559 matches found
Cross-site Scripting (XSS) Vulnerability in Advanced Poll
High-Tech Bridge SA Security Research Lab has discovered vulnerability in Advanced Poll which could be exploited to perform cross-site scripting XSS attacks. 1 Cross-site scripting vulnerability in Advanced Poll: CVE-2010-2003 An input sanitation error was found in the "mysqlhost" parameter in...
XSS vulnerability in Jaws
High-Tech Bridge SA Security Research Lab has discovered vulnerability in Jaws which could be exploited to perform cross-site scripting XSS attacks. 1 Cross-site scripting vulnerability in Jaws The vulnerability exists due to input sanitation error in the "url" parameter in the "edit profile"...
Cross-site Scripting Vulnerability in Acuity CMS
High-Tech Bridge SA Security Research Lab has discovered a vulnerability in Acuity CMS which could be exploited to perform cross-site scripting XSS attacks. 1 Cross-site scripting vulnerability in Acuity CMS Input sanitation error was found in the "page" parameter in /admin/pages/addpage.asp. A...
Cross-site Scripting Vulnerability in ecoCMS
High-Tech Bridge SA Security Research Lab has discovered vulnerability in ecoCMS which could be exploited to perform cross-site scripting XSS attacks. 1 Cross-site scripting vulnerability in ecoCMS: CVE-2010-5046 Input validation error was found in the "p" parameter in /admin.php. A remote attack...
Cross-site Scripting Vulnerabilities in eliteCMS
High-Tech Bridge SA Security Research Lab has discovered two vulnerabilities in eliteCMS which could be exploited to perform cross-site scripting XSS attacks. 1 Cross-site scripting XSS vulnerabilities in eliteCMS 1.1 An input sanitation error was found in the "page" parameter in...
Multiple vulnerabilities in Zikula Application Framework
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Zikula Application Framework, which can be exploited to perform cross-site scripting XSS and cross-site request forgery CSRF attacks. 1 XSRF CSRF in Zikula Application Framework: CVE-2010-1732 The vulnerability...
Cross-site Scripting Vulnerability in Microsoft SharePoint Server 2007
High-Tech Bridge SA Security Research Lab has discovered vulnerability in Microsoft SharePoint Server 2007 which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting vulnerability in Microsoft SharePoint Server 2007: CVE-2010-0817 An input sanitation error was found ...
Multiple vulnerabilities in AdaptCMS Lite
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in AdaptCMS Lite which could be exploited to perform cross-site request forgery and cross-site scripting attacks. 1 Cross-site request forgery CSRF in AdaptCMS Lite The vulnerability exists due to insufficient...
Cross-site request forgery (CSRF) in e107
High-Tech Bridge SA Security Research Lab has discovered two CSRF vulnerabilities in e107 which could allow a remote attacker to execute arbitrary SQL commands in applications database and gain complete control over the application. 1 Cross-site request forgery in e107 1.1 The vulnerability is...