6666 matches found
CommuniMail 1.2 - templates.cgi?form_id Cross-Site Scripting
CommuniMail 1.2 - templates.cgi?formid Cross-Site Scripting source: https://www.securityfocus.com/bid/17602/info CommuniMail is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may...
Visale 1.0 - pblscg.cgi?catsubno Cross-Site Scripting
Visale 1.0 - pblscg.cgi?catsubno Cross-Site Scripting source: https://www.securityfocus.com/bid/17598/info Visale is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage thes...
[SA19654] Boardsolution "keyword" Cross-Site Scripting Vulnerability
TITLE: Boardsolution "keyword" Cross-Site Scripting Vulnerability SECUNIA ADVISORY ID: SA19654 VERIFY ADVISORY: http://secunia.com/advisories/19654/ CRITICAL: Less critical IMPACT: Cross Site Scripting, Exposure of system information WHERE: From remote SOFTWARE: Boardsolution 1.x...
BannerFarm 2.3 - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/17613/info BannerFarm is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in...
ContentBoxx - 'login.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/17612/info ContentBoxx is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user in the...
IntelliLink Pro 5.06 - 'addlink_lwp.cgi?url' Cross-Site Scripting
source: https://www.securityfocus.com/bid/17605/info IntelliLink Pro is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execut...
DbbS 2.0 - Multiple Input Validation Vulnerabilities
DbbS 2.0 - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/17559/info DbbS is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and command-execution vulnerabilities. These issues are due to a failure in the application...
[SA19660] TinyWebGallery "twg_album" Cross-Site Scripting Vulnerability
TITLE: TinyWebGallery "twgalbum" Cross-Site Scripting Vulnerability SECUNIA ADVISORY ID: SA19660 VERIFY ADVISORY: http://secunia.com/advisories/19660/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: TinyWebGallery TWG 1.x http://secunia.com/product/9362/...
Calendarix 0.7 - 'YearCal.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/17562/info Calendarix is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user in the...
Jax Guestbook 3.50 - 'Page' Cross-Site Scripting
source: https://www.securityfocus.com/bid/17560/info Jax Guestbook is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user in the...
Manila 9.0.1 - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/17563/info Manila is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in the...
Tiny Web Gallery 1.4 - 'index.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/17536/info Tiny Web Gallery is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user in th...
Farsinews 2.12.5 - search.php Cross-Site Scripting
Farsinews 2.12.5 - search.php Cross-Site Scripting source: https://www.securityfocus.com/bid/17534/info FarsiNews is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed ...
DSA-1034-1 horde2 - several vulnerabilities
Bulletin has no description...
Farsinews 2.1/2.5 - 'search.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/17534/info FarsiNews is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user in the conte...
PlanetSearch + - 'Planetsearchplus.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/17527/info PlanetSearch + is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user in the...
LifeType 1.0.3 - 'index.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/17529/info LifeType is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user in the contex...
Interaktiv.shop 4/5 - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/17485/info interaktiv.shop is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execut...
Microsoft FrontPage Server Extensions Cross-Site Scripting Vulnerability
Description Microsoft FrontPage Server Extensions are prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before it is rendered to other users. An attacker may leverage this issue to have arbitrary script code...
Microsoft Internet Explorer Persistent Window Content Address Bar Spoofing Vulnerability
Description Microsoft Internet Explorer is prone to address-bar spoofing. Attackers may exploit this via a malicious web page to spoof the contents of a page that the victim may trust. This vulnerability may be useful in phishing or other attacks that rely on content spoofing. Technologies Affect...