[SECURITY] [DSA 1098-1] New horde3 packages fix cross-site scripting

-------------------------------------------------------------------------- Debian Security Advisory DSA 1098-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff June 14th, 2006 http://www.debian.org/security/faq -...

CEScripts (Multiple Scripts) - Cross-Site Scripting

CEScripts Multiple Scripts - Cross-Site Scripting source: https://www.securityfocus.com/bid/18402/info CEScripts scripts are prone to multiple cross-site scripting vulnerabilities because they fail to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary...

Microsoft Internet Explorer COM Object Instantiation Code Execution Vulnerability Variant

Description Microsoft Internet Explorer is prone to a memory-corruption vulnerability that is related to the instantiation of COM objects. This issue results from a design error. The vulnerability arises because of the way Internet Explorer tries to instantiate certain COM objects as ActiveX...

Andy Mack 35mm Slide Gallery 6.0 - 'index.php?imgdir' Cross-Site Scripting

source: https://www.securityfocus.com/bid/18414/info 35mmslidegallery is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the browser of an unsuspecting...

iFoto 0.20 - index.php Cross-Site Scripting

iFoto 0.20 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/18391/info iFoto is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrar...

iFusion iFlance 1.1 - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/18399/info iFlance is prone to multiple input-validation vulnerabilities because it fails to properly sanitize user-supplied input to the application. An attacker may leverage these issues to have arbitrary script code execute in the browser of an...

Five Star Review Script - 'index2.php?sort' Cross-Site Scripting

source: https://www.securityfocus.com/bid/18390/info Five Star Review Script is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to run arbitrary HTML and script code in the browser of a...

iFoto 0.20 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/18391/info iFoto is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser of an...

SixCMS 6.0 - 'list.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/18393/info SixCMS is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser of an...

Five Star Review Script - report.php?item_id Cross-Site Scripting

Five Star Review Script - report.php?itemid Cross-Site Scripting source: https://www.securityfocus.com/bid/18390/info Five Star Review Script is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these...

Five Star Review Script - index2.php?sort Cross-Site Scripting

Five Star Review Script - index2.php?sort Cross-Site Scripting source: https://www.securityfocus.com/bid/18390/info Five Star Review Script is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these...

Five Star Review Script - 'report.php?item_id' Cross-Site Scripting

source: https://www.securityfocus.com/bid/18390/info Five Star Review Script is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to run arbitrary HTML and script code in the browser of a...

FlexWATCH Network Camera - Cross-Site Scripting

FlexWATCH Network Camera - Cross-Site Scripting source: https://www.securityfocus.com/bid/18936/info FlexWATCH Network Camera is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this...

mailman -- Multiple Vulnerabilities

Secunia reports: Mailman can be exploited by malicious people to conduct cross-site scripting and phishing attacks, and cause a DoS Denial of Service. 1 An error in the logging functionality can be exploited to inject a spoofed log message into the error log via a specially crafted URL. Successfu...

DSA-1094-1 gforge - missing input sanitising

Bulletin has no description...

Open Business Management 1.0.3 pl1 - company_index.php Multiple Cross-Site Scripting Vulnerabilities

Open Business Management 1.0.3 pl1 - companyindex.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/18348/info Open Business Management is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize HTML and script code fr...

[SA20436] PyBlosxom Contributed Packages Cross-Site Scripting Vulnerability

---------------------------------------------------------------------- Want to join the Secunia Security Team? Secunia offers a position as a security specialist, where your daily work involves reverse engineering of software and exploit code, auditing of source code, and analysis of vulnerabilit...

CVE-2006-2759

jetty 6.0.x jetty6 beta16 allows remote attackers to read arbitrary script source code via a capital P in the .jsp extension, and probably other mixed case manipulations...

Enigma Haber 4.2 - Cross-Site Scripting

Enigma Haber 4.2 - Cross-Site Scripting source: https://www.securityfocus.com/bid/18226/info Enigma Haber is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have...

Enigma Haber 4.2 - Cross-Site Scripting

source: https://www.securityfocus.com/bid/18226/info Enigma Haber is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the browser ...