Advertisements

ColdFusion webserver <= v5.0 - 0day XSS vulnerability

Tuesday, 6 February 2007

A script insertion vulnerability in ColdFusion, has been discovered by digi7al64. Malicious people can exploit this vulnerability to manipulate client's User-Agent field through Flash.


read more...

WebGUI <= v7.3.4 - Username XSS vulnerability

Thursday, 1 February 2007

A script insertion vulnerability in WebGUI, has been reported by the vendor. Malicious people can exploit this vulnerability to perform XSS attacks. A patch is available from the vendor.


read more...

WordPress <= v2.0.5 - "file" parameter XSS vulnerability

Thursday, 1 February 2007

A script insertion vulnerability in WordPress, has been discovered by David Kierzowski. Malicious people can exploit this vulnerability to perform XSS attacks. A patch is available from the vendor.


read more...

Sun Java System Access Manager - Cross-site scripting

Thursday, 1 February 2007

A patch is available for Sun Java System Access Manager, it fixes a vulnerability which could be exploited by malicious people to conduct cross-site scripting attacks.


read more...

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 

 

45884 total xss
14724 special xss
3026 fixed
5328 xss onhold
2933 EW subscribers

Home | News | Articles | Advisories | Submit | Alerts | Links | What is XSS | About | Contact | Some Rights Reserved.