[CLOSE] OSVDB ID : 58417 - Disclosed: 2009-09-30

Description:

BIGACE Web CMS contains a flaw that allows a remote Cross-Site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps and/or confirmation for sensitive transactions. By using a crafted URL (e.g. a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 59078 - Disclosed: 2009-09-19

Description:

AgoraCart 5.2.005 and earlier contains a flaw that allows a remote Cross-site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps or explicit confirmation for sensitive transactions for administrative actions, e.g. manipulate a .htaccess file via the protected/manager.cgi script or change the user's password. By using a crafted URL (e.g., a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 57574 - Disclosed: 2009-08-31

Description:

BIGACE Web CMS contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'id' parameters upon submission to the 'public/index.php' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 56791 - Disclosed: 2009-08-05

Description:

SmarterTrack 4.0.3483 and earlier contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate 'search' parameter upon submission to the 'frmKBSearch.aspx' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 56792 - Disclosed: 2009-08-05

Description:

SmarterTrack contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate email address parameter upon submission to the 'frmTickets.aspx' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 56802 - Disclosed: 2009-07-20

Description:

signkorn 1.5 and earlier contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "qc" variable upon submission to the admin.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 56803 - Disclosed: 2009-07-20

Description:

signkorn 1.5 contains a flaw that allows a remote Cross-Site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps and/or confirmation for sensitive transactions for administrative functions. By using a crafted URL (e.g. a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 56804 - Disclosed: 2009-07-19

Description:

Photokorn Gallery 1.81 and earlier contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the search.php script not properly sanitizing user-supplied input to the "where%5B%5D", "sort", "order", "where[]", and "Match" variables. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 56805 - Disclosed: 2009-07-19

Description:

Photokorn Gallery 1.81 contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "where%5B%5D" variable upon submission to the search.php script. Additionally, the application does not validate the "qc" variable upon submission to the admin.php script.This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 56806 - Disclosed: 2009-07-19

Description:

Photokorn 1.81 contains a flaw that allows a remote Cross-Site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps and/or confirmation for sensitive transactions for adminsitrative functions. By using a crafted URL (e.g. a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 56831 - Disclosed: 2009-06-30

Description:

Application for Incident Response Teams (AIRT) contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "status" variable upon submission to the incident.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 56832 - Disclosed: 2009-06-30

Description:

Application for Incident Response Teams (AIRT) contains a flaw that allows a remote Cross-Site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps and/or confirmation for sensitive transactions for user additions. By using a crafted URL (e.g. a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 56346 - Disclosed: 2009-06-18

Description:

concrete5 contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "uID" variable upon submission to the index.php/dashboard/users/search script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 56347 - Disclosed: 2009-06-18

Description:

concrete5 contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate "gKeywords" variable upon submission to the index.php/dashboard/users/groups script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 56348 - Disclosed: 2009-06-18

Description:

concrete5 contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "search_paths[]" variable upon submission to a search block. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 56349 - Disclosed: 2009-06-18

Description:

concrete5 contains a flaw that allows a remote Cross-Site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps and/or confirmation for sensitive transactions allowing an attacker to deactivate arbitrary users if a logged-in administrative user visits a specially crafted web site. By using a crafted URL (e.g. a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 54885 - Disclosed: 2009-06-04

Description:

Netgear RP614 contains a flaw that allows a remote Cross-Site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps and/or confirmation for sensitive transactions for all administrative functions. By using a crafted URL (e.g. a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 55728 - Disclosed: 2009-05-28

Description:

ATutor contains a cross-site framing vulnerability which can be exploited by malicious people to conduct phishing attacks. Input passed to the 'p' parameter in 'documentation/index.php' is not properly verified before being linked into the frameset, which can be used to conduct spoofing or phishing attacks.

[CLOSE] OSVDB ID : 54600 - Disclosed: 2009-05-20

Description:

IPplan contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the grp parameter upon submission to the admin/usermanager script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 54601 - Disclosed: 2009-05-20

Description:

IPplan contains a flaw that allows a remote Cross-Site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps and/or confirmation for sensitive transactions for administrative functions such as changing passwords or adding/deleting users. By using a crafted URL (e.g. a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 54798 - Disclosed: 2009-05-19

Description:

ACollab 1.2 contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "f" variable upon submission to the sign_in.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 54799 - Disclosed: 2009-05-19

Description:

Acollab 1.2 contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "address" variable upon submission to the profile.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 54800 - Disclosed: 2009-05-19

Description:

ACollab 1.2 contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "description" variable upon submission to the events/add_event.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 54801 - Disclosed: 2009-05-19

Description:

ACollab 1.2 contains a flaw that allows a remote Cross-Site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps and/or confirmation for sensitive transactions such as adding members or groups. By using a crafted URL (e.g. a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 54530 - Disclosed: 2009-04-16

Description:

Dokeos 1.8.5 and earlier contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "search_term" variable upon submission to the main/auth/courses.php script (if action is set to "subscribe"). This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 54531 - Disclosed: 2009-04-16

Description:

Dokeos 1.8.5 and earlier contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "frm_title" and "frm_content" variables adding a new personal agenda item. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 54532 - Disclosed: 2009-04-16

Description:

Dokeos 1.8.5 and earlier contains a flaw that allows a remote Cross-Site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps and/or confirmation for sensitive transactions. By using a crafted URL (e.g. a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 54533 - Disclosed: 2009-04-16

Description:

Dokeos 1.8.5 and earlier contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "title" and "tutor_name" parameters when adding a new course. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 54534 - Disclosed: 2009-04-16

Description:

Dokeos 1.8.5 and earlier contains a flaw that may allow an attacker to carry out an SQL injection attack. The issue is due to the main/mySpace/myStudents.php script not properly sanitizing user-supplied input to the "student" and "course" variables. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 54535 - Disclosed: 2009-04-16

Description:

Dokeos 1.8.5 and earlier contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "student" and "course" variables upon submission to the main/mySpace/myStudents.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 53418 - Disclosed: 2009-04-08

Description:

OpenGoo contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "search_for" variable upon submission to the index.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 53419 - Disclosed: 2009-04-08

Description:

OpenGoo contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the "webpage[url]" variable upon submission. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 55264 - Disclosed: 2009-04-08

Description:

Interspire Website Publisher 5.0.5 contains a flaw that allows a remote Cross-Site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps and/or confirmation for sensitive transactions. By using a crafted URL (e.g. a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 53414 - Disclosed: 2009-04-05

Description:

The Linksys WRT160N Wireless-N Broadband Router contains a flaw that allows a remote Cross-Site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps and/or confirmation for sensitive transactions for the administrative web interface. By using a crafted URL (e.g. a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 53780 - Disclosed: 2009-04-01

Description:

WebCollab 2.40 contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate the 'selection' parameter upon submission to the tasks.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 53781 - Disclosed: 2009-04-01

Description:

WebCollab 2.40 contains a flaw that allows a remote Cross-Site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps and/or confirmation for sensitive transactions. By using a crafted URL (e.g. a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 53705 - Disclosed: 2009-03-15

Description:

WikkaWiki contains flaws that allows remote cross site scripting attacks. These flaws exist because the application does not validate the 'l, 'sort,' 'd,' 's,' and 'q' parameters upon submission to the wikka.php script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 53706 - Disclosed: 2009-03-15

Description:

WikkaWiki contains flaws that may allow an attacker to carry out an SQL injection attack. The issue is due to the wikka.php script not properly sanitizing user-supplied input to the 'l,' 'sort,' 'd,' 's,' and 'q' variables. This may allow an attacker to inject or manipulate SQL queries in the back-end database.

[CLOSE] OSVDB ID : 53707 - Disclosed: 2009-03-15

Description:

WikkaWiki contains a flaw that allows a remote Cross-Site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps and/or confirmation for sensitive transactions for the wikka.php script. By using a crafted URL (e.g. a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.

[CLOSE] OSVDB ID : 52919 - Disclosed: 2009-03-08

Description:

dotProject 2.1.2 contains a flaw that allows a remote Cross-Site Request Forgery (CSRF / XSRF) attack. The flaw exists because the application does not require multiple steps and/or confirmation for sensitive transactions for administrative functions submitted to index.php. By using a crafted URL (e.g. a crafted GET request inside an "img" tag), an attacker may trick the victim into clicking on the image to take advantage of the trust relationship between the authenticated victim and the application. Such an attack could trick the victim into executing arbitrary commands in the context of their session with the application, without further prompting or verification.