Lucene search
+L

978 matches found

securityvulns
securityvulns
added 2007/10/10 12:0 a.m.101 views

DNewsWeb Softwares Cross Site Scripting Vulrnability

HSC DNewsWeb Softwares Cross Site Scripting Vulrnability The DNews News Server is advanced news server software that makes it easy for you to provide users with fast access to Internet Usenet news groups. Installing your own l ocal news server software also gives you complete control to create yo...

1AI score
Exploits0
packetstorm
packetstorm
added 2007/10/10 12:0 a.m.30 views

dnewsweb-xss.txt

HSC DNewsWeb Softwares Cross Site Scripting Vulrnability The DNews News Server is advanced news server software that makes it easy for you to provide users with fast access to Internet Usenet news groups. Installing your own l ocal news server software also gives you complete control to create yo...

Exploits0
securityvulns
securityvulns
added 2007/10/02 12:0 a.m.107 views

eGov Content Manager Cross Site Scripting Vulrnability

HSC eGov Content Manager Cross Site Scripting Vulrnability The eGov Manager was designed to simplify the efforts of government staffers who are responsible for posting public documents, news updates, events, managing staff directories and online services. This issue is due to a failure in the...

0.7AI score
Exploits0
packetstorm
packetstorm
added 2007/09/13 12:0 a.m.27 views

boinc-xss.txt

HSC Boinc Forum Cross Site Scripting Vulrnability This issue is due to a failure in the application to properly sanitize user-supplied input. Attackers may exploit this issue via a web client. An attacker may leverage this issue to have arbitrary script code execute in the browser of an...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2007/09/13 12:0 a.m.97 views

Boinc Forum Cross Site Scripting Vulrnability

HSC Boinc Forum Cross Site Scripting Vulrnability This issue is due to a failure in the application to properly sanitize user-supplied input. Attackers may exploit this issue via a web client. An attacker may leverage this issue to have arbitrary script code execute in the browser of an...

1.2AI score
Exploits0
securityvulns
securityvulns
added 2007/08/28 12:0 a.m.43 views

InterWorx-CP Multiple HTML Injections Vulnerabilitie

HSC InterWorx-CP Multiple HTMl Injection Vulnerabilities The InterWorx Hosting Control Panel InterWorx-CP is a dedicated server control panel. InterWorx suffers from multiple HTMl injection vulnerabilities. JavaScript and Cross site scripting are just few found vulns, more sophisticated attacks...

0.9AI score
Exploits0
packetstorm
packetstorm
added 2007/07/28 12:0 a.m.30 views

phpsysinfo-xss.txt

HSC PHPSysInfo Index.php Cross Site Scripting PhpSysInfo is a PHP script that displays information about the host being accessed. An attacker may leverage this issue to have arbitrary script code execute in the browser of an unsuspecting user in the context of the affected site. This may help the...

7.4AI score
Exploits0
packetstorm
packetstorm
added 2007/06/21 12:0 a.m.40 views

csc-sqlxss.txt

--- Comersus Shop Cart 7.07 SQL Injection & XSS Comersus is an active server pages asp software for running shopping stores, integrated with the rest of your web site. Comersus ASP Cart is free and IT CAN BE used for commercial purposes. An attacker may leverage this issue to have arbitrary scrip...

7.4AI score
Exploits0
packetstorm
packetstorm
added 2007/06/07 12:0 a.m.26 views

cactushop-mdb.txt

Cactushop V6 allows remote users to download the database which contains creditcard numbers and critical information. The affected carts default installation gives away the path to database file. As a result, an attacker exploiting this vulnerability will be able to obtain detailed private custom...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2007/05/03 12:0 a.m.51 views

Aardvark Topsites PHP Directory Disclosure Vulnerability

Aardvark Topsites PHP Directory Disclosure Vulnerability Aardvark Topsites PHP is the premier free PHP/MySQL topsites script. An attacker can see what files are in the Directory. Knowing what is there to be executed can allow for more targeted and intelligent attacks against PHP Files known to be...

0.5AI score
Exploits0
exploitpack
exploitpack
added 2007/02/02 12:0 a.m.16 views

EasyMoblog 0.5.1 - Multiple Input Validation Vulnerabilities

EasyMoblog 0.5.1 - Multiple Input Validation Vulnerabilities source: https://www.securityfocus.com/bid/22369/info EasyMoblog is prone to multiple input-validation vulnerabilities, including SQL-injection issues and a cross-site scripting issue, because the application fails to sufficiently saniti...

