|
2014-02-25
|
|
Technicolor TC7200 - Credentials Disclosure
|
12 |
WEB
|
Jeroen - IT Nerdbox
|
|
2008-06-10
|
|
Hot Links SQL-PHP - Multiple Cross-Site Scripting Vulnerabilities
|
10 |
WEB
|
sl4xUz
|
|
2008-06-10
|
|
Tornado Knowledge Retrieval System 4.2 - 'p' Cross-Site Scripting
|
10 |
WEB
|
Unohope
|
|
2008-06-09
|
|
Real Estate Website 1.0 - 'location.asp' Multiple Input Validation Vulnerabilities
|
10 |
WEB
|
JosS
|
|
2008-06-06
|
|
SchoolCenter 7.5 - Multiple Cross-Site Scripting Vulnerabilities
|
14 |
WEB
|
Doz
|
|
2008-06-05
|
|
SamTodo 1.1 - 'completed' Cross-Site Scripting
|
12 |
WEB
|
David Sopas Ferreira
|
|
2008-06-05
|
|
SamTodo 1.1 - 'tid' Cross-Site Scripting
|
9 |
WEB
|
David Sopas Ferreira
|
|
2008-06-04
|
|
PHP Address Book 3.1.5 - Multiple SQL Injections / Cross-Site Scripting Vulnerabilities
|
11 |
WEB
|
CWH Underground
|
|
2008-06-04
|
|
WyMIEN PHP 1.0 - 'index.php' Cross-Site Scripting
|
11 |
WEB
|
ZoRLu
|
|
2014-02-24
|
|
Ganib Project Management 2.3 - SQL Injection
|
10 |
WEB
|
drone
|
|
2008-06-02
|
|
Te Ecard - 'id' Multiple SQL Injections
|
11 |
WEB
|
Ugurcan Engyn
|
|
2008-06-02
|
|
Joomla! / Mambo Component Joo!BB 0.5.9 - 'forum' SQL Injection
|
9 |
WEB
|
His0k4
|
|
2008-06-02
|
|
i-pos StoreFront 1.3 - 'index.asp' SQL Injection
|
12 |
WEB
|
KnocKout
|
|
2008-06-02
|
|
OtomiGenX 2.2 - 'userAccount' SQL Injection
|
12 |
WEB
|
hadihadi
|
|
2008-05-30
|
|
CMS Easyway - 'mid' SQL Injection
|
11 |
WEB
|
Lidloses_Auge
|
|
2008-05-31
|
|
TorrentTrader Classic 1.x - 'scrape.php' SQL Injection
|
11 |
WEB
|
Charles Vaughn
|
|
2008-05-30
|
|
DotNetNuke 4.8.3 - 'Default.aspx' Cross-Site Scripting
|
12 |
WEB
|
AmnPardaz Security Research Team
|
|
2008-05-29
|
|
dvbbs 8.2 - 'login.asp' Multiple SQL Injections
|
12 |
WEB
|
hackerbinhphuoc
|
|
2008-05-29
|
|
Proje ASP Portal 2.0 - 'id' Multiple SQL Injections
|
11 |
WEB
|
Ugurcan Engin
|
|
2008-05-29
|
|
JustPORTAL 1.0 - 'site' Multiple SQL Injections
|
11 |
WEB
|
Ugurcan Engin
|
|
2008-05-28
|
|
Calcium 3.10/4.0.4 - 'Calcium40.pl' Cross-Site Scripting
|
10 |
WEB
|
Marvin Simkin
|
|
2008-05-28
|
|
Joomla! / Mambo Component Artists - 'idgalery' SQL Injection
|
10 |
WEB
|
Cr@zy_King
|
|
2008-05-27
|
|
Tr Script News 2.1 - 'news.php' Cross-Site Scripting
|
11 |
WEB
|
ZoRLu
|
|
2008-05-26
|
|
The Campus Request Repairs System 1.2 - 'sentout.asp' Unauthorized Access
|
10 |
WEB
|
Unohope
|
|
2008-05-26
|
|
Campus Bulletin Board 3.4 - '/post3/book.asp?review' SQL Injection
|
12 |
WEB
|
Unohope
|
|
2008-05-26
|
|
Campus Bulletin Board 3.4 - '/post3/view.asp?id' SQL Injection
|
24 |
WEB
|
Unohope
|
|
2008-05-26
|
|
Campus Bulletin Board 3.4 - '/post3/book.asp?review' Cross-Site Scripting
|
11 |
WEB
|
Unohope
|
|
2008-05-26
|
|
ClassSystem 2.0/2.3 - 'class/ApplyDB.php' Unrestricted Arbitrary File Upload / Arbitrary Code Execut
|
11 |
WEB
|
Unohope
|
|
2008-05-26
|
|
ClassSystem 2.0/2.3 - 'MessageReply.php?teacher_id' SQL Injection
|
11 |
WEB
|
Unohope
|
|
2008-05-26
|
|
ClassSystem 2.0/2.3 - 'HomepageMain.php?teacher_id' SQL Injection
|
11 |
WEB
|
Unohope
|
|
2008-05-26
|
|
ClassSystem 2.0/2.3 - 'HomepageTop.php?teacher_id' SQL Injection
|
9 |
WEB
|
Unohope
|
|
2008-05-26
|
|
PHPFix 2.0 - '/auth/00_pass.php?account' SQL Injection
|
11 |
WEB
|
Unohope
|
|
2008-05-26
|
|
PHPFix 2.0 - '/fix/browse.php?kind' SQL Injection
|
11 |
WEB
|
Unohope
|
|
2008-05-26
|
|
Excuse Online - 'pwd.asp' SQL Injection
|
7 |
WEB
|
Unohope
|
|
2008-05-26
|
|
AbleSpace 1.0 - 'adv_cat.php' SQL Injection
|
10 |
WEB
|
Jasbi
|
|
2008-05-26
|
|
miniCWB 2.1.1 - 'connector.php' Multiple Cross-Site Scripting Vulnerabilities
|
9 |
WEB
|
CWH Underground
|
|
2008-05-24
|
|
Horde Multiple Product - 'day.php?Timestamp' Cross-Site Scripting
|
9 |
WEB
|
Ivan Sanchez
|
|
2008-05-24
|
|
Horde Multiple Product - 'week.php?Timestamp' Cross-Site Scripting
|
10 |
WEB
|
Ivan Sanchez
|
|
2008-05-24
|
|
Horde Multiple Product - 'workweek.php?Timestamp' Cross-Site Scripting
|
11 |
WEB
|
Ivan Sanchez
|
|
2008-05-24
|
|
DZOIC Handshakes 3.5 - 'fname' SQL Injection
|
9 |
WEB
|
Ali Jasbi
|
|
2008-05-24
|
|
WordPress Plugin Upload File - 'wp-uploadfile.php' SQL Injection
|
11 |
WEB
|
eserg.ru
|
|
2008-05-22
|
|
Apple Safari Montage 3.1.3 - 'forgotPW.php' Multiple Cross-Site Scripting Vulnerabilities
|
9 |
WEB
|
Omer Singer
|
|
2014-02-22
|
|
WordPress Plugin AdRotate 3.9.4 - 'clicktracker.ph?track' SQL Injection
|
10 |
WEB
|
High-Tech Bridge SA
|
|
2014-02-22
|
|
ILIAS 4.4.1 - Multiple Vulnerabilities
|
9 |
WEB
|
HauntIT
|
|
2008-05-22
|
|
AbleDating 2.4 - 'search_results.php?keyword' Cross-Site Scripting
|
9 |
WEB
|
Ali Jasbi
|
|
2008-05-22
|
|
AbleDating 2.4 - 'search_results.php?keyword' SQL Injection
|
9 |
WEB
|
Ali Jasbi
|
|
2008-05-22
|
|
BMForum 5.6 - 'bsd01header.php' Cross-Site Scripting
|
12 |
WEB
|
CWH Underground
|
|
2008-05-22
|
|
BMForum 5.6 - 'bsd01footer.php' Cross-Site Scripting
|
11 |
WEB
|
CWH Underground
|
|
2008-05-22
|
|
BMForum 5.6 - 'index.php' Cross-Site Scripting
|
12 |
WEB
|
CWH Underground
|
|
2008-05-22
|
|
phpSQLiteCMS 1 RC2 - '/cms/includes/login.inc.php' Multiple Cross-Site Scripting Vulnerabilities
|
10 |
WEB
|
CWH Underground
|
|
2008-05-22
|
|
phpSQLiteCMS 1 RC2 - '/cms/includes/header.inc.php' Multiple Cross-Site Scripting Vulnerabilities
|
12 |
WEB
|
CWH Underground
|
|
2008-05-22
|
|
PHPFreeForum 1.0 rc2 - '/part/menu.php' Multiple Cross-Site Scripting Vulnerabilities
|
11 |
WEB
|
tan_prathan
|
|
2008-05-22
|
|
PHPFreeForum 1.0 rc2 - 'error.php?message' Cross-Site Scripting
|
12 |
WEB
|
tan_prathan
|
|
2008-05-21
|
|
SAP Web Application Server 7.0 - '/sap/bc/gui/sap/its/webgui/' Cross-Site Scripting
|
10 |
WEB
|
DSecRG
|
|
2008-05-20
|
|
eCMS 0.4.2 - Multiple Vulnerabilities
|
13 |
WEB
|
hadihadi
|
|
2008-05-20
|
|
DizaynPlus Nobetci Eczane Takip 1.0 - 'ayrinti.asp' SQL Injection
|
13 |
WEB
|
U238
|
|
2008-05-20
|
|
Site Tanitimlari Scripti - Multiple SQL Injections
|
13 |
WEB
|
fahn zichler
|
|
2008-05-20
|
|
Web Slider 0.6 - 'slide' SQL Injection
|
13 |
WEB
|
fahn zichler
|
|
2008-05-20
|
|
Starsgames Control Panel 4.6.2 - 'index.php' Cross-Site Scripting
|
12 |
WEB
|
CWH Underground
|
|
2008-05-20
|
|
AppServ Open Project 2.5.10 - 'appservlang' Cross-Site Scripting
|
10 |
WEB
|
CWH Underground
|
|
2008-05-19
|
|
cPanel 11.21 - 'wwwact' Privilege Escalation
|
11 |
WEB
|
Ali Jasbi
|
|
2008-05-19
|
|
bcoos 1.0.13 - 'file' Local File Inclusion
|
12 |
WEB
|
Lostmon
|
|
2008-05-17
|
|
PHP-Nuke 'KuiraniKerim' Module - 'sid' SQL Injection
|
11 |
WEB
|
Lovebug
|
|
2008-05-16
|
|
Digital Hive 2.0 - 'base_include.php' Local File Inclusion
|
10 |
WEB
|
ZoRLu
|
|
2008-05-16
|
|
AN Guestbook 0.4 - 'send_email.php' Cross-Site Scripting
|
12 |
WEB
|
ZoRLu
|
|
2008-05-16
|
|
ACGV News 0.9.1 - 'glossaire.php?id' Cross-Site Scripting
|
10 |
WEB
|
ZoRLu
|
|
2008-05-16
|
|
ACGV News 0.9.1 - 'glossaire.php?id' SQL Injection
|
9 |
WEB
|
ZoRLu
|
|
2008-05-15
|
|
SunShop Shopping Cart 3.5.1 - 'index.php' SQL Injection
|
11 |
WEB
|
irvian
|
|
2008-05-14
|
|
philboard 0.5 - 'W1L3D4_konuya_mesaj_yaz.asp' Multiple SQL Injections
|
14 |
WEB
|
U238
|
|
2008-05-14
|
|
philboard 0.5 - 'W1L3D4_konuoku.asp?id' SQL Injection
|
12 |
WEB
|
U238
|
|
2008-05-14
|
|
philboard 0.5 - 'W1L3D4_foruma_yeni_konu_ac.asp?forumid' SQL Injection
|
12 |
WEB
|
U238
|
|
2008-08-14
|
|
Links Pile - 'link.php' SQL Injection
|
11 |
WEB
|
HaCkeR_EgY
|
|
2008-05-14
|
|
PicsEngine 1.0 - 'index.php' Cross-Site Scripting
|
12 |
WEB
|
ZoRLu
|
|
2008-05-14
|
|
Horde Turba 3.1.7 - Multiple Cross-Site Scripting Vulnerabilities
|
13 |
WEB
|
Ivan Javier Sanchez
|
|
2014-02-20
|
|
Stark CRM 1.0 - Multiple Vulnerabilities
|
13 |
WEB
|
LiquidWorm
|
|
2014-02-20
|
|
Barracuda Firewall 6.1.0.016 - Multiple Vulnerabilities
|
12 |
WEB
|
Vulnerability-Lab
|
|
2008-05-13
|
|
Kalptaru Infotech Automated Link Exchange Portal - 'linking.page.php' SQL Injection
|
12 |
WEB
|
HaCkeR_EgY
|
|
2008-05-12
|
|
phpMyAgenda 2.1 - 'infoevent.php3' Remote File Inclusion
|
9 |
WEB
|
MajnOoNxHaCkEr
|
|
2008-05-12
|
|
Fusebox 5.5.1 - 'fusebox5.php' Remote File Inclusion
|
9 |
WEB
|
MajnOoNxHaCkEr
|
|
2008-05-12
|
|
Claroline 1.7.5 - Multiple Remote File Inclusions
|
9 |
WEB
|
MajnOoNxHaCkEr
|
|
2008-05-12
|
|
IBD Micro CMS 3.5 - 'microcms-admin-login.php' Multiple SQL Injections
|
10 |
WEB
|
SkyOut
|
|
2008-05-12
|
|
CyrixMED 1.4 - 'index.php' Cross-Site Scripting
|
9 |
WEB
|
ZoRLu
|
|
2008-05-12
|
|
PHPInstantGallery 2.0 - 'image.php' Multiple Cross-Site Scripting Vulnerabilities
|
9 |
WEB
|
ZoRLu
|
|
2008-05-12
|
|
PHPInstantGallery 2.0 - 'index.php?Gallery' Cross-Site Scripting
|
9 |
WEB
|
ZoRLu
|
|
2008-05-12
|
|
AJ Classifieds - 'index.php' SQL Injection
|
8 |
WEB
|
t0pP8uZz
|
|
2008-05-09
|
|
WordPress Plugin WP Photo Album - 'photo' SQL Injection
|
10 |
WEB
|
THE_MILLER
|
|
2008-05-10
|
|
OtherLogic - 'vocourse.php' SQL Injection
|
11 |
WEB
|
Breeeeh
|
|
2008-05-10
|
|
BlogPHP 2.0 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
|
9 |
WEB
|
David Sopas Ferreira
|
|
2008-05-09
|
|
cPanel 11.x - '/scripts2/listaccts?search' Cross-Site Scripting
|
10 |
WEB
|
Matteo Carli
|
|
2008-05-09
|
|
cPanel 11.x - '/scripts2/changeip?user' Cross-Site Scripting
|
9 |
WEB
|
Matteo Carli
|
|
2008-05-09
|
|
cPanel 11.x - '/scripts2/knowlegebase?issue' Cross-Site Scripting
|
11 |
WEB
|
Matteo Carli
|
|
2014-02-19
|
|
WordPress Plugin BP Group Documents 1.2.1 - Multiple Vulnerabilities
|
11 |
WEB
|
Tom Adams
|
|
2014-02-19
|
|
Barracuda Message Archiver 650 - Persistent Cross-Site Scripting
|
12 |
WEB
|
Vulnerability-Lab
|
|
2014-02-19
|
|
D-Link DIR-615 vE4 Firmware 5.10 - Cross-Site Request Forgery
|
11 |
WEB
|
Dhruv Shah
|
|
2014-02-19
|
|
Lotus Sametime 8.5.1 - Password Disclosure
|
11 |
WEB
|
Adriano Marcio Monteiro
|
|
2008-05-08
|
|
SAP Internet Transaction Server 6200.1017.50954.0 - Bu query String JavaScript Splicing Cross-Site S
|
11 |
WEB
|
Portcullis
|
|
2008-05-08
|
|
SAP Internet Transaction Server 6200.1017.50954.0 Bu (WGate) - 'wgate.dll?~service' Cross-Site Scrip
|
12 |
WEB
|
Portcullis
|
|
2008-05-07
|
|
Tux CMS 0.1 - Multiple Cross-Site Scripting Vulnerabilities
|
9 |
WEB
|
Hadi Kiamarsi
|
|
2008-05-07
|
|
Forum Rank System 6 - 'settings['locale']' Multiple Local File Inclusions
|
10 |
WEB
|
Matrix86
|
|
2008-05-06
|
|
Sphider 1.3.4 - 'query' Cross-Site Scripting
|
9 |
WEB
|
Christian Holler
|
|
2008-05-06
|
|
QTO File Manager 1.0 - 'qtofm.php' Arbitrary File Upload
|
9 |
WEB
|
CrAzY CrAcKeR
|
|
2008-05-06
|
|
RunCMS 1.6.1 - 'pm.class.php' Multiple SQL Injections
|
12 |
WEB
|
The:Paradox
|
|
2008-05-05
|
|
iGaming CMS 1.5 - 'poll_vote.php' SQL Injection
|
13 |
WEB
|
Cod3rZ
|
|
2008-05-05
|
|
BatmanPorTaL - 'profil.asp?id' SQL Injection
|
11 |
WEB
|
U238
|
|
2008-05-05
|
|
BatmanPorTaL - 'uyeadmin.asp?id' SQL Injection
|
9 |
WEB
|
U238
|
|
2008-05-05
|
|
osCommerce 2.1/2.2 - Multiple Cross-Site Scripting Vulnerabilities
|
9 |
WEB
|
David Sopas Ferreira
|
|
2008-05-05
|
|
Maian Uploader 4.0 - 'header.php' Cross-Site Scripting
|
9 |
WEB
|
Khashayar Fereidani
|
|
2008-05-05
|
|
Maian Uploader 4.0 - 'index.php' Cross-Site Scripting
|
11 |
WEB
|
Khashayar Fereidani
|
|
2008-05-05
|
|
Maian Uploader 4.0 - 'keywords' Cross-Site Scripting
|
12 |
WEB
|
Khashayar Fereidani
|
|
2008-05-05
|
|
LifeType 1.2.8 - 'admin.php' Cross-Site Scripting
|
10 |
WEB
|
Khashayar Fereidani
|
|
2008-05-05
|
|
TLM CMS 1.1 - 'index.php' Multiple SQL Injections
|
10 |
WEB
|
ZoRLu
|
|
2014-02-18
|
|
Open Web Analytics 1.5.4 - 'owa_email_address' SQL Injection
|
10 |
WEB
|
Dana James Traversie
|
|
2014-02-18
|
|
Concrete5 CMS 5.6.2.1 - 'index.php?cID' SQL Injection
|
12 |
WEB
|
killall-9
|
|
2014-02-18
|
|
Pina CMS - Multiple Vulnerabilities
|
12 |
WEB
|
Shadman Tanjim
|
|
2014-02-18
|
|
My PDF Creator & DE DM 1.4 iOS - Multiple Vulnerabilities
|
10 |
WEB
|
Vulnerability-Lab
|
|
2008-05-05
|
|
GEDCOM_TO_MYSQL - '/PHP/info.php' Multiple Cross-Site Scripting Vulnerabilities
|
12 |
WEB
|
ZoRLu
|
|
2008-05-05
|
|
GEDCOM_TO_MYSQL - '/PHP/index.php?nom_branche' Cross-Site Scripting
|
11 |
WEB
|
ZoRLu
|
|
2008-05-05
|
|
GEDCOM_TO_MYSQL - '/PHP/prenom.php' Multiple Cross-Site Scripting Vulnerabilities
|
10 |
WEB
|
ZoRLu
|
|
2008-05-03
|
|
SiteXS CMS 0.1.1 - 'upload.php' Arbitrary File Upload
|
13 |
WEB
|
Hadi Kiamarsi
|
|
2008-05-02
|
|
Chicomas 2.0.4 - 'index.php' Cross-Site Scripting
|
12 |
WEB
|
Hadi Kiamarsi
|
|
2008-05-02
|
|
Zen Cart 2008 - 'index.php?keyword' Cross-Site Scripting
|
9 |
WEB
|
Ivan Sanchez
|
|
2008-05-02
|
|
Zen Cart 2008 - 'index.php?keyword' SQL Injection
|
9 |
WEB
|
Ivan Sanchez
|
|
2008-05-02
|
|
Alumni 1.0.8/1.0.9 - 'index.php?year' Cross-Site Scripting
|
10 |
WEB
|
hadihadi
|
|
2008-05-02
|
|
Alumni 1.0.8/1.0.9 - 'info.php?id' SQL Injection
|
11 |
WEB
|
hadihadi
|
|
2008-05-02
|
|
EJ3 BlackBook 1.0 - 'header.php' Multiple Cross-Site Scripting Vulnerabilities
|
11 |
WEB
|
Khashayar Fereidani
|
