6666 matches found
Nasim Guest Book - 'page' Cross-Site Scripting
source: https://www.securityfocus.com/bid/42503/info Nasim Guest Book is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...
Microsoft Internet Explorer Table Element Use After Free Remote Code Execution Vulnerability
Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability. Successful exploits will allow an attacker to run arbitrary code in the context of the user running the application. Failed attacks will cause denial-of-service conditions. Technologies Affected Avaya Aura...
Microsoft Internet Explorer Event Handler Cross Domain Information Disclosure Vulnerability
Description Microsoft Internet Explorer is prone to a cross-domain information-disclosure vulnerability because the application fails to properly enforce the same-origin policy. An attacker can exploit this issue to access local files or content from a browser window in another domain or security...
Prado Portal 1.2 - 'page' Cross-Site Scripting
source: https://www.securityfocus.com/bid/42276/info Prado Portal is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context ...
Sun Java System Portal Server Multiple Cross Site Scripting Vulnerabilities
This host is running Sun Java System Portal Server and is prone to multiple unspecified Cross site scripting vulnerabilities. OpenVAS Vulnerability Test $Id: gbsunjavasystemportalserverxssvuln.nasl 5373 2017-02-20 16:27:48Z teissa $ Sun Java System Portal Server Multiple Cross Site Scripting...
Muraus Open Blog - Multiple HTML Injection Vulnerabilities
source: https://www.securityfocus.com/bid/42255/info Tomaž Muraus Open Blog is prone to multiple HTML-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Successful exploits will allow attacker-supplie...
Hulihan Applications Amethyst 0.1.5 - Multiple HTML Injection Vulnerabilities
source: https://www.securityfocus.com/bid/42253/info Hulihan Applications Amethyst is prone to multiple HTML-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script code...
Hulihan Applications BXR 0.6.8 - SQL Injection / HTML Injection
source: https://www.securityfocus.com/bid/42247/info Hulihan Applications BXR is prone to an SQL-injection vulnerability and multiple HTML-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input. An attacker may leverage these issues to compromise the application,...
Cross-site Scripting (XSS) Vulnerability in MAXdev
High-Tech Bridge SA Security Research Lab has discovered vulnerability in MAXdev which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting XSS vulnerability in MAXdev The vulnerability exists due to input sanitation error in the "sid" parameter in modules.php. A...
Hulihan Applications BXR 0.6.8 - SQL Injection HTML Injection
Hulihan Applications BXR 0.6.8 - SQL Injection HTML Injection source: https://www.securityfocus.com/bid/42247/info Hulihan Applications BXR is prone to an SQL-injection vulnerability and multiple HTML-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input. An...
Muraus Open Blog - Multiple HTML Injection Vulnerabilities
Muraus Open Blog - Multiple HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/42255/info Tomaž Muraus Open Blog is prone to multiple HTML-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in dynamically generat...
Hulihan Applications Amethyst 0.1.5 - Multiple HTML Injection Vulnerabilities
Hulihan Applications Amethyst 0.1.5 - Multiple HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/42253/info Hulihan Applications Amethyst is prone to multiple HTML-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using ...
DT Centrepiece 4.5 - Cross-Site Scripting Security Bypass
DT Centrepiece 4.5 - Cross-Site Scripting Security Bypass source: https://www.securityfocus.com/bid/42243/info DT Centrepiece is prone to multiple cross-site scripting vulnerabilities and multiple security-bypass vulnerabilities. An attacker may leverage the cross-site scripting issues to execute...
MyIT CRM - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/42140/info MyIT CRM is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...
Multiple Vulnerabilities in CMSimple
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in CMSimple which could be exploited to perform cross-site scripting and cross-site request forgery attacks. 1 Cross-site scripting XSS vulnerabilities in CMSimple The vulnerability exists due to input sanitation...
osCSS 'page' Parameter Cross Site Scripting Vulnerability
The host is running osCSS and is prone to cross site scripting vulnerability. OpenVAS Vulnerability Test $Id: secpodoscssxssvuln.nasl 5401 2017-02-23 09:46:07Z teissa $ osCSS 'page' Parameter Cross Site Scripting Vulnerability Authors: Sooraj KS Copyright: Copyright c 2010 SecPod,...
nuBuilder <= 10.04.20 RFI Vulnerability
nuBuilder is prone to a remote file-include vulnerability because it fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
Sourcefabric Campsite - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/42107/info Sourcefabric Campsite is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting...
Sourcefabric Campsite - Multiple Cross-Site Scripting Vulnerabilities
Sourcefabric Campsite - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/42107/info Sourcefabric Campsite is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issu...
VMware vCenter Update Manager XSS
The version of VMware vCenter Update Manager running on the remote host has a cross-site scripting vulnerability. This is due to a bug in Jetty, the underlying web server. When Jetty displays a directory listing, arbitrary text can be inserted into the page. A remote attacker could exploit this b...