|
2013-12-10
|
|
PlaySms 0.9.9.2 - Cross-Site Request Forgery
|
22 |
WEB
|
Saadi Siddiqui
|
|
2007-06-11
|
|
bbPress 0.8.1 - 'BB-login.php' Cross-Site Scripting
|
20 |
WEB
|
Ory Segal
|
|
2007-06-11
|
|
JFFNms 0.8.3 - 'admin/setup.php' Direct Request Authentication Bypass
|
19 |
WEB
|
Tim Brown
|
|
2007-06-11
|
|
JFFNms 0.8.3 - 'admin/adm/test.php' PHP Information Disclosure
|
19 |
WEB
|
Tim Brown
|
|
2007-06-11
|
|
JFFNms 0.8.3 - 'auth.php?user' Cross-Site Scripting
|
23 |
WEB
|
Tim Brown
|
|
2007-06-11
|
|
JFFNms 0.8.3 - 'auth.php' Multiple SQL Injections
|
17 |
WEB
|
Tim Brown
|
|
2007-06-11
|
|
Beehive Forum 0.7.1 - 'links.php' Multiple Cross-Site Scripting Vulnerabilities
|
20 |
WEB
|
Ory Segal
|
|
2007-06-09
|
|
vBSupport 2.0.0 Integrated Ticket System - 'vBSupport.php' SQL Injection
|
22 |
WEB
|
rUnViRuS
|
|
2007-06-08
|
|
WordPress Core 2.2 - 'Request_URI' Cross-Site Scripting
|
19 |
WEB
|
zamolx3
|
|
2007-06-08
|
|
Ibrahim Ã?AKICI - 'Okul Portal Haber_Oku.asp' SQL Injection
|
19 |
WEB
|
ertuqrul
|
|
2007-06-07
|
|
WMSCMS 2.0 - Multiple Cross-Site Scripting Vulnerabilities
|
20 |
WEB
|
Glafkos Charalambous
|
|
2007-06-07
|
|
Atom Photoblog 1.0.1/1.0.9 - 'AtomPhotoblog.php' Multiple Input Validation Vulnerabilities
|
19 |
WEB
|
Serapis.net
|
|
2007-06-06
|
|
ASP Folder Gallery - 'Download_Script.asp' Arbitrary File Download
|
18 |
WEB
|
freeprotect.net
|
|
2007-06-06
|
|
Joomla! Component JD-Wiki 1.0.2 - 'wantedpages.php?MosConfig_absolute_path' Remote File Inclusion
|
21 |
WEB
|
DarkbiteX
|
|
2007-06-06
|
|
Joomla! Component JD-Wiki 1.0.2 - 'dwpage.php?MosConfig_absolute_path' Remote File Inclusion
|
19 |
WEB
|
DarkbiteX
|
|
2013-12-09
|
|
CGILua 3.0 - SQL Injection
|
19 |
WEB
|
aceeeeeeeer .
|
|
2007-06-04
|
|
My Databook - 'diary.php?year' Cross-Site Scripting
|
19 |
WEB
|
Serapis.net
|
|
2007-06-04
|
|
My Databook - 'diary.php?delete' SQL Injection
|
20 |
WEB
|
Serapis.net
|
|
2013-12-08
|
|
Print n Share 5.5 iOS - Multiple Web Vulnerabilities
|
23 |
WEB
|
Vulnerability-Lab
|
|
2013-12-08
|
|
Feetan Inc WireShare 1.9.1 iOS - Persistent
|
21 |
WEB
|
Vulnerability-Lab
|
|
2007-06-04
|
|
WebStudio CMS - 'index.php' Cross-Site Scripting
|
20 |
WEB
|
Glafkos Charalambous
|
|
2007-06-04
|
|
Hunkaray Okul Portaly 1.1 - 'Haberoku.asp' SQL Injection
|
20 |
WEB
|
ertuqrul
|
|
2007-06-04
|
|
Okyanusmedya - 'index.php' Cross-Site Scripting
|
20 |
WEB
|
vagrant
|
|
2007-06-02
|
|
Linker 2.0.4 - 'index.php' Cross-Site Scripting
|
18 |
WEB
|
vagrant
|
|
2007-06-01
|
|
PHPLive! 3.2.2 - '/setup/footer.php' Multiple Cross-Site Scripting Vulnerabilities
|
18 |
WEB
|
ReZEN
|
|
2007-06-01
|
|
PHPLive! 3.2.2 - '/super/info.php?BASE_URL' Cross-Site Scripting
|
18 |
WEB
|
ReZEN
|
|
2007-06-01
|
|
PHPLive! 3.2.2 - '/admin/header.php?admin[name]' Cross-Site Scripting
|
16 |
WEB
|
ReZEN
|
|
