Webmedia Explorer 5.0.9/5.10 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/35368/info Webmedia Explorer is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting...

Lussumo Vanilla 1.1.51.1.7 - updatecheck.php Cross-Site Scripting

Lussumo Vanilla 1.1.51.1.7 - updatecheck.php Cross-Site Scripting source: https://www.securityfocus.com/bid/35124/info Vanilla is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary scrip...

Webmedia Explorer 5.0.95.10 - Multiple Cross-Site Scripting Vulnerabilities

Webmedia Explorer 5.0.95.10 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/35368/info Webmedia Explorer is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these...

Claroline 1.8.11 Cross Site Scripting

Author: Gerendi Sandor Attila Original Advisory: http://gsasec.blogspot.com/2009/05/claroline-v1811-cross-site-scripting.html Date: May 05, 2009 Package: Claroline 1.8.11 Product Homepage: http://www.claroline.net/ Versions Affected: v.1.8.11 Other versions may also be affected Severity: Medium...

Claroline 1.8.11 - clarolinelinkernotfound.php Cross-Site Scripting

Claroline 1.8.11 - clarolinelinkernotfound.php Cross-Site Scripting source: https://www.securityfocus.com/bid/34883/info Claroline is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execut...

GlassFish Enterprise Server 2.1 - Admin Console customMBeanscustomMBeans.jsf URI Cross-Site Scripting

GlassFish Enterprise Server 2.1 - Admin Console customMBeanscustomMBeans.jsf URI Cross-Site Scripting source: https://www.securityfocus.com/bid/34824/info GlassFish Enterprise Server is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied...

IceWarp Merak Mail Server 9.4.1 - 'cleanHTML()' Cross-Site Scripting

source: https://www.securityfocus.com/bid/34823/info IceWarp Merak Mail Server is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

VerliAdmin 0.3 - index.php Multiple Cross-Site Scripting Vulnerabilities

VerliAdmin 0.3 - index.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/34845/info VerliAdmin is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these...

VerliAdmin 0.3 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/34845/info VerliAdmin is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspectin...

IceWarp Merak Mail Server 9.4.1 - 'item.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/34825/info IceWarp Merak Mail Server is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

Woodstock 4.2 404 - Error Page Cross-Site Scripting

source: https://www.securityfocus.com/bid/34829/info Woodstock is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...

IceWarp Merak Mail Server 9.4.1 - cleanHTML() Cross-Site Scripting

IceWarp Merak Mail Server 9.4.1 - cleanHTML Cross-Site Scripting source: https://www.securityfocus.com/bid/34823/info IceWarp Merak Mail Server is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this...

GlassFish Enterprise Server 2.1 - Admin Console applicationsapplications.jsf URI Cross-Site Scripting

GlassFish Enterprise Server 2.1 - Admin Console applicationsapplications.jsf URI Cross-Site Scripting source: https://www.securityfocus.com/bid/34824/info GlassFish Enterprise Server is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied...

MyBB 1.4.5 - Multiple Vulnerabilities

source: https://www.securityfocus.com/bid/34798/info MyBB is prone to multiple security vulnerabilities, including an HTML-injection issue and an unspecified issue. An attacker may leverage the HTML-injection issue to execute arbitrary script code in the browser of an unsuspecting user in the...

MyBB 1.4.5 - Multiple Vulnerabilities

MyBB 1.4.5 - Multiple Vulnerabilities source: https://www.securityfocus.com/bid/34798/info MyBB is prone to multiple security vulnerabilities, including an HTML-injection issue and an unspecified issue. An attacker may leverage the HTML-injection issue to execute arbitrary script code in the...

Drupal HTML Injection and Information Disclosure Vulnerabilities

Drupal is prone to a cross-site scripting vulnerability and an information disclosure vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

Coppermine Photo Gallery 1.4.21 - 'css' Cross-Site Scripting

source: https://www.securityfocus.com/bid/34782/info Coppermine Photo Gallery is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

Coppermine Photo Gallery 1.4.21 - css Cross-Site Scripting

Coppermine Photo Gallery 1.4.21 - css Cross-Site Scripting source: https://www.securityfocus.com/bid/34782/info Coppermine Photo Gallery is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to...

BlackBerry Enterprise Server MDS Connection Service XSS

The remote host is running the BlackBerry Enterprise Server MDS Connection Service. The installed version is affected by cross-site scripting vulnerabilities involving the 'customDate', 'interval', 'lastCustomInterval', 'lastIntervalLength', 'nextCustomInterval', 'nextIntervalLength', 'action',...

Invision Power Board (IP.Board) 3.0 - Multiple HTML Injection / Information Disclosure Vulnerabilities

source: https://www.securityfocus.com/bid/34725/info Invision Power Board is prone to an information-disclosure issue and multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to determine path information or to...