Odysseus Blog 1.0 Blog.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/21128/info Odysseus Blog is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the...

Meeting Room Booking System (MRBS) 1.2.6 week.php area Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/30531/info MRBS Meeting Room Booking Software is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary...

Simple Machines Forum 1.0/1.1 Index.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/20629/info Simple Machines Forum is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code...

Savant Web Server 3.1 CGITest.HTML Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8242/info cgitest.html has been reported prone to cross-site scripting attacks. The issue occurs due to a lack of sufficient sanitization performed on data supplied to the cgitest.html script. This issue could be exploite...

GNU Mailman 2.0.x Subscribe Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5298/info GNU Mailman is prone to a cross-site scripting vulnerability. Arbitrary HTML and script code are not sanitized from the URI parameters of mailing list subscribe scripts. An attacker may exploit this issue by...

Docebo CMS 3.0.x index.php searchkey Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/22719/info Docebo is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser ...

RI Blog 1.3 Search.ASP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/21880/info RI Blog is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code execute in the...

Invision Power Board 3.0 Multiple HTML-Injection and Information Disclosure Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/34725/info Invision Power Board is prone to an information-disclosure issue and multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to...

OpenNMS 1.5.x notification/list.jsp username Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/31410/info OpenNMS is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser...

MyGuestBK Add.asp Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7211/info It has been reported that MyGuestBK does not sufficiently filter user-supplied URI parameters on the MyGuestBK Information Server 'Add Entry' page. It may be possible for a remote attacker to create a malicious...

PHP 4.x Transparent Session ID Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7761/info A cross-site scripting vulnerability has been discovered in PHP. The problem occurs due to insufficient sanitization of the PHPSESSID URI parameter. An attacker may be capable of exploiting this vulnerability by...

Ultimate PHP Board 1.8/1.9 ViewForum.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13621/info Ultimate PHP Board is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have...

Coppermine Photo Gallery <= 1.4.21 'css' Parameter Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/34782/info Coppermine Photo Gallery is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script...

Land Down Under 800 index.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/14619/info Land Down Under is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these...

AShop Deluxe 4.5 shipping.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/21845/info AShop Deluxe and AShop Administration Panel are prone to multiple cross-site scripting vulnerabilities because they fail to sufficiently sanitize user-supplied input data. An attacker may leverage these issues ...

ht://Dig 3.2 Htsearch Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/26610/info ht://Dig is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. Exploiting this issue allows an attacker to execute arbitrary HTML or script code in a...

Piwik <= 0.5.5 'form_url' Parameter Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/39144/info Piwik is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

Key Focus Web Server 3.1 Index.WKF Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/24623/info Key Focus Web Server is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code...

Microsoft SharePoint Server 2.0 Picture Source HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/28706/info Microsoft SharePoint Server is prone to an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied input data. Note that to perform attacks, an attacker requires access to a user...

Microsoft Content Management Server 2001 Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5922/info Microsoft Content Management Server 2001 is reported to be prone to cross-site scripting attacks. An attacker could construct a malicious link to a vulnerable host that contains arbitrary HTML and script code. I...