6666 matches found
eFront Community++ v3.6.10 - Multiple Web Vulnerabilities
Document Title: =============== eFront Community++ v3.6.10 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=421 Release Date: ============= 2012-02-09 Vulnerability Laboratory ID VL-ID: ==================================== 4...
ManageEngine ADManager Plus 5.2 Build 5210 - 'Operation' Cross-Site Scripting
source: https://www.securityfocus.com/bid/51893/info ManageEngine ADManager Plus is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an...
project-open 3.4.x - account-closed.tcl Cross-Site Scripting
project-open 3.4.x - account-closed.tcl Cross-Site Scripting source: https://www.securityfocus.com/bid/51842/info project-open is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary...
project-open 3.4.x - 'account-closed.tcl' Cross-Site Scripting
source: https://www.securityfocus.com/bid/51842/info project-open is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the conte...
SiT! Support Incident Tracker 3.64 XSS / CSRF / SQL Injection
Advisory Details: High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in SiT! Support Incident Tracker, which can be exploited to perform SQL injection, cross-site scripting, cross-site request forgery attacks. 1 Input passed via the "start" GET parameter to...
phpLDAPadmin 'base' Parameter Cross Site Scripting Vulnerability
This host is running phpLDAPadmin and is prone to cross site scripting vulnerability. OpenVAS Vulnerability Test $Id: gbphpldapadminbaseparamxssvuln.nasl 5792 2017-03-30 13:18:14Z cfi $ phpLDAPadmin 'base' Parameter Cross Site Scripting Vulnerability Authors: Sooraj KS Copyright: Copyright c 2012...
iknSupport search Module - Cross-Site Scripting
iknSupport search Module - Cross-Site Scripting source: https://www.securityfocus.com/bid/51803/info iknSupport is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...
Sphinix Mobile Web Server 3.1.2.47 Multiple Persistent XSS Vulnerabilities
Exploit for windows platform in category web applications Title : Sphinix Mobile Web Server Multiple Persistent XSS Vulnerabilities Author : Prabhu S Angadi SecPod Technologies www.secpod.com Vendor : http://www.sphinx-soft.com/MWS/index.html Advisory : http://secpod.org/blog/?p=453...
Joomla! Component Currency Converter 1.0.0 - from Cross-Site Scripting
Joomla! Component Currency Converter 1.0.0 - from Cross-Site Scripting source: https://www.securityfocus.com/bid/51804/info The Currency Converter component for Joomla! is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may...
phpLDAPadmin < 1.2.3 XSS Vulnerability - Active Check
phpLDAPadmin is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
iknSupport 'search' Module - Cross-Site Scripting
source: https://www.securityfocus.com/bid/51803/info iknSupport is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of...
phpLDAPadmin 1.2.0.5-2 - server_id Cross-Site Scripting
phpLDAPadmin 1.2.0.5-2 - serverid Cross-Site Scripting source: https://www.securityfocus.com/bid/51794/info phpLDAPadmin is prone to cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script co...
Support Incident Tracker SiT! Multiple SQL Injection And XSS Vulnerabilities
This host is running Support Incident Tracker and is prone to multiple sql injection and cross site scripting vulnerabilities. OpenVAS Vulnerability Test $Id: gbsitmultsqlinjandxssvuln.nasl 5956 2017-04-14 09:02:12Z teissa $ Support Incident Tracker SiT! Multiple SQL Injection And XSS...
phpLDAPadmin 1.2.0.5-2 - 'server_id' Cross-Site Scripting
source: https://www.securityfocus.com/bid/51794/info phpLDAPadmin is prone to cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the contex...
4Images 1.7.10 - admincategories.php?cat_parent_id SQL Injection
4Images 1.7.10 - admincategories.php?catparentid SQL Injection source: https://www.securityfocus.com/bid/51774/info 4images is prone to multiple input-validation vulnerabilities including: 1. A cross-site scripting vulnerability. 2. An open-redirection vulnerability. 3. An SQL-injection...
4Images 1.7.10 - admincategories.php?cat_parent_id Cross-Site Scripting
4Images 1.7.10 - admincategories.php?catparentid Cross-Site Scripting source: https://www.securityfocus.com/bid/51774/info 4images is prone to multiple input-validation vulnerabilities including: 1. A cross-site scripting vulnerability. 2. An open-redirection vulnerability. 3. An SQL-injection...
4Images 1.7.10 - '/admin/categories.php?cat_parent_id' Cross-Site Scripting
source: https://www.securityfocus.com/bid/51774/info 4images is prone to multiple input-validation vulnerabilities including: 1. A cross-site scripting vulnerability. 2. An open-redirection vulnerability. 3. An SQL-injection vulnerability. An attacker may leverage these issues to perform spoofing...
Cisco Collaboration Server 'LoginPage.jhtml' Cross Site Scripting Vulnerability
Cisco Collaboration Server is prone to a cross-site scripting vulnerability because it fails to properly sanitize user- supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow t...
WordPress Plugin Slideshow Gallery 1.1.x - border Cross-Site Scripting
WordPress Plugin Slideshow Gallery 1.1.x - border Cross-Site Scripting source: https://www.securityfocus.com/bid/51678/info Slideshow Gallery for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this iss...
WordPress Plugin Slideshow Gallery 1.1.x - 'border' Cross-Site Scripting
source: https://www.securityfocus.com/bid/51678/info Slideshow Gallery for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting...