BandSite CMS 1.1 - pastshows_content.php Cross-Site Scripting

BandSite CMS 1.1 - pastshowscontent.php Cross-Site Scripting source: https://www.securityfocus.com/bid/20137/info Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. These issues may allow an attacker to...

BandSite CMS 1.1 - interview_content.php Cross-Site Scripting

BandSite CMS 1.1 - interviewcontent.php Cross-Site Scripting source: https://www.securityfocus.com/bid/20137/info Grayscale BandSite CMS is prone to multiple input-validation vulnerabilities because it fails to sufficiently sanitize user-supplied input data. These issues may allow an attacker to...

DotNetNuke 4.0 - HTML Injection

source: https://www.securityfocus.com/bid/20117/info DotNetNuke is prone to an HTML-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code may execute in the context of...

phpMyAdmin 2.x - Multiple Script Array Handling Full Path Disclosures

source: https://www.securityfocus.com/bid/21137/info phpMyAdmin is prone to multiple input-validation vulnerabilities, including an HTML-injection vulnerability, cross-site scripting vulnerabilities, and information-disclosure vulnerabilities. An attacker could exploit these vulnerabilities to vi...

phpMyAdmin 2.x - Multiple Script Array Handling Full Path Disclosures

phpMyAdmin 2.x - Multiple Script Array Handling Full Path Disclosures source: https://www.securityfocus.com/bid/21137/info phpMyAdmin is prone to multiple input-validation vulnerabilities, including an HTML-injection vulnerability, cross-site scripting vulnerabilities, and information-disclosure...

phpMyAdmin 2.x - sql.php?pos Cross-Site Scripting

phpMyAdmin 2.x - sql.php?pos Cross-Site Scripting source: https://www.securityfocus.com/bid/21137/info phpMyAdmin is prone to multiple input-validation vulnerabilities, including an HTML-injection vulnerability, cross-site scripting vulnerabilities, and information-disclosure vulnerabilities. An...

phpMyAdmin 2.x - 'sql.php?pos' Cross-Site Scripting

source: https://www.securityfocus.com/bid/21137/info phpMyAdmin is prone to multiple input-validation vulnerabilities, including an HTML-injection vulnerability, cross-site scripting vulnerabilities, and information-disclosure vulnerabilities. An attacker could exploit these vulnerabilities to vi...

Blojsom 2.31 - Cross-Site Scripting

Blojsom 2.31 - Cross-Site Scripting source: https://www.securityfocus.com/bid/20026/info Blojsom is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to have arbitrary script code execute in the browser ...

[eVuln] Doika guestbook 'page' XSS Vulnerability

New eVuln Advisory: Doika guestbook 'page' XSS Vulnerability http://evuln.com/vulns/134/summary.html --------------------Summary---------------- eVuln ID: EV0134 CVE: CVE-2006-4325 Software: Doika guestbook Sowtware's Web Site: http://doika.net/ Versions: 2.5 Critical Level: Harmless Type:...

Blojsom 2.31 - Cross-Site Scripting

source: https://www.securityfocus.com/bid/20026/info Blojsom is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting user in the conte...

e107 website system 0.7.5 - 'download.php?Query String (PATH_INFO)' Cross-Site Scripting

source: https://www.securityfocus.com/bid/19997/info e107 CMS is prone to multiple cross-site scripting vulnerabilities because the application fails to sanitize user-supplied input. An attacker may levearge this issue to have arbitrary script code execute in the browser of an unsuspecting user i...

e107 website system 0.7.5 - news.php?PATH_INFO Cross-Site Scripting

e107 website system 0.7.5 - news.php?PATHINFO Cross-Site Scripting source: https://www.securityfocus.com/bid/19997/info e107 CMS is prone to multiple cross-site scripting vulnerabilities because the application fails to sanitize user-supplied input. An attacker may levearge this issue to have...

ForumJBC 4.0 - Haut.php Cross-Site Scripting

ForumJBC 4.0 - Haut.php Cross-Site Scripting source: https://www.securityfocus.com/bid/19992/info ForumJBC is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverge this issue to have arbitrary script code execute in the...

sips022.txt

SIPS v 0.2.2 Remote File Include Vulnerability ; Discovred By : ThELeO ; Software : SIPS v 0.2.2 ; Exploit : http://Www.Example.Com/Script/sipssys/code/box.inc.php?config"sipssys"=U r Evil Script ; Greetz : M.I.D.TDrackanZ, Mr.IlysS, NeThug47, Death & All Moroccan & Arab Hackers ;...

e107 website system 0.7.5 - admin.php?Query String (PATH_INFO) Cross-Site Scripting

e107 website system 0.7.5 - admin.php?Query String PATHINFO Cross-Site Scripting source: https://www.securityfocus.com/bid/19997/info e107 CMS is prone to multiple cross-site scripting vulnerabilities because the application fails to sanitize user-supplied input. An attacker may levearge this iss...

e107 website system 0.7.5 - download.php?Query String (PATH_INFO) Cross-Site Scripting

e107 website system 0.7.5 - download.php?Query String PATHINFO Cross-Site Scripting source: https://www.securityfocus.com/bid/19997/info e107 CMS is prone to multiple cross-site scripting vulnerabilities because the application fails to sanitize user-supplied input. An attacker may levearge this...

e107 website system 0.7.5 - 'news.php?PATH_INFO' Cross-Site Scripting

source: https://www.securityfocus.com/bid/19997/info e107 CMS is prone to multiple cross-site scripting vulnerabilities because the application fails to sanitize user-supplied input. An attacker may levearge this issue to have arbitrary script code execute in the browser of an unsuspecting user i...

ForumJBC 4.0 - 'Haut.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/19992/info ForumJBC is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverge this issue to have arbitrary script code execute in the browser of an unsuspecting user in the conte...

e107 website system 0.7.5 - 'submitnews.php?PATH_INFO' Cross-Site Scripting

source: https://www.securityfocus.com/bid/19997/info e107 CMS is prone to multiple cross-site scripting vulnerabilities because the application fails to sanitize user-supplied input. An attacker may levearge this issue to have arbitrary script code execute in the browser of an unsuspecting user i...

Sage 1.3.x - IMG Element Input Validation

Sage 1.3.x - IMG Element Input Validation source: https://www.securityfocus.com/bid/21164/info The application is prone to an input-validation vulnerability that allows malicious HTML and script code to be injected before it is used in dynamically generated content. Attacker-supplied HTML and...