The IGIT Posts Slider Widget plugin for WordPress is prone to a cross-site-scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of...
WordPress Plugin IGIT Posts Slider Widget 1.0 - src Cross-Site Scripting
WordPress Plugin IGIT Posts Slider Widget 1.0 - src Cross-Site Scripting source: https://www.securityfocus.com/bid/46589/info The IGIT Posts Slider Widget plugin for WordPress is prone to a cross-site-scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker m...
Drupal Module Cumulus 5.x-1.1/6.x-1.4 - 'tagcloud' Cross-Site Scripting
source: https://www.securityfocus.com/bid/46594/info The Cumulus module for Drupal is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting use...
Course MS Cross Site Scripting, SQL Injection and Local File Include Vulnerabilities
Course Registration Management System is prone to multiple input- validation vulnerabilities, including: 1. Multiple cross-site scripting vulnerabilities 2. An SQL-injection vulnerability 3. A local file-include vulnerability Exploiting these issues could allow an attacker to execute arbitrary...
WordPress Plugin YT-Audio 1.7 - 'v' Cross-Site Scripting
source: https://www.securityfocus.com/bid/46591/info The YT-Audio plugin for WordPress is prone to a cross-site-scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting...
WordPress Plugin GD Star Rating 1.9.7 - 'wpfn' Cross-Site Scripting
source: https://www.securityfocus.com/bid/46480/info The GD Star Rating plugin for WordPress is prone to a cross-site-scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...
Vanilla Forums 2.0.17.x - p Cross-Site Scripting
Vanilla Forums 2.0.17.x - p Cross-Site Scripting source: https://www.securityfocus.com/bid/46486/info Vanilla Forums is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code...
WordPress Plugin GD Star Rating 1.9.7 - wpfn Cross-Site Scripting
WordPress Plugin GD Star Rating 1.9.7 - wpfn Cross-Site Scripting source: https://www.securityfocus.com/bid/46480/info The GD Star Rating plugin for WordPress is prone to a cross-site-scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this...
WordPress GD Star Rating Plugin 1.9.7 - Cross-Site Scripting
This GD Star Rating plugin's "wpfn" parameter is prone to a cross-site scripting vulnerability. It fails to properly clean up user-supplied input. An attacker may execute arbitrary script code in the browser of an user in the context of the affected site. In this way the attacker can steal...
Cross-site Scripting (XSS) Vulnerability in Inline Gallery
High-Tech Bridge SA Security Research Lab has discovered vulnerability in Inline Gallery WordPress plugin which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in Inline Gallery The vulnerability exists due to input sanitation error in the " do...