20 matches found
PT-2025-31976
Name of the Vulnerable Software and Affected Versions XBMC versions prior to the 2012-11-04 nightly release XBMC version 11 Description XBMC version 11, including builds up to the 2012-11-04 nightly release, contains a path traversal vulnerability in its embedded HTTP server. When accessed via HT...
WorkBoard 1.2 - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/12009/info It is reported that WorkBoard is affected by various cross-site scripting vulnerabilities. These issues are due to a failure of the application to properly sanitize user-supplied URI input. These issues could permit a remote attacker to create ...
UBBCentral UBB.Threads 6.2.36.5 - calendar.php?Cat Cross-Site Scripting
UBBCentral UBB.Threads 6.2.36.5 - calendar.php?Cat Cross-Site Scripting source: https://www.securityfocus.com/bid/11900/info It is reported that UBB.threads is affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure of the application to properly sanitize...
UBBCentral UBB.Threads 6.2.36.5 - showflat.php?Cat Cross-Site Scripting
UBBCentral UBB.Threads 6.2.36.5 - showflat.php?Cat Cross-Site Scripting source: https://www.securityfocus.com/bid/11900/info It is reported that UBB.threads is affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure of the application to properly sanitize...
UBBCentral UBB.Threads 6.2.3/6.5 - 'online.php?Cat' Cross-Site Scripting
source: https://www.securityfocus.com/bid/11900/info It is reported that UBB.threads is affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure of the application to properly sanitize user-supplied URI input prior to including it in dynamically generated web...
Blog Torrent 0.80 - 'BTDownload.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/11839/info It is reported that Blog Torrent is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This issue could permit a remote attacker to create a maliciou...
KDE FTP - KIOSlave URI Arbitrary FTP Server Command Execution
KDE FTP - KIOSlave URI Arbitrary FTP Server Command Execution source: https://www.securityfocus.com/bid/11827/info KDE FTP kioslave-based applications such as Konqueror are reported prone to an arbitrary FTP server command execution vulnerability. This issue is due to a failure of the application...
CuteNews 0.881.3.x - index.php Cross-Site Scripting
CuteNews 0.881.3.x - index.php Cross-Site Scripting source: https://www.securityfocus.com/bid/11097/info It is reported that CuteNews is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This issue cou...
PhotoADay - Pad_selected Cross-Site Scripting
PhotoADay - Padselected Cross-Site Scripting source: https://www.securityfocus.com/bid/11009/info It is reported that PhotoADay is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This issue could...
PhotoADay - 'Pad_selected' Cross-Site Scripting
source: https://www.securityfocus.com/bid/11009/info It is reported that PhotoADay is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This issue could permit a remote attacker to create a malicious U...
SCI Photo Chat 3.4.9 - Cross-Site Scripting
SCI Photo Chat 3.4.9 - Cross-Site Scripting source: https://www.securityfocus.com/bid/10648/info SCI Photo Chat is reported susceptible to a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. The web server component...
SCI Photo Chat 3.4.9 - Cross-Site Scripting
source: https://www.securityfocus.com/bid/10648/info SCI Photo Chat is reported susceptible to a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. The web server component of SCI Chat server will display an error...
CuteNews 0.88/1.3 - 'show_archives.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/10620/info It is reported that CuteNews is affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure of the application to properly sanitize user-supplied URI input. The problems present themselves when malicious HTML an...
dsm light Web file browser 2.0 - Directory Traversal
source: https://www.securityfocus.com/bid/10381/info DSM Light has been reported to be prone to a directory traversal vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This issue would allow an attacker to view arbitrary, web-readable...
PHPX 3.x - Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/10283/info It has been reported that PHPX is affected by multiple cross-site scripting vulnerabilities. These issues are due to a failure of the application to properly sanitize user-supplied URI input. These issues could permit a remote attacker to creat...
PHPGedView 2.52.6 - login.php?URL Cross-Site Scripting
PHPGedView 2.52.6 - login.php?URL Cross-Site Scripting source: https://www.securityfocus.com/bid/11903/info It is reported that PhpGedView is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This issu...
PHPGedView 2.52.6 - calendar.php Cross-Site Scripting
PHPGedView 2.52.6 - calendar.php Cross-Site Scripting source: https://www.securityfocus.com/bid/11907/info It is reported that PhpGedView is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This issue...
PHPGedView 2.52.6 - Source.php Cross-Site Scripting
PHPGedView 2.52.6 - Source.php Cross-Site Scripting source: https://www.securityfocus.com/bid/11888/info It is reported that PhpGedView is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This issue...
PHPGedView 2.52.6 - Relationship.php Cross-Site Scripting
PHPGedView 2.52.6 - Relationship.php Cross-Site Scripting source: https://www.securityfocus.com/bid/11906/info It is reported that PhpGedView is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This...
PHPGedView 2.5/2.6 - 'Gedrecord.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/11891/info It is reported that PhpGedView is affected by a cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user-supplied URI input. This issue could permit a remote attacker to create a malicious...