AltantForum 4.0.2 - Multiple Cross-Site Scripting Vulnerabilities

AltantForum 4.0.2 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/15887/info AtlantForum is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker...

DCForum 1-6 DCBoard Script - Page Cross-Site Scripting

DCForum 1-6 DCBoard Script - Page Cross-Site Scripting source: https://www.securityfocus.com/bid/15885/info DCForum is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to...

ECTOOLS Onlineshop 1.0 - Cross-Site Scripting

ECTOOLS Onlineshop 1.0 - Cross-Site Scripting source: https://www.securityfocus.com/bid/15891/info ECTOOLS Onlineshop is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue t...

MarmaraWeb E-Commerce - index.php?page Cross-Site Scripting

MarmaraWeb E-Commerce - index.php?page Cross-Site Scripting source: https://www.securityfocus.com/bid/15875/info E-commerce is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this...

ECTOOLS Onlineshop 1.0 - Cross-Site Scripting

source: https://www.securityfocus.com/bid/15891/info ECTOOLS Onlineshop is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the...

WikkaWiki 1.1.6 - TextSearch.php Cross-Site Scripting

WikkaWiki 1.1.6 - TextSearch.php Cross-Site Scripting source: https://www.securityfocus.com/bid/15860/info WikkaWiki is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to...

Microsoft Internet Explorer COM Object Instantiation Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a memory corruption vulnerability that is related to the instantiation of COM objects. COM objects may corrupt system memory and facilitate arbitrary code execution in the context of the currently logged in user on the affected computer...

Microsoft Internet Explorer Dialog Manipulation Vulnerability

Description Internet Explorer is prone to a remote code-execution vulnerability through manipulation of custom dialog boxes. Keystrokes entered while one of these dialogs is displayed may be buffered and passed to a download dialog, allowing attacker-supplied code to be executed. Technologies...

Magic Book Professional 2.0 - Book.cfm Cross-Site Scripting

Magic Book Professional 2.0 - Book.cfm Cross-Site Scripting source: https://www.securityfocus.com/bid/15805/info Magic Book Professional is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may...

ACME Perl-Cal 2.99 - Cal_make.pl Cross-Site Scripting

ACME Perl-Cal 2.99 - Calmake.pl Cross-Site Scripting source: https://www.securityfocus.com/bid/15779/info Perl-Cal is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to...

Thwboard Beta 2.8 - 'misc.php?userid' SQL Injection

source: https://www.securityfocus.com/bid/15763/info ThWboard is prone to multiple input validation vulnerabilities. The application is vulnerable to HTML injection, cross-site scripting, and SQL injection; these issues are due to a lack of proper sanitization of user-supplied input. A remote...

Thwboard Beta 2.8 - v_profile.php?user SQL Injection

Thwboard Beta 2.8 - vprofile.php?user SQL Injection source: https://www.securityfocus.com/bid/15763/info ThWboard is prone to multiple input validation vulnerabilities. The application is vulnerable to HTML injection, cross-site scripting, and SQL injection; these issues are due to a lack of prop...

DuWare DuPortalPro 3.4.3 - 'Password.asp' Cross-Site Scripting

source: https://www.securityfocus.com/bid/15731/info DuPortalPro is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser ...

IISWorks ASPKnowledgeBase 2.0 - 'KB.asp' Cross-Site Scripting

source: https://www.securityfocus.com/bid/15734/info ASPKnowledgeBase is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the...

DuWare DuPortalPro 3.4.3 - Password.asp Cross-Site Scripting

DuWare DuPortalPro 3.4.3 - Password.asp Cross-Site Scripting source: https://www.securityfocus.com/bid/15731/info DuPortalPro is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this...

IISWorks ASPKnowledgeBase 2.0 - KB.asp Cross-Site Scripting

IISWorks ASPKnowledgeBase 2.0 - KB.asp Cross-Site Scripting source: https://www.securityfocus.com/bid/15734/info ASPKnowledgeBase is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage...

RWAuction Pro 4.0 - 'search.asp' Cross-Site Scripting

source: https://www.securityfocus.com/bid/15740/info The 'rwAuction Pro' application is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code...

Easy Search System 1.1 - search.cgi Cross-Site Scripting

Easy Search System 1.1 - search.cgi Cross-Site Scripting source: https://www.securityfocus.com/bid/15705/info Easy Search System is prone to a cross-site scripting vulnerability. An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user in t...

ASPS Shopping Cart Professional and Lite XSS vuln

ASPS Shopping Cart Professional and Lite XSS vuln Vuln. dicovered by : r0t Date: 3 dec. 2005 Orginal advisory:http://pridels.blogspot.com/2005/12/asps-shopping-cart-professional-and.html Vendor:http://www.aspsolutions.com.au/ affected version: ASPS Shopping Cart Professional 2.9d and prior ASPS...

ASPS Shopping Cart Lite 2.1Professional 2.9 d - adv_search.asp?srch_product_name Cross-Site Scripting

ASPS Shopping Cart Lite 2.1Professional 2.9 d - advsearch.asp?srchproductname Cross-Site Scripting source: https://www.securityfocus.com/bid/15694/info ASPS Shopping Cart is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly...