502 matches found
Unfixed Script Insertion vulnerability at upload66.com
Security researcher GURUS, has submitted on 31/03/2007 a Script Insertion vulnerability affecting upload66.com, which at the time of submission ranked 92176 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 31/03/2007. It is currently unfixed. If...
Unfixed Script Insertion vulnerability at upload02.uploadpk.com
Security researcher GURUS, has submitted on 24/03/2007 a Script Insertion vulnerability affecting upload02.uploadpk.com, which at the time of submission ranked 310870 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 24/03/2007. It is currently...
Unfixed Script Insertion vulnerability at phpfaber.org
Security researcher GURUS, has submitted on 14/03/2007 a Script Insertion vulnerability affecting phpfaber.org, which at the time of submission ranked 334388 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 14/03/2007. It is currently unfixed. I...
Unfixed Script Insertion vulnerability at www.urlshare.org
Security researcher DarkToxic, has submitted on 03/03/2007 a Script Insertion vulnerability affecting www.urlshare.org, which at the time of submission ranked 1096735 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 05/03/2007. It is currently...
Unfixed Script Insertion vulnerability at www.zurna.com
Security researcher i-landet, has submitted on 24/02/2007 a Script Insertion vulnerability affecting www.zurna.com, which at the time of submission ranked 54886 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 28/02/2007. It is currently unfixed...
[Full-disclosure] Secunia Research: MailEnable Web Mail Client Multiple Vulnerabilities
====================================================================== Secunia Research 14/02/2007 - MailEnable Web Mail Client Multiple Vulnerabilities - ====================================================================== Table of Contents Affected...
Unfixed Script Insertion vulnerability at www.sceneupload.com
Security researcher GURUS, has submitted on 02/04/2007 a Script Insertion vulnerability affecting www.sceneupload.com, which at the time of submission ranked 246579 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 02/04/2007. It is currently...
[SA23908] Drupal Project Module Script Insertion Vulnerability
TITLE: Drupal Project Module Script Insertion Vulnerability SECUNIA ADVISORY ID: SA23908 VERIFY ADVISORY: http://secunia.com/advisories/23908/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: Drupal Project Module 4.x http://secunia.com/product/12912/ DESCRIPTION:...
[SA23754] WebGUI User Name Script Insertion Vulnerability
TITLE: WebGUI User Name Script Insertion Vulnerability SECUNIA ADVISORY ID: SA23754 VERIFY ADVISORY: http://secunia.com/advisories/23754/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: WebGUI 7.x http://secunia.com/product/13252/ DESCRIPTION: A vulnerabili...
Unfixed Script Insertion vulnerability at oc.course.com
Security researcher chaunchothenacho, has submitted on 01/11/2007 a Script Insertion vulnerability affecting oc.course.com, which at the time of submission ranked 40208 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 05/11/2007. It is currently...
Unfixed Script Insertion vulnerability at www.mastermindtoys.com
Security researcher tenest, has submitted on 01/10/2007 a Script Insertion vulnerability affecting www.mastermindtoys.com, which at the time of submission ranked 168166 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 05/10/2007. It is currently...
Unfixed Script Insertion vulnerability at www.mastermindtoys.com
Security researcher tenest, has submitted on 01/10/2007 a Script Insertion vulnerability affecting www.mastermindtoys.com, which at the time of submission ranked 168166 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 05/10/2007. It is currently...
Unfixed Script Insertion vulnerability at randomdude.com
Security researcher Mutant, has submitted on 01/10/2007 a Script Insertion vulnerability affecting randomdude.com, which at the time of submission ranked 1337729 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 01/10/2007. It is currently unfixe...
[SA23484] OvBB Script Insertion Vulnerability
TITLE: OvBB Script Insertion Vulnerability SECUNIA ADVISORY ID: SA23484 VERIFY ADVISORY: http://secunia.com/advisories/23484/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: OvBB 0.x http://secunia.com/product/13131/ DESCRIPTION: A vulnerability has been...
jambook.txt
------=Part12610429492606.1164565546478 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline Advisory 14 Title: Mambo component "jambook" Html injection Vulnerability Author: 0ozeuso0 Arturo Z. Contact: zeus at diosdelared.com...
[SA22864] Netquery "User-Agent" HTTP Header Script Insertion
TITLE: Netquery "User-Agent" HTTP Header Script Insertion SECUNIA ADVISORY ID: SA22864 VERIFY ADVISORY: http://secunia.com/advisories/22864/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: Netquery 4.x http://secunia.com/product/12587/ DESCRIPTION: Tal Argoni has...
TorrentFlux ?action? Script Insertion
TorrentFlux ?action? Script Insertion TITLE: TorrentFlux ?action? Script Insertion CRITICAL: Not Critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: TorrentFlux 2.x DESCRIPTION: I have discovered a vulnerability in TorrentFlux, which can be exploited by malicious users to conduct...
TorrentFlux ?file? Script Insertion
TITLE: TorrentFlux ?file? Script Insertion CRITICAL: Moderate IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: TorrentFlux 2.x DESCRIPTION: I have discovered a vulnerability in TorrentFlux, which can be exploited by malicious users to conduct script insertion attacks. Input passed to the...
drupal -- multiple XSS vulnerabilities
The Drupal Team reports: A bug in input validation and lack of output validation allows HTML and script insertion on several pages. Drupal's XML parser passes unescaped data to watchdog under certain circumstances. A malicious user may execute an XSS attack via a specially crafted RSS feed. This...
DRUPAL-SA-2006-024 - Drupal core - Multiple cross site scripting vulnerabilities
Multiple XSS cross site scripting vulnerabilities have been discovered. A bug in input validation and lack of output validation allows HTML and script insertion on several pages. Drupal's XML parser passes unescaped data to watchdog under certain circumstances. A malicious user may execute an XSS...