header-logo
Suggest Exploit
explore-vulnerabilities

Explore Vulnerabilities

Version
Year

Explore all Exploits:

Cross-Site Scripting vulnerability in OOApp Guestbook

The OOApp Guestbook is vulnerable to a cross-site scripting (XSS) attack. This vulnerability occurs due to the lack of proper sanitization of user-supplied input in the application. An attacker can exploit this vulnerability by injecting arbitrary script code into the affected site, which can lead to the execution of malicious scripts in the browser of unsuspecting users. This can result in the theft of authentication credentials and other potential attacks.

Cross-Site Scripting in Ades Design AdesGuestbook

Ades Design AdesGuestbook is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based authentication credentials and launch other attacks.

Cross-Site Scripting Vulnerability in GMailSite

The GMailSite web application is vulnerable to a cross-site scripting attack. An attacker can inject arbitrary script code into the browser of a user visiting the affected site, potentially allowing them to steal authentication credentials and perform other malicious actions.

Cross-Site Scripting Vulnerabilities in FatWire UpdateEngine

The FatWire UpdateEngine is prone to multiple cross-site scripting vulnerabilities. An attacker can exploit these vulnerabilities to execute arbitrary script code in the browser of a user visiting the affected site. This can lead to the theft of authentication credentials and other attacks.

Cross-Site Scripting Vulnerability in PaperThin CommonSpot Content Server

The vulnerability allows an attacker to execute arbitrary script code in the browser of an unsuspecting user by injecting malicious input through the 'url' parameter in the '/loader.cfm' page. This can lead to the theft of authentication credentials and other attacks.

IceWarp Universal WebMail Input-Validation Vulnerabilities

The IceWarp Universal WebMail is prone to multiple input-validation vulnerabilities. An attacker can exploit these issues to include arbitrary local or remote files containing malicious PHP code and execute it in the context of the webserver process. This may facilitate a compromise of the application and the underlying system; other attacks are also possible. Additionally, an attacker can exploit these issues to obtain the contents of local files.

IceWarp Universal WebMail Multiple Input-Validation Vulnerabilities

An attacker can exploit these issues to include arbitrary local or remote files containing malicious PHP code and execute it in the context of the webserver process. This may facilitate a compromise of the application and the underlying system; other attacks are also possible. Additionally, an attacker can exploit these issues to obtain the contents of local files.

Recent Exploits: