Juniper Junos J-Web CVE-2019-0047 HTML Injection Vulnerability

Description Juniper Junos is prone to an HTML-injection vulnerability. Successful exploits will allow attacker-supplied HTML and script code to run in the context of the affected browser, potentially allowing the attacker to steal cookie-based authentication credentials or control how the site is...

CVE-2019-9834

The Netdata web application through 1.13.0 allows remote attackers to inject their own malicious HTML code into an imported snapshot, aka HTML Injection. Successful exploitation will allow attacker-supplied HTML to run in the context of the affected browser, potentially allowing the attacker to...

CVE-2019-9834

The Netdata web application through 1.13.0 allows remote attackers to inject their own malicious HTML code into an imported snapshot, aka HTML Injection. Successful exploitation will allow attacker-supplied HTML to run in the context of the affected browser, potentially allowing the attacker to...

CVE-2019-9834

The Netdata web application through 1.13.0 allows remote attackers to inject their own malicious HTML code into an imported snapshot, aka HTML Injection. Successful exploitation will allow attacker-supplied HTML to run in the context of the affected browser, potentially allowing the attacker to...

My Blog 1.63 BBCode HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/16659/info My Blog is prone to an HTML-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in dynamically generated content. Attacker-supplie...

Jinzora 2.7.5 popup.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/27876/info Jinzora is prone to multiple HTML-injection and cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary...

Dokeos <= 1.8.4 main/calendar/myagenda.php courseCode Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/27792/info Dokeos is prone to multiple input-validation vulnerabilities including five SQL-injection issues, one HTML-injection issue, three cross-site scripting issues, and one arbitrary-file-upload issue. Attackers can...

WordPress WP-FeedStats 2.1 HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/25085/info The WP-FeedStats plugin for WordPress is prone to an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied input data. Exploiting this issue may allow an attacker to execute HTML...

Bit 5 Blog 8.1 AddComment.PHP HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/16246/info Bit 5 Blog is prone to an HTML injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in dynamically generated content...

Land Down Under 601/602/700/701/800/801 Events.PHP HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/14746/info Land Down Under is prone to an HTML injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in dynamically generated content...

Five Star Review Script 0 index2.php sort Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/18390/info Five Star Review Script is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to run arbitrary HTML a...

Barracuda Web Application Firewall 660 'cgi-mod/index.cgi' Multiple HTML Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/37432/info The Barracuda Web Application Firewall 660 is prone to multiple HTML-injection vulnerabilities. Attacker-supplied HTML and script code would execute in the context of the affected site, potentially allowing the...

WordPress Theme Colormix - Multiple Vulnerabilities

source: https://www.securityfocus.com/bid/59371/info The Colormix theme for WordPress is prone to multiple security vulnerabilities, including: 1. A cross-site scripting vulnerability 2. A path-disclosure vulnerability 3. Multiple content-spoofing vulnerabilities An attacker may leverage these...

WordPress Plugin Banners Lite - wpbanners_show.php HTML Injection

WordPress Plugin Banners Lite - wpbannersshow.php HTML Injection source: https://www.securityfocus.com/bid/58671/info The Banners Lite plugin for WordPress is prone to an HTML-injection vulnerability because it fails to properly sanitize user-supplied input. Successful exploits will allow...

IBM Rational ClearQuest 8.0 - Multiple Vulnerabilities

source: https://www.securityfocus.com/bid/55125/info IBM Rational ClearQuest is prone to the following security vulnerabilities: 1. An HTML-injection vulnerability. 2. Multiple information-disclosure vulnerabilities. 3. A security-bypass vulnerability. Attackers may leverage these issues to obtai...

IBM Rational ClearQuest 8.0 - Multiple Vulnerabilities

IBM Rational ClearQuest 8.0 - Multiple Vulnerabilities source: https://www.securityfocus.com/bid/55125/info IBM Rational ClearQuest is prone to the following security vulnerabilities: 1. An HTML-injection vulnerability. 2. Multiple information-disclosure vulnerabilities. 3. A security-bypass...

Barracuda Email Security Service - Multiple HTML Injection Vulnerabilities

source: https://www.securityfocus.com/bid/54773/info Barracuda Email Security Service is prone to multiple HTML-injection vulnerabilities because it fails to properly validate user-supplied input. An attacker may leverage these issues to inject hostile HTML and script code that would run in the...

CMS Balitbang - Multiple HTML Injection Cross-Site Scripting Vulnerabilities

CMS Balitbang - Multiple HTML Injection Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/54084/info CMS Balitbang is prone to HTML-injection and cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. Successful exploits will...

TeamPass 2.1.5 - &#039;login&#039; HTML Injection

source: https://www.securityfocus.com/bid/53038/info TeamPass is prone to an HTML-injection vulnerability because it fails to sanitize user-supplied input. Attacker-supplied HTML or JavaScript code could run in the context of the affected site, potentially allowing the attacker to steal...

Nagios XI - Multiple Cross-Site Scripting HTML Injection Vulnerabilities

Nagios XI - Multiple Cross-Site Scripting HTML Injection Vulnerabilities source: www.securityfocus.com/bid/51069/info Nagios XI is prone to an HTML injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. Successful...