Microsoft Internet Explorer Table Element Use After Free Remote Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability. Successful exploits will allow an attacker to run arbitrary code in the context of the user running the application. Failed attacks will cause denial-of-service conditions. Technologies Affected Avaya Aura...

Nasim Guest Book - 'page' Cross-Site Scripting

source: https://www.securityfocus.com/bid/42503/info Nasim Guest Book is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

Sun Java System Portal Server Multiple Cross Site Scripting Vulnerabilities

This host is running Sun Java System Portal Server and is prone to multiple unspecified Cross site scripting vulnerabilities. OpenVAS Vulnerability Test $Id: gbsunjavasystemportalserverxssvuln.nasl 5373 2017-02-20 16:27:48Z teissa $ Sun Java System Portal Server Multiple Cross Site Scripting...

Prado Portal 1.2 - 'page' Cross-Site Scripting

source: https://www.securityfocus.com/bid/42276/info Prado Portal is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context ...

Hulihan Applications Amethyst 0.1.5 - Multiple HTML Injection Vulnerabilities

Hulihan Applications Amethyst 0.1.5 - Multiple HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/42253/info Hulihan Applications Amethyst is prone to multiple HTML-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using ...

Hulihan Applications BXR 0.6.8 - SQL Injection HTML Injection

Hulihan Applications BXR 0.6.8 - SQL Injection HTML Injection source: https://www.securityfocus.com/bid/42247/info Hulihan Applications BXR is prone to an SQL-injection vulnerability and multiple HTML-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input. An...

Muraus Open Blog - Multiple HTML Injection Vulnerabilities

source: https://www.securityfocus.com/bid/42255/info Tomaž Muraus Open Blog is prone to multiple HTML-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Successful exploits will allow attacker-supplie...

Muraus Open Blog - Multiple HTML Injection Vulnerabilities

Muraus Open Blog - Multiple HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/42255/info Tomaž Muraus Open Blog is prone to multiple HTML-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in dynamically generat...

Hulihan Applications BXR 0.6.8 - SQL Injection / HTML Injection

source: https://www.securityfocus.com/bid/42247/info Hulihan Applications BXR is prone to an SQL-injection vulnerability and multiple HTML-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input. An attacker may leverage these issues to compromise the application,...

Hulihan Applications Amethyst 0.1.5 - Multiple HTML Injection Vulnerabilities

source: https://www.securityfocus.com/bid/42253/info Hulihan Applications Amethyst is prone to multiple HTML-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code...

Cross-site Scripting (XSS) Vulnerability in MAXdev

High-Tech Bridge SA Security Research Lab has discovered vulnerability in MAXdev which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in MAXdev The vulnerability exists due to input sanitation error in the "sid" parameter in modules.php. A...

DT Centrepiece 4.5 - Cross-Site Scripting Security Bypass

DT Centrepiece 4.5 - Cross-Site Scripting Security Bypass source: https://www.securityfocus.com/bid/42243/info DT Centrepiece is prone to multiple cross-site scripting vulnerabilities and multiple security-bypass vulnerabilities. An attacker may leverage the cross-site scripting issues to execute...

nuBuilder <= 10.04.20 RFI Vulnerability

nuBuilder is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

osCSS 'page' Parameter Cross Site Scripting Vulnerability

The host is running osCSS and is prone to cross site scripting vulnerability. OpenVAS Vulnerability Test $Id: secpodoscssxssvuln.nasl 5401 2017-02-23 09:46:07Z teissa $ osCSS 'page' Parameter Cross Site Scripting Vulnerability Authors: Sooraj KS Copyright: Copyright c 2010 SecPod,...

Multiple Vulnerabilities in CMSimple

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in CMSimple which could be exploited to perform cross-site scripting and cross-site request forgery attacks. 1 Cross-site scripting XSS vulnerabilities in CMSimple The vulnerability exists due to input sanitation...

MyIT CRM - &#039;index.php&#039; Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/42140/info MyIT CRM is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

Sourcefabric Campsite - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/42107/info Sourcefabric Campsite is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting...

Sourcefabric Campsite - Multiple Cross-Site Scripting Vulnerabilities

Sourcefabric Campsite - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/42107/info Sourcefabric Campsite is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issu...

MediaWiki profileinfo.php 'filter' Parameter XSS

The version of MediaWiki running on the remote host is affected by a cross-site scripting vulnerability due to improper validation of user-supplied input to the 'filter' parameter in the 'profileinfo.php' script. A remote attacker can exploit this, by tricking a user into requesting a maliciously...

VMware vCenter Update Manager XSS

The version of VMware vCenter Update Manager running on the remote host has a cross-site scripting vulnerability. This is due to a bug in Jetty, the underlying web server. When Jetty displays a directory listing, arbitrary text can be inserted into the page. A remote attacker could exploit this b...