Woltlab Burning Board 2.3.4 - Class_DB_MySQL.php Cross-Site Scripting

Woltlab Burning Board 2.3.4 - ClassDBMySQL.php Cross-Site Scripting source: https://www.securityfocus.com/bid/17147/info Woltlab Burning Board is prone to a cross-site scripting vulnerability. This issue is due to a lack of proper sanitization of user-supplied input. An attacker may leverage this...

Woltlab Burning Board 2.3.4 - 'Class_DB_MySQL.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17147/info Woltlab Burning Board is prone to a cross-site scripting vulnerability. This issue is due to a lack of proper sanitization of user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of an...

Invision Power Services Invision Board 2.0.4 - Members Action Multiple Cross-Site Scripting Vulnerabilities

Invision Power Services Invision Board 2.0.4 - Members Action Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/17144/info Invision Power Board is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to...

Invision Power Board (IP.Board) 2.0.4 - Help Action HID Cross-Site Scripting

Invision Power Board IP.Board 2.0.4 - Help Action HID Cross-Site Scripting source: https://www.securityfocus.com/bid/17144/info Invision Power Board is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied...

Invision Power Board (IP.Board) 2.0.4 - Search Action Multiple Cross-Site Scripting Vulnerabilities

Invision Power Board IP.Board 2.0.4 - Search Action Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/17144/info Invision Power Board is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly...

Invision Power Services Invision Board 2.0.4 - Members Action Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/17144/info Invision Power Board is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code...

Invision Power Board (IP.Board) 2.0.4 - Mail Action 'MID' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17144/info Invision Power Board is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code...

Invision Power Board (IP.Board) 2.0.4 - 'index.php?st' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17144/info Invision Power Board is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code...

phpmyadmin -- 'set_theme' Cross-Site Scripting

Secunia reports: A vulnerability has been reported in phpMyAdmin, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed to the "settheme" parameter isn't properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTM...

Contrexx CMS 1.0.x - index.php Cross-Site Scripting

Contrexx CMS 1.0.x - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/17128/info Contrexx CMS is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue t...

phpMyAdmin 2.8.1 - Set_Theme Cross-Site Scripting

source: https://www.securityfocus.com/bid/17142/info phpMyAdmin is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser o...

[SA19215] Jupiter Content Manager "image" BBcode Script Insertion

TITLE: Jupiter Content Manager "image" BBcode Script Insertion SECUNIA ADVISORY ID: SA19215 VERIFY ADVISORY: http://secunia.com/advisories/19215/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: Jupiter Content Manager 1.x http://secunia.com/product/8685/...

[SA19204] WMNews Cross-Site Scripting Vulnerabilities

TITLE: WMNews Cross-Site Scripting Vulnerabilities SECUNIA ADVISORY ID: SA19204 VERIFY ADVISORY: http://secunia.com/advisories/19204/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: WMNews 0.x http://secunia.com/product/8673/ DESCRIPTION: R00T3RR0R has reported...

vCard 2.9 - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/18122/info vCard is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code execute in the...

WMNews - footer.php?ctrrowcol Cross-Site Scripting

WMNews - footer.php?ctrrowcol Cross-Site Scripting source: https://www.securityfocus.com/bid/17076/info WMNews is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these...

WMNews - wmview.php?ArtCat Cross-Site Scripting

WMNews - wmview.php?ArtCat Cross-Site Scripting source: https://www.securityfocus.com/bid/17076/info WMNews is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issu...

QwikiWiki 1.4/1.5 - 'pageindex.php?help' Cross-Site Scripting

source: https://www.securityfocus.com/bid/17064/info QwikiWiki is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to have arbitrary script code executed in...

ADP Forum 2.0.x - Subject HTML Injection

ADP Forum 2.0.x - Subject HTML Injection source: https://www.securityfocus.com/bid/17047/info ADP Forum is prone to an HTML-injection vulnerability. The application fails to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplied HTML and script...

MyBloggie 2.1.22.1.3 - deluser.php Cross-Site Scripting

MyBloggie 2.1.22.1.3 - deluser.php Cross-Site Scripting source: https://www.securityfocus.com/bid/17048/info MyBloggie is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage...

MyBloggie 2.1.22.1.3 - delcat.php Cross-Site Scripting

MyBloggie 2.1.22.1.3 - delcat.php Cross-Site Scripting source: https://www.securityfocus.com/bid/17048/info MyBloggie is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage...