Runcms version 1.x is susceptible to cross site scripting attacks in bigshow.php.
2dd1b86163b9bbba8736ffba9719fff071509e5ac0aa7760a2fbc2801b604b12
CuteNews version 1.4.1 is susceptible to cross site scripting attacks.
31d53fdcb05a3ca200a0930c433a38e1acae92216a8e8a3e237f7c63babee278
Runcms 1.x is susceptible to cross site scripting attacks.
cc0222c4844dfb019b0120e9b8f26813cc93d65224b05ad5bec32e9b1a19088d
Azbb versions 1.1.00 and below suffer from cross site scripting vulnerabilities. NASL plugin to test for this included.
e46562189f15c20dbe453280bb61f21d177294498714aaf8c0eaf491c5f84eca
MYBB 1.x does not properly sanitize user supplied input leading to a XSS vulnerability.
49fc1d88d10eba01d4fbb0fc35e2604c60f21a490adc1e502b9a7a0247f2e0f9
The HTML Help Control vulnerability in Internet Explorer that allows for bypass of local zone security restrictions can be further misused to cause cross-domain and cross-zone scripting attacks.
4b31cd6edab309f03f68d5ec8fd8f1392c9a85dea523453ed47a5a202524eb32
Microsoft Windows Explorer suffers from a flaw where it will execute underlying files when they are linked in html pages.
fa8e114e14244e1f93821759c64b4ffa1f4446012b15d9869310e70a1b766d32
Certain system folders on Microsoft Windows XP are created referencing the shellclassinfo in desktop.ini, allowing for executables to be masked as elsewise.
a4456c08095c611bdcec5b288f26f62db8ddb5844e28427b806218b0eb3b2218
A weakness in the way Microsoft IE fails to handle double backslashes in Showhelp() allows for yet another way to locally execute files.
e6025e6f855e3e86bba8dbca696e934acbd452d1a4f6b0fc2d7ce31157ceecb1