Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in PRV.php in PhpRemoteView, possibly 2003-10-23 and earlier, allow remote attackers to inject arbitrary web script or HTML via the 1 f, 2 d, and 3 ref parameters, and the 4 "MAKE DIR" and 5 "Full file name" fields...

CVE-2006-2146

Multiple cross-site scripting XSS vulnerabilities in index.php in HB-NS 1.1.6 allow remote attackers to inject arbitrary web script or HTML via the 1 postername, 2 posteremail, 3 posterhomepage, or 4 message parameter...

CVE-2006-0112

Cross-site scripting XSS vulnerability in index.php in Enhanced Simple PHP Gallery 1.7 allows remote attackers to inject arbitrary web script or HTML via the dir parameter...

CVE-2005-3790

Multiple cross-site scripting XSS vulnerabilities in actnewsletter.php in phpwcms 1.2.5 allow remote attackers to inject arbitrary web script or HTML via the 1 i and 2 text parameters...

CVE-2005-3505

Cross-site scripting XSS vulnerability in the Entropy Chat script in cPanel 10.2.0-R82 and 10.6.0-R137 allows remote attackers to inject arbitrary web script or HTML via a chat message containing Javascript in style attributes in tags such as , which are processed by Internet Explorer...

osTicketSQL.txt

GulfTech Security Research May 2nd, 2005 Vendor : osTicket URL : http://www.osticket.com/ Version : All Versions Risk : Multiple Vulnerabilities Description: osTicket is a widely-used open source support ticket system. It is a lightweight support ticket tool written mainly using PHP scripting...

CVE-2002-2343

Cross-site scripting XSS vulnerability in NOCC 0.9 through 0.9.5 allows remote attackers to inject arbitrary web script or HTML via email messages...