EUVD-2006-5501

Malware in sbrugna...

EUVD-2006-2651

Malware in sbrugna...

WikiNi 0.4.x Waka.PHP Multiple HTML-Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/20688/info WikiNi is prone to multiple HTML-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input data before using it in dynamically generated content. An attacker may leverage these...

WikiNi-xss.txt

Hi, I've found 2 XSS vulns in WikiNi. The programmers have been contacted and the vulns addressed in version 0.4.4. The name parameter of page wakka.php is not properly sanitized: "alert'XSS Vulnerable';" The email parameter of page wakka.php is not properly sanitized: "alert'XSS Vulnerable';"...

CVE-2006-5516

Multiple cross-site scripting XSS vulnerabilities in actions/usersettings.php in WikiNi before 0.4.4 allow remote attackers to inject arbitrary web script or HTML via the 1 name and 2 email parameters to wakka.php...

CVE-2006-5516

Multiple cross-site scripting XSS vulnerabilities in actions/usersettings.php in WikiNi before 0.4.4 allow remote attackers to inject arbitrary web script or HTML via the 1 name and 2 email parameters to wakka.php...

CVE-2006-5516

WikiNi is affected by multiple XSS flaws in actions/usersettings.php, exploitable via the name and email parameters to wakka.php in versions prior to 0.4.4. The vulnerabilities arise from improper handling of user-supplied input, enabling remote attackers to inject arbitrary web script or HTML. T...

WikiNi Multiple Cross Site Scripting Vulnerabilities

Hi, I've found 2 XSS vulns in WikiNi. The programmers have been contacted and the vulns addressed in version 0.4.4. The name parameter of page wakka.php is not properly sanitized: html body form method="POST" enctype="application/x-www-form-urlencoded" action="http://www.example.com/wakka.php"...

WikiNi 0.4.x - Waka.php Multiple HTML Injection Vulnerabilities

WikiNi 0.4.x - Waka.php Multiple HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/20688/info WikiNi is prone to multiple HTML-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input data before using it in dynamically generated content. An...

WikiNi 0.4.x - 'Waka.php' Multiple HTML Injection Vulnerabilities

source: https://www.securityfocus.com/bid/20688/info WikiNi is prone to multiple HTML-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input data before using it in dynamically generated content. An attacker may leverage these issues to have arbitrary script code...

CVE-2006-2652

Cross-site scripting XSS vulnerability in WikiNi 0.4.2 and earlier allows remote attackers to inject arbitrary HTML and web script by editing a Wiki page to contain the script...

Cross site scripting

Cross-site scripting XSS vulnerability in WikiNi 0.4.2 and earlier allows remote attackers to inject arbitrary HTML and web script by editing a Wiki page to contain the script...

CVE-2006-2652

Cross-site scripting XSS vulnerability in WikiNi 0.4.2 and earlier allows remote attackers to inject arbitrary HTML and web script by editing a Wiki page to contain the script...

CVE-2006-2652

CVE-2006-2652 is an XSS vulnerability affecting WikiNi 0.4.2 and earlier, allowing remote attackers to inject arbitrary HTML/script by editing a Wiki page to include the script. The connected documents confirm the product/version and the vulnerable behavior, but do not provide technical details b...

WikiNi Persistent Cross Site Scripting Vulnerability

Hi, I've found a vulnerability more than 2 months ago, and notified the developers, but still no answer, so I'm posting here. http://zone14.free.fr/advisories/3/ Vendor: WikiNi Vulnerable: WikiNi 0.4.2 and below Persistent Cross Site Scripting A persistent XSS vulnerability is the most dangerous...