6666 matches found
Sockso <= 1.51 XSS Vulnerability - Active Check
Sockso is prone to persistent cross-site scripting XSS vulnerability. Copyright C 2012 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...
WordPress Plugin WP-FaceThumb 0.1 - 'pagination_wp_facethum' Cross-Site Scripting
source: https://www.securityfocus.com/bid/53497/info WP-FaceThumb is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...
WordPress Plugin WP-FaceThumb 0.1 - pagination_wp_facethum Cross-Site Scripting
WordPress Plugin WP-FaceThumb 0.1 - paginationwpfacethum Cross-Site Scripting source: https://www.securityfocus.com/bid/53497/info WP-FaceThumb is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitra...
Travelon Express CMS 6.2.2 - Multiple Vulnerabilities
Title: ====== Travelon Express CMS v6.2.2 - Multiple Web Vulnerabilities Date: ===== 2012-05-10 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=530 VL-ID: ===== 530 Common Vulnerability Scoring System: ==================================== 8.1 Introduction: =============...
Chevereto 1.91 - '/Upload/engine.php?v' Cross-Site Scripting
source: https://www.securityfocus.com/bid/53448/info Chevereto Image Upload Script is prone to a cross-site scripting vulnerability and an information-disclosure vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker m...
PivotX 2.3.2 - 'ajaxhelper.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/53434/info PivotX is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...
PivotX 2.3.2 - ajaxhelper.php Cross-Site Scripting
PivotX 2.3.2 - ajaxhelper.php Cross-Site Scripting source: https://www.securityfocus.com/bid/53434/info PivotX is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the...
Linksys WRT54GL Wireless Router - Cross-Site Request Forgery
Linksys WRT54GL Wireless Router - Cross-Site Request Forgery source: https://www.securityfocus.com/bid/53427/info The Linksys WRT54GL router is prone to a cross-site request-forgery vulnerability. Successful exploits may allow attackers to run privileged commands on the affected device, change...
iGuard Security Access Control Cross Site Scripting Vulnerability
iGuard Security Access Control is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input in the embedded web server. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C ...
Ramui Forum Script - 'query' Cross-Site Scripting
source: https://www.securityfocus.com/bid/53411/info Ramui Forum Script is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...
Oracle GlassFish Server 3.1.1 Multiple Vulnerabilities (Apr 2012)
Oracle GlassFish Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
iGuard Security Access Control Device Firmware 3.6.7427A - Cross-Site Scripting
source: https://www.securityfocus.com/bid/53355/info iGuard Security Access Control is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input in the embedded web server. An attacker may leverage this issue to execute arbitrary script code in the...
iGuard Security Access Control Device Firmware 3.6.7427A - Cross-Site Scripting
iGuard Security Access Control Device Firmware 3.6.7427A - Cross-Site Scripting source: https://www.securityfocus.com/bid/53355/info iGuard Security Access Control is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input in the embedded web server...
WordPress Zingiri Web Shop Plugin <= 2.4.2 - Persistent XSS
WordPress Zingiri Web Shop plugin is prone to persistent cross-site scripting vulnerabilities. It fails to properly clean up user-supplied input. An attacker may execute arbitrary script code in the browser of an user in the context of the affected site. In this way the attacker can steal...
Car Portal CMS v3.0 - Multiple Vulnerabilities
Exploit for php platform in category web applications Title: ====== Car Portal CMS v3.0 - Multiple Web Vulnerabilities Introduction: ============= Car Portal is a php software product for running auto classifieds websites. It provides functionality for the private sellers to sign up, list their c...
Car Portal CMS 3.0 - Multiple Vulnerabilities
Car Portal CMS 3.0 - Multiple Vulnerabilities Title: ====== Car Portal CMS v3.0 - Multiple Web Vulnerabilities Date: ===== 2012-04-24 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=502 VL-ID: ===== 502 Introduction: ============= Car Portal is a php software product fo...
Debian Security Advisory DSA 2461-1 (spip)
The remote host is missing an update to spip announced via advisory DSA 2461-1. OpenVAS Vulnerability Test $Id: deb24611.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2461-1 spip Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...
HelpDesk Multiple Persistent XSS Vulnerabilities
HelpDesk is prone to multiple persistent cross-site scripting XSS vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...
Debian: Security Advisory (DSA-2461-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MySQLDumper 1.24.4 - 'install.php' Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/53306/info MySQLDumper is prone to multiple security vulnerabilities, including: 1. Multiple cross-site scripting vulnerabilities. 2. A local file-include vulnerability. 3. Multiple cross-site request-forgery vulnerabilities. 4. Multiple...