Invision Power Board (IP.Board) 2.0.4 - Mail Action 'MID' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17144/info Invision Power Board is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code...

Invision Power Services Invision Board 2.0.4 - Members Action Multiple Cross-Site Scripting Vulnerabilities

Invision Power Services Invision Board 2.0.4 - Members Action Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/17144/info Invision Power Board is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to...

Invision Power Board (IP.Board) 2.0.4 - Help Action HID Cross-Site Scripting

Invision Power Board IP.Board 2.0.4 - Help Action HID Cross-Site Scripting source: https://www.securityfocus.com/bid/17144/info Invision Power Board is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied...

Invision Power Board (IP.Board) 2.0.4 - Search Action Multiple Cross-Site Scripting Vulnerabilities

Invision Power Board IP.Board 2.0.4 - Search Action Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/17144/info Invision Power Board is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly...

phpmyadmin -- 'set_theme' Cross-Site Scripting

Secunia reports: A vulnerability has been reported in phpMyAdmin, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed to the "settheme" parameter isn't properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTM...

Invision Power Services Invision Board 2.0.4 - Members Action Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/17144/info Invision Power Board is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code...

Invision Power Board (IP.Board) 2.0.4 - 'index.php?st' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17144/info Invision Power Board is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code...

phpMyAdmin 2.8.1 - Set_Theme Cross-Site Scripting

source: https://www.securityfocus.com/bid/17142/info phpMyAdmin is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser o...

Contrexx CMS 1.0.x - index.php Cross-Site Scripting

Contrexx CMS 1.0.x - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/17128/info Contrexx CMS is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue t...

[SA19215] Jupiter Content Manager "image" BBcode Script Insertion

TITLE: Jupiter Content Manager "image" BBcode Script Insertion SECUNIA ADVISORY ID: SA19215 VERIFY ADVISORY: http://secunia.com/advisories/19215/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: Jupiter Content Manager 1.x http://secunia.com/product/8685/...

[SA19204] WMNews Cross-Site Scripting Vulnerabilities

TITLE: WMNews Cross-Site Scripting Vulnerabilities SECUNIA ADVISORY ID: SA19204 VERIFY ADVISORY: http://secunia.com/advisories/19204/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: WMNews 0.x http://secunia.com/product/8673/ DESCRIPTION: R00T3RR0R has reported...

vCard 2.9 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/18122/info vCard is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the...

QwikiWiki 1.4/1.5 - 'pageindex.php?help' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17064/info QwikiWiki is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in...

WMNews - footer.php?ctrrowcol Cross-Site Scripting

WMNews - footer.php?ctrrowcol Cross-Site Scripting source: https://www.securityfocus.com/bid/17076/info WMNews is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these...

WMNews - wmview.php?ArtCat Cross-Site Scripting

WMNews - wmview.php?ArtCat Cross-Site Scripting source: https://www.securityfocus.com/bid/17076/info WMNews is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issu...

MyBloggie 2.1.22.1.3 - deluser.php Cross-Site Scripting

MyBloggie 2.1.22.1.3 - deluser.php Cross-Site Scripting source: https://www.securityfocus.com/bid/17048/info MyBloggie is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage...

DCP-Portal 3.7/4.x/5.x/6.x - 'mycontents.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/17050/info DCP Portal is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in...

DCP-Portal 3.74.x5.x6.x - forums.php Multiple Cross-Site Scripting Vulnerabilities

DCP-Portal 3.74.x5.x6.x - forums.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/17050/info DCP Portal is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied...

MyBloggie 2.1.22.1.3 - adduser.php Cross-Site Scripting

MyBloggie 2.1.22.1.3 - adduser.php Cross-Site Scripting source: https://www.securityfocus.com/bid/17048/info MyBloggie is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage...

MyBloggie 2.1.22.1.3 - delcat.php Cross-Site Scripting

MyBloggie 2.1.22.1.3 - delcat.php Cross-Site Scripting source: https://www.securityfocus.com/bid/17048/info MyBloggie is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage...