5 matches found
PT-2022-13717 · Unknown · Livehelperchat
Name of the Vulnerable Software and Affected Versions: LiveHelperChat versions prior to 3.67 Description: The issue allows an attacker to bypass the SSRF filter on ports 80 and 433, making the application perform arbitrary requests. Recommendations: For versions prior to 3.67, update to version...
ua367XSS.txt
Hello! I've found a XSS in Ultimate Auction alert"XSS" http://www.ultimate-auction.de/cgi-local/auktion/itemlist.pl?category=alert"XSS" The bug has the BID 16239...
Ultimate Auction 3.67 - ItemList.pl Cross-Site Scripting
source: https://www.securityfocus.com/bid/16254/info Ultimate Auction is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the...
Ultimate Auction 3.67 - Item.pl Cross-Site Scripting
Ultimate Auction 3.67 - Item.pl Cross-Site Scripting source: https://www.securityfocus.com/bid/16239/info Ultimate Auction is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this...
Ultimate Auction 3.67 - Item.pl Cross-Site Scripting
source: https://www.securityfocus.com/bid/16239/info Ultimate Auction is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the...