XSS - Prevention - GET : javascript code in flash clickTAG parameter Description   The presence of tags allowing the execution of active code should not be authorised in the URL. Cross Site scripting attacks (XSS) may allow a user's browser to execute codes. These codes, which are included in the targeted web page and executed on the user's computer, can be used for stealing session cookies and can also authenticate a malicious user passing off as a legitimate user on a vulnerable site. This alarm might be triggered while visiting Yahoo® web pages. This is caused by the way Yahoo® advertising are displayed using javascript code in the URL (this is not recommended).       Default configuration   Profiles High Medium Low Internet Action Block Pass Pass Pass Alarm Level Minor Minor Ignore Minor       References   CVE: CVE-2003-0208 URL: http://www.macromedia.com/support/flash/ts/documents/clicktag_security.htm       Available since   ASQ v3.2.0       Protects   VMware vCenter Server "flashvars" Cross-site Scripting Vulnerability Fixed by VMSA-2016-0006 Yui Multiple Cross-site Scripting Vulnerabilities Typo3 Multiple Cross-Site Scripting Vulnerabilities Fixed by 6.2.16 and 7.6.1 Dojo Toolkit Multiple Cross-Site Scripting Vulnerability IBM Rational Application Developer for WebSphere Software Dojo Toolkit Cross-Site Scripting Vulnerabilities IBM eDiscovery Manager Dojo Toolkit Cross-Site Scripting Vulnerabilities IBM Rational Software Architect Dojo Toolkit Cross-Site Scripting Vulnerabilities IBM Social Media Analytics Multiple Cross-Site Scripting Vulnerabilities WordPress BP Code Snippets Plugin ZeroClipboard Cross-Site Scripting Vulnerability WordPress Click to Copy Grab Box Plugin ZeroClipboard Two Cross-Site Scripting Vulnerabilities WordPress SlideDeck 2 Lite Responsive Content Slider Plugin ZeroClipboard Two Cross-Site Scripting WordPress WP Clone by WP Academy Plugin ZeroClipboard Cross-Site Scripting Vulnerability WordPress PayPal Digital Goods Plugin ZeroClipboard Cross-Site Scripting Vulnerability WordPress Tiny URL Plugin ZeroClipboard Cross-Site Scripting Vulnerability WordPress Buckets Plugin ZeroClipboard Cross-Site Scripting Vulnerability WordPress Cleeng Plug & Go Plugin ZeroClipboard Cross-Site Scripting Vulnerability WordPress GeSHi Source Colorer Plugin ZeroClipboard Cross-Site Scripting Vulnerability WordPress JC Coupon Plugin ZeroClipboard Cross-Site Scripting Vulnerability WordPress MobileView Plugin ZeroClipboard Cross-Site Scripting Vulnerability WordPress Zopim Live Chat Plugin ZeroClipboard Cross-Site Scripting Vulnerability WordPress Snazzy Archives Plugin "tagcloud" Cross-Site Scripting Vulnerability WordPress VKontakte API Plugin "tagcloud" Cross-Site Scripting Vulnerability JW Player Multiple Cross-Site Scripting Vulnerabilities Magento Advance Tag Extension "tagcloud" Cross-Site Scripting Vulnerability PHP-Fusion Cumulus Infusion "tagcloud" Cross-Site Scripting Vulnerability Serendipity Freetag Plugin "tagcloud" Cross-Site Scripting Vulnerability Habari HB-Cumulus Plugin "tagcloud" Cross-Site Scripting Vulnerability RSA Adaptive Authentication Flash File Cross Site Scripting Vulnerability IBM Rational ClearQuest CQWeb Information Disclosure Vulnerabilities SquirrelMail Multiple Cross Site Scripting and Security Bypass Issues vbDrupal Cross Site Scripting and Information Disclosure Vulnerabilities Drupal Exif Module Data Handling Cross Site Scripting Vulnerability Drupal Node Access User Reference Access Bypass Vulnerability Drupal Cross Site Scripting and Information Disclosure Vulnerabilities Citrix Web Interface Unspecified Cross Site Scripting Vulnerability Symantec Products Log Viewer Feature Script Injection Vulnerabilities Linkys WVC54GCA Security Bypass and Information Disclosure Linksys WRT54GC "administration.cgi" Password Manipulation Issue Cisco ASA WebVPN Clientless Mode Cross Site Scripting Vulnerability Movable Type Uspecified Data Handling Cross Site Scripting Vulnerability Symantec Brightmail Gateway Privilege Elevation and XSS Vulnerabilities SAP Products cFolders Multiple Cross Site Scripting Vulnerabilities RS-Monials component for Joomla Cross Site Scripting Vulnerability Debian Security Update Fixes Firefox Mahara Cross Site Scripting Issue Sun Java System Delegated Administrator Response Splitting Issue MoinMoin "AttachFile.py" File Multiple Cross Site Scripting Vulnerabilities Multi-lingual E-Commerce System File Inclusion and Security Bypass Novell NetStorage Information Disclosure and DoS Vulnerabilities BlackBerry Enterprise Server Cross Site Scripting Vulnerabilities Apache Geronimo Cross Site Scripting and Directory Traversal Issues SPIP Data Processing PHP Code Injection and Security Bypass Issues Drupal Multiple Module Data Handling Cross Site Scripting Vulnerabilities Novell Teaming Username Enumeration and Cross Site Scripting Issues phpMyAdmin Setup Script Remote PHP Code Injection Vulnerability Fedora Security Update Fixes Wordpress-mu Cross Site Scripting Issue Microsoft ISA Server and Forefront TMG MBE Vulnerabilities (MS09-016) IBM BladeCenter Advanced Management Module Multiple Vulnerabilities IBM Tivoli Continuous Data Protection for Files Cross Site Scripting Issue ContentKeeper Command Injection and Privilege Escalation Vulnerabilities Mod_perl Apache::Status and Apache2::Status Cross Site Scripting Issue TYPO3 Extensions Information Disclosure and Injection Vulnerabilities Bugzilla "attachment.cgi" Cross-Site Request Forgery Vulnerability Ubuntu Security Update Fixes ICU Cross Site Scripting Vulnerability Fedora Security Update Fixes Drupal CCK Module Cross Site Scrpting PHortail Multiple Parameter Handling Cross Site Scripting Vulnerabilities Cisco IOS Cross Site Scripting and Request Forgery Vulnerabilities ESET Remote Administrator Report Data Cross Site Scripting Vulnerability CA Service Desk Web Forms Cross Site Scripting Vulnerabilities Adobe Presenter Generated Code Cross Site Scripting Vulnerabilities cpLinks Remote SQL Injection and Cross Site Scripting Vulnerabilities Angelo Emlak SQL Injection and Cross Site Scripting Vulnerabilities Debian Security Update Fixes ikiwiki Cross Site Scripting Vulnerabilities InfoSoft FusionCharts "dataURL" Parameter Cross Site Scripting Issue Techsmith Camtasia "csPreloader" Cross Site Scripting Vulnerability Fedora Security Update Fixes Drupal Multiple Module Vulnerabilities Maran PHP Blog "id" Parameter Processing Cross Site Scripting Vulnerability Sporum "view" and "mode" Parameters Handling Cross Site Scripting Vulnerabilities Beehive Forum Multiple Parameter Processing Cross Site Scripting Vulnerabilities Webmin "pam_login.cgi" Multiple Parameter Handling Cross Site Scripting Vulnerability 3Com OfficeConnect Secure Router "tk" Parameter Cross Site Scripting Vulnerability All In One Control Panel "aiocp_dp" Parameter Cross Site Scripting Vulnerability PHP Live! Multiple Parameter Handling Client-Side Cross Site Scripting Vulnerabilities MeAlex My DataBook Multiple Parameter Handling Cross Site Scripting Vulnerabilities SSL-Explorer Multiple Parameter Cross Site Scripting and Header Injection Vulnerabilities Attunement and Key Tracker for EQdkp Multiple Parameter Cross Site Scripting Issues Codelib Linker "cat" Parameter Handling Client-Side Cross Site Scripting Vulnerability Gnatsweb "database" Parameter Handling Client-Side Cross Site Scripting Vulnerability CandyPress Store "brand" and "Msg" Parameters Cross Site Scripting Vulnerabilities Jetbox CMS Multiple Cross Site Scripting and Arbitrary Email Injection Vulnerabilities Invision Power Board "editorid" Parameter Client-Side Cross Site Scripting Vulnerability DGNews Multiple Parameter SQL Injection and Cross Site Scripting Vulnerabilities Digirez "Room_name" and "curYear" Parameters Cross Site Scripting Vulnerabilities GMTT Music Distro "st" Parameter Handling Client-Side Cross Site Scripting Vulnerability Dokeos Multiple Parameter SQL Injection and Cross Site Scripting Vulnerabilities Cisco CallManager Multiple Parameter Processing Cross Site Scripting Vulnerabilities VP-ASP Shopping Cart "type" Parameter Handling Cross Site Scripting Vulnerability SonicBB Multiple Parameter Remote SQL Injection and Cross Site Scripting Vulnerabilities phpMUR Multiple Parameter Handling Client-Side Cross Site Scripting Vulnerabilities SquirrelMail Multiple Cross Site Scripting and Cross Site Request Forgery Vulnerabilities WavelinkMedia TutorialCMS Multiple SQL Injection and Cross Site Scripting Issues OpenLD Search Module "term" Parameter Client-Side Cross Site Scripting Vulnerability Apache Tomcat Multiple Cross Site Scripting and Security Bypass Vulnerabilities Advanced Guestbook Information Disclosure and Cross Site Scripting Vulnerabilities WikkaWiki Multiple Information Disclosure and Cross Site Scripting Vulnerabilities Open source Ticket Request System "Subaction" Cross Site Scripting Vulnerability DVDdb "movieid" and "s" Parameters Handling Cross Site Scripting Vulnerabilities PHPChain "catid" Parameter Handling Client-Side Cross Site Scripting Vulnerability AIOCP "cp_authorization.php" and "cp_config.php" Cross Site Scripting Vulnerabilities LAN Management System "OD" Parameter Handling Cross Site Scripting Vulnerability SineCMS "stringa" Parameter Handling Client-Side Cross Site Scripting Vulnerability Invision Power Board "class_upload.php" Client-Side Cross Site Scripting Vulnerability freePBX Interface Remote Command Injection and Cross Site Scripting Vulnerabilities Big Blue Guestbook Multiple Parameter Handling Cross Site Scripting Vulnerabilities TJSChat "user" Parameter Handling Client-Side Cross Site Scripting Vulnerability phpMyAdmin "PMA_sanitize()" and "fieldkey" Handling Cross Site Scripting Vulnerabilities Phorum Multiple Parameter Remote SQL Injection and Cross Site Scripting Vulnerabilities Oracle Products Multiple Remote Command Execution and SQL Injection Vulnerabilities oe2edit CMS "q" Parameter Handling Client-Side Cross Site Scripting Vulnerability MailBee WebMail Pro "username" Parameter Handling Cross Site Scripting Vulnerability FloweRS Multiple Parameter Handling Client-Side Cross Site Scripting Vulnerabilities Open-gorotto Multiple Parameter Handling Client-Side Cross Site Scripting Vulnerabilities TuMusika Evolution "msg" Parameter Handling Client-Side Cross Site Scripting Issue Mephisto Search "q" Parameter Handling Client-Side Cross Site Scripting Vulnerability toendaCMS "searchword" Parameter Handling Client-Side Cross Site Scripting Issue chCounter "login_name" Parameter Handling Client-Side Cross Site Scripting Issue PunBB "redirect_url" and "cat_name" Parameters Handling Cross Site Scripting Issues DotClear Multiple Parameter Handling Client-Side Cross Site Scripting Vulnerabilities DeskPRO "username" Parameter Handling Client-Side Cross Site Scripting Vulnerability QuizShock "forward_to" Parameter Handling Client-Side Cross Site Scripting Vulnerability JEX-Treme Einfacher Passworschutz "msg" Parameter Cross Site Scripting Vulnerability Overlay Weaver DHT Shell "owdhtshell" Client-Side Cross Site Scripting Vulnerability IronMail Administrative Interface Multiple Client-Side Cross Site Scripting Vulnerabilities aBitWhizzy "d" Parameter Directory Listing and Cross Site Scripting Vulnerabilities CcCounter "dir" Parameter Handling Client-Side Cross Site Scripting Vulnerability PHPX Multiple Parameter Remote SQL Injection and Cross Site Scripting Vulnerabilities Oracle Application Server "table" Parameter Handling Cross Site Scripting Vulnerability Glue Software NewsGlue Feed Handling Client-Side Cross Site Scripting Vulnerability realGuestbook Multiple Parameter Cross Site Scripting and SQL Injection Vulnerabilities DirectAdmin "RESULT" Parameter Handling Client-Side Cross Site Scripting Vulnerability WordPress "PHP_SELF" Variable Handling Client-Side Cross Site Scripting Vulnerability Horde Arbitrary File Deletion and "new_lang" Parameter Cross Site Scripting Vulnerabilities Horde IMP "Subject" Field and "edit_query" Parameter Cross Site Scripting Vulnerabilities Microsoft Internet Explorer "navcancl.htm" Cross Site Scripting and Phishing Vulnerability WordPress "wp_title()" and "single_month_title()" Cross Site Scripting Vulnerability Trac "download wiki page as text" Feature Client-Side Cross Site Scripting Vulnerability DekiWiki "message" Parameter Handling Client-Side Cross Site Scripting Vulnerability Woltlab Burning Board Multiple Parameter Handling Cross Site Scripting Vulnerabilities Tyger Bug Tracking System Multiple SQL Injection and Cross Site Scripting Vulnerabilities Built2go News Manager "uid" and "nid" Parameters Cross Site Scripting Vulnerabilities VirtueMart "virtuemart_parser.php" and "ps_cart.php" Cross Site Scripting Vulnerabilities Webmin and Usermin Multiple Parameter Handling Cross Site Scripting Vulnerabilities Nullsoft SHOUTcast Administrative Interface Logfile Cross Site Scripting Vulnerability ActiveCalendar Multiple Remote File Disclosure and Cross Site Scripting Vulnerabilities WordPress "wp-includes/functions.php" Client-Side Cross Site Scripting Vulnerability PhotoStand Multiple Parameter Handling Client-Side Cross Site Scripting Vulnerabilities WordPress "wp_explain_nonce()" Function Client-Side Cross Site Scripting Vulnerability XeroXer Simple One-file Gallery "f" Parameter Handling Cross Site Scripting Vulnerability Kayako eSupport Multiple Parameter Handling Client-Side Cross Site Scripting Issues CedStat "hier" Parameter Handling Client-Side Cross Site Scripting Vulnerability MyCalendar Multiple Parameter Handling Client-Side Cross Site Scripting Vulnerabilities @Mail "keywords" Parameter Handling Client-Side Cross Site Scripting Vulnerability cPanel WebHost Manager "password" Parameter Cross Site Scripting Vulnerability eWay "pid" Parameter Handling Client-Side Cross Site Scripting Vulnerability phpMyVisites URL Handling Client-Side Cross Site Scripting Vulnerability Quick Digital Image Gallery "Qwd" Parameter Handling Cross Site Scripting Vulnerability MoinMoin Multiple Parameter Handling Client-Side Cross Site Scripting Vulnerabilities cPanel "objcache" WebHost Manager Module Cross Site Scripting Vulnerability FlashChat "info.php" Room Name Handling Client-Side Cross Site Scripting Vulnerability Phorum Multiple Parameter Handling Client-Side Cross Site Scripting Vulnerabilities High 5 Review Site "q" Parameter Handling Client-Side Cross Site Scripting Vulnerability DokuWiki "media" Parameter Security Bypass and Cross Site Scripting Vulnerability PHProxy Multiple Parameter Handling Client-Side Cross Site Scripting Vulnerabilities Onnac "error_url" Parameter Handling Client-Side Cross Site Scripting Vulnerability Openads "admin-search.php" and "affiliate-search.php" Cross Site Scripting Issues myWebland myBloggie "PHP_SELF" Variable Handling Cross Site Scripting Vulnerabilities Plain Black WebGUI "username" Parameter Handling Cross Site Scripting Vulnerability InstantForum.NET Multiple Parameter Handling Cross Site Scripting Vulnerabilities Indexu Multiple Parameter Handling Client-Side Cross Site Scripting Vulnerabilities DT guestbook "error" Parameter Handling Client-Side Cross Site Scripting Vulnerability OpenSolution Quick.Cart "p" Parameter Handling Cross Site Scripting Vulnerability RI Blog "q" Parameter Handling Client-Side Cross Site Scripting Vulnerability Yet Another Link Directory "search" Parameter Handling Cross Site Scripting Vulnerability Fix and Chips CMS Multiple Parameter Handling Client-Side Cross Site Scripting Issues Novell Access Manager Identity Server "IssueInstant" Cross Site Scripting Vulnerability Drupal "Filter" and "System" Modules Multiple Arguments Cross Site Scripting Issues AShop Deluxe Multiple Parameter Handling Client-Side Cross Site Scripting Vulnerabilities CMS Made Simple "searchinput" Parameter Handling Cross Site Scripting Vulnerability Joomla! Multiple Parameter Handling Cross Site Scripting and Unspecified Vulnerabilities eNdonesia Multiple Parameter SQL Injection and Cross Site Scripting Vulnerabilities TimberWolf CMS "nid" Parameter Handling Client-Side Cross Site Scripting Vulnerability Xt-News Multiple Parameter Handling SQL Injection and Cross Site Scripting Vulnerabilities Oracle Application Server Portal "tc" Parameter Handling Cross Site Scripting Vulnerability TextSend Multiple Parameter Remote File Inclusion and Cross Site Scripting Vulnerabilities Mini Web Shop "catname" Parameter Handling Client-Side Cross Site Scripting Issue Novell NetWare Welcome Web-app Module Client-Side Cross Site Scripting Vulnerability WebCalendar "format" Parameter Handling Client-Side Cross Site Scripting Vulnerability HyperVM "frm_action" Parameter Handling Client-Side Cross Site Scripting Vulnerability VerliAdmin Multiple Parameter Handling File Inclusion and SQL Injection Vulnerabilities MySite Module for Drupal Titles Handling Client-Side Cross Site Scripting Vulnerability Project and Project Issue Tracking for Drupal Multiple Cross Site Scripting Vulnerabilities ScriptMate User Manager Multiple SQL Injection and Cross Site Scripting Vulnerabilities ShopSite "prevlocation" Parameter Handling Client-Side Cross Site Scripting Vulnerability Adobe Macromedia ColdFusion Information Disclosure and Cross Site Scripting Issues Help Tip for Drupal Multiple Remote SQL Injection and Cross Site Scripting Vulnerabilities Annoncescripthp Multiple Remote SQL Injection and Cross Site Scripting Vulnerabilities Messageriescripthp Multiple Remote SQL Injection and Cross Site Scripting Vulnerabilities KDPics Multiple Parameter Handling File Inclusion and Cross Site Scripting Vulnerabilities CM68News Remote PHP File Inclusion and Client-Side Cross Site Scripting Vulnerabilities WikiTimeScale Forum and Event Descriptions Multiple Cross Site Scripting Vulnerabilities JCE Admin Component for Joomla File Inclusion and Cross Site Scripting Vulnerabilities Amateras sns Unspecified Parameter Handling Cross Site Scripting Vulnerability Publicera Php5 Framework Multiple SQL Injection and Cross Site Scripting Vulnerabilities Cerberus Helpdesk "js" Parameter Handling Client-Side Cross-Site Scripting Vulnerability CVS management/tracker for Drupal "motivation" Field Cross Site Scripting Vulnerability AlternC Multiple Parameter Directory Traversal and Cross Site Scripting Vulnerabilities Vt-Forum Lite Multiple Parameter SQL Injection and Cross Site Scripting Vulnerabilities Online-Bookmarks Multiple Variable SQL Injection and Cross Site Scripting Vulnerabilities Inside Systems Mail "error" Parameter Client-Side Cross Site Scripting Vulnerability BlueSecure Controller "ad_name" Parameter Handling Cross Site Scripting Vulnerability Simple Machines Forum "image" Parameter Handling Cross Site Scripting Vulnerability SquirrelMail Multiple Parameter Handling Client-Side Cross Site Scripting Vulnerabilities PHPNews Multiple Variable Handling Client-Side Cross Site Scripting Vulnerabilities WikyBlog Multiple Parameter Handling Client-Side Cross Site Scripting Vulnerabilities Ultimate HelpDesk Remote Directory Traversal and Cross Site Scripting Vulnerabilities @lex Guestbook "skin" Parameter Handling Client-Side Cross Site Scripting Vulnerability MyArticles Module for RunCMS Multiple Variable Cross Site Scripting Vulnerabilities Blogn Unspecified Parameter Handling Client-Side Cross Site Scripting Vulnerability ClickGallery Multiple Variable SQL Injection and Cross Site Scripting Vulnerabilities tDiary "conf" Parameter Handling Client-Side Cross Site Scripting Vulnerability TikiWiki Multiple Parameter Cross Site Scripting and Security Bypass Vulnerabilities Expinion iNews Publisher "ex" and "hl" Parameters Cross Site Scripting Vulnerability DeskPRO "message" and "subject" Parameters Cross Site Scripting Vulnerabilities InverseFlow Help Desk System "id" and "email" Cross Site Scripting Vulnerabilities PMOS Help Desk "id" and "email" Parameters Cross Site Scripting Vulnerabilities Ace Helpdesk "id" and "email" Parameters Cross Site Scripting Vulnerabilities cPanel "dns" Parameter Handling Client-Side Cross Site Scripting Vulnerability CreaDirectory Multiple Remote SQL Injection and Cross Site Scripting Vulnerabilities GrimBB Unspecified Parameter Handling Client-Side Cross Site Scripting Vulnerability JiRo Link Manager Remote SQL Injection and Cross Site Scripting Vulnerabilities Enthrallweb eHomes Remote SQL Injection and Cross Site Scripting Vulnerabilities My Little Weblog "action" Parameter Client-Side Cross Site Scripting Vulnerability Rapid Classified Multiple Remote SQL Injection and Cross Site Scripting Vulnerabilities Rialto Multiple Variable Remote SQL Injection and Cross Site Scripting Vulnerabilities Travelsized CMS "page" and "language" Parameters Cross Site Scripting Issues vBulletin "prefs" and "navprefs" Parameters Cross Site Scripting Vulnerabilities BLOG:CMS "FADDR" Parameter Client-Side Cross Site Scripting Vulnerability i-Gallery "d" and "myquery" Parameters Handling Cross Site Scripting Vulnerabilities EC-CUBE Unspecified Parameter Handling Cross Site Scripting Vulnerability BaalASP Smart Form Portal SQL Injection and Cross Site Scripting Vulnerabilities phpMyAdmin "comment" Parameter Handling Cross Site Scripting Vulnerabilities Helm Web Hosting Control Panel Multiple Cross Site Scripting Vulnerabilities Extreme CMS Multiple Parameter Handling Cross Site Scripting Vulnerabilities CPanel "dir" and "user" Parameters Handling Cross Site Scripting Vulnerabilities Nucleus Unspecified Parameter Client-Side Cross Site Scripting Vulnerability Sage Extension for Firefox "img" Tag Handling Cross Site Scripting Vulnerability SpeedyWiki Arbitrary PHP File Upload And Cross Site Scripting Vulnerabilities FreeWebshop "page" and "cat" Local File Inclusion and Cross Site Scripting Issues If-CMS "rns" Parameter Handling Client-Side Cross Site Scripting Vulnerability FunkBoard "name" Parameter Handling Client-Side Cross Site Scripting Issue Hyper NIKKI System Unspecified Parameter Cross Site Scripting Vulnerability Arkoon SSL360 Unspecified Parameter Handling Cross Site Scripting Vulnerability TikiWiki Database Information Disclosure and Cross Site Scripting Vulnerabilities ELOG Remote Format String and Client-Side Cross Site Scripting Vulnerabilities phpMyAdmin UTF-7 Characters Client-Side Cross Site Scripting Vulnerability Sun Java System Messaging Server "error" Parameter Cross Site Scripting