WebBatch - 'webbatch.exe' Cross-Site Scripting

source: https://www.securityfocus.com/bid/25744/info WebBatch is prone to a cross-site scripting vulnerability and an information-disclosure vulnerability because it fails to adequately sanitize user-supplied input. An attacker may leverage the cross-site scripting issue to execute arbitrary scri...

PHP-Stats 0.1.9.2 - Tracking.php Cross-Site Scripting

PHP-Stats 0.1.9.2 - Tracking.php Cross-Site Scripting source: https://www.securityfocus.com/bid/25674/info Php-Stats is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary...

PHP-Stats 0.1.9.2 - 'Tracking.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/25674/info Php-Stats is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in th...

Tencent QQ scene vulnerability to the hack of the law-vulnerability and early warning-the black bar safety net

According to analysys international released the 2 0 0 7 in the first 2 quarters of China im market quarterly monitoring report shows, Chinese active IM software account has reached 3. 7 6 million, which has 2. 9 million active user accounts for Tencent QQ is well deserved IM the king. But did yo...

BOINC 5.10.20 - 'forum_forum.php?id' Cross-Site Scripting

source: https://www.securityfocus.com/bid/25644/info BOINC Berkeley Open Infrastructure for Network Computing is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input data. An attacker may leverage these issues to execute arbitrary...

PHPMyQuote 0.20 - '/index.php' SQL Injection / Cross-Site Scripting

source: https://www.securityfocus.com/bid/25615/info phpMyQuote is prone to multiple input-validation vulnerabilities, including a cross-site scripting issue and an SQL-injection issue, because the application fails to sanitize user-supplied input. A successful exploit may allow an attacker to...

Toms Gastebuch 1.001.01 - header.php Multiple Cross-Site Scripting Vulnerabilities

Toms Gastebuch 1.001.01 - header.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/25598/info Toms Gastebuch is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage thes...

Toms Gästebuch 1.00 - 'form.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/25507/info Toms Gästebuch is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user i...

Cisco CallManager 4.2 / CUCM 4.2 - Logon Page 'lang' SQL Injection

source: https://www.securityfocus.com/bid/25480/info Cisco Unified CallManager and Unified Communications Manager are prone to multiple input-validation vulnerabilities because the applications fail to properly sanitize user-supplied input. These issues include a cross-site scripting vulnerabilit...

Arcadem 2.01 Remote SQL Injection / RFI Vulnerabilties

No description provided by source. Arcadem Remote File Inclusion Flaw / SQL Injection Software: Arcadem 2.01 Vendor link: http://agaresmedia.com Attack: Remote File Inclusion / SQL Injection Original advisory: http://14house.blogspot.com/2007/08/arcadem-rfi-sql-injection-flaws.html Discovered by:...

tikiwiki -- multiple vulnerabilities

Secunia reports: Some vulnerabilities have been reported in TikiWiki, which can be exploited by malicious people to conduct cross-site scripting and script insertion attacks and disclose potentially sensitive information. Input passed to the username parameter in tiki-remindpassword.php when remi...

Arcadem 2.01 Remote SQL Injection / RFI Vulnerabilties

Exploit for unknown platform in category web applications ====================================================== Arcadem 2.01 Remote SQL Injection / RFI Vulnerabilties ====================================================== Arcadem Remote File Inclusion Flaw / SQL Injection Software: Arcadem 2.01...

AutoIndex PHP Script 2.2.2 - PHP_SELF index.php Cross-Site Scripting

AutoIndex PHP Script 2.2.2 - PHPSELF index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/26411/info AutoIndex PHP Script is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input data. An attacker may leverage this issue to...

AutoIndex PHP Script 2.2.2 - 'PHP_SELF index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/26411/info AutoIndex PHP Script is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting use...

m-phorum 0.3 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/25394/info m-phorum is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

Text File Search Classic - 'TextFileSearch.asp' Cross-Site Scripting

source: https://www.securityfocus.com/bid/25350/info Text File Search Classic is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

Text File Search Classic - TextFileSearch.asp Cross-Site Scripting

Text File Search Classic - TextFileSearch.asp Cross-Site Scripting source: https://www.securityfocus.com/bid/25350/info Text File Search Classic is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this...

Apache Tomcat 6.0.13 - Host Manager Servlet Cross-Site Scripting

Apache Tomcat 6.0.13 - Host Manager Servlet Cross-Site Scripting source: https://www.securityfocus.com/bid/25314/info Apache Tomcat Host Manager Servlet is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker can exploit...

WordPress 1.0.7 - Pool index.php Cross-Site Scripting

WordPress 1.0.7 - Pool index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/25413/info WordPress Pool is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitra...

PHP-Stats 0.1.9.2 - 'WhoIs.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/25275/info Php-Stats is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in th...