Complete Client Management and Billing script version 1.0.1 suffers from a remote SQL injection vulnerability.
81828d960033854d8be40ae6aaf8b6e90387b6315ab6ce7832ebf979e63a6073Secunia Security Advisory - Reaction Information Security has discovered a vulnerability in Total Shop UK eCommerce, which can be exploited by malicious people to conduct cross-site scripting attacks.
54a1c2c18a8dfaba92348a1f51fd327b03d8d1ed64c4d66c3807bb7eca1e7163Sphpforum version 0.4 suffers from cross site scripting and remote SQL injection vulnerabilities.
7502224f9e635dc27202e748cdf5015178a6e1641cbf8304333b802649a8903cDrupal version 6.22 with Hotblocks 6.x suffers from cross site scripting and denial of service vulnerabilities. Proof of concept information included.
17fd7caf06fdac8c5a9e14bc764b6c00c9303d84f1395974dc92767ed9a8a7f2Drupal version 6.22 with Custom Publishing Options version 6.x-1.4 suffers from a cross site scripting vulnerability. Proof of concept information included.
48dd91f8b89ca979ca8e11af83723a4ee087f9e15fcaa581b8d6f6470708cf67Drupal Elegant Theme third party module version 7.x suffers from a cross site scripting vulnerability.
5cd009a2b5bb39d8473e502fc09119a2302b0d2363ca9167442d0a9f58ad5ea2Drupal Custom Publishing Options third party module version 6.x suffers from a cross site scripting vulnerability.
5c0dec500b232cd3c340e97fe90d0022a5f7a7cae9406845e963e1c4492c9de0Drupal Hotblocks third party module version 6.x suffers from cross site scripting and denial of service vulnerabilities.
3a4741a9e059e7fcb96a3197a8a6b543be251afe504d362ea481cb4229600a6bMandriva Linux Security Advisory 2012-132 - Multiple cross-site request forgery and cross-site scripting flaws has been found and corrected in GLPI. This advisory provides the latest version of GLPI which are not vulnerable to these issues. Additionally the latest versions of the corresponding plugins are also being provided.
278fcab2d1ab2e4d4ef8819f221aff25448777d5df0d2fe452abe0b3a7049feaThe es.blackberry.com site suffers from a cross site scripting vulnerability.
221bcdde7a9af3450c8375649ac85ea641b58b47d4e8079b517c843819e10ec6Secunia Security Advisory - HP has issued an update for Java in HP-UX. This fixes multiple vulnerabilities, which can be exploited by malicious, local users to disclose potentially sensitive information, manipulate certain data, and cause a DoS (Denial of Service) and by malicious people to conduct cross-site scripting attacks, disclose potentially sensitive information, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system.
64a709b58b6ee61639d0b91751fa1370fb95af75e8e2c731bae64a2534aa2be5Secunia Security Advisory - A security issue and two vulnerabilities have been reported in ownCloud, which can be exploited by malicious users to bypass certain security restrictions and by malicious people to conduct cross-site scripting and cross-site request forgery attacks.
1332e189e300896ea0baa75068815455d40efa840a3b321cdafb6a9560538739Secunia Security Advisory - A security issue and multiple vulnerabilities have been reported in ownCloud, which can be exploited by malicious users to conduct script insertion attacks and bypass certain security restrictions and by malicious people to conduct cross-site scripting attacks.
aff8264428b3986a367441d9fd2f8ce83c2febe254e06c37569cbebe867042aaSecunia Security Advisory - Debian has issued an update for python-django. This fixes two security issues and a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks and cause a DoS (Denial of Service).
fb3927d6bec81d24005c29a06dbc212f764f4d161f9c53d4a1dd8b08da17db26HP Security Bulletin HPSBMU02803 SSRT100926 - A potential security vulnerability has been identified with HP Service Manager and HP Service Center Web Tier. The vulnerability could be remotely exploited resulting in cross site scripting (XSS). Revision 1 of this advisory.
5f967abf36b11a1450d1bdc34b2e2587d19f67465191db23eaa1aed4ed25dbfeSecunia Security Advisory - Two vulnerabilities have been reported in HP Service Manager and Service Center, which can be exploited by malicious people to conduct cross-site scripting attacks and cause a DoS (Denial of Service).
ad6ffec457e6c1524a99a422c41160f6b60dfcc1852d2d3b8ed4c9b76d2eff58This Metasploit module exploits a SQL injection found in Cyclope Employee Surveillance Solution. Because the login script does not properly handle the user-supplied username parameter, a malicious user can manipulate the SQL query, and allows arbitrary code execution under the context of 'SYSTEM'.
943d1370d3c4c203bec054c6328adda12b9aa04b01b7010bb71dea9ec2bef8a7TCExam version 11.3.007 suffers from a cross site scripting vulnerability.
c2df81fe1434df8351dd6026e93abcd6a2dd042f7a15ef09a4566b27505d3dedTotal Shop UK eCommerce, which is based on CodeIgniter version 2.1.2, suffers from a cross site scripting vulnerability.
5152d11e96f30211a557516deffd45d1b790edd8b739f21a1dd10b248c3997c9ProQuiz version 2.0.2 suffers from cross site scripting, local file inclusion, remote file inclusion, and remote SQL injection vulnerabilities.
cd96527f58d918d01dbe7ff75611b1729daf91b7449eeb441565cef7115b0a2aDebian Linux Security Advisory 2527-1 - Several vulnerabilities have been discovered in PHP, the web scripting language.
19d56ac85b34319b9d93e656f85139e1d5a6ad3686507f40c07541d97d990968Shopping Tree, Inc. software suffers from a cross site scripting vulnerability. Note that this finding houses site-specific data.
710c6c5f6d8a0112ff32d4cd35417f5a21917d22421ec5fcd825351690c94a00Hotel Booking Portal version 0.1 suffers from cross site scripting and remote SQL injection vulnerabilities.
256b6d0f295a339e04943601e44942aae79e9b08c4b1430be39582ee5d729968Playboy.com suffers from a cross site scripting vulnerability.
d3c90c643472122d05f903587daaf7a21fbecbd2556a199dc7102ffaac3713b6The heasarc.gsfc.nasa.gov site suffered from a cross site scripting vulnerability.
58f35f396ed253b516d3f9af4c85beaa88e1b34ee3b6b86a72f532bebc716a74Mcdonalds.com suffers from a cross site scripting vulnerability.
9645dd64740cc659afa8e577fdac2bf3473b1a0624a9e0ff8055e95dc9d564c4
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed