osCommerce SQL Injection && DoS && Cross Site Scripting

Grok Headline matches for osCommerce SQL Injection && DoS && Cross Site Scripting

Vulns: TurboTrafficTrader C Multiple
Cross-Site Scripting and HTML Injection
Vulnerabilities

Vulns: TurboTrafficTrader C Multiple
Cross-Site Scripting and HTML Injection
Vulnerabilities 05/20/2004 05:40 PM
SecurityFocus May 20 2004 8:47PM GMT

STG Security Advisory: [SSA-20041220-16]
PHP source injection and cross-site
scripting vulnerabilities in ZeroBoard

STG Security Advisory: [SSA-20041220-16]
PHP source injection and cross-site
scripting vulnerabilities in ZeroBoard 12/25/2004 05:09 PM
advisory_at_stgsecurity.com (Dec 23 2004)

Trusted Site Cross Site Scripting
Elevation of Privilege in Musicmatch

Trusted Site Cross Site Scripting
Elevation of Privilege in Musicmatch 04/14/2005 10:14 PM
Posted by Hyperdose Security, Apr 14 2005

The Cross Site Scripting FAQ

The Cross Site Scripting FAQ 06/06/2002 06:01 AM
Websites today are more complex than ever, containing a lot of dynamic content making the experience for the user more enjoyable. Dynamic content is achieved through the use of web applications which can deliver different output to a user depending on their settings and needs.

Dynamic websites have a threat that static websites don't, called "Cross Site Scripting" (or XSS dubbed by other security professionals). Currently small informational tidbits about Cross Site Scripting holes exist but none really explain them to an average person or administrator. This FAQ was written to provide a better understanding of this emerging threat, and to give guidance on detection and prevention.

"tri" Link thx to http://phpdeveloper.org/

"zeldman.b3"

Cross Site Scripting in VP-ASP

Cross Site Scripting in VP-ASP 12/05/2003 01:53 PM
Xnuxer Research Laboratory (Dec 05 2003)

php(Reactor) Cross-Site Scripting

php(Reactor) Cross-Site Scripting 06/10/2002 10:25 AM

Re: Cross-Site Scripting (XSS) in
Php-Nuke 7.1.0

Re: Cross-Site Scripting (XSS) in
Php-Nuke 7.1.0 08/20/2004 06:34 AM
Anthony Petito (Aug 18 2004)

Cross-Site Scripting (XSS) in Php-Nuke
7.1.0

Cross-Site Scripting (XSS) in Php-Nuke
7.1.0 08/17/2004 07:27 PM
Abu Lafy (Aug 17 2004)

PHP Classifieds Cross-site Scripting

PHP Classifieds Cross-site Scripting 06/19/2002 08:56 AM

[bWM#017] Cross-Site-Scripting @ PHPKIT

[bWM#017] Cross-Site-Scripting @ PHPKIT 11/06/2003 01:30 PM
ben moeckel (Nov 05 2003)

php(Reactor) Cross-Site Scripting

php(Reactor) Cross-Site Scripting 06/10/2002 10:25 AM

phpMyDirectory 10.1.3-rel Cross site
scripting

phpMyDirectory 10.1.3-rel Cross site
scripting 03/25/2005 03:01 PM
mircia mircia (Mar 25 2005)

WoltLab BB Cross-Site Scripting

WoltLab BB Cross-Site Scripting 05/24/2002 11:27 AM

PostCalendar Cross-Site Scripting

PostCalendar Cross-Site Scripting 05/24/2002 11:27 AM

mcNews Cross-Site Scripting

mcNews Cross-Site Scripting 05/29/2002 02:26 PM

phpBB Cross-Site Scripting

phpBB Cross-Site Scripting 06/03/2002 12:05 PM

Cross-Site Scripting CuteNews

Cross-Site Scripting CuteNews 06/28/2004 01:06 PM
DarkBicho (Jun 27 2004)

Cross-Site Scripting and PHP Babes

Cross-Site Scripting and PHP Babes 06/05/2002 07:44 AM

Re: Mailman: cross-site scripting bug

Re: Mailman: cross-site scripting bug 01/01/2004 04:31 AM
Axel Beckert - ecos gmbh (Jan 27 2003)

Cross Site Scripting in Moodle < 1.3

Cross Site Scripting in Moodle < 1.3 04/30/2004 03:07 PM
Bartek Nowotarski (Apr 30 2004)

