78 matches found
CVE-2011-1062
Multiple cross-site scripting XSS vulnerabilities in include/html/header.php in TaskFreak! 0.6.4 allow remote attackers to inject arbitrary web script or HTML via the 1 sContext, 2 sort, 3 dir, and 4 show parameters in a save action to index.php; the 5 dir and 6 show parameters to printlist.php;...
CVE-2011-1062
TaskFreak! 0.6.4 exposes multiple XSS vulnerabilities in include/html/header.php allowing injection via (1) sContext, (2) sort, (3) dir, (4) show in index.php; (5) dir, (6) show in print_list.php; and (7) Referer header to rss.php. No remediation details are provided in the supplied documents; no...
TaskFreak! Multiple Cross Site Scripting Vulnerabilities
TaskFreak! is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This...
TaskFreak! v0.6.4 Multiple Cross-Site Scripting Vulnerabilities
Exploit for php platform in category web applications TaskFreak! v0.6.4 Multiple Cross-Site Scripting Vulnerabilities Vendor: Stan Ozier Product web page: http://www.taskfreak.com Affected version: 0.6.4 multi-user Summary: TaskFreak! Original is a simple but efficient web based task manager...
TaskFreak! 0.6.4 - 'rss.php' HTTP Referer Header Cross-Site Scripting
source: https://www.securityfocus.com/bid/46350/info TaskFreak! is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an...
TaskFreak! 0.6.4 - 'print_list.php' Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/46350/info TaskFreak! is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an...
TaskFreak! 0.6.4 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/46350/info TaskFreak! is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an...
TaskFreak! 0.6.4 - rss.php HTTP Referer Header Cross-Site Scripting
TaskFreak! 0.6.4 - rss.php HTTP Referer Header Cross-Site Scripting source: https://www.securityfocus.com/bid/46350/info TaskFreak! is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage these...
TaskFreak! 0.6.4 - print_list.php Multiple Cross-Site Scripting Vulnerabilities
TaskFreak! 0.6.4 - printlist.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/46350/info TaskFreak! is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker may...
TaskFreak! 0.6.4 - Multiple Cross-Site Scripting Vulnerabilities
TaskFreak! 0.6.4 - Multiple Cross-Site Scripting Vulnerabilities TaskFreak! v0.6.4 Multiple Cross-Site Scripting Vulnerabilities Vendor: Stan Ozier Product web page: http://www.taskfreak.com Affected version: 0.6.4 multi-user Summary: TaskFreak! Original is a simple but efficient web based task...
TaskFreak! 0.6.4 - index.php Multiple Cross-Site Scripting Vulnerabilities
TaskFreak! 0.6.4 - index.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/46350/info TaskFreak! is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage...
TaskFreak! 0.6.4 - Multiple Cross-Site Scripting Vulnerabilities
TaskFreak! v0.6.4 Multiple Cross-Site Scripting Vulnerabilities Vendor: Stan Ozier Product web page: http://www.taskfreak.com Affected version: 0.6.4 multi-user Summary: TaskFreak! Original is a simple but efficient web based task manager written in PHP. Desc: TaskFreak! suffers from multiple XSS...
TaskFreak! 0.6.4 Cross Site Scripting
TaskFreak! v0.6.4 Multiple Cross-Site Scripting Vulnerabilities Vendor: Stan Ozier Product web page: http://www.taskfreak.com Affected version: 0.6.4 multi-user Summary: TaskFreak! Original is a simple but efficient web based task manager written in PHP. Desc: TaskFreak! suffers from multiple XSS...
TaskFreak! v0.6.4 Multiple Cross-Site Scripting Vulnerabilities
Summary TaskFreak! Original is a simple but efficient web based task manager written in PHP. Description TaskFreak! suffers from multiple XSS vulnerabilities when parsing input to multiple parameters in different scripts. The vulnerable POST parameters are: 'sContext', 'sort', 'dir' and 'show' th...
Task Freak Cross Site Scripting and SQL Injection Vulnerabilities
This host is running Task Freak and is prone to Cross Site Scripting and SQL Injection vulnerabilities. OpenVAS Vulnerability Test $Id: gbtaskfreakxssnsqlinjvuln.nasl 7573 2017-10-26 09:18:50Z cfischer $ Task Freak Cross Site Scripting and SQL Injection Vulnerabilities Authors: Madhuri D Copyrigh...
TaskFreak! < 0.6.4 Multiple Vulnerabilities
TaskFreak! is prone to multiple vulnerabilities. Copyright C 2010 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2010-1520
Cross-site scripting XSS vulnerability in logout.php in TaskFreak! Original multi user before 0.6.4 allows remote attackers to inject arbitrary web script or HTML via the tznMessage parameter...
CVE-2010-1521
SQL injection vulnerability in include/classes/tznuser.php in TaskFreak! Original multi user before 0.6.4 allows remote attackers to execute arbitrary SQL commands via the password parameter to login.php...
Cross site scripting
Cross-site scripting XSS vulnerability in logout.php in TaskFreak! Original multi user before 0.6.4 allows remote attackers to inject arbitrary web script or HTML via the tznMessage parameter...
Sql injection
SQL injection vulnerability in include/classes/tznuser.php in TaskFreak! Original multi user before 0.6.4 allows remote attackers to execute arbitrary SQL commands via the password parameter to login.php...