0.1AI score
Exploits0
exploitdb
exploitdb
added 2007/02/02 12:0 a.m.19 views

EasyMoblog 0.5.1 - Multiple Input Validation Vulnerabilities

source: https://www.securityfocus.com/bid/22369/info EasyMoblog is prone to multiple input-validation vulnerabilities, including SQL-injection issues and a cross-site scripting issue, because the application fails to sufficiently sanitize user-supplied input. Exploiting these issues could allow a...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2007/01/20 12:0 a.m.62 views

MyShoutBox Multiple Cross-Site Scripting Vulnerability

A Shoutbox is a new interaction possiblity for visitors to your site! With a Shoutbox, site visitors develop a durable, personal relationship with your homepage. Customer relations is indispensable for today's websites. Hackers Center Security Group http://www.hackerscenter.com Credit: Doz Risk:...

1.3AI score
Exploits0
securityvulns
securityvulns
added 2007/01/20 12:0 a.m.58 views

Paypal Subscription Manager Multiple HTML Injections

Paypal Subscription Manager allows webmaster easily create subscription web site, visitors can access to digital product instantly after paying through Paypal, PSM provides ability to effortlessly process subscription and protect membership areas. PSM uses PHP and MySQL for fast, efficient,...

1.2AI score
Exploits0
securityvulns
securityvulns
added 2007/01/17 12:0 a.m.55 views

InstantForum.NET Multiple Cross-Site Scripting Vulnerability

InstantForum.NET Multiple Cross-Site Scripting Vulnerability ASP.NET based discussion forum. Full administration, WYSIWYG editor, Permission based forum access, Assign forum moderators, VS.NET solution available. InstantForum.NET is the most comprehensive, high performance ASP.NET & SQL Server...

0.7AI score
Exploits0
packetstorm
packetstorm
added 2007/01/16 12:0 a.m.38 views

instant-xss.txt

InstantForum.NET Multiple Cross-Site Scripting Vulnerability ASP.NET based discussion forum. Full administration, WYSIWYG editor, Permission based forum access, Assign forum moderators, VS.NET solution available. InstantForum.NET is the most comprehensive, high performance ASP.NET & SQL Server...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2007/01/03 12:0 a.m.40 views

AShop Shopping Cart Multiple XSS Vulnerabilities

Ashop Commerce provides a turn-key ecommerce solution with it's revolutionary online store building software. One of the worlds most easy to use web based administrations with award winning features allows the merchant to set up an online store capable of competing with the webs most powerful...

1.5AI score
Exploits0
packetstorm
packetstorm
added 2006/12/28 12:0 a.m.19 views

phplive322-xss.txt

PHP Live! © OSI Codes Inc. enables live help and live customer support communication directly from your website. With PHP Live!, you can provide one-on-one chat assistance in real-time, answer visitor questions and add that extra human touch to your website. The application if full of xss holes...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2006/12/26 12:0 a.m.40 views

PHP Live! 3.2.2 Multiple Cross-Site Scripting Vulnerabilities

PHP Live! © OSI Codes Inc. enables live help and live customer support communication directly from your website. With PHP Live!, you can provide one-on-one chat assistance in real-time, answer visitor questions and add that extra human touch to your website. The application if full of xss holes...

1.2AI score
Exploits0
seebug
seebug
added 2006/12/22 12:0 a.m.39 views

Typo3 Class.TX_RTEHTMLArea_PI1.PHP多个命令执行漏洞

Typo3是一款基于PHP的WEB应用程序。 Typo3不正确过滤用户提交的输入,远程攻击者可以利用漏洞以WEB权限执行任意命令。 问题是脚本对用户提交的'useruid'参数缺少过滤,提交包含SHELL元字符命令的字符串作为参数数据,可导致以WEB权限执行任意命令。 Typo3 Typo3 4.0.3 Typo3 Typo3 4.0.2 Typo3 Typo3 4.0.1 Typo3 Typo3 3.7 .0 Typo3 Typo3 4.0 Typo3 Typo3 3.8 http://typo3.org/ Attackers can exploit these issues via ...

7.1AI score
Exploits0
Rows per page
Query Builder