PunBB 1.2.x - 'p' Parameter Multiple Cross-Site Scripting Vulnerabilities

PunBB 1.2.x 'p' Parameter Multiple Cross-Site Scripting Vulnerabilities. Webapps exploit for php platform source: http://www.securityfocus.com/bid/31082/info PunBB is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may...

vBulletin 3.6.103.7.2 - $newpm[title] Cross-Site Scripting

vBulletin 3.6.103.7.2 - $newpmtitle Cross-Site Scripting source: https://www.securityfocus.com/bid/30777/info vBulletin is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary...

Vanilla 1.1.4 - HTML Injection Cross-Site Scripting

Vanilla 1.1.4 - HTML Injection Cross-Site Scripting source: https://www.securityfocus.com/bid/30748/info Vanilla is prone to multiple HTML-injection vulnerabilities and a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage these...

Ovidentia 6.6.5 - index.php Cross-Site Scripting

Ovidentia 6.6.5 - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/30735/info Ovidentia is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input data. An attacker may leverage this issue to execute arbitrary script code...

Ovidentia 6.6.5 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/30735/info Ovidentia is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

Mambo Open Source 4.6.2 - mambotseditorsmostlyce PHPconnector.php?Query String Cross-Site Scripting

Mambo Open Source 4.6.2 - mambotseditorsmostlyce PHPconnector.php?Query String Cross-Site Scripting source: https://www.securityfocus.com/bid/30708/info Mambo is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may...

mUnky 0.01 - 'index.php' Remote Code Execution

source: https://www.securityfocus.com/bid/30705/info mUnky is prone to a remote code-execution vulnerability because the application fails to properly sanitize user-supplied input. Exploiting this issue allows attackers to cause the application to execute arbitrary script code in the context of t...

FlexCMS 2.5 - 'inc-core-admin-editor-previouscolorsjs.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/30709/info FlexCMS is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

Mambo Open Source 4.6.2 - '/administrator/popups/index3pop.php?mosConfig_sitename' Cross-Site Scripting

source: https://www.securityfocus.com/bid/30708/info Mambo is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

Nortel Networks SRG V16 - modules.php?module Cross-Site Scripting

Nortel Networks SRG V16 - modules.php?module Cross-Site Scripting source: https://www.securityfocus.com/bid/30687/info Navboard is prone to multiple local file-include vulnerabilities and a cross-site scripting vulnerability. An attacker can exploit the local file-include vulnerability using...

Nortel Networks SRG V16 - 'modules.php?module' Cross-Site Scripting

source: https://www.securityfocus.com/bid/30687/info Navboard is prone to multiple local file-include vulnerabilities and a cross-site scripting vulnerability. An attacker can exploit the local file-include vulnerability using directory-traversal strings to execute local script code in the contex...

Nortel Networks SRG V16 - 'admin_modules.php?module' Traversal Local File Inclusion

source: https://www.securityfocus.com/bid/30687/info Navboard is prone to multiple local file-include vulnerabilities and a cross-site scripting vulnerability. An attacker can exploit the local file-include vulnerability using directory-traversal strings to execute local script code in the contex...

Microsoft Internet Explorer HTML Objects Variant Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability that occurs when the application tries to parse a specially crafted web page. Successfully exploiting this issue would allow the attacker to execute arbitrary code in the context of the currently logged-i...

Microsoft Internet Explorer HTML Objects Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability that occurs when the application tries to parse a specially crafted web page. Successfully exploiting this issue would allow an attacker to execute arbitrary code in the context of the currently logged-in...

Microsoft Internet Explorer Uninitialized Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability that occurs when the application tries to parse a specially crafted web page. Successfully exploiting this issue would allow an attacker to execute arbitrary code in the context of the currently logged-in...

Microsoft Windows Messenger ActiveX Control Information Disclosure Vulnerability

Description Microsoft Windows Messenger is prone to an information-disclosure vulnerability. An attacker can exploit this issue by enticing an unsuspecting victim to visit a malicious HTML page. Successfully exploiting this issue allows remote attackers to obtain sensitive information that may ai...

IDevSpot PHPLinkExchange 1.011.02 - index.php Multiple Cross-Site Scripting Vulnerabilities

IDevSpot PHPLinkExchange 1.011.02 - index.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/30665/info PhPLinkExchange is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input data. An attacke...

IDevSpot PHPLinkExchange 1.01/1.02 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/30665/info PhPLinkExchange is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting...

Datafeed Studio 1.6.2 - 'search.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/30660/info Datafeed Studio is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in...

Yogurt Social Network 3.2 rc1 Module for XOOPS - friends.php?uid Cross-Site Scripting

Yogurt Social Network 3.2 rc1 Module for XOOPS - friends.php?uid Cross-Site Scripting source: https://www.securityfocus.com/bid/30618/info Yogurt Social Network is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may...