The host is installed with Microsoft Infopath 2010, SharePoint Server 2010, SharePoint Foundation 2010, Office Web Apps 2010 or Groove Server 2010 and is prone to elevation of privilege vulnerability. A flaw is present in the applications, which is caused by the way that HTML strings are sanitized. Successful exploitation allows attackers to perform cross-site scripting attacks on affected systems ...
The host is installed with Microsoft Publisher 2003 and is prone to incorrect NULL value handling vulnerability. A flaw is present in the application, which fails to properly handle NULL values while parsing specially crafted Publisher files. Successful exploitation allows attackers to execute arbitrary code.
The host is installed with IBM Rational ClearQuest 7.1.x before 7.1.2.10 and is prone to cross-site scripting (XSS) vulnerability. A flaw is present in the application, which fails to handle a crafted URL. Successful exploitation allows remote attackers to inject arbitrary web script or HTML.
The host is installed with Splunk 4.3.0 through 4.3.5 and is prone to cross-site scripting (XSS) vulnerability. A flaw is present in the application, which fails to handle maliciously crafted link. Successful exploitation allows attackers to inject arbitrary web script or HTML via unspecified vectors.
The host is installed with Apple Safari before 3.1 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to handle a crafted URL. Successful exploitation could allow attackers to inject arbitrary web script.
The host is installed with Apple Safari before 3.1 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to handle a crafted web page. Successful exploitation could allow attackers to execute javascript in the context of another site.
The host is installed with Apple Safari before 3.1 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to handle unknown vectors related to sites that set the document.domain property or have the same document.domain. Successful exploitation could allow attackers to inject arbitrary web script or HTML.
The host is installed with Apple Safari before 3.1 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to handle unknown vectors related to the Web Inspector. Successful exploitation could allow attackers to inject arbitrary web script or HTML.
The host is installed with Apple Safari before 3.1 and is prone to a cross site scripting vulnerability. A flaw is present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to change the security context of a webpage to the caller's context.
The host is installed with Apple Safari before 3.1 and is prone to a cross site scripting vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web page. Successful exploitation allows remote attackers to conduct cross-site scripting (XSS) attacks.