2007-06-01
|
|
PHPLive! 3.2.2 - 'help.php' Multiple Cross-Site Scripting Vulnerabilities
|
22 |
WEB
|
ReZEN
|
|
2007-06-01
|
|
PHPLive! 3.2.2 - 'chat.php?sid' Cross-Site Scripting
|
20 |
WEB
|
ReZEN
|
|
2007-06-01
|
|
Evenzia Content Management Systems (CMS) - Cross-Site Scripting
|
19 |
WEB
|
Glafkos Charalambous
|
|
2007-06-01
|
|
Buttercup WFM - 'Title' Cross-Site Scripting
|
19 |
WEB
|
John Martinelli
|
|
2007-06-01
|
|
Prototype of an PHP Application 0.1 - 'common.inc.php?path_inc' Remote File Inclusion
|
19 |
WEB
|
pito pito
|
|
2007-06-01
|
|
Prototype of an PHP Application 0.1 - 'index.php?path_inc' Remote File Inclusion
|
21 |
WEB
|
pito pito
|
|
2007-06-01
|
|
Prototype of an PHP Application 0.1 - '/plugins/PHPgacl/index.php?path_inc' Remote File Inclusion
|
20 |
WEB
|
pito pito
|
|
2007-06-01
|
|
Prototype of an PHP Application 0.1 - 'param.inc.php?path_inc' Remote File Inclusion
|
15 |
WEB
|
pito pito
|
|
2007-06-01
|
|
Prototype of an PHP Application 0.1 - '/menu/menuprincipal.php?path_inc' Remote File Inclusion
|
21 |
WEB
|
pito pito
|
|
2007-06-01
|
|
Prototype of an PHP Application 0.1 - '/ident/ident.inc.php?path_inc' Remote File Inclusion
|
23 |
WEB
|
pito pito
|
|
2007-06-01
|
|
Prototype of an PHP Application 0.1 - '/ident/index.php?path_inc' Remote File Inclusion
|
21 |
WEB
|
pito pito
|
|
2007-06-01
|
|
Prototype of an PHP Application 0.1 - '/ident/loginmodif.php?path_inc' Remote File Inclusion
|
22 |
WEB
|
pito pito
|
|
2007-06-01
|
|
Prototype of an PHP Application 0.1 - '/ident/loginliste.php?path_inc' Remote File Inclusion
|
21 |
WEB
|
pito pito
|
|
2007-06-01
|
|
Prototype of an PHP Application 0.1 - '/ident/disconnect.php?path_inc' Remote File Inclusion
|
21 |
WEB
|
pito pito
|
|
2007-06-01
|
|
Prototype of an PHP Application 0.1 - '/ident/identification.php?path_inc' Remote File Inclusion
|
20 |
WEB
|
pito pito
|
|
2007-06-01
|
|
Prototype of an PHP Application 0.1 - '/gestion/index.php?path_inc' Remote File Inclusion
|
19 |
WEB
|
pito pito
|
|
2007-05-31
|
|
PHP JackKnife 2.21 - '(PHPJK) G_Display.php' Multiple Cross-Site Scripting Vulnerabilities
|
22 |
WEB
|
laurent gaffie
|
|
2007-05-31
|
|
PHP JackKnife 2.21 - '/(PHPJK) UserArea/NewAccounts/index.php?sAccountUnq' Cross-Site Scripting
|
21 |
WEB
|
laurent gaffie
|
|
2007-05-31
|
|
PHP JackKnife 2.21 - '/(PHPJK) UserArea/Authenticate.php?sUName' Cross-Site Scripting
|
19 |
WEB
|
laurent gaffie
|
|
2007-05-31
|
|
PHP JackKnife 2.21 - '/(PHPJK) Search/DisplayResults.php?iSearchID' SQL Injection
|
18 |
WEB
|
laurent gaffie
|
|
2007-05-31
|
|
PHP JackKnife 2.21 - '(PHPJK) G_Display.php?iCategoryUnq' SQL Injection
|
20 |
WEB
|
laurent gaffie
|
|
2007-05-31
|
|
MyBloggie 2.1.x - 'index.php' Multiple SQL Injections
|
21 |
WEB
|
ls@calima.serapis.net
|
|
2007-05-30
|
|
Particle Gallery 1.0 - 'search.php' Cross-Site Scripting
