559 matches found
XSS in EasyPublish CMS
High-Tech Bridge SA Security Research Lab has discovered a vulnerability in EasyPublish CMS which could be exploited to perform cross-site scripting XSS attacks. 1 Cross-site scripting vulnerability in EasyPublish CMS Input passed via the URL to /index.php is not properly sanitized before being...
XSS vulnerability in Jaws
High-Tech Bridge SA Security Research Lab has discovered vulnerability in Jaws which could be exploited to perform cross-site scripting XSS attacks. 1 Cross-site scripting vulnerability in Jaws The vulnerability exists due to input sanitation error in the "url" parameter in the "edit profile"...
Cross-site Scripting Vulnerability in Acuity CMS
High-Tech Bridge SA Security Research Lab has discovered a vulnerability in Acuity CMS which could be exploited to perform cross-site scripting XSS attacks. 1 Cross-site scripting vulnerability in Acuity CMS Input sanitation error was found in the "page" parameter in /admin/pages/addpage.asp. A...
Cross-site Scripting Vulnerabilities in eliteCMS
High-Tech Bridge SA Security Research Lab has discovered two vulnerabilities in eliteCMS which could be exploited to perform cross-site scripting XSS attacks. 1 Cross-site scripting XSS vulnerabilities in eliteCMS 1.1 An input sanitation error was found in the "page" parameter in...
Cross-site Scripting Vulnerability in ecoCMS
High-Tech Bridge SA Security Research Lab has discovered vulnerability in ecoCMS which could be exploited to perform cross-site scripting XSS attacks. 1 Cross-site scripting vulnerability in ecoCMS: CVE-2010-5046 Input validation error was found in the "p" parameter in /admin.php. A remote attack...
Multiple vulnerabilities in Zikula Application Framework
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Zikula Application Framework, which can be exploited to perform cross-site scripting XSS and cross-site request forgery CSRF attacks. 1 XSRF CSRF in Zikula Application Framework: CVE-2010-1732 The vulnerability...
Cross-site Scripting Vulnerability in Microsoft SharePoint Server 2007
High-Tech Bridge SA Security Research Lab has discovered vulnerability in Microsoft SharePoint Server 2007 which could be exploited to perform cross-site scripting attacks. 1 Cross-site scripting vulnerability in Microsoft SharePoint Server 2007: CVE-2010-0817 An input sanitation error was found ...
Multiple vulnerabilities in AdaptCMS Lite
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in AdaptCMS Lite which could be exploited to perform cross-site request forgery and cross-site scripting attacks. 1 Cross-site request forgery CSRF in AdaptCMS Lite The vulnerability exists due to insufficient...
Cross-site request forgery (CSRF) in e107
High-Tech Bridge SA Security Research Lab has discovered two CSRF vulnerabilities in e107 which could allow a remote attacker to execute arbitrary SQL commands in applications database and gain complete control over the application. 1 Cross-site request forgery in e107 1.1 The vulnerability is...