Task Freak Cross Site Scripting and SQL Injection Vulnerabilities

This host is running Task Freak and is prone to Cross Site Scripting and SQL Injection vulnerabilities. OpenVAS Vulnerability Test $Id: gbtaskfreakxssnsqlinjvuln.nasl 7573 2017-10-26 09:18:50Z cfischer $ Task Freak Cross Site Scripting and SQL Injection Vulnerabilities Authors: Madhuri D Copyrigh...

CVE-2010-1520

Cross-site scripting XSS vulnerability in logout.php in TaskFreak! Original multi user before 0.6.4 allows remote attackers to inject arbitrary web script or HTML via the tznMessage parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in error.php in TaskFreak! 0.5.5 allows remote attackers to inject arbitrary web script or HTML via the tznMessage parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

CVE-2007-0982

CVE-2007-0982 describes a cross-site scripting (XSS) vulnerability in TaskFreak! 0.5.5, exploitable through the tznMessage parameter processed by error.php. The description notes the issue as an XSS risk and references third-party sources; no patch or mitigation details are provided within the co...