6 matches found
Cross site scripting
Cross-site scripting XSS vulnerability in SimpBook 1.0, with htmlenable on the default, allows remote attackers to inject arbitrary web script or HTML via the message field...
CVE-2006-0149
Cross-site scripting XSS vulnerability in SimpBook 1.0, with htmlenable on the default, allows remote attackers to inject arbitrary web script or HTML via the message field...
CVE-2006-0149
Cross-site scripting XSS vulnerability in SimpBook 1.0, with htmlenable on the default, allows remote attackers to inject arbitrary web script or HTML via the message field...
CVE-2006-0149
CVE-2006-0149 describes an XSS vulnerability in SimpBook 1.0 when html_enable is on (default). The flaw allows remote attackers to inject arbitrary script/HTML via the message field. Affected component is the message handling; root cause is lack of input sanitization leading to reflected/Stored X...
CVE-2005-4551
Cross-site scripting XSS vulnerability in sign.php in codegrrl SimpBook 1.0, when htmlenable is on, allows remote attackers to inject arbitrary web script or HTML via the message parameter to index.php...
CVE-2005-4551
The CVE-2005-4551 issue affects the web app codegrrl SimpBook 1.0 . The vulnerability is a Cross-site Scripting (XSS) flaw in sign.php when the configuration flag html_enable is enabled. An attacker can supply arbitrary HTML/script via the message parameter to index.php, which could be reflected ...