6666 matches found
ManageEngine Firewall Analyzer 7.2 - fwcreateAnomaly.do?subTab Cross-Site Scripting
ManageEngine Firewall Analyzer 7.2 - fwcreateAnomaly.do?subTab Cross-Site Scripting source: https://www.securityfocus.com/bid/52841/info Firewall Analyzer is prone to multiple cross-site scripting vulnerabilities because it fails to sanitize user-supplied input. An attacker may leverage these...
ManageEngine Firewall Analyzer 7.2 - fwindex2.do Multiple Cross-Site Scripting Vulnerabilities
ManageEngine Firewall Analyzer 7.2 - fwindex2.do Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/52841/info Firewall Analyzer is prone to multiple cross-site scripting vulnerabilities because it fails to sanitize user-supplied input. An attacker may leverag...
ManageEngine Firewall Analyzer 7.2 - 'fw/mindex.do?url' Cross-Site Scripting
source: https://www.securityfocus.com/bid/52841/info Firewall Analyzer is prone to multiple cross-site scripting vulnerabilities because it fails to sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...
ManageEngine Firewall Analyzer 7.2 - 'fw/syslogViewer.do?port' Cross-Site Scripting
source: https://www.securityfocus.com/bid/52841/info Firewall Analyzer is prone to multiple cross-site scripting vulnerabilities because it fails to sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...
ManageEngine Firewall Analyzer 7.2 - 'fw/createAnomaly.do?subTab' Cross-Site Scripting
source: https://www.securityfocus.com/bid/52841/info Firewall Analyzer is prone to multiple cross-site scripting vulnerabilities because it fails to sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...
JamWiki 1.1.5 - 'num' Cross-Site Scripting
source: https://www.securityfocus.com/bid/52829/info JamWiki is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affecte...
Simple Machines Forum (SMF) 2.0.2 - scheduled Cross-Site Scripting
Simple Machines Forum SMF 2.0.2 - scheduled Cross-Site Scripting source: https://www.securityfocus.com/bid/52822/info Simple Machines Forum is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary...
Barracuda Cloud CC v3.04.015 - Multiple Web Vulnerabilities
Exploit for cgi platform in category web applications Title: ====== Barracuda Cloud CC v3.04.015 - Multiple Web Vulnerabilities Introduction: ============= The Barracuda Control Center is a comprehensive cloud-based service that enables administrators to monitor and configure multiple Barracuda...
EZ Publish 4.x 'ezjscore' Module - Cross-Site Scripting
source: https://www.securityfocus.com/bid/52807/info eZ Publish is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...
Invision Power Board (IP.Board) 4.2.1 - searchText Cross-Site Scripting
Invision Power Board IP.Board 4.2.1 - searchText Cross-Site Scripting source: https://www.securityfocus.com/bid/52740/info Invision Power Board is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitra...
WordPress Plugin Integrator 1.32 - 'redirect_to' Cross-Site Scripting
source: https://www.securityfocus.com/bid/52739/info WordPress Integrator is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context o...
Matthew1471 BlogX - Multiple Cross-Site Scripting Vulnerabilities
Matthew1471 BlogX - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/52730/info Matthew1471 BlogX is prone to multiple cross-site scripting vulnerabilities because it fails to sanitize user-supplied input. An attacker may leverage these issues to execute...
Zumset.com FbiLike 1.00 - 'id' Cross-Site Scripting
source: https://www.securityfocus.com/bid/52720/info FbiLike is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affecte...
Event Calendar PHP - cal_year Cross-Site Scripting
Event Calendar PHP - calyear Cross-Site Scripting source: https://www.securityfocus.com/bid/52701/info Event Calendar PHP is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...
Event Calendar PHP - 'cal_year' Cross-Site Scripting
source: https://www.securityfocus.com/bid/52701/info Event Calendar PHP is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...
phpList 2.10.17 Remote SQL Injection / XSS Vulnerability
Exploit for php platform in category web applications phpList 2.10.17 Remote SQL Injection and XSS Vulnerability Vendor: phpList Ltd Product web page: http://www.phplist.com Affected version: 2.10.17 Summary: phplist is the world's most popular open source email campaign manager. phplist is free ...
Open Journal Systems (OJS) 2.3.6 - Multiple Script Arbitrary File Upload
Open Journal Systems OJS 2.3.6 - Multiple Script Arbitrary File Upload source: https://www.securityfocus.com/bid/52666/info Open Journal Systems is prone to following multiple vulnerabilities because the software fails to sufficiently sanitize user-supplied input: 1. An arbitrary-file-deletion...
Minify 2.1.x - 'g' Cross-Site Scripting
source: https://www.securityfocus.com/bid/52672/info Minify is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected...
Open Journal Systems (OJS) 2.3.6 - '/lib/pkp/classes/core/String.inc.php?String::stripUnsafeHtml()' Method Cross-Site Scripting
source: https://www.securityfocus.com/bid/52666/info Open Journal Systems is prone to following multiple vulnerabilities because the software fails to sufficiently sanitize user-supplied input: 1. An arbitrary-file-deletion vulnerability 2. A security vulnerability 3. An arbitrary-file-upload...
CMSimple 3.3 - 'index.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/52661/info CMSimple is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affect...