Vulnerability foresite CMS "query" Parameter Handling Client-Side Cross Site Scripting Issue phpFaber CMS URL Handling Client-Side Cross Site Scripting Vulnerability MAXdev MD-Pro HTTP Response Splitting and Cross Site Scripting Vulnerabilities Bösch ProgSys URL Handling Client-Side Cross Site Scripting Vulnerability D-Link DSL-G624T Directory Traversal and Cross Site Scripting Vulnerabilities cPanel "theme" and "template" Parameters Cross Site Scripting Vulnerabilities Sun Java System and iPlanet Messaging Servers Cross Site Scripting Vulnerability Simpnews Multiple Variable Handling Client-Side Cross Site Scripting Vulnerabilities RMSOFT Gallery System "kw" Variable Handling Cross Site Scripting Vulnerability Zwahlen Online Shop Multiple Parameter Handling Cross Site Scripting Issues WikiNi "name" and "email" Parameters Handling Cross Site Scripting Vulnerabilities phpAdsNew "lib-history.inc.php" Client-Side Cross Site Scripting Vulnerabilities phpPgAds "lib-history.inc.php" Client-Side Cross Site Scripting Vulnerabilities Serendipity Multiple Parameter Client-Side Cross Site Scripting Vulnerabilities Drupal Multiple Cross Site Scripting and Cross Site Request Forgery Vulnerabilities dbc CMS "needle" Parameter Handling Client-Side Cross Site Scripting Vulnerability phplist "p" Parameter Handling Client-Side Cross Site Scripting Vulnerability FirePass 1000 SSL VPN "sid" Parameter Handling Cross Site Scripting Vulnerability TorrentFlux "torrent" Variable Handling Client-Side Cross Site Scripting Vulnerability Bugzilla Multiple Cross Site Scripting and Information Disclosure Vulnerabilities phplist "unsubscribeemail" Parameter Handling Cross Site Scripting Vulnerability eXpBlog "captcha_session_code" and "PHP_SELF" Cross Site Scripting Issues Interspire FastFind "query" Parameter Handling Cross Site Scripting Vulnerability Invision Power Board "avatar" Variable Handling Cross Site Scripting Vulnerability osCommerce "page" and "zpage" Parameters Cross Site Scripting Vulnerabilities SAP Internet Transaction Server WGate Component Cross Site Scripting Issues net2ftp "username" Parameter Handling Client-Side Cross Site Scripting Issue digiSHOP "sortBy" and "search" Parameters Cross Site Scripting Vulnerabilities Mercury SiteScope Multiple Variable Handling Cross Site Scripting Vulnerabilities WWWthreads "Cat" Variable Handling Client-Side Cross Site Scripting Vulnerabilities Zen Cart Multiple Variable Handling Client-Side Cross Site Scripting Vulnerabilities VirtueMart Joomla! eCommerce Edition "Itemid" Cross Site Scripting Vulnerability CubeCart Multiple Variable Handling Client-Side Cross Site Scripting Vulnerabilities FacileForms Unspecified Parameter Handling Cross Site Scripting Vulnerability PHP Invoice "alert" and "msg" Parameters Cross Site Scripting Vulnerabilities TYPO3 "Indexed Search" Module Client-Side Cross Site Scripting Vulnerability PhotoStore "gid" and "photogid" Parameters Cross Site Scripting Vulnerabilities eyeOS Multiple Parameter Handling Client-Side Cross Site Scripting Vulnerabilities Movable Type Search Functionality Client-Side Cross Site Scripting Vulnerability Opial Audio/Video Download Management "destination" Cross Site Scripting Issue Sun Secure Global Desktop Cross Site Scripting and Information Disclosure Issues MAXdev MD-Pro "pnVarCleanFromInput()" Client-Side Cross Site Scripting Issue Cisco Guard Anti-spoofing Feature URL Handling Cross Site Scripting Vulnerability Search Keywords Module for Drupal Client-Side Cross Site Scripting Vulnerability RssReader Atom and RSS Feeds Handling Cross Site Scripting Vulnerability eSyndiCat Directory Software "what" Parameter Cross Site Scripting Vulnerability NextAge Cart "CatId" and "SearchWd" Parameters Cross Site Scripting Issues BizDirectory "message" Parameter Client-Side Cross Site Scripting Vulnerability FeedDemon Atom Feed Handling Client-Side Cross Site Scripting Vulnerability RSSOwl Atom Feed Handling Script Insertion and Cross Site Scripting Vulnerability Roller Weblogger Multiple Parameter Client-Side Cross Site Scripting Vulnerabilities MyBB Multiple Parameter Handling Client-Side Cross Site Scripting Vulnerabilities Nuked-Klan Cross Site Scripting and Cross Site Request Forgery Vulnerabilities Blojsom Multiple Variable Handling Client-Side Cross Site Scripting Vulnerabilities emuCMS "query" and "page" Variables Handling Cross Site Scripting Vulnerabilities Userreview Module for Drupal Unspecified Parameter Cross Site Scripting Vulnerability Adobe Macromedia ColdFusion Error Page Cross Site Scripting Vulnerability XHP CMS "errcode" Variable Handling Client-Side Cross Site Scripting Vulnerability Sage Extension for Firefox RSS File Client-Side Cross Site Scripting Vulnerability ICQ Toolbar Configuration Manipulation and RSS Cross Site Scripting Vulnerabilities MKPortal URL Handling Client-Side Cross Site Scripting Vulnerability ackerTodo "task_id" Parameter Client-Side Cross Site Scripting Vulnerability Attachment Module for phpBB Attachments Handling Cross Site Scripting Vulnerability VCD-db Comments Handling Script Insertion and Cross Site Scripting Vulnerability Pathauto Module for Drupal Unspecified Parameter Cross Site Scripting Vulnerability Mailman Multiple Cross Site Scripting and Remote Denial of Service Vulnerabilities vtiger CRM Multiple Module Cross Site Scripting and Security Bypass Vulnerabilities MyHeadlines Module for PHP-Nuke "myh_op" Parameter Cross Site Scripting Vulnerability LearnCenter "id" Parameter Handling Client-Side Cross Site Scripting Vulnerability Webmin and Usermin Cross Site Scripting and Source Code Disclosure Vulnerabilities MyBB "url" BBcode Tag and Administrative Section Cross Site Scripting Vulnerabilities Fotopholder "path" Parameter Handling Client-Side Cross Site Scripting Vulnerability PHP iAddressBook "cat_name" Parameter Handling Cross Site Scripting Vulnerability BlackBoard Learning System Posts Handling Client-Side Cross Site Scripting Vulnerability E-commerce for Drupal Multiple Parameter Handling Cross Site Scripting Vulnerabilities Diesel Paid Mail "ps" Parameter Handling Client-Side Cross Site Scripting Vulnerability TikiWiki "highlight" Parameter Handling Client-Side Cross Site Scripting Vulnerability Diesel Job Site "uname" and "SEmail" Parameters Cross Site Scripting Vulnerabilities Diesel Pay "read" Parameter Handling Client-Side Cross Site Scripting Vulnerability Doika Guestbook "page" Parameter Handling Client-Side Cross Site Scripting Vulnerability Horde IMP Webmail Client Folder Name Handling Cross Site Scripting Vulnerability CubeCart Multiple Parameter Handling SQL Injection and Cross Site Scripting Vulnerabilities Horde Application Framework Cross Site Scripting and Frameset Phishing Vulnerabilities BlogHoster "nickname" Parameter Handling Client-Side Cross Site Scripting Vulnerability MojoGallery "username" and "password" Parameters Cross Site Scripting Vulnerabilities Recipe Module for Drupal Unspecified Parameter Handling Cross Site Scripting Vulnerability Simplog "keyw" Parameter Handling Client-Side Cross Site Scripting Vulnerability CakePHP "error.php" Invalid ULR Handling Client-Side Cross Site Scripting Vulnerability toendaCMS "s" Parameter Handling Client-Side Cross Site Scripting Vulnerability OZJournals Multiple Parameter Handling Client-Side Cross Site Scripting Vulnerabilities Drupal User Module "msg" Parameter Handling Client-Side Cross Site Scripting Vulnerability INM AG CMS G3 "search_string" Parameter Handling Cross Site Scripting Vulnerability Novell GroupWise WebAccess Unspecified Tags Handling Cross Site Scripting Vulnerabilities GeoClassifieds Enterprise Multiple Parameter Handling Cross Site Scripting Vulnerabilities Ajax Chat "chatid" and "userid" Parameters Cross Site Scripting and Information Disclosure AWBS "Name" and "AccountUsername" Parameters Cross Site Scripting Vulnerabilities Taskjitsu Unspecified Parameter Handling Client-Side Cross Site Scripting Vulnerabilities ZyXEL Prestige 660H-61 "a" Parameter Client-Side Cross Site Scripting Vulnerability WWWthreads "week" Parameter Handling Client-Side Cross Site Scripting Vulnerability Professional Home Page Tools Login Script Multiple Cross Site Scripting Vulnerabilities TP-Book "name" Parameter Handling Client-Side Cross Site Scripting Vulnerability sNews "search_query" Parameter Handling Client-Side Cross Site Scripting Vulnerability Fire-Mouse Toplist "Seitenname" Parameter Handling Cross Site Scripting Vulnerability MyBulletinBoard "avatarurl" Parameter Handling Client-Side Cross Site Scripting Vulnerability IP Calculator "actionurl" Variable Handling Client-Side Cross Site Scripting Vulnerability Micro Guestbook "name" and "comment" Parameters Cross Site Scripting Vulnerability Loudblog "page" Parameter Handling Client-Side Cross Site Scripting Vulnerability OWASP WebScarab URL Handling Client-Side Cross Site Scripting Vulnerability hwdeGUEST Multiple Parameter Handling Client-Side Cross Site Scripting Vulnerabilities Geeklog "lib-comment.php" Comments Handling Client-Side Cross Site Scripting Vulnerability osDate "txtcomment" Parameter Handling Client-Side Cross Site Scripting Vulnerability Lazarus Guestbook "show" and "img" Variables Handling Cross Site Scripting Vulnerabilities Drupal "webform" Module Multiple Parameter Handling Cross Site Scripting Vulnerabilities Fantastic Guestbook Multiple Variable Handling Client-Side Cross Site Scripting Vulnerabilities Pivot Multiple Parameter Handling File Upload and Cross Site Scripting Vulnerabilities Juniper Networks DX Logs Handling Client-Side Cross Site Scripting Vulnerability PHP-Blogger Multiple Parameter Handling Client-Side Cross Site Scripting Vulnerabilities MIMEsweeper for Web Remote Denial of Service and Cross Site Scripting Vulnerabilities ATutor Multiple Parameter Handling Client-Side Cross Site Scripting Vulnerabilities PHP-Blogger Multiple Variable Handling Client-Side Cross Site Scripting Vulnerabilities Horde Application Framework Multiple Parameter Cross Site Scripting Vulnerabilities Glendown Shopping Cart Multiple Variable Handling Cross Site Scripting Vulnerabilities TTCalc Multiple Parameter Handling Client-Side Cross Site Scripting Vulnerabilities ATutor Multiple Parameter Handling Client-Side Cross Site Scripting Vulnerabilities PHPMailList "email" Parameter Handling Client-Side Cross Site Scripting Vulnerability F5 FirePass Multiple Parameter Handling Client-Side Cross Site Scripting Vulnerabilities PHPWebGallery "keyword" Parameter Handling Cross Site Scripting Vulnerability Hitachi Products Unspecified Parameters Handling Cross Site Scripting Vulnerabilities Taskjitsu Task "title" and "description" Handling Cross Site Scripting Vulnerabilities AutoRank PHP "Keyword" Parameter Handling Cross Site Scripting Vulnerability AutoRank Pro "Username" Parameter Handling Cross Site Scripting Vulnerability The banner Engine Multiple Parameter Handling Cross Site Scripting Vulnerabilities PHP-Fusion Avatar Images Handling Client-Side Cross Site Scripting Vulnerability mAds Multiple Parameter Handling Client-Side Cross Site Scripting Vulnerabilities NewsPHP "words" and "tim" Parameters Handling Cross Site Scripting Vulnerabilities MoniWiki "wiki.php" URL Handling Client-Side Cross Site Scripting Vulnerability phpMyAdmin "table" Parameter Handling Client-Side Cross Site Scripting Vulnerability Invision Power Board (IPB) Cross Site Scripting and Security Bypass Vulnerabilities PHP iCalendar "cal" Parameter Handling Client-Side Cross Site Scripting Vulnerability PHP/MySQL Classifieds Script Multiple Parameter Cross Site Scripting Vulnerabilities Metalhead Usenet Script "group" Variable Handling Cross Site Scripting Vulnerability Hostflow Help Desk "desc" Parameter Client-Side Cross Site Scripting Vulnerability SiteBar "command" Parameter Handling Client-Side Cross Site Scripting Vulnerability H-Sphere Multiple Parameter Handling Client-Side Cross Site Scripting Vulnerabilities Phorum "common.php" URL Handling Client-Side Cross Site Scripting Vulnerability cPanel "file" Parameter Handling Client-Side Cross Site Scripting Vulnerability Claroline Multiple Parameter Handling Client-Side Cross Site Scripting Vulnerabilities Dating Agent PRO Multiple Cross Site Scripting and Information Disclosure Vulnerabilities Custom Dating Biz Dating Script Multiple Parameter Cross Site Scripting Vulnerabilities aeDating Multiple Parameter Handling Client-Side Cross Site Scripting Vulnerabilities phpQLAdmin "domain" Variable Handling Client-Side Cross Site Scripting Vulnerability mvnForum "member" and "activatecode" Variables Cross Site Scripting Vulnerabilities Trend Micro Control Manager Access Log Client-Side Cross Site Scripting Vulnerability Namo DeepSearch "p" Variable Handling Client-Side Cross Site Scripting Vulnerability GL-SH Deaf Forum Multiple Parameter Handling Cross Site Scripting Vulnerabilities Qdig Multiple Parameter Handling Client-Side Cross Site Scripting Vulnerabilities UebiMiau Multiple Parameter Handling Client-Side Cross Site Scripting Vulnerabilities XennoBB "tid" Parameter Handling Client-Side Cross Site Scripting Vulnerability dotProject "login" Variable Handling Client-Side Cross Site Scripting Vulnerability Sun ONE and Java System Application Server Cross Site Scripting Vulnerability BNBT EasyTracker Multiple Parameter Handling Cross Site Scripting Vulnerabilities vlbook "message" Variable Handling Client-Side Cross Site Scripting Vulnerability BlueDragon Server Remote Denial of Service and Cross Site Scripting Vulnerabilities cjGuestbook Multiple Variable Handling Client-Side Cross Site Scripting Vulnerabilities Open WebMail "openwebmail-read.pl" Multiple Cross Site Scripting Vulnerabilities Azureus Tracker "search" Parameter Handling Cross Site Scripting Vulnerability Enterprise Groupware System "module" Parameter Cross Site Scripting Vulnerability Invision Power Board Hexadecimal HTML Entities Cross Site Scripting Vulnerability myPHP Guestbook Multiple Parameter Handling Cross Site Scripting Vulnerabilities Ultimate eShop "subid" Parameter Handling Cross Site Scripting Vulnerability Thinkfactory UltimateGoogle "REQ" Parameter Cross Site Scripting Vulnerability Atlassian JIRA Cross Site Scripting and System Information Disclosure Vulnerability e107 "ep" and "subject" Parameters Handling Cross Site Scripting Vulnerabilities Maximus SchoolMAX "error_msg" Variable Handling Cross Site Scripting Vulnerability AssoCIateD "menu" Variable Handling Client-Side Cross Site Scripting Vulnerability Cisco CallManager Web Interface Multiple Variable Cross Site Scripting Vulnerabilities Dragon Kingdom Multiple Parameter Handling Cross Site Scripting Vulnerabilities NC LinkList "cat" and "view" Variables Handling Cross Site Scripting Vulnerabilities phpMyForum "highlight" Parameter Handling Cross Site Scripting Vulnerability Arctic Search Module "query" Parameter Handling Cross Site Scripting Vulnerability Simple File Manager "msg" Parameter Handling Cross Site Scripting Vulnerability QTOFileManager "msg" Parameter Handling Cross Site Scripting Vulnerability Confixx Pro Multiple Variable Handling Client-Side Cross Site Scripting Vulnerabilities phpMyDirectory Multiple Parameter Handling Cross Site Scripting Vulnerabilities Edge eCommerce Shop "cart_id" Variable Handling Cross Site Scripting Vulnerability Tradingeye Shop "image" Parameter Handling Cross Site Scripting Vulnerability phazizGuestbook Multiple Parameter Handling Cross Site Scripting Vulnerabilities aXentForum II "startrow" Parameter Handling Cross Site Scripting Vulnerability Bitweaver Multiple Arbitrary File Upload and Cross Site Scripting Vulnerabilities SixCMS "page" Parameter Handling Client-Side Cross Site Scripting Vulnerability MP3 Search/Archive "keywords" and "res" Variables Cross Site Scripting Vulnerabilities Cisco Secure Access Control Server "LogonProxy" Cross Site Scripting Vulnerability iPostMX 2005 "RETURNURL" Parameter Handling Cross Site Scripting Vulnerabilities Wikkawiki Remote Security Bypass and Cross Site Scripting Vulnerabilities Horde Application Framework Multiple Parameter Cross Site Scripting Vulnerabilities Five Star Review Script Multiple Parameter Cross Site Scripting Vulnerabilities Event Registration Multiple Parameter Handling Cross Site Scripting Vulnerabilities Realty Room Rent "sel_menu" Variable Handling Cross Site Scripting Vulnerability Realty Home Rent "sel_menu" Variable Handling Cross Site Scripting Vulnerability Car Classifieds "make_id" Parameter Handling Cross Site Scripting Vulnerability Cisco WebVPN "dnserror.html" and "connecterror.html" Cross Site Scripting Issue Microsoft Exchange Server OWA Cross Site Scripting Vulnerability (MS06-029) ClickGallery Multiple Parameter Handling Cross Site Scripting Vulnerabilities MyScrapbook Multiple Parameter Handling Cross Site Scripting Vulnerabilities L0j1k tinyMuw "comments" Parameter Handling Cross Site Scripting Vulnerability EvGenius Counter "page" Parameter Handling Cross Site Scripting Vulnerability myPHP Guestbook "lang" Parameter Handling Cross Site Scripting Vulnerability Uphotogallery Multiple Parameter Handling Cross Site Scripting Vulnerabilities i-Gallery Multiple Variable Handling Client-Side Cross Site Scripting Vulnerabilities Mole Group Ticket Booking Multiple Parameter Cross Site Scripting Vulnerabilities P.A.I.D "read" Parameter Handling Client-Side Cross Site Scripting Vulnerability ST AdManager Lite Multiple Parameter Handling Cross Site Scripting Vulnerabilities WS-Album "FullPhoto.asp" Multiple Parameter Cross Site Scripting Vulnerabilities EZGallery Multiple Variable Handling Client-Side Cross Site Scripting Vulnerabilities ClickCart "cat" Parameter Handling Client-Side Cross Site Scripting Vulnerability fipsGallery "path" Parameter Handling Client-Side Cross Site Scripting Vulnerability fipsCMS "index.asp" Multiple Variable Handling Cross Site Scripting Vulnerabilities Xtreme ASP Photo Gallery Multiple Parameter Cross Site Scripting Vulnerabilities DwZone Shopping Cart Multiple Parameter Cross Site Scripting Vulnerabilities iFoto "file" Parameter Handling Client-Side Cross Site Scripting Vulnerability OkMall "page" and "q" Parameters Handling Cross Site Scripting Vulnerabilities Ringlink "ringid" Parameter Handling Client-Side Cross Site Scripting Vulnerabilities LogiSphere Error Page URL Handling Client-Side Cross Site Scripting Vulnerability ZMS Search Module "raw" Parameter Handling Cross Site Scripting Vulnerability CFXe CMS "voltext_suche" Parameter Handling Cross Site Scripting Vulnerability Cabacos Web CMS "suchtext" Parameter Handling Cross Site Scripting Vulnerability OkArticles "q" Parameter Handling Client-Side Cross Site Scripting Vulnerability QuickLinks "q" Parameter Handling Client-Side Cross Site Scripting Vulnerability ViArt Shop Free Multiple Parameter Handling Cross Site Scripting Vulnerabilities i.List Multiple Parameter Handling Script Insertion and Cross Site Scripting Issues KAPhotoservice Multiple Parameter Handling Cross Site Scripting Vulnerabilities ASP ListPics "Info" Parameter Handling Client-Side Cross Site Scripting Vulnerability Easy Ad-Manager "mbid" Parameter Handling Cross Site Scripting Vulnerability VanillaSoft Helpdesk "username" Variable Handling Cross Site Scripting Vulnerability vSCAL and vsREAL "lid" and "title" Parameters Cross Site Scripting Vulnerabilities Ez Ringtone Manager "id" and "keyword" Parameters Cross Site Scripting Issues IntegraMOD "STYLE_URL" Parameter Handling Cross Site Scripting Vulnerability Chemical Directory "keyword" Parameter Handling Cross Site Scripting Vulnerability NPDS Multiple Parameter Local File Inclusion and Cross Site Scripting Vulnerabilities PBL Guestbook Multiple Parameter Handling Cross Site Scripting Vulnerabilities Enigma Haber "il" Parameter Handling Client-Side Cross Site Scripting Vulnerability MyBB "do" Parameter Handling Client-Side Cross Site Scripting Vulnerability GANTTy Multiple Variable Cross Site Scripting and Path Disclosure Vulnerabilities Ingate Firewall and SIParator Denial of Service and Cross Site Scripting Vulnerabilities Particle Gallery "imageid" Parameter Handling Cross Site Scripting Vulnerability Particle Wiki "page" Parameter Handling Cross Site Scripting Vulnerability Particle Links "username" Parameter Handling Cross Site Scripting Vulnerability Particle Whois "target" Parameter Handling Cross Site Scripting Vulnerability MediaWiki Edit Form Variable Handling Client-Side Cross Site Scripting Vulnerability FunkBoard Remote Authentication Bypass and Cross Site Scripting Vulnerabilities KnowledgeTree Open Source Multiple Parameter Cross Site Scripting Vulnerabilities Contributed Packages for PyBlosxom "url" and "author" Cross Site Scripting Issues ASPScriptz Guest Book Multiple Variable Handling Cross Site Scripting Vulnerabilities OSADS Board Comments Handling Client-Side Cross Site Scripting Vulnerability PHP ManualMaker "id" and "s" Parameters Cross Site Scripting Vulnerabilities PHP Pro Publish "catname" Parameter Handling Cross Site Scripting Vulnerability dotProject Unspecified Parameter Handling Cross Site Scripting Vulnerability PHP Labware LabWiki "help" Parameter Handling Cross Site Scripting Vulnerability ASP Discussion Forum "search" Parameter Cross Site Scripting Vulnerability Drupal Taxonomy Module "name" Parameter Cross Site Scripting Vulnerability SimpleBoard "sb_authorname" Parameter Cross Site Scripting Vulnerability Goss iCM "keyword" Parameter Handling Cross Site Scripting Vulnerability PmWiki "Uploads" and "Links" Modules Cross Site Scripting Vulnerabilities Hogstorps Guestbook Authentication Bypass and Cross Site Scripting Vulnerabilities toendaCMS "print_url" Parameter Handling Cross Site Scripting Vulnerability QontentOne CMS "search_phrase" Parameter Cross Site Scripting Vulnerability Techno Dreams Guest Book "x_Comments" Cross Site Scripting Vulnerability Omegasoft Insel "WCE" Parameter Handling Cross Site Scripting Vulnerability phpMyDesktop|arcade File Inclusion and Cross Site Scripting Vulnerabilities Photoalbum B&W "gal" and "pic" Parameters Cross Site Scripting Vulnerabilities EVA-Web Multiple Parameter Handling Cross Site Scripting Vulnerabilities UBB.threads Multiple Remote File Inclusion and Cross Site Scripting Vulnerabilities F@cile Interactive Web Multiple File Inclusion and Cross Site Scripting Vulnerabilities ByteHoard "infolder" and "description" File Overwrite and Cross Site Scripting D-Link Airspot DSA-3100 Gateway "uname" Cross Site Scripting Vulnerability ASPBB "search" Parameter Handling Cross Site Scripting Vulnerability Seditio "HTTP_REFERER" Header Handling Cross Site Scripting Vulnerability php-residence Multiple Parameter Handling Cross Site Scripting Vulnerabilities TikiWiki Multiple Parameter Handling Cross Site Scripting Vulnerabilities Assetman Multiple Parameter Handling Cross Site Scripting Vulnerabilities PHP-AGTC Membership System "useremail" Cross Site Scripting Vulnerability PHPSimpleChoose "phpsimplechoose.php" Cross Site Scripting Vulnerability Morris Guestbook "pagina" Parameter Handling Cross Site Scripting Vulnerability Smile Guestbook "pagina" Parameter Handling Cross Site Scripting Vulnerability Pretty Guestbook "pagina" Parameter Handling Cross Site Scripting Vulnerability Vacation Rental Script "obj" Variable Handling Cross Site Scripting Vulnerability iFlance Multiple Parameter Handling Cross Site Scripting Vulnerabilities iFdate Multiple Parameter Handling Cross Site Scripting Vulnerabilities AZ Photo Album Script Pro "gazpart" Parameter Cross Site Scripting Vulnerability CMS Mundo "searchstring" Parameter Handling Cross Site Scripting Vulnerability Elite-Board "search" Parameter Handling Cross Site Scripting Vulnerability Chatty "username" Parameter Handling Cross Site Scripting Vulnerability DSChat Remote Command Execution and Cross Site Scripting Vulnerabilities SkyeBox "name" and "message" Parameters Cross Site Scripting Vulnerability RWiki Remote Ruby Code Injection and Cross Site Scripting Vulnerabilities AlstraSoft E-Friends Multiple Variable Handling Cross Site Scripting Vulnerabilities phpwcms Multiple Local File Inclusion and Cross Site Scripting Vulnerabilities Alkacon OpenCms "query" Parameter Handling Cross Site Scripting Vulnerability Hiox Guestbook Multiple Parameter Handling Cross Site Scripting Vulnerabilities JemScripts DownloadControl Cross Site Scripting and Path Disclosure Issues Destiney Rated Images Cross Site Scripting and Path Disclosure Vulnerabilities MediaWiki Unspecified Parameter Handling Cross Site Scripting Vulnerabilities Sun ONE and Sun Java System Applications Cross Site Scripting Vulnerability Bitrix Site Manager Cross Site Scripting and Information Disclosure Vulnerabilities Mobotix IP Network Cameras M1/M10 Multiple Cross Site Scripting Vulnerabilities BoastMachine "PHP_SELF" Variable Handling Cross Site Scripting Vulnerability Spymac WebOS Multiple Variable Handling Cross Site Scripting Vulnerabilities phpRemoteView Multiple Variable Handling Cross Site Scripting Vulnerabilities Website Baker "display_name" Parameter Cross Site Scripting Vulnerability NewsPortal Remote PHP File Inclusion and Cross Site Scripting Vulnerabilities Confixx Professional "login" Parameter Handling Cross Site Scripting Vulnerability GPhotos Multiple Cross Site Scripting and Information Disclosure Vulnerabilities FlexChat "username" Parameter Handling Cross Site Scripting Vulnerability Directory Listing Script "dir" Variable Handling Cross Site Scripting Vulnerability phpODP "browse" Parameter Handling Cross Site Scripting Vulnerability Jax Guestbook "page" Parameter Handling Cross Site Scripting Vulnerability phpMyAdmin "theme" and "db" Variables Cross Site Scripting Vulnerabilities Ipswitch WhatsUp Cross Site Scripting and Information Disclosure Vulnerabilities e-Business Designer Remote File Upload and Cross Site Scripting Vulnerabilities Web-Labs CMS Multiple Parameters Handling Cross Site Scripting Vulnerabilities OZJournals "vname" Parameter Handling Cross Site Scripting Vulnerability ManageEngine OpManager "searchTerm" Cross Site Scripting Vulnerability Jadu CMS "register.php" Multiple Parameter Cross Site Scripting Vulnerabilities EPublisherPro "title" Parameter Handling Cross Site Scripting Vulnerability 2005-Comments-Script Multiple Parameter Cross Site Scripting Vulnerabilities X7 Chat "avatar" Parameter Handling Cross Site Scripting Vulnerability Dynamic Galerie Cross Site Scripting and Information Disclosure Vulnerability Drupal Project Module Issue Handling Cross Site Scripting Vulnerability PassMasterFlexPlus "Hack Log" Feature Cross Site Scripting Vulnerabilities EasyEvent "curr_year" Parameter Handling Cross Site Scripting Vulnerability OpenFAQ "q" Parameter Handling Cross Site Scripting Vulnerability CuteNews Multiple Parameter Handling Cross Site Scripting Vulnerabilities Ublog "blog_testo" Parameter Handling Cross Site Scripting Vulnerability PunBB "redirect_url" Parameter Handling Cross Site Scripting Vulnerability Albinator Multiple Parameter File Inclusion and Cross Site Scripting Vulnerabilities SF-Users "username" Parameter Handling Cross Site Scripting Vulnerability JSBoard "table" Parameter Handling Cross Site Scripting Vulnerability MyNews "hash" and "page" Variables Handling Cross Site Scripting Vulnerabilities Virtual Hosting Control System (VHCS) Multiple Cross Site Scripting Vulnerabilities 321soft Php-Gallery Cross Site Scripting and Information Disclosure Vulnerability phpkb Knowledge Base "searchkeyword" Cross Site Scripting Vulnerability PHP Linkliste Multiple Parameter Handling Cross Site Scripting Vulnerabilities Pinnacle Cart "setbackurl" Parameter Handling Cross Site Scripting Vulnerability Thyme "searchfor" Parameter Handling Cross Site Scripting Vulnerability NeoMail "sessionid" Parameter Handling Cross Site Scripting Vulnerability Collaborative Portal Server (CPS) "pos" Variable Cross Site Scripting Vulnerability OrbitHYIP Multiple Parameter Handling Cross Site Scripting Vulnerabilities SunShop Shopping Cart Multiple Parameter Cross Site Scripting Vulnerabilities DirectAdmin "domain" Parameter Handling Cross Site Scripting Vulnerability Kamgaing Email System Multiple Parameter Cross Site Scripting Vulnerabilities Trac Wiki Engine Unspecified Parameter Handling Cross Site Scripting Vulnerability DevBB "member" Parameter Handling Cross Site Scripting Vulnerability DCForumLite "az" Parameter Handling Cross Site Scripting Vulnerability phpWebFTP Multiple Parameter Handling Cross Site Scripting Vulnerabilities MKPortal Multiple Parameter Handling Cross Site Scripting Vulnerabilities logMethods "kwd" Parameter Handling Cross Site Scripting Vulnerability phpLDAPadmin Multiple Parameter Handling Cross Site Scripting Vulnerabilities 4images "user_name" Parameter Handling Cross Site Scripting Vulnerability Community Architect Guestbook "cgi-bin/guest" Cross Site Scripting Vulnerability W2B Online Banking "SID" Variable Handling Cross Site Scripting Vulnerability KCScripts Portal Pack Multiple Variable Cross Site Scripting Vulnerabilities ContentBoxX "action" Parameter Handling Cross Site Scripting Vulnerability EasyGallery "ordner" Parameter Handling Cross Site Scripting Vulnerability Net Clubs Pro Multiple Variable Handling Cross Site Scripting Vulnerabilities Dubelu PhpGuestbook Multiple Parameter Cross Site Scripting Vulnerabilities AWStats Multiple Variable Cross Site Scripting and Full Path Disclosure Issues Boardsolution "keyword" Parameter Handling Cross Site Scripting Vulnerability FarsiNews Variable Handling Cross Site Scripting and Full Path Disclosure Issues BannerFarm "aff" and "cat" Parameters Cross Site Scripting Vulnerabilities IntelliLink Multiple Parameter Handling Cross Site Scripting Vulnerabilities Visale "catsubno" and "listno" Parameters Cross Site Scripting Vulnerabilities CommuniMail "list_id" and "form_id" Parameters Cross Site Scripting Vulnerabilities LinPHA Multiple Parameter Handling Cross Site Scripting Vulnerabilities AnimeGenesis Gallery "cat" Variable Handling Cross Site Scripting Vulnerability phpFaber TopSites "page" Variable Handling Cross Site Scripting Vulnerability FlexBB "name" and "message" Parameters Cross Site Scripting Vulnerabilities ShoutBOOK Multiple Parameter Handling Cross Site Scripting Vulnerabilities MODx "id" Variable Directory Traversal and Cross Site Scripting Vulnerabilities phpLinks "term" Parameter Handling Cross Site Scripting Vulnerability betaboard "FormVal_profile" Variable Handling Cross Site Scripting Vulnerability Calendarix "ycyear" Parameter Handling Cross Site Scripting Vulnerability bMachine "key" Parameter Handling Cross Site Scripting Vulnerability phpMyAdmin Multiple Variable SQL Execution and Cross Site Scripting Vulnerabilities Bitweaver "error" Parameter Handling Cross Site Scripting Vulnerability TinyWebGallery "twg_album" Variable Handling Cross Site Scripting Vulnerability planetSearch+ "search_exp" Parameter Handling Cross Site Scripting Vulnerability LifeType Template "show" Parameter Handling Cross Site Scripting Vulnerability Aweb Banner Generator "banner" Parameter Cross Site Scripting Vulnerability Adobe Document Server Security Bypass and Cross Site Scripting Vulnerabilities Interaktiv.shop "pn" and "sbeg" Parameters Cross Site Scripting Vulnerabilities Autogallery "pic" and "show" Variables Handling Cross Site Scripting Vulnerabilities Tritanium Bulletin Board Multiple Parameters Cross Site Scripting Vulnerabilities JetPhoto Server "name" and "page" Variables Cross Site Scripting Vulnerabilities PHPWebGallery Multiple Parameter Handling Cross Site Scripting Vulnerabilities Jupiter Content Manager Cross Site Scripting and Full Path Disclosure Issues SaphpLesson "Word" Parameter Handling Cross Site Scripting Vulnerability Microsoft FrontPage Server Extensions Cross Site Scripting Issue (MS06-017) Gallery Unspecified Parameter Handling Cross Site Scripting Vulnerabilities Shadowed Portal "page" Parameter Handling Cross Site Scripting Vulnerability Matt Wright Guestbook Multiple Parameter Cross Site Scripting Vulnerabilities Web+Shop "deptname" Parameter Handling Cross Site Scripting Vulnerability vBug Tracker Module "sortorder" Parameter Cross Site Scripting Vulnerability Mailman Private Archive Script Variable Handling Cross Site Scripting Vulnerability SKForum Multiple Parameter Handling Cross Site Scripting Vulnerabilities phpMyAdmin Custom Themes Multiple Cross Site Scripting Vulnerabilities Basic Analysis and Security Engine "PrintFreshPage" Cross Site Scripting Issue N.T. Remote Command Execution and Cross Site Scripting Vulnerabilities MyBB "email" BBcode Tag Handling Cross Site Scripting Vulnerability phpBB "cur_password" Parameter Handling Cross Site Scripting Vulnerability ReloadCMS Statistics Module "User-Agent" Cross Site Scripting Vulnerability MediaWiki Encoded Links Handling Cross Site Scripting Vulnerability Bugzero Multiple Parameter Handling Cross Site Scripting Vulnerabilities gtd-php Multiple Parameter Handling Cross Site Scripting Vulnerabilities Apache Struts Multiple Security Bypass and Cross Site Scripting Vulnerabilities Groupmax World Wide Web Unspecified Cross Site Scripting Vulnerability Esqlanelapse Unspecified Variable Handling Cross Site Scripting Vulnerability Mantis Multiple Parameter Handling Cross Site Scripting Vulnerabilities SiteSearch Indexer "searchField" Parameter Cross Site Scripting Vulnerability Explorer XP "chemin" Directory Traversal and Cross Site Scripting Vulnerabilities PHP Classifieds "searchword" Parameter Cross Site Scripting