Lucene search
K

6666 matches found

Exploit DB
Exploit DB
added 2012/01/11 12:0 a.m.22 views

KnowledgeTree 3.x - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/51373/info KnowledgeTree is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in...

7.4AI score
Exploits0
OpenVAS
OpenVAS
added 2012/01/10 12:0 a.m.17 views

SAPID CMS Multiple Remote File Include Vulnerabilities

SAPID CMS is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these vulnerabilities to obtain potentially sensitive information or to execute arbitrary script code in the context of the webserver process. This...

0.5AI score
Exploits0References2
exploitpack
exploitpack
added 2012/01/10 12:0 a.m.13 views

Microsoft AntiXSS 34.0 Library Sanitization Module - Security Bypass

Microsoft AntiXSS 34.0 Library Sanitization Module - Security Bypass source: https://www.securityfocus.com/bid/51291/info Microsoft Anti-Cross Site Scripting AntiXSS Library is prone to a security-bypass vulnerability that affects the sanitization module. An attacker can exploit this vulnerabilit...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2012/01/09 12:0 a.m.13 views

Advanced File Management 1.4 - users.php Cross-Site Scripting

Advanced File Management 1.4 - users.php Cross-Site Scripting source: https://www.securityfocus.com/bid/51339/info Advanced File Management is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2012/01/09 12:0 a.m.24 views

Advanced File Management 1.4 - 'users.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/51339/info Advanced File Management is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2012/01/08 12:0 a.m.38 views

ATMAIL WebMail Admin 6.3.4 Cross Site Scripting

Title: ====== ATMAIL WebMail Admin v6.3.4 - Multiple Vulnerabilities Date: ===== 2012-01-07 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=376 VL-ID: ===== 376 Introduction: ============= Atmail is a commercial Linux messaging platform provider. The company was founded...

0.1AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2012/01/06 12:0 a.m.36 views

ATMAIL WebMail v6.3.4 - Multiple Web Vulnerabilities

Document Title: =============== ATMAIL WebMail v6.3.4 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=375 Release Date: ============= 2012-01-06 Vulnerability Laboratory ID VL-ID: ==================================== 375...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2012/01/06 12:0 a.m.77 views

SQLiteManager 'dbsel' And 'nsextt' Parameters Multiple XSS Vulnerabilities

The host is running SQLiteManager and is prone to multiple cross site scripting vulnerabilities. OpenVAS Vulnerability Test $Id: gbsqlitemanagermultxssvuln.nasl 5950 2017-04-13 09:02:06Z teissa $ SQLiteManager 'dbsel' And 'nsextt' Parameters Multiple XSS Vulnerabilities Authors: Rachana Shetty...

4.3CVSS0.1AI score0.05101EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2012/01/06 12:0 a.m.36 views

SQLiteManager <= 1.2.4 Multiple XSS Vulnerabilities

SQLiteManager is prone to multiple cross-site scripting XSS vulnerabilities. Copyright C 2012 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is...

4.3CVSS6.2AI score0.05101EPSS
Exploits1References2
Vulnerability Lab
Vulnerability Lab
added 2012/01/06 12:0 a.m.19 views

ATMAIL WebMail v6.3.4 - Multiple Web Vulnerabilities

Document Title: =============== ATMAIL WebMail v6.3.4 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=375 Release Date: ============= 2012-01-06 Vulnerability Laboratory ID VL-ID: ==================================== 375...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2012/01/05 12:0 a.m.16 views

SQLiteManager 1.2.4 - index.php Multiple Cross-Site Scripting Vulnerabilities

SQLiteManager 1.2.4 - index.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/51294/info SQLiteManager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2012/01/05 12:0 a.m.11 views

VertrigoServ 2.25 - extensions.php Script Cross-Site Scripting

VertrigoServ 2.25 - extensions.php Script Cross-Site Scripting source: https://www.securityfocus.com/bid/51293/info VertrigoServ is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary...

6.8AI score
Exploits0
Exploit DB
Exploit DB
added 2012/01/05 12:0 a.m.27 views

SQLiteManager 1.2.4 - &#039;index.php&#039; Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/51294/info SQLiteManager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage these issues to execute arbitrary scrip...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2012/01/04 12:0 a.m.22 views

Limny 3.0.1 Cross Site Scripting

Limny 3.0.1 login.php Remote URI Based Cross-Site Scripting Vulnerability Vendor: Hamidreza Samak Product web page: http://www.limny.org Affected version: 3.0.1 Summary: Limny is a free and open-source content management framework with a focus on ease to use and develop. It can be used as a stabl...

7.4AI score
Exploits0
htbridge
htbridge
added 2012/01/04 12:0 a.m.52 views

Multiple vulnerabilities in OSclass

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in OSclass, which can be exploited to perform cross-site scripting and sql injection attacks. 1 SQL Injection in OSclass: CVE-2012-0973. Input passed via the "sCategory" GET parameter to /index.php is not properly...

7.5CVSS7.2AI score0.03521EPSS
Exploits1Affected Software1
exploitpack
exploitpack
added 2012/01/03 12:0 a.m.12 views

WordPress Plugin WHOIS 1.4.2 3 - domain Cross-Site Scripting

WordPress Plugin WHOIS 1.4.2 3 - domain Cross-Site Scripting source: https://www.securityfocus.com/bid/51244/info WHOIS for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrar...

6.7AI score
Exploits0
exploitpack
exploitpack
added 2012/01/03 12:0 a.m.24 views

WordPress Plugin Comment Rating 2.9.20 - path Cross-Site Scripting

WordPress Plugin Comment Rating 2.9.20 - path Cross-Site Scripting source: https://www.securityfocus.com/bid/51241/info The Comment Rating plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker could leverag...

6.7AI score
Exploits0
Exploit DB
Exploit DB
added 2012/01/03 12:0 a.m.25 views

WordPress Plugin Comment Rating 2.9.20 - &#039;path&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/51241/info The Comment Rating plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker could leverage this issue to execute arbitrary script code in the browser of an...

7AI score
Exploits0
OpenVAS
OpenVAS
added 2012/01/02 12:0 a.m.29 views

WordPress WP Symposium Plugin 'uid' Parameter Cross-Site Scripting Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wordpress:wordpress"; ifdescription...

4.3CVSS6.7AI score0.02368EPSS
Exploits0References6
Exploit DB
Exploit DB
added 2012/01/02 12:0 a.m.23 views

FuseTalk Forums 3.2 - &#039;windowed&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/51227/info FuseTalk Forums is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker could leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

7.4AI score
Exploits0
Rows per page
Query Builder