Lucene search
K

6666 matches found

exploitpack
exploitpack
added 2011/09/19 12:0 a.m.12 views

net4visions (Multiple Products) - dir Multiple Cross-Site Scripting Vulnerabilities

net4visions Multiple Products - dir Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/49675/info net4visions is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these...

Exploits0
exploitpack
exploitpack
added 2011/09/19 12:0 a.m.27 views

Toko Lite CMS 1.5.2 - HTTP Response Splitting Cross-Site Scripting

Toko Lite CMS 1.5.2 - HTTP Response Splitting Cross-Site Scripting source: https://www.securityfocus.com/bid/49673/info Toko LiteCMS is prone to an HTTP-response-splitting vulnerability and multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An...

6.8AI score
Exploits0
Exploit DB
Exploit DB
added 2011/09/19 12:0 a.m.23 views

Toko Lite CMS 1.5.2 - HTTP Response Splitting / Cross-Site Scripting

source: https://www.securityfocus.com/bid/49673/info Toko LiteCMS is prone to an HTTP-response-splitting vulnerability and multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script cod...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2011/09/19 12:0 a.m.22 views

net4visions (Multiple Products) - 'dir' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/49675/info net4visions is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2011/09/18 12:0 a.m.22 views

iManager Plugin 1.2.8 Cross Site Scripting

iManager Plugin v1.2.8 dir Remote Cross-Site Scripting Vulnerability Vendor: net4visions.com Product web page: http://www.net4visions.com Affected version: alert'zsl' http://SOMECMS/jscripts/tinymce/plugins/imanager/scripts/phpThumb/demo/phpThumb.demo.random.php?dir=alert'zsl'...

Exploits0
seebug.org
seebug.org
added 2011/09/18 12:0 a.m.18 views

phpMyAdmin多个HTML注入漏洞

BUGTRAQ ID: 49648 phpMyAdmin是一个用PHP编写的,可以通过 web 方式控制和操作 MySQL 数据库。 phpMyAdmin在实现上存在多个HTML注入安全漏洞,远程攻击者可利用这些漏洞在受影响站点的用户浏览器中执行任意脚本代码,窃取cookie凭证。 1)在联机编辑和保存后,某些行内容的输入没有正确过滤就开始使用了,可被利用在查看恶意数据时执行插入的任意HTML和脚本代码。 2)传递到表格、列和索引名称的某些输入在使用前没有正确过滤,可被利用插入任意HTML和脚本代码,然后在查看时在用户浏览器中执行。 phpMyAdmin 3.x 厂商补丁:...

6.9AI score
Exploits0
Zero Science Lab
Zero Science Lab
added 2011/09/17 12:0 a.m.22 views

iManager Plugin v1.2.8 (dir) Remote Cross-Site Scripting Vulnerability

Summary With iManager you can manage your files/images on your webserver, and it provides user interface to most of the phpThumb functions. It works either stand-alone or as a plugin to WYSIWYG editors like tinyMCE, SPAW, htmlAREA, Xinha and FCKeditor. Description iManager suffers from a XSS...

6.1AI score
Exploits0
exploitpack
exploitpack
added 2011/09/16 12:0 a.m.11 views

PunBB 1.3.5 - Multiple Cross-Site Scripting Vulnerabilities

PunBB 1.3.5 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/49660/info PunBB is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary...

0.2AI score
Exploits0
Symantec
Symantec
added 2011/09/13 12:0 a.m.39 views

Microsoft SharePoint CVE-2011-1893 Cross Site Scripting Vulnerability

Description Microsoft SharePoint is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may...

4.3CVSS6.4AI score0.16774EPSS
Exploits0References1Affected Software4
OpenVAS
OpenVAS
added 2011/09/12 12:0 a.m.31 views

Zikula Application Framework 'themename' Parameter Cross Site Scripting Vulnerability

Zikula Application Framework is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user- supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may...

4.3CVSS7AI score0.02179EPSS
Exploits1References3
exploitpack
exploitpack
added 2011/09/12 12:0 a.m.8 views

Papoo CMS Light 4.0 - Multiple Cross-Site Scripting Vulnerabilities

Papoo CMS Light 4.0 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/49587/info Papoo CMS Light is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2011/09/12 12:0 a.m.16 views

Orion Network Performance Monitor 10.1.3 - CustomChart.aspx Cross-Site Scripting

Orion Network Performance Monitor 10.1.3 - CustomChart.aspx Cross-Site Scripting source: https://www.securityfocus.com/bid/49614/info Orion Network Performance Monitor is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker can explo...

6.8AI score
Exploits0
Exploit DB
Exploit DB
added 2011/09/12 12:0 a.m.25 views

Orion Network Performance Monitor 10.1.3 - 'CustomChart.aspx' Cross-Site Scripting

source: https://www.securityfocus.com/bid/49614/info Orion Network Performance Monitor is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to execute arbitrary script code in the browser of an unsuspecting...

7AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2011/09/11 12:0 a.m.17 views

FortiAnalyzer Appliance - Multiple Web Vulnerabilities

Document Title: =============== FortiAnalyzer Appliance - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=145 Release Date: ============= 2011-09-11 Vulnerability Laboratory ID VL-ID: ==================================== 145...

0.3AI score
Exploits0
Packet Storm
Packet Storm
added 2011/09/08 12:0 a.m.21 views

Zikula 1.3.0 Cross Site Scripting

Vulnerability ID: HTB23039 Reference: https://www.htbridge.ch/advisory/xssinzikula.html Product: Zikula Application Framework Vendor: Zikula Software Foundation http://zikula.org/ Vulnerable Version: 1.3.0, build 3168 and probably prior Tested Version: 1.3.0, build 3168 Vendor Notification: 17...

Exploits0
OpenVAS
OpenVAS
added 2011/09/08 12:0 a.m.7 views

Hastymail2 Multiple Cross Site Scripting Vulnerabilities

Hastymail2 is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the...

7AI score
Exploits0References3
OpenVAS
OpenVAS
added 2011/09/08 12:0 a.m.12 views

Hastymail2 < 1.1 RC1 Multiple XSS Vulnerabilities

Hastymail2 is prone to multiple cross-site scripting XSS vulnerabilities because it fails to sufficiently sanitize user-supplied data. Copyright C 2011 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

6.8AI score
Exploits0References2
Exploit DB
Exploit DB
added 2011/09/08 12:0 a.m.22 views

SkaDate - &#039;blogs.php&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/49502/info SkaDate is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2011/09/07 12:0 a.m.33 views

MantisBT 1.2.7 Cross Site Scripting / Local File Inclusion

Vulnerability ID: HTB23045 Reference: https://www.htbridge.ch/advisory/multiplevulnerabilitiesinmantisbt.html Product: MantisBT Vendor: www.mantisbt.org http://www.mantisbt.org/ Vulnerable Version: 1.2.7 and probably prior Tested Version: 1.2.7 Vendor Notification: 31 August 2011 Vulnerability...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2011/09/06 12:0 a.m.13 views

Kisanji - gr Cross-Site Scripting

Kisanji - gr Cross-Site Scripting source: https://www.securityfocus.com/bid/49468/info Kisanji is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

6.8AI score
Exploits0
Rows per page
Query Builder