Vulnerability Arab Portal "title" Parameter Handling Cross Site Scripting Vulnerability Connect Daily Multiple Parameter Handling Cross Site Scripting Vulnerabilities ActiveCampaign SupportTrio Cross Site Scripting and Path Disclosure Vulnerabilities couponZONE "srchfor" and "srchby" Parameters Cross Site Scripting Vulnerability realestateZONE Multiple Parameter Handling Cross Site Scripting Vulnerability phpCOIN "fs" Parameter Handling Cross Site Scripting Vulnerabilities phpmyfamily "name" Parameter Handling Cross Site Scripting Vulnerabilities CONTROLzx HMS Multiple Parameter Handling Cross Site Scripting Vulnerabilities classifiedZONE "rtn" Parameter Handling Cross Site Scripting Vulnerability Web Quiz Pro "exam" and "msg" Variables Cross Site Scripting Vulnerabilities Toast Forums Multiple Parameter Handling Cross Site Scripting Vulnerabilities Helm Web Hosting Control Panel Multiple Variable Cross Site Scripting Vulnerabilities EZHomepagePro Multiple Parameter Handling Cross Site Scripting Vulnerabilities E-School Management System "msg" Variable Cross Site Scripting Vulnerability Absolute FAQ Manager "question" Variable Cross Site Scripting Vulnerability ssCMS "keywords" Parameter Handling Cross Site Scripting Vulnerability dotNetBB "em" Parameter Handling Cross Site Scripting Vulnerability Absolute Live Support "topic" Variable Handling Cross Site Scripting Vulnerability G-Book "g_message" Parameter Handling Cross Site Scripting Vulnerability uniForum "txtuser" and "txtpassword" Variables Cross Site Scripting Vulnerability WebAPP.org "index.cgi" Multiple Variable Handling Cross Site Scripting Vulnerabilities Absolute Image Gallery XE "shownew" Variable Cross Site Scripting Vulnerability phpPgAds and phpAdsNew Multiple Variable Cross Site Scripting Vulnerabilities Calender Express "allwords" and "oneword" Cross Site Scripting Vulnerability Meeting Reserve "search_term" Parameter Cross Site Scripting Vulnerability BlankOL "file" and "function" Variables Handling Cross Site Scripting Vulnerability Metisware Instructor "vchTaskHeader" Variable Cross Site Scripting Vulnerability VeriSign Managed PKI "VHTML_FILE" Variable Cross Site Scripting Vulnerability CoMoblog "i" Parameter Handling Cross Site Scripting Vulnerability EasyMoblog "i" Parameter Handling Cross Site Scripting Vulnerability PHP Live! "base_url" Parameter Handling Cross Site Scripting Vulnerability IBM Tivoli Business Systems Manager "skin" Cross Site Scripting Vulnerability OSWiki Username "list.rhtml" and "show.rhtml" Cross Site Scripting Vulnerability Firepass 4100 SSL VPN "s" Parameter Handling Cross Site Scripting Vulnerability Invision Power Board Private Message Handling Cross Site Scripting Vulnerability ExtCalendar Multiple Parameter Handling Cross Site Scripting Vulnerabilities Contrexx CMS "PHP_SELF" Variable Handling Cross Site Scripting Vulnerability Woltlab Burning Board "class_db_mysql.php" Cross Site Scripting Vulnerability Streber Unspecified Parameters Handling Cross Site Scripting Vulnerability phpMyAdmin "set_theme" Parameter Handling Cross Site Scripting Vulnerability Skull-Splitter PHP Guestbook "url" Parameter Cross Site Scripting Vulnerability Inprotect "Name" and "Description" Fields Cross Site Scripting Vulnerability MyBulletinBoard "url" Parameter Handling Cross Site Scripting Vulnerability Gemini "rtcDescription$RadEditor1" Field Cross Site Scripting Vulnerability Dwarf HTTP Server Source Disclosure and Cross Site Scripting Vulnerabilities WMNews Multiple Parameter Handling Cross Site Scripting Vulnerabilities Jupiter Content Manager "image" BBcode Cross Site Scripting Vulnerability Zeroboard Multiple Parameter Handling Cross Site Scripting Vulnerabilities vCard Multiple Parameter Handling Cross Site Scripting Vulnerabilities Nodez Multiple Variable File Inclusion and Cross Site Scripting Vulnerabilities ADP Forum "messaggio" Parameter Handling Cross Site Scripting Vulnerability DokuWiki Mediamanager EXIF Data Handling Cross Site Scripting Vulnerability QwikiWiki Multiple Parameter Handling Cross Site Scripting Vulnerabilities Easy File Sharing Web Server Format String and Cross Site Scripting Vulnerabilities textfileBB "mess" and "user" Variables Handling Cross Site Scripting Vulnerability sBlog "keyword" and "username" Parameters Cross Site Scripting Vulnerabilities Link Bank Remote Command Execution and Cross Site Scripting Vulnerabilities HitHost "hits" and "user" Cross Site Scripting and Directory Deletion Vulnerabilities Game-Panel "message" Variable Handling Cross Site Scripting Vulnerability bitweaver "comment_title" Parameter Cross Site Scripting Vulnerability Suprem DVGuestbook "f" Parameter Cross Site Scripting Vulnerability Digitalvisionscripts DVGuestbook "page" Cross Site Scripting Vulnerability Lurker Cross Site Scripting and Information Disclosure Vulnerabilities phpArcadeScript Multiple Parameter Cross Site Scripting Vulnerabilities vBulletin "Email Address" Handling Cross Site Scripting Vulnerability SAP Web Application Server URL Handling Cross Site Scripting Issue Gallery Cross Site Scripting and Arbitrary File Manipulation Vulnerabilities PunBB Cross Site Scripting and Denial of Service Vulnerabilities TOPo "gTopNombre" Variable Handling Cross Site Scripting Vulnerability bttlxeForum "err_txt" Variable Handling Cross Site Scripting Vulnerability WordPress Cross Site Scripting And Full Path Disclosure Vulnerabilities PeHePe Uyelik Sistemi Code Execution and Cross Site Scripting Issues StoreBot "ShipMethod" Parameter Handling Cross Site Scripting Issue freeForum Multiple Code Injection and Cross Site Scripting Vulnerabilities Parodia "AG_ID" Parameter Handling Cross Site Scripting Vulnerability CGI Calendar "year" Variable Handling Cross Site Scripting Vulnerability Thomson SpeedTouch "name" Variable Cross Site Scripting Vulnerability MyPHPNuke "letter" and "dcategory" Cross Site Scripting Vulnerabilities ShoutLIVE Command Execution and Cross Site Scripting Vulnerabilities WEBInsta Limbo "message" Parameter Cross Site Scripting Vulnerability PHPX "url" XCode Tags Handling Cross Site Scripting Vulnerability DEV Web Management System "City/Region" Cross Site Scripting Issue Calcium "EventText" Parameter Handling Cross Site Scripting Vulnerability Simple Machines Forum "X-Forwarded-For" Cross Site Scripting Vulnerability iCal "Calendar Text" Variable Handling Cross Site Scripting Vulnerability Runcms "lid" Parameter Handling Cross Site Scripting Vulnerability Easy Forum "image" Variable Handling Cross Site Scripting Vulnerability CuteNews "show" Parameter Handling Cross Site Scripting Vulnerability CPG Dragonfly CMS Multiple Module Cross Site Scripting Vulnerabilities SquirrelMail Multiple Cross Site Scripting and IMAP Injection Vulnerabilities BoonEx Barracuda Directory Multiple Cross Site Scripting Vulnerabilities Guestbox Cross Site Scripting and Information Disclosure Vulnerabilities ADOdb "next_page" and "PHP_SELF" Cross Site Scripting Vulnerabilities MyBB Advanced Details Link Handling Cross Site Scripting Vulnerability E-Blah Platinum "HTTP_REFERER" Header Cross Site Scripting Vulnerability V-webmail Cross Site Scripting and Information Disclosure Vulnerabilities Guestex Shell Command Injection and Cross Site Scripting Vulnerabilities My Blog "url" and "img" BBCode Tags Cross Site Scripting Vulnerability HTML::BBCode "url" and "img" BBCode Cross Site Scripting Vulnerability Clever Copy Private Message "Subject" Cross Site Scripting Vulnerability @Mail Webmail "img" Tag Handling Cross Site Scripting Vulnerability QwikiWiki "query" Parameter Handling Cross Site Scripting Vulnerability Gästebuch Homepage URL Handling Cross Site Scripting Vulnerability ImageVue Remote File Upload and Cross Site Scripting Vulnerabilities Siteframe "q" Parameter Handling Cross Site Scripting Vulnerability VHCS Multiple Security Bypass and Cross Site Scripting Vulnerabilities e107 BBCode Tags Handling Multiple Cross Site Scripting Vulnerabilities PHP-Nuke "pagetitle" Variable Handling Cross Site Scripting Vulnerability PlaySMS "err" Parameter Handling Cross Site Scripting Vulnerability Clever Copy HTTP Headers Multiple Cross Site Scripting Vulnerabilities e/pop Web Conferencing Topic Name Cross Site Scripting Vulnerability PHP Event Calendar Cross Site Scripting and Information Manipulation CPAINT "cpaint_response_type" Parameter Cross Site Scripting Issue DataparkSearch Search Templates Cross Site Scripting Vulnerability PHP-Fusion Comments and Shoutbox Cross Site Scripting Vulnerabilities phpBB Cross Site Request Forgery and Cross Site Scripting Vulnerabilities NeoMail "date" Parameter Handling Cross Site Scripting Vulnerability cPanel Multiple Variable Handling Cross Site Scripting Vulnerabilities SoftMaker Shop "strSok" Variable Handling Cross Site Scripting Issue Papoo "Username" Variable Handling Cross Site Scripting Vulnerability Outblaze "file" Parameter Handling Cross Site Scripting Vulnerability Cerberus Helpdesk "contact_search" Cross Site Scripting Vulnerability Easy CMS Multiple Variable Handling Cross Site Scripting Vulnerabilities sPaiz-Nuke "query" Parameter Handling Cross Site Scripting Vulnerability Nuked-Klan "letter" Parameter Handling Cross Site Scripting Vulnerability UebiMiau HTML Email Message Handling Cross Site Scripting Vulnerability Rlink Module for phpBB "url" Parameter Cross Site Scripting Vulnerability BrowserCRM "query" Variable Handling Cross Site Scripting Vulnerability My Little Multiple Product "link" BBcode Cross Site Scripting Vulnerability MyBB "sortby" and "sortordr" Variables Cross Site Scripting Vulnerabilities MyBB "notepad" and "signature" Variables Cross Site Scripting Vulnerability ExpressionEngine "HTTP_REFERER" Cross Site Scripting Vulnerability CheesyBlog "archive.php" Multiple Field Cross Site Scripting Vulnerability Pixelpost User Comments Handling Cross Site Scripting Vulnerability AZ Bulletin Board "topic" and "name" Cross Site Scripting Vulnerabilities Gallery User Fullname Handling Cross Site Scripting Vulnerability MailSite Cross Site Scripting and Remote Denial of Service Vulnerabilities My Amazon Store Manager "q" Variable Cross Site Scripting Vulnerability Netrix X-Site Manager "product_id" Parameter Cross Site Scripting Issue Phpclanwebsite "img" BBcode Handling Cross Site Scripting Vulnerability MyBB "Allow HTML in Signatures" Feature Cross Site Scripting Vulnerability WB News "name" Parameter Handling Cross Site Scripting Vulnerability Trac HTML WikiProcessor "SRC" Tag Cross Site Scripting Vulnerability CubeCart Multiple Parameter Handling Cross Site Scripting Vulnerabilities Mantis Multiple Parameter Handling Cross Site Scripting Vulnerabilities SMBCMS "text" Parameter Handling Cross Site Scripting Vulnerability Ultimate Auction "item" and "category" Cross Site Scripting Vulnerabilities Netbula Anyboard "tK" Parameter Cross Site Scripting Vulnerability Faq-O-Matic Multiple Variable Handling Cross Site Scripting Vulnerabilities RedKernel Referrer Tracker "rkrt_stats.php" Cross Site Scripting Issue Helm Web Hosting Control Panel Cross Site Scripting Vulnerability Widexl Download Tracker "ID" Parameter Cross Site Scripting Issue GTP iCommerce "subcat" and "cat" Cross Site Scripting Vulnerabilities Apache Geronimo "time" and "Web-Access-Log" Cross Site Scripting Issues H-Sphere "login" Parameter Handling Cross Site Scripting Vulnerability FogBugz "dest" Parameter Handling Cross Site Scripting Vulnerability Interspire Trackpoint NX "username" Cross Site Scripting Vulnerability CaLogic New Event "title" Field Cross Site Scripting Vulnerability Foxrum "url" BBcode Tag Handling Cross Site Scripting Vulnerability PHP-Nuke News Module "IMG" Tag Cross Site Scripting Vulnerability WebGUI DataForm Fields Handling Cross Site Scripting Vulnerability NavBoard BBcode Tags Handling Cross Site Scripting Vulnerability phpChamber "needle" Parameter Cross Site Scripting Vulnerability Andromeda "s" Parameter Handling Cross Site Scripting Vulnerability Aquifer CMS "Keyword" Parameter Cross Site Scripting Vulnerability iNETstore Ebusiness Software "searchterm" Cross Site Scripting Issue Modular Merchant Shopping Cart "cat" Cross Site Scripting Vulnerability Boxcar Media Shopping Cart "index.php" Cross Site Scripting Issue phpBB "Allow HTML" Messages Cross Site Scripting Vulnerability Tiny PHP Forum Directory Traversal and Cross Site Scripting Issues raSMP "HTTP_USER_AGENT" Cross Site Scripting Vulnerability vBulletin "Add Reminder" Module Cross Site Scripting Vulnerability Open-Xchange Webmail Attachments Cross Site Scripting Vulnerability Enhanced Simple PHP Gallery "dir" Cross Site Scripting Vulnerability Next Generation Image Gallery "page" Cross Site Scripting Vulnerability @Card ME PHP "cat" Parameter Cross Site Scripting Vulnerability sBLOG "p" and "keyword" Variables Cross Site Scripting Vulnerabilities B-net Software "Guestbook" and "Shoutbox" Cross Site Scripting Issues eggblog "q" Parameter Handling Cross Site Scripting Vulnerability AlstraSoft EPay Enterprise Multiple Cross Site Scripting Vulnerabilities RAMSite R|1 CMS "searchfield" Variable Cross Site Scripting Vulnerability SiteEnable "ret_page" Parameter Cross Site Scripting Vulnerability PortalApp "ret_page" Parameter Cross Site Scripting Vulnerability Redakto WCMS Multiple Parameter Cross Site Scripting Vulnerabilities IntranetApp Multiple Parameter Cross Site Scripting Vulnerabilities ProjectApp Multiple Parameter Cross Site Scripting Vulnerabilities Scoop Multiple Parameter Handling Cross Site Scripting Vulnerabilities OpenEdit Multiple Parameter Handling Cross Site Scripting Vulnerabilities Beehive Forum Multiple Parameters Cross Site Scripting Vulnerabilities Dev Hound Cross Site Scripting and Full Path Disclosure Vulnerabilities SCOOP! Multiple Parameter Handling Cross Site Scripting Vulnerabilities Sitekit CMS Multiple Parameter Cross Site Scripting Vulnerabilities Starphire SiteSage Search Module Cross Site Scripting Vulnerability SpearTek Search Field Handling Cross Site Scripting Vulnerability SyntaxCMS "search_query" Variable Cross Site Scripting Vulnerability Tangora Portal CMS "action" Variable Cross Site Scripting Vulnerability WANDSOFT e-SEARCH "keywords" Cross Site Scripting Vulnerability SPIP "spip_login.php3" and "spip_pass.php3" Cross Site Scripting Issue ShopEngine "EXPS" Variable Handling Cross Site Scripting Vulnerability Webglimpse "query" and "ID" Variables Cross Site Scripting Vulnerability Acuity CMS "strSearchKeywords" Parameter Cross Site Scripting Issue Allinta CMS "s" and "searchQuery" Cross Site Scripting Vulnerabilities Amaxus "change" Parameter Handling Cross Site Scripting Vulnerability Adaptive Website Framework "page" Cross Site Scripting Vulnerability Caravel CMS Multiple Parameters Cross Site Scripting Vulnerabilities Cofax "searchstring" Variable Handling Cross Site Scripting Vulnerability Colony "keywords" Variable Handling Cross Site Scripting Vulnerability Contenite "id" Parameter Handling Cross Site Scripting Vulnerability Contens "search.cfm" Multiple Parameters Cross Site Scripting Issues EPiX "query" Parameter Handling Cross Site Scripting Vulnerability Esselbach Storyteller "query" Variable Cross Site Scripting Vulnerability FarCry CMS "criteria" Variable Handling Cross Site Scripting Vulnerability FLIP "name" Parameter Handling Cross Site Scripting Vulnerability Magnolia Search Feature "query" Cross Site Scripting Vulnerability phpBB Cross Site Scripting and Full Path Disclosure Vulnerabilities Hot Banana Web Content Management Suite Cross Site Scripting Issue Atlant Pro "before" and "ct" Parameters Cross Site Scripting Vulnerability bbBoard "keys" Parameter Handling Cross Site Scripting Vulnerability Trac URL Path Parameter Handling Cross Site Scripting Vulnerability ScareCrow "forum" and "user" Parameter Cross Site Scripting Issues AtlantForum Multiple Parameters Cross Site Scripting Vulnerabilities SiteNet BBS Multiple Parameters Cross Site Scripting Vulnerabilities DCForum+ Multiple Parameters Cross Site Scripting Vulnerabilities phpXplorer "address bar" Field Cross Site Scripting Vulnerability PDEstore "product" and "cart_id" Cross Site Scripting Vulnerabilities The CITY Shop "SKey" Parameter Cross Site Scripting Vulnerability ClickCartPro "affl" Variable Handling Cross Site Scripting Vulnerability StaticStore "Search" Variable Handling Cross Site Scripting Vulnerability Zaygo HostingCart "root" Variable Cross Site Scripting Vulnerability Zaygo DomainCart "root" Variable Cross Site Scripting Vulnerability PPCal Shopping Cart "ppcal.cgi" Cross Site Scripting Vulnerabilities Ectools Onlineshop "cart.cgi" Cross Site Scripting Vulnerabilities CommerceSQL "keywords" Parameter Cross Site Scripting Vulnerability ProjectForum "fwd" and "originalpageid" Cross Site Scripting Issues Absolute Image Gallery XE "text" Cross Site Scripting Vulnerability Alkacon OpenCms "username" Field Cross Site Scripting Vulnerability ECW-Cart Multiple Parameters Cross Site Scripting Vulnerabilities CKGold "keywords" Parameter Cross Site Scripting Vulnerability Mantis "target_field" Parameter Cross Site Scripting Vulnerability MySQL Auction "keyword" Parameter Cross Site Scripting Vulnerability PHP JackKnife Gallery System "sKeywords" Cross Site Scripting Issue WHMCompleteSolution "search" Cross Site Scripting Vulnerability Link Up Gold "link" and "phrase" Cross Site Scripting Vulnerabilities VCD-db "batch" and "title" Parameters Cross Site Scripting Vulnerabilities WikkaWiki "phrase" Parameter Cross Site Scripting Vulnerability EveryAuction "searchstring" Variable Cross Site Scripting Vulnerability Magic Book Professional "StartRow" Cross Site Scripting Vulnerability Mnemo Notepad Name and Note Data Cross Site Scripting Vulnerability Kronolith Calendar Name and Event Data Cross Site Scripting Issue Horde Multiple Templates Unspecified Cross Site Scripting Vulnerability Nag Tasklist Name and Task Data Cross Site Scripting Vulnerability Turba Address Book Name and Contact Cross Site Scripting Vulnerability Milliscripts "domainname" Parameter Cross Site Scripting Vulnerability UseBB "SERVER[PHP_SELF]" Variable Cross Site Scripting Vulnerability CA CleverPath Portal Login Page Cross Site Scripting Vulnerability PerlCal "p0" Parameter Handling Cross Site Scripting Vulnerability CF_Nuke Directory Traversal and Cross Site Scripting Vulnerabilities Ideal BB.NET Multiple Parameter Cross Site Scripting Vulnerabilities RainWorx rwAuction Pro "searchtxt" Cross Site Scripting Vulnerability XcPhotoAlbum "SearchFor" Parameter Cross Site Scripting Vulnerability XcClassified "SearchFor" Parameter Cross Site Scripting Vulnerability NetAuctionHelp "search.asp" Cross Site Scripting Vulnerabilities IISWorks ASP Knowledge Base "kb.asp" Cross Site Scripting Issue coWiki "q" Parameter Handling Cross Site Scripting Vulnerability DUware DUportal "result" Parameter Cross Site Scripting Vulnerability phpMyAdmin Multiple Scripts Cross Site Scripting Vulnerabilities Horde IMP Attachments Handling Cross Site Scripting Vulnerabilities SiteBeater News System "sKeywords" Cross Site Scripting Vulnerability SiteBeater Online MP3 and Music Catalog Cross Site Scripting Vulnerability Solupress News "keywords" Parameter Cross Site Scripting Vulnerability MyTemplateSite "q" Parameter Cross Site Scripting Vulnerability FileLister "searchwhat" Parameter Cross Site Scripting Vulnerability Amazon Search Directory "search.cgi" Cross Site Scripting Vulnerability Hot Links Pro "search" Parameter Cross Site Scripting Vulnerability Hot Links SQL "search" Parameter Cross Site Scripting Vulnerability Warm Links "search" Parameter Cross Site Scripting Vulnerability 1-Search "q" Parameter Handling Cross Site Scripting Vulnerability Easy Search System "search.cgi" Cross Site Scripting Vulnerability KeyWord Frequency Counter "url" Cross Site Scripting Vulnerability Java Search Engine "q" Parameter Cross Site Scripting Vulnerability Atlassian Confluence "searchQuery" Cross Site Scripting Vulnerability Interspire FastFind "query" Parameter Cross Site Scripting Vulnerability QualityEBiz Quality PPC "REQ" Cross Site Scripting Vulnerability Citrix MetaFrame Secure Access Manager Cross Site Scripting Issue Gallery Directory Traversal and Cross Site Scripting Vulnerabilities Drupal Cross Site Scripting and Security Bypass Vulnerabilities Extreme Search Corporate Edition "search" Cross Site Scripting Issue GhostScripter Amazon Shop "query" Cross Site Scripting Vulnerability PHP Web Statistik Cross Site Scripting and Denial of Service Issues FreeWebStat Script Multiple Variable Cross Site Scripting Vulnerabilities Cisco IOS HTTP Server HTML Injection and Cross Site Scripting Issues RevenuePilot Search Engine Script "REQ" Cross Site Scripting Issue Google API Search Engine Script "REQ" Cross Site Scripting Vulnerability SearchFeed Search Engine Script "REQ" Cross Site Scripting Issue SmartPPC Pro "username" Parameter Cross Site Scripting Vulnerability Online Knowledge Base System (OKBSYS) Cross Site Scripting Issue Online Attendance System (OASYS) Cross Site Scripting Vulnerability blogBuddies Multiple Parameters Handling Cross Site Scripting Issues HydroBB "s" Parameter Handling Cross Site Scripting Vulnerabilities sCssBoard "search_term" Parameter Cross Site Scripting Vulnerability SupportPRO SupportDesk Ticket Cross Site Scripting Vulnerability kPlaylist "searchfor" Parameter Cross Site Scripting Vulnerability Advanced Poll "popup.php" Parameter Cross Site Scripting Vulnerability Struts Error Messages Handling Cross Site Scripting Vulnerability PmWiki Search Module "q" Parameter Cross Site Scripting Vulnerability PHP-Post Multiple Parameter Handling Cross Site Scripting Issues VHCS Cross Site Scripting and Domain Alias Hijacking Vulnerabilities Horde Application Framework MIME Viewers Cross Site Scripting Issue phpMyFAQ Parameters Handling Cross Site Scripting Vulnerabilities Google Mini Search Appliance Cross Site Scripting and Code Execution AMAX Winmail Server Multiple Cross Site Scripting Vulnerabilities VP-ASP Shopping Cart "UserName" Cross Site Scripting Vulnerability XMB Forum Cross Site Scripting and Full Path Disclosure Vulnerabilities Hitachi Products Denial of Service and Cross Site Scripting Issues LiteSpeed Web Server "m" Parameter Cross Site Scripting Vulnerability AudienceView "TSerrorMessage" Cross Site Scripting Vulnerability PHP GEN Multiple