7170 matches found
Layton Technology HelpBox 3.0.1 - Multiple SQL Injections
Layton Technology HelpBox 3.0.1 - Multiple SQL Injections source: https://www.securityfocus.com/bid/10776/info It is reported that HelpBox is susceptible to multiple SQL injection vulnerabilities. This issue is due to improper sanitization of user-supplied data. These problems present themselves...
Outblaze Webmail - HTML Injection
Outblaze Webmail - HTML Injection source: https://www.securityfocus.com/bid/10756/info Outblaze Webmail is reported prone to an-HTML injection vulnerability because the application fails to properly sanitize user-supplied HTML email content. An attacker may be able to inject HTML and script code...
Gattaca Server 2003 - Cross-Site Scripting
source: https://www.securityfocus.com/bid/10731/info Gattaca Server 2003 is reported prone to a cross-site scripting vulnerability. This issue presents itself due to insufficient sanitization of user-supplied data. A remote attacker can exploit this issue by creating a malicious link to the...
Jaws 0.20.3 - gadget Traversal Arbitrary File Access
Jaws 0.20.3 - gadget Traversal Arbitrary File Access source: https://www.securityfocus.com/bid/10670/info JAWS is reported prone to multiple vulnerabilities. The issues result from insufficient sanitization of user-supplied data. The following specific issues can affect the application: JAWS is...
12Planet Chat Server 2.9 - Cross-Site Scripting
source: https://www.securityfocus.com/bid/10659/info It is reported that 12Planet Chat Server is prone to a cross-site scripting vulnerability. This issue is due to a lack of sanitization of user-supplied data. The problem presents itself when malicious HTML or script code is passed in a URI...
12Planet Chat Server 2.9 - Cross-Site Scripting
12Planet Chat Server 2.9 - Cross-Site Scripting source: https://www.securityfocus.com/bid/10659/info It is reported that 12Planet Chat Server is prone to a cross-site scripting vulnerability. This issue is due to a lack of sanitization of user-supplied data. The problem presents itself when...
McMurtrey/Whitaker & Associates Cart32 2-5 GetLatestBuilds Script - Cross-Site Scripting
source: https://www.securityfocus.com/bid/10617/info Cart32 is reported prone to a cross-site scripting vulnerability. This issue presents itself due to insufficient sanitization of user-supplied data. A remote attacker can exploit this issue by creating a malicious link to the vulnerable...
PHP-Nuke 1.0/2.5/3.0/4.x/5.x/6.x/7.x - Multiple Vulnerabilities
source: https://www.securityfocus.com/bid/10595/info PHP-Nuke is prone to multiple vulnerabilities. The issues result from insufficient sanitization of user-supplied data and may allow an attacker to carry out cross-site scripting, HTML injection, and SQL injection attacks. Although unconfirmed,...
PHP-Nuke 1.02.53.04.x5.x6.x7.x - Multiple Vulnerabilities
PHP-Nuke 1.02.53.04.x5.x6.x7.x - Multiple Vulnerabilities source: https://www.securityfocus.com/bid/10595/info PHP-Nuke is prone to multiple vulnerabilities. The issues result from insufficient sanitization of user-supplied data and may allow an attacker to carry out cross-site scripting, HTML...
dlink614.txt
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 TITLE: Security flaw in DLINK 614+ - SOHO routers http://www.dlink.com TYPE: Script injection over DHCP QUOTE from DLINK: The AirPlus DI-614+ combines the latest advancements in 802.11b silicon chip design from Texas Instruments, utilizing their...
Web Wiz Forums 7.x - Registration_Rules.asp Cross-Site Scripting
Web Wiz Forums 7.x - RegistrationRules.asp Cross-Site Scripting source: https://www.securityfocus.com/bid/10555/info A vulnerability exists in the Web Wiz Forums software that may allow a remote user to launch cross-site scripting attacks. The problem is reported to exist due to improper sanitizi...
NetWin Surgemail 1.81.92.0 WebMail 3.1 - Error Message Full Path Disclosure
NetWin Surgemail 1.81.92.0 WebMail 3.1 - Error Message Full Path Disclosure source: https://www.securityfocus.com/bid/10483/info SurgeMail/WebMail is prone to multiple vulnerabilities. These issue result from insufficient sanitization of user-supplied data. The issues can allow an attacker to car...
NetWin Surgemail 1.81.92.0 WebMail 3.1 - Login Form Cross-Site Scripting
NetWin Surgemail 1.81.92.0 WebMail 3.1 - Login Form Cross-Site Scripting source: https://www.securityfocus.com/bid/10483/info SurgeMail/WebMail is prone to multiple vulnerabilities. These issue result from insufficient sanitization of user-supplied data. The issues can allow an attacker to carry...
Liferay Enterprise Portal 1.x2.x5.0.2 - Multiple Cross-Site Scripting Vulnerabilities
Liferay Enterprise Portal 1.x2.x5.0.2 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/10402/info It has been reported that Liferay Enterprise Portal is susceptible to multiple cross-site scripting and HTML injection vulnerabilities. User-supplied data fro...
FloosieTek FTGate Mail Server 1.2 - 'index.fts?folder' Cross-Site Scripting
source: https://www.securityfocus.com/bid/10058/info It has been reported that FTGate is prone to multiple remote input validation vulnerabilities; a cross-site scripting issue and an HTML injection vulnerability. These issues are due to a failure of the application to properly sanitize user...
OpenBB 1.0.6 - 'myhome.php' SQL Injection
source: https://www.securityfocus.com/bid/10044/info It has been reported that OpenBB is prone to a vulnerability that may allow malicious users to influence SQL queries of the affected application. This issue is due to a failure of the application to properly sanitize user-supplied URI data. Thi...
OpenBB 1.0.6 - myhome.php SQL Injection
OpenBB 1.0.6 - myhome.php SQL Injection source: https://www.securityfocus.com/bid/10044/info It has been reported that OpenBB is prone to a vulnerability that may allow malicious users to influence SQL queries of the affected application. This issue is due to a failure of the application to...
PhotoPost < 4.6 - Multiple Vulnerabilities
PhotoPost Multiple Vulnerabilities Vendor: All Enthusiast, Inc Product: PhotoPost Version: = 4.6 Website: http://www.photopost.com/ BID: 9994 CVE: CVE-2004-1870 CVE-2004-1871 OSVDB: 10261 10262 10263 10264 10265 10266 10267 4771 SECUNIA: 11241 Description: PhotoPost was designed to help you give...
HP Web Jetadmin 7.5.2456 - setinfo.hts Script Directory Traversal
HP Web Jetadmin 7.5.2456 - setinfo.hts Script Directory Traversal source: https://www.securityfocus.com/bid/9972/info It has been reported that HP Web JetAdmin may be prone to a directory traversal vulnerability allowing remote attackers to access information outside the server root directory. Th...
Centrinity FirstClass HTTP Server 57 - TargetName Cross-Site Scripting
Centrinity FirstClass HTTP Server 57 - TargetName Cross-Site Scripting source: https://www.securityfocus.com/bid/9950/info It has been reported that FirstClass HTTP Server may be prone to a cross-site scripting vulnerability that may allow a remote attacker to execute arbitrary HTML or script cod...