WordPress 1.x2.0.x - Templates.php Cross-Site Scripting

WordPress 1.x2.0.x - Templates.php Cross-Site Scripting source: https://www.securityfocus.com/bid/22534/info WordPress is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary...

Community Server - SearchResults.aspx Cross-Site Scripting

Community Server - SearchResults.aspx Cross-Site Scripting source: https://www.securityfocus.com/bid/22529/info Community Server is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute...

WordPress Core 1.x/2.0.x - 'Templates.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/22534/info WordPress is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user. This...

Atlassian JIRA 3.7.3 - BrowseProject.JSPA Cross-Site Scripting

source: https://www.securityfocus.com/bid/22503/info Atlassian JIRA is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user ...

Adobe ColdFusion 67 - User_Agent Error Page Cross-Site Scripting

Adobe ColdFusion 67 - UserAgent Error Page Cross-Site Scripting source: https://www.securityfocus.com/bid/22401/info Adobe ColdFusion is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker could exploit this vulnerability to...

OpenEMR 2.8.2 - 'Login_Frame.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/22348/info OpenEMR is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

Yahoo! Messenger 8.0 - Notification Message HTML Injection

Yahoo! Messenger 8.0 - Notification Message HTML Injection source: https://www.securityfocus.com/bid/22269/info Yahoo! Messenger is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute...

Yahoo! Messenger 8.0 - Notification Message HTML Injection

source: https://www.securityfocus.com/bid/22269/info Yahoo! Messenger is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the context of a victim's Internet...

PHP 5.2 - FOpen 'Safe_mode' Restriction Bypass

source: https://www.securityfocus.com/bid/22261/info PHP is prone to a 'safemode' restriction-bypass vulnerability. Successful exploits could allow an attacker to write files in unauthorized locations; other attacks may also be possible. This vulnerability would be an issue in shared-hosting...

PHP Membership Manager 1.5 - admin.php Cross-Site Scripting

PHP Membership Manager 1.5 - admin.php Cross-Site Scripting source: https://www.securityfocus.com/bid/22263/info PHP Membership Manager is prone to a cross-site scripting vulnerability because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue ...

lmmhi-xss.txt

Login Manager Multiple HTML Injections Login Manager is a powerful, robust system that enables web administrators to manage website user accounts easily, create membership protected areas, and effortlessly prevent unauthorized user access to secured areas. Login Manager 3 “LM3” uses PHP and MySQL...

paypal-inject.txt

Paypal Subscription Manager allows webmaster easily create subscription web site, visitors can access to digital product instantly after paying through Paypal, PSM provides ability to effortlessly process subscription and protect membership areas. PSM uses PHP and MySQL for fast, efficient,...

212Cafe Guestbook 4.00 - 'show.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/22173/info 212Cafe Guestbook is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecti...

212Cafe Guestbook 4.00 - show.php Cross-Site Scripting

212Cafe Guestbook 4.00 - show.php Cross-Site Scripting source: https://www.securityfocus.com/bid/22173/info 212Cafe Guestbook is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have...

MyBloggie 2.1.5 - 'login.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/22097/info MyBloggie is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the browser of an...

DT_Guestbook 1.0 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/22078/info The 'dtguestbook' program is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser of an...

Indexu 5.0/5.3 - 'login.php?Error_msg' Cross-Site Scripting

source: https://www.securityfocus.com/bid/22084/info Indexu is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the browser of an unsuspecting user in th...

Indexu 5.0/5.3 - 'tell_friend.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/22084/info Indexu is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the browser of an unsuspecting user in th...

Indexu 5.05.3 - suggest_category.php?Error_msg Cross-Site Scripting

Indexu 5.05.3 - suggestcategory.php?Errormsg Cross-Site Scripting source: https://www.securityfocus.com/bid/22084/info Indexu is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrar...

Jax Petition 3.06 Book - 'smileys.php?languagepack' Local File Inclusion

source: https://www.securityfocus.com/bid/22072/info Jax Petitionbook is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these vulnerabilities using directory-traversal strings to have local script code execut...