6 matches found
CVE-2008-4365
Cross-site scripting XSS vulnerability in search.php in Siteman 1.1.11 and earlier allows remote attackers to inject arbitrary web script or HTML via unknown vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
Cross site scripting
Cross-site scripting XSS vulnerability in search.php in Siteman 1.1.11 and earlier allows remote attackers to inject arbitrary web script or HTML via unknown vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2008-4365
CVE-2008-4365 describes a cross-site scripting (XSS) vulnerability in the search.php of Siteman 1.1.11 and earlier . The affected component is the search.php implementation, with the underlying cause described as an XSS vulnerability; the vectors are listed as unknown. The practical impact is tha...
CVE-2007-0593
Siteman 1.1.11 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing password hashes via a direct request for data/members.txt...
CVE-2007-0593
Siteman 1.1.11 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing password hashes via a direct request for data/members.txt...
CVE-2007-0593
CVE-2007-0593 affects Siteman 1.1.11, where sensitive data is stored under the web root with insufficient access control. An unauthenticated remote attacker can access data/members.txt to download a database containing password hashes. The description, supported by NVD entries, does not provide t...