PHP-Stats 0.1.9.1 - 'admin.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/28824/info Php-Stats is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. Attackers may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

EsContacts 1.0 - search.php?msg Cross-Site Scripting

EsContacts 1.0 - search.php?msg Cross-Site Scripting source: https://www.securityfocus.com/bid/28825/info EsContacts is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. Attackers may leverage these issues to execute arbitrary script...

EsContacts 1.0 - importer.php?msg Cross-Site Scripting

EsContacts 1.0 - importer.php?msg Cross-Site Scripting source: https://www.securityfocus.com/bid/28825/info EsContacts is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. Attackers may leverage these issues to execute arbitrary scri...

MyBoard 1.0.12 - rep.php Cross-Site Scripting

MyBoard 1.0.12 - rep.php Cross-Site Scripting source: https://www.securityfocus.com/bid/28823/info MyBoard is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browse...

EsContacts 1.0 - 'add_groupe.php?msg' Cross-Site Scripting

source: https://www.securityfocus.com/bid/28825/info EsContacts is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. Attackers may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

Blogator-script 0.95 - 'bs_auth.php' Cross-Site Scripting Vulnerability

Blogator-script 0.95 'bsauth.php' Cross Site Scripting Vulnerability. CVE-2008-1892. Webapps exploit for php platform source: http://www.securityfocus.com/bid/28810/info Blogator-script is prone to a cross-site scripting vulnerability because it fails to adequately sanitize user-supplied input. A...

amfPHP 1.2 - browsermethodTable.php?class Cross-Site Scripting

amfPHP 1.2 - browsermethodTable.php?class Cross-Site Scripting source: https://www.securityfocus.com/bid/28789/info Amfphp is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. Attackers may leverage these issues to execute arbitrary...

amfPHP 1.2 - browserdetails?class Cross-Site Scripting

amfPHP 1.2 - browserdetails?class Cross-Site Scripting source: https://www.securityfocus.com/bid/28789/info Amfphp is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. Attackers may leverage these issues to execute arbitrary script...

amfPHP 1.2 - '/browser/methodTable.php?class' Cross-Site Scripting

source: https://www.securityfocus.com/bid/28789/info Amfphp is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. Attackers may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the conte...

amfPHP 1.2 - browsercode.php Multiple Cross-Site Scripting Vulnerabilities

amfPHP 1.2 - browsercode.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/28789/info Amfphp is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. Attackers may leverage these issues to execut...

Dotclear 'ecrire/images.php' Arbitrary File Upload Vulnerability

Advisory 1 "Dotclear 'ecrire/images.php' Arbitrary File Upload Vulnerability" $ Author : Morgan ARMAND $ Contact : armandm at epitech dot net $ Vendor URL : http://www.dotclear.net $ Vendor Contacted : 07/04/2008 $ Vendor Status : No response $ Affected Software : Dotclear = 1.2.7.1 $ Severity :...

Business Objects Infoview - cms Cross-Site Scripting

Business Objects Infoview - cms Cross-Site Scripting source: https://www.securityfocus.com/bid/28762/info Business Objects is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input via the Infoview web portal. An attacker may leverage...

Cezanne 6.5.1/7 - 'cflookup.asp' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/28772/info Cezanne Software is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. Authenticated attackers may leverage these issues to execute arbitrary script code in the browser of an...

Cezanne Software 6.5.1/7 - 'CFLogon.asp' Cross-Site Scripting

source: https://www.securityfocus.com/bid/28774/info Cezanne Software is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting use...

Cezanne Software 6.5.17 - CFLogon.asp Cross-Site Scripting

Cezanne Software 6.5.17 - CFLogon.asp Cross-Site Scripting source: https://www.securityfocus.com/bid/28774/info Cezanne Software is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute...

Cezanne 6.5.17 - home.asp?CFTARGET Cross-Site Scripting

Cezanne 6.5.17 - home.asp?CFTARGET Cross-Site Scripting source: https://www.securityfocus.com/bid/28772/info Cezanne Software is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. Authenticated attackers may leverage these issues to...

Microsoft SharePoint Server 2.0 - Picture Source HTML Injection

Microsoft SharePoint Server 2.0 - Picture Source HTML Injection source: https://www.securityfocus.com/bid/28706/info Microsoft SharePoint Server is prone to an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied input data. Note that to perform attacks, an attacke...

Swiki 1.5 - HTML Injection Cross-Site Scripting

Swiki 1.5 - HTML Injection Cross-Site Scripting source: https://www.securityfocus.com/bid/28680/info Swiki is prone to an HTML-injection vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execu...

Sun Java System Messenger Express 6.1-13-15 - sid Cross-Site Scripting

Sun Java System Messenger Express 6.1-13-15 - sid Cross-Site Scripting source: https://www.securityfocus.com/bid/28649/info Sun Java System Messenger Express is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may...

Tiny Portal 1.0 - 'shouts' Cross-Site Scripting

source: https://www.securityfocus.com/bid/28630/info Tiny Portal is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context o...