Lucene search
K

78 matches found

Cvelist
Cvelist
added 2011/02/22 11:0 p.m.20 views

CVE-2011-1062

Multiple cross-site scripting XSS vulnerabilities in include/html/header.php in TaskFreak! 0.6.4 allow remote attackers to inject arbitrary web script or HTML via the 1 sContext, 2 sort, 3 dir, and 4 show parameters in a save action to index.php; the 5 dir and 6 show parameters to printlist.php;...

5.8AI score0.01751EPSS
Exploits2References6
CVE
CVE
added 2011/02/22 11:0 p.m.47 views

CVE-2011-1062

TaskFreak! 0.6.4 exposes multiple XSS vulnerabilities in include/html/header.php allowing injection via (1) sContext, (2) sort, (3) dir, (4) show in index.php; (5) dir, (6) show in print_list.php; and (7) Referer header to rss.php. No remediation details are provided in the supplied documents; no...

4.3CVSS5.9AI score0.01751EPSS
Exploits2References6Affected Software1
OpenVAS
OpenVAS
added 2011/02/15 12:0 a.m.10 views

TaskFreak! Multiple Cross Site Scripting Vulnerabilities

TaskFreak! is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This...

7.6AI score
Exploits0References3
0day.today
0day.today
added 2011/02/13 12:0 a.m.103 views

TaskFreak! v0.6.4 Multiple Cross-Site Scripting Vulnerabilities

Exploit for php platform in category web applications TaskFreak! v0.6.4 Multiple Cross-Site Scripting Vulnerabilities Vendor: Stan Ozier Product web page: http://www.taskfreak.com Affected version: 0.6.4 multi-user Summary: TaskFreak! Original is a simple but efficient web based task manager...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2011/02/12 12:0 a.m.18 views

TaskFreak! 0.6.4 - 'rss.php' HTTP Referer Header Cross-Site Scripting

source: https://www.securityfocus.com/bid/46350/info TaskFreak! is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2011/02/12 12:0 a.m.13 views

TaskFreak! 0.6.4 - 'print_list.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/46350/info TaskFreak! is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2011/02/12 12:0 a.m.19 views

TaskFreak! 0.6.4 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/46350/info TaskFreak! is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2011/02/12 12:0 a.m.12 views

TaskFreak! 0.6.4 - rss.php HTTP Referer Header Cross-Site Scripting

TaskFreak! 0.6.4 - rss.php HTTP Referer Header Cross-Site Scripting source: https://www.securityfocus.com/bid/46350/info TaskFreak! is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage these...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2011/02/12 12:0 a.m.13 views

TaskFreak! 0.6.4 - print_list.php Multiple Cross-Site Scripting Vulnerabilities

TaskFreak! 0.6.4 - printlist.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/46350/info TaskFreak! is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker may...

Exploits0
exploitpack
exploitpack
added 2011/02/12 12:0 a.m.14 views

TaskFreak! 0.6.4 - Multiple Cross-Site Scripting Vulnerabilities

TaskFreak! 0.6.4 - Multiple Cross-Site Scripting Vulnerabilities TaskFreak! v0.6.4 Multiple Cross-Site Scripting Vulnerabilities Vendor: Stan Ozier Product web page: http://www.taskfreak.com Affected version: 0.6.4 multi-user Summary: TaskFreak! Original is a simple but efficient web based task...

7AI score
Exploits0
exploitpack
exploitpack
added 2011/02/12 12:0 a.m.14 views

TaskFreak! 0.6.4 - index.php Multiple Cross-Site Scripting Vulnerabilities

TaskFreak! 0.6.4 - index.php Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/46350/info TaskFreak! is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker may leverage...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2011/02/12 12:0 a.m.32 views

TaskFreak! 0.6.4 - Multiple Cross-Site Scripting Vulnerabilities

TaskFreak! v0.6.4 Multiple Cross-Site Scripting Vulnerabilities Vendor: Stan Ozier Product web page: http://www.taskfreak.com Affected version: 0.6.4 multi-user Summary: TaskFreak! Original is a simple but efficient web based task manager written in PHP. Desc: TaskFreak! suffers from multiple XSS...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2011/02/11 12:0 a.m.26 views

TaskFreak! 0.6.4 Cross Site Scripting

TaskFreak! v0.6.4 Multiple Cross-Site Scripting Vulnerabilities Vendor: Stan Ozier Product web page: http://www.taskfreak.com Affected version: 0.6.4 multi-user Summary: TaskFreak! Original is a simple but efficient web based task manager written in PHP. Desc: TaskFreak! suffers from multiple XSS...

7.4AI score
Exploits0
Zero Science Lab
Zero Science Lab
added 2011/02/11 12:0 a.m.103 views

TaskFreak! v0.6.4 Multiple Cross-Site Scripting Vulnerabilities

Summary TaskFreak! Original is a simple but efficient web based task manager written in PHP. Description TaskFreak! suffers from multiple XSS vulnerabilities when parsing input to multiple parameters in different scripts. The vulnerable POST parameters are: 'sContext', 'sort', 'dir' and 'show' th...

4.3CVSS6.1AI score0.01751EPSS
Exploits2
OpenVAS
OpenVAS
added 2010/07/07 12:0 a.m.24 views

Task Freak Cross Site Scripting and SQL Injection Vulnerabilities

This host is running Task Freak and is prone to Cross Site Scripting and SQL Injection vulnerabilities. OpenVAS Vulnerability Test $Id: gbtaskfreakxssnsqlinjvuln.nasl 7573 2017-10-26 09:18:50Z cfischer $ Task Freak Cross Site Scripting and SQL Injection Vulnerabilities Authors: Madhuri D Copyrigh...

7.5CVSS7.5AI score0.01859EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2010/07/07 12:0 a.m.30 views

TaskFreak! < 0.6.4 Multiple Vulnerabilities

TaskFreak! is prone to multiple vulnerabilities. Copyright C 2010 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS6.5AI score0.01859EPSS
Exploits0References2
NVD
NVD
added 2010/06/30 6:30 p.m.19 views

CVE-2010-1520

Cross-site scripting XSS vulnerability in logout.php in TaskFreak! Original multi user before 0.6.4 allows remote attackers to inject arbitrary web script or HTML via the tznMessage parameter...

4.3CVSS5.6AI score0.01859EPSS
Exploits0References6
NVD
NVD
added 2010/06/30 6:30 p.m.8 views

CVE-2010-1521

SQL injection vulnerability in include/classes/tznuser.php in TaskFreak! Original multi user before 0.6.4 allows remote attackers to execute arbitrary SQL commands via the password parameter to login.php...

7.5CVSS8.4AI score0.01258EPSS
Exploits0References6
Prion
Prion
added 2010/06/30 6:30 p.m.14 views

Cross site scripting

Cross-site scripting XSS vulnerability in logout.php in TaskFreak! Original multi user before 0.6.4 allows remote attackers to inject arbitrary web script or HTML via the tznMessage parameter...

4.3CVSS6.1AI score0.01859EPSS
Exploits0References6Affected Software1
Prion
Prion
added 2010/06/30 6:30 p.m.13 views

Sql injection

SQL injection vulnerability in include/classes/tznuser.php in TaskFreak! Original multi user before 0.6.4 allows remote attackers to execute arbitrary SQL commands via the password parameter to login.php...

7.5CVSS9.2AI score0.01258EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder