RedCMS 0.1 - 'login.php' Multiple SQL Injections

source: https://www.securityfocus.com/bid/17336/info RedCMS is prone to multiple input-validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. The application is prone to HTML-injection and SQL-injection vulnerabilities. A...

Connect Daily 3.2.8/3.2.9 - 'ViewYear.html' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/17287/info Connect Daily is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed...

PHPCOIN 1.2 - mod.php?fs Cross-Site Scripting

PHPCOIN 1.2 - mod.php?fs Cross-Site Scripting source: https://www.securityfocus.com/bid/17279/info phpCOIN is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issue...

phpMyFamily 1.4.1 - Track.php Cross-Site Scripting

phpMyFamily 1.4.1 - Track.php Cross-Site Scripting source: https://www.securityfocus.com/bid/17278/info The 'phpmyfamily' application is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may...

Arab Portal 2.0 - 'download.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17285/info ArabPortal System is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the...

FusionZONE CouponZONE 4.2 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/17272/info The couponZONE application is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script...

EZHomePagePro 1.5 - users_mgallery.asp?usid Cross-Site Scripting

EZHomePagePro 1.5 - usersmgallery.asp?usid Cross-Site Scripting source: https://www.securityfocus.com/bid/17236/info EZHomePagePro is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker...

Caloris Planitia Technologies School Management System 1.0 - Cross-Site Scripting

Caloris Planitia Technologies School Management System 1.0 - Cross-Site Scripting source: https://www.securityfocus.com/bid/17257/info Caloris Planitia Technologies School Management System is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to...

EZHomePagePro 1.5 - users_profiles.asp Multiple Cross-Site Scripting Vulnerabilities

EZHomePagePro 1.5 - usersprofiles.asp Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/17236/info EZHomePagePro is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied...

Toast Forums 1.6 - Toast.asp Multiple Cross-Site Scripting Vulnerabilities

Toast Forums 1.6 - Toast.asp Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/17249/info Toast Forums is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An...

Caloris Planitia Technologies School Management System 1.0 - Cross-Site Scripting

source: https://www.securityfocus.com/bid/17257/info Caloris Planitia Technologies School Management System is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have...

Calendar Express Multiple Flaws

The remote web server is using Calendar Express which is vulnerable to a cross site scripting and SQL injection vulnerability. SPDX-FileCopyrightText: 2005 David Maciejak Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

VihorDesign - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17226/info VihorDesign is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser ...

VihorDesign - index.php Cross-Site Scripting

VihorDesign - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/17226/info VihorDesign is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have...

EasyMoblog 0.5 - Img.php Cross-Site Scripting

EasyMoblog 0.5 - Img.php Cross-Site Scripting source: https://www.securityfocus.com/bid/17199/info EasyMoblog is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have...

[SA19290] OSWiki Username Script Insertion Vulnerability

TITLE: OSWiki Username Script Insertion Vulnerability SECUNIA ADVISORY ID: SA19290 VERIFY ADVISORY: http://secunia.com/advisories/19290/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: OSWiki 0.x http://secunia.com/product/8831/ DESCRIPTION: A vulnerability...

F5 Firepass 4100 SSL VPN - Cross-Site Scripting

F5 Firepass 4100 SSL VPN - Cross-Site Scripting source: https://www.securityfocus.com/bid/17175/info FirePass 4100 SSL VPN is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this...

Woltlab Burning Board 2.3.4 - 'Class_DB_MySQL.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17147/info Woltlab Burning Board is prone to a cross-site scripting vulnerability. This issue is due to a lack of proper sanitization of user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of an...

Woltlab Burning Board 2.3.4 - Class_DB_MySQL.php Cross-Site Scripting

Woltlab Burning Board 2.3.4 - ClassDBMySQL.php Cross-Site Scripting source: https://www.securityfocus.com/bid/17147/info Woltlab Burning Board is prone to a cross-site scripting vulnerability. This issue is due to a lack of proper sanitization of user-supplied input. An attacker may leverage this...

Extcalendar 1.0 - Cross-Site Scripting

Extcalendar 1.0 - Cross-Site Scripting source: https://www.securityfocus.com/bid/17146/info ExtCalendar is prone to four cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to ha...