Joomla! Component MS Comment 0.8.0b - Security Bypass / Cross-Site Scripting

source: https://www.securityfocus.com/bid/38250/info The MS Comment component for Joomla! is prone to a security-bypass vulnerability because it fails to properly sanitize user-supplied input. The component is also prone to a security-bypass vulnerability because it fails to reset the CAPTCHA aft...

DieselPay 1.6 - Cross-Site Scripting / Directory Traversal

source: https://www.securityfocus.com/bid/37564/info DieselPay is prone to a cross-site scripting vulnerability and a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker could exploit these vulnerabilities to obtain sensitive information,...

PHPMyCart 1.3 - Cross-Site Scripting Authentication Bypass

PHPMyCart 1.3 - Cross-Site Scripting Authentication Bypass source: https://www.securityfocus.com/bid/37553/info Conkurent PHPMyCart is prone to a cross-site scripting vulnerability and an authentication-bypass vulnerability. An attacker may leverage these issues to gain unauthorized access to the...

StarDevelop Live Help 2.6 - SERVER Multiple Cross-Site Scripting Vulnerabilities

StarDevelop Live Help 2.6 - SERVER Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/37558/info Stardevelop Live Help is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An...

PhotoKorn 1.542 - Cross-Site Scripting Remote File Inclusion

PhotoKorn 1.542 - Cross-Site Scripting Remote File Inclusion source: https://www.securityfocus.com/bid/37559/info Photokorn is prone to a cross-site scripting vulnerability and a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker can exploi...

Discuz! 1.0 - 'referer' Cross-Site Scripting

source: https://www.securityfocus.com/bid/37562/info Discuz! is prone to an cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

Joomla! Component MS Comment 0.8.0b - Security Bypass Cross-Site Scripting

Joomla! Component MS Comment 0.8.0b - Security Bypass Cross-Site Scripting source: https://www.securityfocus.com/bid/38250/info The MS Comment component for Joomla! is prone to a security-bypass vulnerability because it fails to properly sanitize user-supplied input. The component is also prone t...

PHPMyCart 1.3 - Cross-Site Scripting / Authentication Bypass

source: https://www.securityfocus.com/bid/37553/info Conkurent PHPMyCart is prone to a cross-site scripting vulnerability and an authentication-bypass vulnerability. An attacker may leverage these issues to gain unauthorized access to the affected application and execute arbitrary script code in...

Western Digital My Book World Edition 1.1.16 - 'lang' Cross-Site Scripting

source: https://www.securityfocus.com/bid/40564/info My Book World Edition is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting...

LiveZilla 3.1.8.3 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/41271/info LiveZilla is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

AzDGDatingMedium 1.9.3 - l Multiple Cross-Site Scripting Vulnerabilities

AzDGDatingMedium 1.9.3 - l Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/37514/info Azerbaijan Development AzDGDatingMedium is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied inpu...

AzDGDatingMedium 1.9.3 - 'l' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/37514/info Azerbaijan Development AzDGDatingMedium is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code...

Joomla! Component Joomulus 2.0 - 'tagcloud.swf' Cross-Site Scripting

source: https://www.securityfocus.com/bid/37479/info The Joomulus component for Joomla! is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of a...

PHPInstantGallery 1.1 - admin.php Cross-Site Scripting

PHPInstantGallery 1.1 - admin.php Cross-Site Scripting source: https://www.securityfocus.com/bid/37502/info phpInstantGallery is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script...

Barbo91 - 'upload.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/37512/info Barbo91 is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of th...

AL-Caricatier 2.5 - comment.php Cross-Site Scripting

AL-Caricatier 2.5 - comment.php Cross-Site Scripting source: https://www.securityfocus.com/bid/41338/info AL-Caricatier is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code ...

MyBB 1.4.10 - 'myps.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/37464/info MyBB is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...

MyBB 1.4.10 - myps.php Cross-Site Scripting

MyBB 1.4.10 - myps.php Cross-Site Scripting source: https://www.securityfocus.com/bid/37464/info MyBB is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of ...

webMathematica 3 - MSP Script Cross-Site Scripting

webMathematica 3 - MSP Script Cross-Site Scripting source: https://www.securityfocus.com/bid/37451/info webMathematica is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code i...

webMathematica 3 - 'MSP' Script Cross-Site Scripting

source: https://www.securityfocus.com/bid/37451/info webMathematica is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the contex...