EUVD-2007-4130

Malware in sbrugna...

WebEvent <= 4.03 Webevent.CGI Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/25148/info WebEvent is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...

CVE-2007-4146

Cross-site scripting XSS vulnerability in webevent.cgi in WebEvent 2.61 through 4.03 allows remote attackers to inject arbitrary web script or HTML via the cmd parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

Cross site scripting

Cross-site scripting XSS vulnerability in webevent.cgi in WebEvent 2.61 through 4.03 allows remote attackers to inject arbitrary web script or HTML via the cmd parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

CVE-2007-4146

CVE-2007-4146 describes a cross-site scripting (XSS) vulnerability in the WebEvent product’s webevent.cgi script, affecting versions 2.61 through 4.03. The flaw permits remote attackers to inject arbitrary web script or HTML via the cmd parameter. The description does not specify exploit details ...

CVE-2007-4146

Cross-site scripting XSS vulnerability in webevent.cgi in WebEvent 2.61 through 4.03 allows remote attackers to inject arbitrary web script or HTML via the cmd parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

webevent-xss.txt

Title : WebEventtm webevent.cgi Cross-Site Scripting Vulnerability Description : WebEventtm is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. Software : http://www.webevent.com/ Author : d3hydr8 Contact : d3hydr8atgmaildotcom...

WebEvent 4.03 - Webevent.cgi Cross-Site Scripting

WebEvent 4.03 - Webevent.cgi Cross-Site Scripting source: https://www.securityfocus.com/bid/25148/info WebEvent is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script...

WebEvent 4.03 - &#039;Webevent.cgi&#039; Cross-Site Scripting

source: https://www.securityfocus.com/bid/25148/info WebEvent is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

webevent.txt

To whom it may concern, I found what seems to be a bug in a program called webevent www.webevent.com. Webevent is a calander program that allows multiple users to post to, and read the calander. The bug comes in from the fact that you still have access to the perl file that is run when the...