eTicket 1.5.5.2 - 'admin.php' Multiple SQL Injections

source: https://www.securityfocus.com/bid/27173/info eTicket is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. These vulnerabilities include multiple SQL-injection issues, a cross-site scripting issue, and an...

eTicket 1.5.5.2 - search.php Multiple SQL Injections

eTicket 1.5.5.2 - search.php Multiple SQL Injections source: https://www.securityfocus.com/bid/27173/info eTicket is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. These vulnerabilities include multiple SQL-injection...

eTicket 1.5.5.2 - 'view.php?s' Cross-Site Scripting

source: https://www.securityfocus.com/bid/27173/info eTicket is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. These vulnerabilities include multiple SQL-injection issues, a cross-site scripting issue, and an...

Snitz Forums 2000 3.4.5/3.4.6 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/27162/info Snitz Forums 2000 is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user...

eTicket 1.5.5.2 - 'search.php' Multiple SQL Injections

source: https://www.securityfocus.com/bid/27173/info eTicket is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. These vulnerabilities include multiple SQL-injection issues, a cross-site scripting issue, and an...

Snitz Forums 2000 3.4.53.4.6 - Multiple Cross-Site Scripting Vulnerabilities

Snitz Forums 2000 3.4.53.4.6 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/27162/info Snitz Forums 2000 is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these...

NetRisk 1.9.7 - 'index.php' Remote File Inclusion

source: https://www.securityfocus.com/bid/27136/info netRisk is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code on an affected computer with the privileges of the webserver...

NetRisk 1.9.7 - index.php Remote File Inclusion

NetRisk 1.9.7 - index.php Remote File Inclusion source: https://www.securityfocus.com/bid/27136/info netRisk is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code on an affect...

ExpressionEngine 1.2.1 - HTTP Response Splitting Cross-Site Scripting

ExpressionEngine 1.2.1 - HTTP Response Splitting Cross-Site Scripting source: https://www.securityfocus.com/bid/27128/info ExpressionEngine is prone to an HTTP-response-splitting vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An...

WordPress Core 2.2.3 - '/wp-admin/post.php?popuptitle' Cross-Site Scripting

source: https://www.securityfocus.com/bid/27123/info WordPress is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

WordPress 2.2.3 - wp-adminedit.php?backup Cross-Site Scripting

WordPress 2.2.3 - wp-adminedit.php?backup Cross-Site Scripting source: https://www.securityfocus.com/bid/27123/info WordPress is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

WordPress 2.2.3 - wp-adminpost.php?popuptitle Cross-Site Scripting

WordPress 2.2.3 - wp-adminpost.php?popuptitle Cross-Site Scripting source: https://www.securityfocus.com/bid/27123/info WordPress is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute...

WordPress Core 2.2.3 - '/wp-admin/edit.php?backup' Cross-Site Scripting

source: https://www.securityfocus.com/bid/27123/info WordPress is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

ExpressionEngine 1.2.1 - HTTP Response Splitting / Cross-Site Scripting

source: https://www.securityfocus.com/bid/27128/info ExpressionEngine is prone to an HTTP-response-splitting vulnerability and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in...

WordPress 2.2.3 - wp-adminpage-new.php?popuptitle Cross-Site Scripting

WordPress 2.2.3 - wp-adminpage-new.php?popuptitle Cross-Site Scripting source: https://www.securityfocus.com/bid/27123/info WordPress is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execu...

Rotabanner Local 2/3 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/27138/info Rotabanner Local is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an...

InfoSoft FusionCharts 3 - .swf Flash File Remote Code Execution

InfoSoft FusionCharts 3 - .swf Flash File Remote Code Execution source: https://www.securityfocus.com/bid/27109/info InfoSoft FusionCharts is prone to a remote code-execution vulnerability because the application fails to properly sanitize user-supplied input. An attacker can exploit this issue t...

LiveCart 1.0.1 - return Cross-Site Scripting (2)

LiveCart 1.0.1 - return Cross-Site Scripting 2 source: https://www.securityfocus.com/bid/27087/info LiveCart is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code ...

LiveCart 1.0.1 - email Cross-Site Scripting

LiveCart 1.0.1 - email Cross-Site Scripting source: https://www.securityfocus.com/bid/27087/info LiveCart is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in...

LiveCart 1.0.1 - 'return' Cross-Site Scripting (2)

source: https://www.securityfocus.com/bid/27087/info LiveCart is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...