Cross-Site Scripting (XSS) in Nihuo Web
Log Analyzer

Cross-Site Scripting (XSS) in Nihuo Web
Log Analyzer 08/20/2004 11:38 PM
Audun Larsen (Aug 20 2004)

DevShed: A Quick Look at Cross Site
Scripting

DevShed: A Quick Look at Cross Site
Scripting 01/04/2005 11:24 AM
Something that's becoming more and more of an issue with the web today is a scary little thing called "cross-site scripting". It is an, unfortunately, all too simple way for someone to figure out how to bypass certain restrictions on your site. Fortunately, DevShed has a new article that covers this topic and provides some helpful hints on how to protect you and your data.

Re: Cross-site scripting vulnerability
in SARA v<=4.2.7

Re: Cross-site scripting vulnerability
in SARA v<=4.2.7 12/18/2003 03:29 PM
toddr_at_arc.com (Dec 17 2003)

Kayako eSupport Cross Site Scripting

Kayako eSupport Cross Site Scripting 03/22/2005 05:13 PM
GulfTech Security Research (Mar 22 2005)

Liferay Cross Site Scripting Flaw

Liferay Cross Site Scripting Flaw 05/22/2004 07:59 PM
Giri, Sandeep (May 22 2004)

Re: Hotmail Cross Site Scripting
Vulnerability

Re: Hotmail Cross Site Scripting
Vulnerability 07/17/2004 01:07 PM
GreyMagic Security (Jul 17 2004)

Re: Gallery v1.3.3 Cross Site Scripting
Vulnerabillity

Re: Gallery v1.3.3 Cross Site Scripting
Vulnerabillity 12/30/2003 07:37 PM
Bharat Mediratta (Dec 30 2003)

Hotmail Cross Site Scripting
Vulnerability

Hotmail Cross Site Scripting
Vulnerability 07/17/2004 08:20 AM
Paul (Jul 15 2004)

phpMyAdmin Cross-site Scripting
Vulnerability

phpMyAdmin Cross-site Scripting
Vulnerability 04/05/2005 01:35 AM
Oriol Torrent Santiago

WebCT: Cross Site Scripting
Vulnerability

WebCT: Cross Site Scripting
Vulnerability 05/17/2004 01:39 PM
spiffomatic 64 (May 16 2004)

WebcamXP v1.06.945 Cross Site Scripting
Vulnerabillity

WebcamXP v1.06.945 Cross Site Scripting
Vulnerabillity 01/22/2004 02:58 AM
Rafel Ivgi, The-Insider (Jan 20 2004)

Gallery v1.3.3 Cross Site Scripting
Vulnerabillity

Gallery v1.3.3 Cross Site Scripting
Vulnerabillity 12/30/2003 02:58 PM
The-Insider (Dec 30 2003)

NOCC Webmail Cross-Site Scripting

NOCC Webmail Cross-Site Scripting 05/24/2002 11:27 AM

Cross-site scripting vulnerability in
SARA v<=4.2.7

Cross-site scripting vulnerability in
SARA v<=4.2.7 12/17/2003 04:56 PM
Thomas M. Payerle (Dec 17 2003)

Geeklog Web Portal Cross-Site Scripting

Geeklog Web Portal Cross-Site Scripting 06/13/2002 08:59 AM

Zaep AntiSpam Cross Site Scripting

Zaep AntiSpam Cross Site Scripting 04/19/2004 07:07 PM
Aviram Jenik (Apr 19 2004)

Cross Site Scripting Vulnerability in
Sympa

Cross Site Scripting Vulnerability in
Sympa 08/21/2004 06:57 PM
Jose Antonio (Aug 20 2004)

[SNS Advisory No.73] Usermin Cross-site
Scripting Vulnerability

[SNS Advisory No.73] Usermin Cross-site
Scripting Vulnerability 06/21/2004 07:33 AM
snsadv (Jun 11 2004)

Cross Site Scripting in VBulletin forum
software

Cross Site Scripting in VBulletin forum
software 02/12/2004 06:15 PM
Jamie Fisher (Feb 12 2004)
Grok Description matches for osCommerce SQL Injection && DoS && Cross Site Scripting
GrokA matches for osCommerce SQL Injection && DoS && Cross Site Scripting

osCommerce SQL Injection && DoS && Cross Site Scripting

The following phrases have been identified by the grok system as matching this entry: