6666 matches found
KnowledgeTree 3.x - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/51373/info KnowledgeTree is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in...
SAPID CMS Multiple Remote File Include Vulnerabilities
SAPID CMS is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these vulnerabilities to obtain potentially sensitive information or to execute arbitrary script code in the context of the webserver process. This...
Microsoft AntiXSS 34.0 Library Sanitization Module - Security Bypass
Microsoft AntiXSS 34.0 Library Sanitization Module - Security Bypass source: https://www.securityfocus.com/bid/51291/info Microsoft Anti-Cross Site Scripting AntiXSS Library is prone to a security-bypass vulnerability that affects the sanitization module. An attacker can exploit this vulnerabilit...
Advanced File Management 1.4 - users.php Cross-Site Scripting
Advanced File Management 1.4 - users.php Cross-Site Scripting source: https://www.securityfocus.com/bid/51339/info Advanced File Management is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute...
Advanced File Management 1.4 - 'users.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/51339/info Advanced File Management is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in...
ATMAIL WebMail Admin 6.3.4 Cross Site Scripting
Title: ====== ATMAIL WebMail Admin v6.3.4 - Multiple Vulnerabilities Date: ===== 2012-01-07 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=376 VL-ID: ===== 376 Introduction: ============= Atmail is a commercial Linux messaging platform provider. The company was founded...
ATMAIL WebMail v6.3.4 - Multiple Web Vulnerabilities
Document Title: =============== ATMAIL WebMail v6.3.4 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=375 Release Date: ============= 2012-01-06 Vulnerability Laboratory ID VL-ID: ==================================== 375...
SQLiteManager 'dbsel' And 'nsextt' Parameters Multiple XSS Vulnerabilities
The host is running SQLiteManager and is prone to multiple cross site scripting vulnerabilities. OpenVAS Vulnerability Test $Id: gbsqlitemanagermultxssvuln.nasl 5950 2017-04-13 09:02:06Z teissa $ SQLiteManager 'dbsel' And 'nsextt' Parameters Multiple XSS Vulnerabilities Authors: Rachana Shetty...
SQLiteManager <= 1.2.4 Multiple XSS Vulnerabilities
SQLiteManager is prone to multiple cross-site scripting XSS vulnerabilities. Copyright C 2012 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is...
ATMAIL WebMail v6.3.4 - Multiple Web Vulnerabilities
Document Title: =============== ATMAIL WebMail v6.3.4 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=375 Release Date: ============= 2012-01-06 Vulnerability Laboratory ID VL-ID: ==================================== 375...
SQLiteManager 1.2.4 - index.php Multiple Cross-Site Scripting Vulnerabilities
SQLiteManager 1.2.4 - index.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/51294/info SQLiteManager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically...
VertrigoServ 2.25 - extensions.php Script Cross-Site Scripting
VertrigoServ 2.25 - extensions.php Script Cross-Site Scripting source: https://www.securityfocus.com/bid/51293/info VertrigoServ is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary...
SQLiteManager 1.2.4 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/51294/info SQLiteManager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. An attacker may leverage these issues to execute arbitrary scrip...
Limny 3.0.1 Cross Site Scripting
Limny 3.0.1 login.php Remote URI Based Cross-Site Scripting Vulnerability Vendor: Hamidreza Samak Product web page: http://www.limny.org Affected version: 3.0.1 Summary: Limny is a free and open-source content management framework with a focus on ease to use and develop. It can be used as a stabl...
Multiple vulnerabilities in OSclass
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in OSclass, which can be exploited to perform cross-site scripting and sql injection attacks. 1 SQL Injection in OSclass: CVE-2012-0973. Input passed via the "sCategory" GET parameter to /index.php is not properly...
WordPress Plugin WHOIS 1.4.2 3 - domain Cross-Site Scripting
WordPress Plugin WHOIS 1.4.2 3 - domain Cross-Site Scripting source: https://www.securityfocus.com/bid/51244/info WHOIS for WordPress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrar...
WordPress Plugin Comment Rating 2.9.20 - path Cross-Site Scripting
WordPress Plugin Comment Rating 2.9.20 - path Cross-Site Scripting source: https://www.securityfocus.com/bid/51241/info The Comment Rating plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker could leverag...
WordPress Plugin Comment Rating 2.9.20 - 'path' Cross-Site Scripting
source: https://www.securityfocus.com/bid/51241/info The Comment Rating plugin for WordPress is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker could leverage this issue to execute arbitrary script code in the browser of an...
WordPress WP Symposium Plugin 'uid' Parameter Cross-Site Scripting Vulnerability
The WordPress plugin SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wordpress:wordpress"; ifdescription...
FuseTalk Forums 3.2 - 'windowed' Cross-Site Scripting
source: https://www.securityfocus.com/bid/51227/info FuseTalk Forums is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker could leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...