MODx 2.0.2-pl - managerindex.php?modahsh Cross-Site Scripting

MODx 2.0.2-pl - managerindex.php?modahsh Cross-Site Scripting source: https://www.securityfocus.com/bid/43577/info MODx is prone to a local file-include vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit the...

Getsimple CMS 2.01 - 'changedata.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/43593/info GetSimple CMS is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

phpMyFAQ 'index.php' Cross Site Scripting Vulnerability

phpMyFAQ is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to stea...

Getsimple CMS 2.01 - changedata.php Cross-Site Scripting

Getsimple CMS 2.01 - changedata.php Cross-Site Scripting source: https://www.securityfocus.com/bid/43593/info GetSimple CMS is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary scri...

Pluck CMS 4.6.3 - cont1 HTML Injection

Pluck CMS 4.6.3 - cont1 HTML Injection source: https://www.securityfocus.com/bid/43597/info Pluck is prone to an HTML-injection vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Successful exploits will allow attacker-supplie...

Micro CMS v1.0 b1 Persistent XSS Vulnerability

Exploit for php platform in category web applications ============================================== Micro CMS v1.0 b1 Persistent XSS Vulnerability ============================================== Class: Persistent Cross-Site Scripting Severity: High Overview: --------- Micro CMS is prone to...

Santafox XSS and CSRF Vulnerabilities

Santafox is prone to cross-site scripting XSS and cross-site request forgery CSRF vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

PHPMyFAQ 2.6.x - index.php Cross-Site Scripting

PHPMyFAQ 2.6.x - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/43560/info phpMyFAQ is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...

PHPMyFAQ 2.6.x - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/43560/info phpMyFAQ is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of t...

[ISecAuditors Security Advisories] Reflected XSS in Atmail WebMail < v6.2.0

============================================= INTERNET SECURITY AUDITORS ALERT 2010-009 - Original release date: August 30th, 2010 - Last revised: September 21st, 2010 - Discovered by: Vicente Aguilera Diaz - Severity: 4.3/10 CVSSv2 Base Scored ============================================= I...

OpenText LiveLink 9.7.1 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/43420/info OpenText LiveLink is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting...

Cross-site Scripting (XSS) Vulnerabilities in Expression CMS

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Expression CMS which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in Expression CMS 1.1 The vulnerability exists due to input sanitation error in the...

Nagios XI 'users.php' Multiple Cross-Site Scripting Vulnerabilities

Nagios XI is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the...

Netautor Professional 5.5 - 'login2.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/43290/info Netautor Professional is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary HTML and script code in the browser of an unsuspecting...

ATutor 1.0 - Multiple cid Cross-Site Scripting Vulnerabilities

ATutor 1.0 - Multiple cid Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/43241/info ATutor is prone to multiple cross-site scripting vulnerabilities. An attacker may leverage these issues to execute arbitrary HTML and script code in the browser of an unsuspecting...

Wiccle Web Builder 'post_text' XSS Vulnerability

Wiccle Web Builder is prone to a cross-site scripting XSS vulnerability. Copyright C 2010 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is fre...

SmarterTools SmarterTrack XSS Vulnerabilities

SmarterTools SmarterTrack is prone to cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

AChecker 1.0 - 'URI' Cross-Site Scripting

source: https://www.securityfocus.com/bid/43240/info AChecker is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

ATutor 1.0 - Multiple 'cid' Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/43241/info ATutor is prone to multiple cross-site scripting vulnerabilities. An attacker may leverage these issues to execute arbitrary HTML and script code in the browser of an unsuspecting user in the context of the affected site. This may allow the...

SmarterTools SmarterTrack Cross-Site Scripting Vulnerabilities

This host is running SmarterTools SmarterTrack and is prone Cross-site scripting vulnerabilities. OpenVAS Vulnerability Test $Id: gbsmartertrackmultxssvuln.nasl 5347 2017-02-19 09:15:55Z cfi $ SmarterTools SmarterTrack Cross-Site Scripting Vulnerabilities Authors: Madhuri D Copyright: Copyright c...