WordPress Plugin WP-SlimStat 0.9.2 - Cross-Site Scripting

source: https://www.securityfocus.com/bid/26432/info WP-SlimStat Plugin for WordPress is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

WordPress Plugin WP-SlimStat 0.9.2 - Cross-Site Scripting

WordPress Plugin WP-SlimStat 0.9.2 - Cross-Site Scripting source: https://www.securityfocus.com/bid/26432/info WP-SlimStat Plugin for WordPress is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this...

X7 Chat 2.0.4 - 'upgradev1.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/26417/info X7 Chat is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecti...

Miro Broadcast Machine 0.9.9 - login.php Cross-Site Scripting

Miro Broadcast Machine 0.9.9 - login.php Cross-Site Scripting source: https://www.securityfocus.com/bid/26407/info Miro Broadcast Machine is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue allows attackers to execut...

F5 FirePass 4100 SSL VPN - 'Download_Plugin.php3' Cross-Site Scripting

source: https://www.securityfocus.com/bid/26412/info F5 FirePass 4100 SSL VPN devices are prone to a cross-site scripting vulnerability because they fail to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspectin...

Miro Broadcast Machine 0.9.9 - 'login.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/26407/info Miro Broadcast Machine is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue allows attackers to execute arbitrary HTML or script code in a user's browser session in...

Thomson SpeedTouch 716 - 'URL' Cross-Site Scripting

source: https://www.securityfocus.com/bid/26808/info Thomson SpeedTouch 716 is prone to a cross-site scripting vulnerability because the device fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting us...

Roundcube Webmail 0.1 - CSS Expression Input Validation

Roundcube Webmail 0.1 - CSS Expression Input Validation source: https://www.securityfocus.com/bid/26800/info Roundcube Webmail is prone to an input-validation vulnerability because it fails to sanitize HTML email messages. Attackers can exploit this issue to execute arbitrary script code in the...

Roundcube Webmail 0.1 - CSS Expression Input Validation

source: https://www.securityfocus.com/bid/26800/info Roundcube Webmail is prone to an input-validation vulnerability because it fails to sanitize HTML email messages. Attackers can exploit this issue to execute arbitrary script code in the browser of an unsuspecting user. Successful attacks can...

Cisco Unified MeetingPlace Login Screen Cross-Site Scripting Vulnerability

Cisco Unified MeetingPlace versions 5.3.235.0 and prior, 5.4, and 6.0 contain a vulnerability that could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks. This vulnerability is due to insufficient filtering of parameters passed to the Login form of Cisco Unified...

ManageEngine OpManager Login.do Multiple Parameter XSS

The remote host is running ManageEngine OpManager, a web-based network management application. The version of ManageEngine OpManager installed on the remote host fails to sanitize user input to the 'requestid' parameter of the 'jsp/Login.do' script before using it to generate dynamic content. An...

GLSA-200711-05 : SiteBar: Multiple issues

"The remote host is affected by the vulnerability described in GLSA-200711-05 SiteBar: Multiple issues Tim Brown discovered these multiple issues: the translation module does not properly sanitize the value to the 'dir' parameter CVE-2007-5491, CVE-2007-5694 %NASLMINLEVEL 70300 C Tenable Network...

JLMForo System - Buscado.php Cross-Site Scripting

JLMForo System - Buscado.php Cross-Site Scripting source: https://www.securityfocus.com/bid/26331/info JLMForo System is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary...

Helios Calendar 1.11.2 - adminindex.php Cross-Site Scripting

Helios Calendar 1.11.2 - adminindex.php Cross-Site Scripting source: https://www.securityfocus.com/bid/26312/info Helios Calendar is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue allows attackers to execute...

Helios Calendar 1.1/1.2 - 'admin/index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/26312/info Helios Calendar is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue allows attackers to execute arbitrary HTML or script code in a user's browser session in the...

GLSA-200710-31 : Opera: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200710-31 Opera: Multiple vulnerabilities Michael A. Puls II discovered an unspecified flaw when launching external email or newsgroup clients CVE-2007-5541. David Bloom discovered that when displaying frames from different...

Saxon 5.4 - 'Menu.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/26237/info Saxon is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

Omnistar Live - 'KB.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/26234/info Omnistar Live is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user i...

Omnistar Live - KB.php Cross-Site Scripting

Omnistar Live - KB.php Cross-Site Scripting source: https://www.securityfocus.com/bid/26234/info Omnistar Live is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script...

WordPress 2.3 - Edit-Post-Rows.php Cross-Site Scripting

WordPress 2.3 - Edit-Post-Rows.php Cross-Site Scripting source: https://www.securityfocus.com/bid/26228/info WordPress is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary...