Vulnerabilities > Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2003-12-31 | CVE-2003-1547 | Cross-Site Scripting vulnerability in Francisco Burzi PHP-Nuke Cross-site scripting (XSS) vulnerability in block-Forums.php in the Splatt Forum module for PHP-Nuke 6.x allows remote attackers to inject arbitrary web script or HTML via the subject parameter. | 4.3 |
| 2003-12-31 | CVE-2003-1546 | Cross-Site Scripting vulnerability in Filebased Guestbook 1.1.3 Cross-site scripting (XSS) vulnerability in gbook.php in Filebased guestbook 1.1.3 allows remote attackers to inject arbitrary web script or HTML via the comment section. | 4.3 |
| 2003-12-31 | CVE-2003-1543 | Cross-Site Scripting vulnerability in Bajie Java Http Server 0.95 Cross-site scripting (XSS) vulnerability in Bajie Http Web Server 0.95zxe, 0.95zxc, and possibly others, allows remote attackers to inject arbitrary web script or HTML via the query string, which is reflected in an error message. | 4.3 |
| 2003-12-31 | CVE-2003-1539 | Cross-Site Scripting vulnerability in Onedotoh Simple File Manager Cross-site scripting (XSS) vulnerability in ONEdotOH Simple File Manager (SFM) before 0.21 allows remote attackers to inject arbitrary web script or HTML via (1) file names and (2) directory names. | 4.3 |
| 2003-12-31 | CVE-2003-1536 | Cross-Site Scripting vulnerability in Dcp-Portal 5.3.1 Multiple cross-site scripting (XSS) vulnerabilities in Codeworx Technologies DCP-Portal 5.3.1 allow remote attackers to inject arbitrary web script or HTML via (1) the q parameter to search.php and (2) the year parameter to calendar.php. | 4.3 |
| 2003-12-31 | CVE-2003-1534 | Cross-Site Scripting vulnerability in Justice Media Guestbook Cross-site scripting (XSS) vulnerability in jgb.php3 in Justice Guestbook 1.3 allows remote attackers to inject arbitrary web script or HTML via the (1) name, (2) homepage, (3) aim, (4) yim, (5) location, and (6) comment variables. | 4.3 |
| 2003-12-31 | CVE-2003-1531 | Cross-Site Scripting vulnerability in Lilikoi Ceilidh Cross-site scripting (XSS) vulnerability in testcgi.exe in Lilikoi Software Ceilidh 2.70 and earlier allows remote attackers to inject arbitrary web script or HTML via the query string. | 4.3 |
| 2003-12-31 | CVE-2003-1522 | Cross-Site Scripting vulnerability in Pscs Vpop3 web Mail Server 2.0E/2.0F Cross-site scripting (XSS) vulnerability in PSCS VPOP3 Web Mail server 2.0e and 2.0f allows remote attackers to inject arbitrary web script or HTML via the redirect parameter to the admin/index.html page. | 4.3 |
| 2003-12-31 | CVE-2003-1519 | Cross-Site Scripting vulnerability in Vivisimo Clustering Engine 0 Cross-site scripting (XSS) vulnerability in Vivisimo clustering engine allows remote attackers to inject arbitrary web script or HTML via the query parameter to the search program. | 4.3 |
| 2003-12-31 | CVE-2003-1513 | Cross-Site Scripting vulnerability in Caucho Technology Resin Multiple cross-site scripting (XSS) vulnerabilities in example scripts in Caucho Technology Resin 2.0 through 2.1.2 allow remote attackers to inject arbitrary web script or HTML via (1) env.jsp, (2) form.jsp, (3) session.jsp, (4) the move parameter to tictactoe.jsp, or the (5) name or (6) comment fields to guestbook.jsp. | 4.3 |