TextPattern 4.2 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/47182/info TextPattern is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the contex...

Textpattern 4.2.0 Cross Site Scripting

´´´´´´´´´´´´´´´´´´´´´¶¶¶¶¶¶¶¶¶¶¶¶¶¶¶¶¶´´´´´´´´´´´´´´´´´´´´´ ´´´´´´´´´´´´´´´´´¶¶¶¶¶¶´´´´´´´´´´´´´¶¶¶¶¶¶¶´´´´´´´´´´´´´´´´ ´´´´´´´´´´´´´´¶¶¶¶´´´´´´´´´´´´´´´´´´´´´´´¶¶¶¶´´´´´´´´´´´´´´ ´´´´´´´´´´´´´¶¶¶´´´´´´´´´´´´´´´´´´´´´´´´´´´´´¶¶´´´´´´´´´´´´ ´´´´´´´´´´´´¶¶´´´´´´´´´ ´´´´´´´´´´´´´´´´´´´´´´¶¶´´´´´´´´´...

Textpattern CMS 'index.php' Remote File Inclusion Vulnerability

Textpattern CMS is prone to a remote file inclusion vulnerability. Copyright C 2010 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

Textpattern CMS 4.2.0 Cross Site Scripting

Vulnerability ID: HTB22672 Reference: http://www.htbridge.ch/advisory/xssintextpatterncms.html Product: Textpattern CMS Vendor: Team Textpattern http://textpattern.com/ Vulnerable Version: 4.2.0 Vendor Notification: 21 October 2010 Vulnerability Type: XSS Cross Site Scripting Status: Fixed by...

XSS in Textpattern CMS

Vulnerability ID: HTB22672 Reference: http://www.htbridge.ch/advisory/xssintextpatterncms.html Product: Textpattern CMS Vendor: Team Textpattern http://textpattern.com/ Vulnerable Version: 4.2.0 Vendor Notification: 21 October 2010 Vulnerability Type: XSS Cross Site Scripting Status: Fixed by...

Script Insertion Vulnerability in Textpattern CMS

High-Tech Bridge SA Security Research Lab has discovered vulnerability in Textpattern CMS which could be exploited to perform script insertion attacks. 1 Script insertion vulnerability in Textpattern CMS An input sanitation error exists in the comment field. A remote attacker can insert arbitrary...

TextPattern 'txplib_db.php' Cross Site Scripting Vulnerability

TextPattern is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker t...

Textpattern CMS 'txplib_db.php' XSS Vulnerability - Active Check

Textpattern CMS is prone to a cross-site scripting XSS vulnerability because it fails to sufficiently sanitize user-supplied data. Copyright C 2010 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Textpattern 4.2.0 Cross Site Scripting

Textpattern 4.2.0 txplibdb Null Termination Cross-Site Scripting Vulnerability Vendor: Team Textpattern Product web page: http://www.textpattern.com Affected version: 4.2.0 Summary: Textpattern is an open source content management system unlike any other; it allows you to easily create, edit and...

Textpattern 4.2.0 (txplib_db) Null Termination Cross-Site Scripting Vulnerability

Summary Textpattern is an open source content management system unlike any other; it allows you to easily create, edit and publish content and make it beautiful in a professional, standards-compliant manner. Description Textpattern CMS version 4.2.0 suffers from a XSS vulnerability. Input passed...

CVE-2010-3205

PHP remote file inclusion vulnerability in index.php in Textpattern CMS 4.2.0 allows remote attackers to execute arbitrary PHP code via a URL in the inc parameter...

CVE-2010-3205

PHP remote file inclusion vulnerability in index.php in Textpattern CMS 4.2.0 allows remote attackers to execute arbitrary PHP code via a URL in the inc parameter...

CVE-2010-3205

CVE-2010-3205 affects Textpattern CMS 4.2.0. Affected component: index.php, with a PHP remote file inclusion vulnerability via the inc parameter, enabling execution of arbitrary PHP code by an attacker-controlled URL. Root cause: improper handling of the inc parameter leads to remote file inclusi...

CVE-2010-3205

PHP remote file inclusion vulnerability in index.php in Textpattern CMS 4.2.0 allows remote attackers to execute arbitrary PHP code via a URL in the inc parameter...

Textpattern CMS 4.2.0 Remote File Inclusion

Remote File Inclusion Vulnerability ------------------------------------------------------------------------------ Textpattern index.php -------------------------------------------------------------- + Author : Sn!pEr.S!Te Hacker + Email : [email protected] + Inj3ct0r Team Hacker + 28-8-201...

Textpattern RFI Vulnerability

Exploit for php platform in category web applications ============================= Textpattern RFI Vulnerability ============================= Textpattern index.php -------------------------------------------------------------- + Author : Sn!pEr.S!Te Hacker + Email : email protected + Inj3ct0r...

textpattern CMS 4.2.0 - Remote File Inclusion

Remote File Inclusion Vulnerability ------------------------------------------------------------------------------ Textpattern index.php -------------------------------------------------------------- + Author : Sn!pEr.S!Te Hacker + Email : [email protected] + Inj3ct0r Team Hacker + 28-8-201...

textpattern CMS 4.2.0 - Remote File Inclusion

textpattern CMS 4.2.0 - Remote File Inclusion Remote File Inclusion Vulnerability ------------------------------------------------------------------------------ Textpattern index.php -------------------------------------------------------------- + Author : Sn!pEr.S!Te Hacker + Email :...

Cross site scripting

Cross-site scripting XSS vulnerability in textarea/index.php in Textpattern aka Txp CMS 4.0.6 and earlier allows remote authenticated users to inject arbitrary web script or HTML via the Body parameter in an article action. NOTE: some of these details are obtained from third party information...

CVE-2008-5757

Cross-site scripting XSS vulnerability in textarea/index.php in Textpattern aka Txp CMS 4.0.6 and earlier allows remote authenticated users to inject arbitrary web script or HTML via the Body parameter in an article action. NOTE: some of these details are obtained from third party information...