Scripts Unspecified Cross Site Scripting Vulnerabilities phpwcms Directory Traversal and Cross Site Scripting Vulnerabilities EKINboard "id" and "titles" Cross Site Scripting Vulnerabilities MyBulletinBoard Cross Site Scripting and Security Bypass Issues Horde "Notification_Listener::getMessage" Cross Site Scripting Issue phpSysInfo Directory Traversal and Cross Site Scripting Vulnerabilities TikiWiki Cross Site Scripting and Full Path Disclosure Vulnerabilities Antville "notfound.skin" Error Document Cross Site Scripting Issue SAP Web Application Server Multiple Cross Site Scripting Vulnerabilities XMB "username" Parameter Handling Cross Site Scripting Vulnerability Spymac Web OS Blogs and Notes Cross Site Scripting Vulnerabilities PunBB Cross Site Scripting and Information Disclosure Vulnerabilities cPanel Entropy Chat Message Handling Cross Site Scripting Vulnerability Sambar Server "proxy.asp" Script Cross Site Scripting Vulnerability eyeOS Cross Site Scripting and Information Disclosure Vulnerabilities Elite Forum "Reply" Message Handling Cross Site Scripting Vulnerability Snitz Forums 2000 "type" Parameter Cross Site Scripting Vulnerability ASP Fast Forum "error" Parameter Cross Site Scripting Vulnerability GNUMP3d Directory Traversal and Cross Site Scripting Vulnerabilities Search Enhanced module for PHP-Nuke Cross Site Scripting Issue RSA ACE/Agent for Web "image" Cross Site Scripting Vulnerability ar-blog Cross Site Scripting and Authentication Bypass Vulnerabilities PHP-Fusion "news_body" Parameter Cross Site Scripting Vulnerability FlatNuke Directory Traversal and Cross Site Scripting Vulnerabilities phpMyAdmin Directory Traversal and Cross Site Scripting Vulnerabilities Chipmunk Forum "forumID" Parameter Cross Site Scripting Vulnerability Chipmunk Directory "entryID" Parameter Cross Site Scripting Vulnerability Chipmunk Topsites "ID" Parameter Cross Site Scripting Vulnerability TikiWiki Unspecified Parameters Cross Site Scripting Vulnerability ManageEngine NetFlow Analyzer "grDisp" Cross Site Scripting Issue MySource File Inclusion and Cross Site Scripting Vulnerabilities ZeroBlog "threadID" Parameter Cross Site Scripting Vulnerability Tellme Cross Site Scripting and Security Bypass Vulnerabilities MediaWiki HTML Inline Style Attributes Cross Site Scripting Issue SquirrelMail Address Add Plugin "first" Cross Site Scripting Vulnerability CJ Web2Mail Multiple Parameters Cross Site Scripting Vulnerability CJ LinkOut "123" Parameter Handling Cross Site Scripting Vulnerability CJ Tag Board Multiple Parameters Cross Site Scripting Vulnerability Riverdark RSS Syndicator for IPB Cross Site Scripting Vulnerability PunBB Cross Site Scripting and Code Inclusion Vulnerabilities PerlDiver "module" Parameter Cross Site Scripting Vulnerability IBM Rational ClearQuest XML Style Sheets Cross Site Scripting Issue MIVA Merchant "merchant.mvc" Cross Site Scripting Vulnerability IBM Lotus Domino "BaseTarget" and "Src" Cross Site Scripting Issue WhatsUp Gold Cross Site Scripting and Source Code Disclosure Issues Land Down Under "events.php" Cross Site Scripting Vulnerability Unclassified NewsBoard "Description" Cross Site Scripting Issue Open WebMail "openwebmail-main.pl" Cross Site Scripting Issue GuppY Cross Site Scripting and PHP Code Execution Vulnerabilities Phorum "Username" Parameter Cross Site Scripting Vulnerability gBook Multiple Unspecified Cross Site Scripting Vulnerabilities DownFile Authentication Bypass and Cross Site Scripting Issues N-Stealth Scanner "Server" Header Cross Site Scripting Vulnerability Nikto Web Scanner "Server" Header Cross Site Scripting Vulnerability FlatNuke Directory Traversal and Cross Site Scripting Vulnerabilities Looking Glass Remote Command Execution and Cross Site Scripting phpMyAdmin "cookie.auth.lib.php" and "error.php" Cross Site Scripting SqWebMail HTML Email Processing Cross Site Scripting Vulnerability Courrier HTML Email Processing Cross Site Scripting Vulnerability Gallery EXIF Data Cross Site Scripting and Script Insertion Vulnerability phpGraphy EXIF Data Cross Site Scripting and Script Insertion Issue YaPig EXIF Data Cross Site Scripting and Script Insertion Vulnerability PhotoPost EXIF Data Cross Site Scripting and Script Insertion Issue Coppermine Photo Gallery EXIF Data Cross Site Scripting Issue Bbcaffe "email" Parameter Cross Site Scripting Vulnerability Emefa Guestbook "sign.asp" Cross Site Scripting Vulnerability My Image Gallery Multiple Cross Site Scripting Vulnerabilities PHPOpenChat Multiple Scripts Cross Site Scripting Vulnerabilities FunkBoard Multiple Scripts Cross Site Scripting Vulnerabilities Chipmunk Forum "fontcolor" Cross Site Scripting Vulnerability Invision Power Board Attachments Cross Site Scripting Issue e107 HTML and Text Attachments Cross Site Scripting Vulnerability LogiCampus Helpdesk Unspecified Cross Site Scripting Vulnerability Fusebox "fuseaction" Parameter Cross Site Scripting Vulnerability Web Content Management Cross Site Scripting and Security Bypass HP System Management Homepage Cross Site Scripting and DoS Easy PX 41 Cross Site Scripting and Database Disclosure Issues @Mail Multiple Scripts Cross Site Scripting Vulnerabilities PNG Counter "demo.php" Cross Site Scripting Vulnerability phpBook "guestbook.php" Cross Site Scripting Vulnerability Clever Copy "search" Cross Site Scripting Vulnerabilities Pyrox Search "newsearch.php" Cross Site Scripting Vulnerability PHPSiteSearch "search.php" Cross Site Scripting Vulnerability CuteNews "search.php" Cross Site Scripting Vulnerability e107 "BBCode" Processing Cross Site Scripting Vulnerability DVBBS "action" Parameter Cross Site Scripting Vulnerability PHPPageProtect "username" Cross Site Scripting Vulnerability SEO-Board "smilies_popup.php" Cross Site Scripting Vulnerability Novell GroupWise WebAccess Cross Site Scripting Vulnerability phpBB "BBCode" Processing Cross Site Scripting Vulnerability PHPCounter "EpochPrefix" Cross Site Scripting Vulnerability SquirrelMail "POST" Cross Site Scripting and Security Bypass Netegrity SiteMinder Multiple Cross Site Scripting Vulnerabilities MediaWiki Page Move Template Cross Site Scripting Vulnerability QuickBlogger Comments Cross Site Scripting Vulnerability Gossamer Threads Links Cross Site Scripting Vulnerabilities AutoIndex PHP Script "search" Cross Site Scripting Issue Hosting Controller "error.asp" Cross Site Scripting Vulnerability PHP-Fusion Cross Site Scripting and Security Bypass Vulnerabilities Mensajeitor "IP" Parameter Cross Site Scripting and HTML Injection cPanel "user" Parameter Cross Site Scripting Vulnerability i-Gallery Directory Traversal and Cross Site Scripting Vulnerability SquirrelMail Multiple Cross Site Scripting Vulnerabilities ATutor Multiple Parameter Cross Site Scripting Vulnerabilities Annuaire 1Two Multiple Cross Site Scripting Vulnerabilities Microsoft Exchange Server Cross Site Scripting Issue (MS05-029) FlatNuke Cross Site Scripting and PHP File Inclusion Vulnerabilities NikoSoft WebMail Unspecified Cross Site Scripting Vulnerability JAWS "term" Parameter Cross Site Scripting Vulnerability BookReview Cross Site Scripting and HTML Injection Vulnerabilities BEA WebLogic Unspecified Cross Site Scripting Vulnerabilities Blue Coat Reporter Cross Site Scripting and Privilege Escalation NetWin SurgeMail Multiple Cross Site Scripting Vulnerabilities Macromedia ColdFusion MX Error Page Cross Site Scripting Issue PwsPHP Multiple Cross Site Scripting Vulnerabilities Survivor Unspecified Cross Site Scripting Vulnerability Amazon Webstore Multiple Cross Site Scripting Vulnerabilities phpMyVisites "index.php" Cross Site Scripting Vulnerability Woltlab Burning Board "thread.php" Cross Site Scripting Vulnerability Multiple Horde Products Parent Frame Page Title Cross Site Scripting PHPLabs proFile "index.php" Cross Site Scripting Vulnerabilities Iatek PortalApp Multiple Cross Site Scripting Vulnerabilities RSA Authentication Agent For Web Cross Site Scripting Vulnerability Pinnacle Cart "pg" Parameter Handling Cross Site Scripting Vulnerability ModernBill PHP File Inclusion and Cross Site Scripting Vulnerabilities PHPNuke Multiple Modules Cross Site Scripting Vulnerabilities phpMyAdmin "convcharset" Cross Site Scripting Vulnerability AlstraSoft EPay Pro Cross Site Scripting and PHP File Inclusion Horde Application Framework Cross Site Scripting Vulnerability ArticleLive "newcomment" Cross Site Scripting Vulnerability Kayako ESupport "index.php" Cross Site Scripting Vulnerabilities PHP-Fusion "setuser.php" Cross Site Scripting Vulnerability ACS Blog "Search.asp" Remote Cross Site Scripting Vulnerability ASPjar Tell-a-Friend Remote Cross Site Scripting Vulnerability PABox Post Icon Cross Site Scripting and HTML Injection PHPAdsNew "adframe.php" Cross Site Scripting Vulnerability auraCMS Cross Site Scripting and HTML Injection Vulnerabilities phpMyAdmin Cross Site Scripting and File Inclusion Vulnerabilities PBLang Forum Multiple Cross Site Scripting Vulnerabilities Invision Power Board SML Codes Cross Site Scripting Vulnerability BibORB Directory Traversal and Cross Site Scripting Vulnerabilities Microsoft ASP.NET Multiple Cross Site Scripting Vulnerabilities Kayako ESupport Cross Site Scripting Vulnerability osCommerce "Contact_us" Cross Site Scripting Vulnerability MercuryBoard Message Board Cross Site Scripting Vulnerability PHP-Arena paNews Remote Cross Site Scripting Vulnerability PhpNuke Cross Site Scripting and Path disclosure Vulnerabilities htdig Input Validation and Cross Site Scripting Vulnerability WebAdmin "useredit_account" Security Bypass and Cross Site Scripting MercuryBoard Cross Site Scripting and Path Disclosure Vulnerabilities SquirrelMail Remote File Inclusion and Cross Site Scripting Vulnerabilities 100 last CVE   CVE-2016-2078 CVE-2015-8760 CVE-2015-8759 CVE-2015-8758 CVE-2015-8757 CVE-2015-8756 CVE-2015-8755 CVE-2014-8917 CVE-2012-5883 CVE-2012-5882 CVE-2012-5881 CVE-2012-2904 CVE-2011-1422 CVE-2009-4956 CVE-2009-4955 CVE-2009-4954 CVE-2009-4953 CVE-2009-4952 CVE-2009-4951 CVE-2009-4950 CVE-2009-4949 CVE-2009-4948 CVE-2009-4888 CVE-2009-2454 CVE-2009-2212 CVE-2009-2211 CVE-2009-1581 CVE-2009-1580 CVE-2009-1579 CVE-2009-1578 CVE-2009-1576 CVE-2009-1575 CVE-2009-1561 CVE-2009-1560 CVE-2009-1559 CVE-2009-1558 CVE-2009-1557 CVE-2009-1556 CVE-2009-1555 CVE-2009-1507 CVE-2009-1501 CVE-2009-1428 CVE-2009-1357 CVE-2009-1344 CVE-2009-1343 CVE-2009-1342 CVE-2009-1334 CVE-2009-1294 CVE-2009-1293 CVE-2009-1290 CVE-2009-1289 CVE-2009-1288 CVE-2009-1285 CVE-2009-1213 CVE-2009-1030 CVE-2009-0796 CVE-2009-0664 CVE-2009-0548 CVE-2009-0471 CVE-2009-0470 CVE-2009-0307 CVE-2009-0237 CVE-2009-0077 CVE-2009-0064 CVE-2009-0063 CVE-2009-0039 CVE-2009-0038 CVE-2008-5518 CVE-2008-4119 CVE-2008-3516 CVE-2008-3515 CVE-2008-2181 CVE-2008-2180 CVE-2008-2047 CVE-2008-1036 CVE-2008-0809 CVE-2008-0808 CVE-2007-6299 CVE-2007-3212 CVE-2007-3198 CVE-2007-3156 CVE-2007-3120 CVE-2007-3067 CVE-2007-3064 CVE-2007-3063 CVE-2007-3060 CVE-2007-3055 CVE-2007-2963 CVE-2007-2916 CVE-2007-2907 CVE-2007-2904 CVE-2007-2902 CVE-2007-2901 CVE-2007-2880 CVE-2007-2832 CVE-2007-2808 CVE-2007-2804 CVE-2007-2790 CVE-2007-2732 CVE-2007-2731    Risk level  Moderate