The vulnerability of the Microsoft SharePoint Foundation electronic document management system allows a hacker to inject arbitrary web or HTML code.

The vulnerability of the Microsoft SharePoint Foundation e-mail delivery system exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to inject arbitrary web or HTML code remotely...

The vulnerability of the Microsoft Exchange Server system’s automation mechanism allows a hacker to inject arbitrary web or HTML code.

The vulnerability of the Outlook Web Access component of the Microsoft Exchange Server automation system exists due to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to inject arbitrary web or HTML code through a special...

The vulnerabilities of Microsoft Lync Server and Skype for Business Server allow attackers to inject arbitrary web or HTML code.

The vulnerability of the jQuery server messaging components in Microsoft Lync Server and Skype for Business Server exists due to the lack of protective measures for the website structure. Exploiting this vulnerability allows a malicious actor to inject arbitrary web or HTML code through a special...

The vulnerability of Skype for Business Server and Microsoft Lync Server allows a hacker to inject arbitrary web or HTML code.

The vulnerabilities of Skype for Business Server and Microsoft Lync Server exist due to the lack of measures taken to protect the website structure. Exploiting these vulnerabilities allows a malicious actor to inject arbitrary web or HTML code through a specially crafted URL...

The vulnerability of Microsoft Lync Server’s messaging server allows a hacker to inject arbitrary web or HTML code.

The vulnerability of Microsoft Lync Server’s messaging server exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to inject arbitrary web or HTML code through a specially crafted URL...

The vulnerability of the SAP Afaria mobile device management program allows a hacker to inject arbitrary web or HTML code.

The vulnerability of the Device Inspector page of the SAP Afaria mobile device management software exists due to the lack of measures taken to protect the web page structure. Exploiting this vulnerability allows a malicious actor to inject arbitrary HTML code using a specially crafted request...

The vulnerability of the Business Process Manager system allows a perpetrator to inject arbitrary web or HTML code.

The vulnerability of the Business Process Manager system exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to inject arbitrary web or HTML code using a specially crafted URL...

The vulnerability of WebSphere Application Server’s application servers allows attackers to inject arbitrary web or HTML code.

The vulnerability of WebSphere Application Server exists because measures are not taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to inject any desired web or HTML code using a specially crafted URL...

Splunk Enterprise and Splunk Light Web Cross-Site Scripting Vulnerabilities

Splunk is a suite of data collection and analysis software. The software is primarily used to collect, index and analyze machine-generated data, including data generated by all IT systems and infrastructure. A cross-site scripting vulnerability exists in Splunk Enterprise and Splunk Light in the...

The vulnerability of the Moodle learning management system allows a hacker to inject arbitrary web or HTML code.

The vulnerability of the externalformattext function in the lib/externallib.php component of the Moodle learning management system exists due to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to inject any desired web or...

HTMLToNuke Cross-Site Scripting Vulnerabilty

No description provided by source. source: http://www.securityfocus.com/bid/8174/info A vulnerability has been reported in htmltonuke that may result in web code execution in the browser of visiting users. This code would be executed in the security context of the site hosting the vulnerable...

CVE-2011-5108

Cross-site scripting XSS vulnerability in config.php in AdaptCMS 2.0.0 and 2.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

Action Network(DVbbs) Ver 8.3.0 multiple cross-site vulnerabilities-vulnerability warning-the black bar safety net

Dynamic network Forum as currently domestic maximum of Community Forum software service provider, relies on its powerful of features, phenomenal access speed and load capacity, and friendly convenient of customer operation interface, quality customer service, leading technology and strong and...

Debian Security Advisory DSA 1724-1 (moodle)

The remote host is missing an update to moodle announced via advisory DSA 1724-1. OpenVAS Vulnerability Test $Id: deb17241.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1724-1 moodle Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

Debian DSA-1724-1 : moodle - several vulnerabilities

Several vulnerabilities have been discovered in Moodle, an online course management system. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-0500 It was discovered that the information stored in the log tables was not properly sanitized, which could...

[SECURITY] [DSA 1724-1] New moodle packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 1724-1 [email protected] http://www.debian.org/security/ Steffen Joeris February 13th, 2009 http://www.debian.org/security/faq -...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in vBulletin 3.6.8 allow remote attackers to inject arbitrary web code or HTML via the 1 s parameter to index.php, and the 2 q parameter to a faq.php, b member.php, c memberlist.php, d calendar.php, e search.php, f forumdisplay.php, g...

CVE-2007-4453

Multiple cross-site scripting XSS vulnerabilities in vBulletin 3.6.8 allow remote attackers to inject arbitrary web code or HTML via the 1 s parameter to index.php, and the 2 q parameter to a faq.php, b member.php, c memberlist.php, d calendar.php, e search.php, f forumdisplay.php, g...

CVE-2007-4453

CVE-2007-4453 affects vBulletin 3.6.8 and involves multiple reflected XSS vulnerabilities in PHP pages. The issue allows an attacker to inject arbitrary HTML/JS via the s parameter to index.php and the q parameter to files including faq.php, member.php, memberlist.php, calendar.php, search.php, f...

HTMLToNuke - Cross-Site Scripting

source: https://www.securityfocus.com/bid/8174/info A vulnerability has been reported in htmltonuke that may result in web code execution in the browser of visiting users. This code would be executed in the security context of the site hosting the vulnerable script...