SiteBeater News 4.0 - Archive.asp Cross-Site Scripting

SiteBeater News 4.0 - Archive.asp Cross-Site Scripting source: https://www.securityfocus.com/bid/15697/info SiteBeater News is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this...

ASPS Shopping Cart Lite 2.1Professional 2.9 d - bsearch.asp?b_search Cross-Site Scripting

ASPS Shopping Cart Lite 2.1Professional 2.9 d - bsearch.asp?bsearch Cross-Site Scripting source: https://www.securityfocus.com/bid/15694/info ASPS Shopping Cart is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize...

Java Search Engine 0.9.34 - search.jsp Cross-Site Scripting

source: https://www.securityfocus.com/bid/15687/info Java Search Engine is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the...

JSE XSS vuln.

JSE XSS vuln. Vuln. dicovered by : r0t Date: 2 dec. 2005 orginal advisory:http://pridels.blogspot.com/2005/12/jse-xss-vuln.html Vendor:http://www.me.lv/jse/index.html affected version:0.9.34 Product Description: Java Search Engine is a server-side search engine program for web sites. Search engin...

[SECURITY] [DSA 914-1] New horde2 packages fix cross-site scripting

-------------------------------------------------------------------------- Debian Security Advisory DSA 914-1 [email protected] http://www.debian.org/security/ Martin Schulze December 1st, 2005 http://www.debian.org/security/faq -...

PHPMyChat 0.14.6 - 'style.css.php?medium' Cross-Site Scripting

source: https://www.securityfocus.com/bid/15679/info phpMyChat is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting...

PHPMyChat 0.14.6 - start_page.css.php?medium Cross-Site Scripting

PHPMyChat 0.14.6 - startpage.css.php?medium Cross-Site Scripting source: https://www.securityfocus.com/bid/15679/info phpMyChat is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues t...

RevenuePilot Search Engine XSS vuln.

RevenuePilot Search Engine XSS vuln. Vuln. dicovered by : r0t Date: 28 nov. 2005 Orginal advisory:http://pridels.blogspot.com/2005/11/revenuepilot-search-engine-xss-vuln.html Vendor:http://www.wwwsearchsolutions.com/revenuepilot.php affected version:v1.2.0 and prior Product Description: With this...

PBLang Bulletin Board System 4.65 - Multiple HTML Injection Vulnerabilities

PBLang Bulletin Board System 4.65 - Multiple HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/15573/info PBLang is prone to multiple HTML injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using i...

Amazon Shop 5.0.0 XSS vuln.

Amazon Shop 5.0.0 XSS vuln. Vuln. dicovered by : r0t Date: 26 nov. 2005 Orginal advisory:http://pridels.blogspot.com/2005/11/amazon-shop-500-xss-vuln.html Vendor:http://www.ghostscripter.com/amazonshop.php affected version:5.0.0 and prior Product description: With Amazon Shop you can run your ver...

blogBuddies 0.3 - magpie_debug.php?url Cross-Site Scripting

blogBuddies 0.3 - magpiedebug.php?url Cross-Site Scripting source: https://www.securityfocus.com/bid/15555/info blogBuddies is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may...

blogBuddies 0.3 - index.php?u Cross-Site Scripting

blogBuddies 0.3 - index.php?u Cross-Site Scripting source: https://www.securityfocus.com/bid/15555/info blogBuddies is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage...

Virtual Hosting Control System 2.2/2.4 - Error Message Cross-Site Scripting

source: https://www.securityfocus.com/bid/15538/info Virtual Hosting Control System is prone to cross-site scripting attacks. The vulnerability arises when error messages are rendered and could let an attacker inject hostile HTML and script code into the browser session of another user in the...

PHPPost 1.0 - 'profile.php?user' Cross-Site Scripting

source: https://www.securityfocus.com/bid/15524/info PHP-Post is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting...

Litespeed 2.1.5 - 'ConfMgr.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/15485/info LiteSpeed Web Server is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the...

Revize CMS HTTPTranslatorServlet - Cross-Site Scripting

Revize CMS HTTPTranslatorServlet - Cross-Site Scripting source: https://www.securityfocus.com/bid/15484/info Revize CMS is prone to a cross-site scripting vulnerabilities. This is due to a lack of proper sanitization of user-supplied input. An attacker may leverage this issue to have arbitrary...

Litespeed 2.1.5 - ConfMgr.php Cross-Site Scripting

Litespeed 2.1.5 - ConfMgr.php Cross-Site Scripting source: https://www.securityfocus.com/bid/15485/info LiteSpeed Web Server is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this...

phpSysInfo -- "register_globals" emulation layer overwrite vulnerability

A Secunia Advisory reports: Christopher Kunz has reported a vulnerability in phpSysInfo, which can be exploited by malicious people to manipulate certain information. The vulnerability is caused due to an error in the "registerglobals" emulation layer where certain arrays used by the system can b...

Antville 1.1 - Cross-Site Scripting

source: https://www.securityfocus.com/bid/15372/info Antville is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the browser of ...

XMB Forum 1.9.3 - 'u2u.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/15342/info XMB is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...