|
21 |
WEB
|
Serapis.net
|
|
2013-12-08
|
|
Ovidentia 7.9.6 - Multiple Vulnerabilities
|
17 |
WEB
|
sajith
|
|
2013-12-08
|
|
WordPress Plugin Download Manager Free & Pro 2.5.8 - Persistent Cross-Site Scripting
|
20 |
WEB
|
Jeroen - IT Nerdbox
|
|
2007-03-16
|
|
Particle Blogger 1.2.1 - 'Archives.php' SQL Injection
|
18 |
WEB
|
Serapis.net
|
|
2007-05-30
|
|
Pheap 2.0 - 'config.php' Pheap_Login Authentication Bypass
|
19 |
WEB
|
Silentz
|
|
2007-05-29
|
|
CPCommerce 1.1 - 'manufacturer.php' SQL Injection
|
18 |
WEB
|
laurent gaffie
|
|
2007-05-28
|
|
DGNews 2.1 - 'NewsID' SQL Injection
|
21 |
WEB
|
laurent gaffie
|
|
2007-05-29
|
|
UebiMiau 2.7.10 - '/demo/pop3/error.php' Multiple Full Path Disclosures
|
20 |
WEB
|
Michal Majchrowicz
|
|
2007-05-29
|
|
UebiMiau 2.7.10 - '/demo/pop3/error.php?selected_theme' Cross-Site Scripting
|
19 |
WEB
|
Michal Majchrowicz
|
|
2007-05-28
|
|
DGNews 1.5.1/2.1 - 'news.php' SQL Injection
|
23 |
WEB
|
Jesper Jurcenoks
|
|
2007-05-28
|
|
DGNews 2.1 - 'footer.php' Cross-Site Scripting
|
20 |
WEB
|
Jesper Jurcenoks
|
|
2007-05-28
|
|
FlashChat F_CMS 4.7.9 - Multiple Remote File Inclusions
|
17 |
WEB
|
Hasadya Raed
|
|
2007-05-25
|
|
phpPgAdmin 4.1.1 - 'Redirect.php' Cross-Site Scripting
|
19 |
WEB
|
Michal Majchrowicz
|
|
2007-05-25
|
|
Pligg CMS 9.5 - Reset Forgotten Password Security Bypass
|
21 |
WEB
|
242th section
|
|
2007-05-25
|
|
Digirez 3.4 - Multiple Cross-Site Scripting Vulnerabilities
|
23 |
WEB
|
Linux_Drox
|
|
2007-05-25
|
|
BoastMachine 3.1 - 'index.php' Cross-Site Scripting
|
23 |
WEB
|
newbinaryfile
|
|
2013-12-06
|
|
Zimbra 2009-2013 - Local File Inclusion
|
22 |
WEB
|
rubina119
|
|
2013-12-06
|
|
WordPress Plugin page-flip-image-gallery - Arbitrary File Upload
|
24 |
WEB
|
Ashiyane Digital Security Team
|
|
2013-12-06
|
|
BoxBilling 3.6.11 - 'mod_notification' Persistent Cross-Site Scripting
|
20 |
WEB
|
LiquidWorm
|
|
2007-05-25
|
|
GNUTurk - 'Mods.php' Cross-Site Scripting
|
23 |
WEB
|
vagrant
|
|
2007-05-24
|
|
ASP-Nuke 2.0.7 - 'news.asp' Cross-Site Scripting
|
16 |
WEB
|
vagrant
|
|
2007-05-23
|
|
2z Project 0.9.5 - 'rating.php' Cross-Site Scripting
|
22 |
WEB
|
Janek Vind
|
|
2007-05-23
|
|
Cisco CallManager 4.1 - Search Form Cross-Site Scripting
|
19 |
WEB
|
Marc Ruef
|
|
2007-05-23
|
|
WYYS 1.0 - 'index.php' Cross-Site Scripting
|
22 |
WEB
|
vagrant
|
|
2007-05-23
|
|
phpPgAdmin 4.1.1 - 'SQLEDIT.php' Cross-Site Scripting
|
22 |
WEB
|
Michal Majchrowicz
|
|
2007-05-22
|
|
GMTT Music Distro 1.2 - 'ShowOwn.php' Cross-Site Scripting
|
22 |
WEB
|
CorryL
|
|
2007-05-22
|
|
ABC Excel Parser Pro 4.0 - 'Parser_Path' Remote File Inclusion
|
23 |
WEB
|
the_Edit0r
|
|
2007-05-22
|
|
ClonusWiki 0.5 - 'index.php' HTML Injection
|
22 |
WEB
|
John Martinelli
|
|
2007-05-22
|
|
Jetbox CMS 2.1 - Login Variable Cross-Site Scripting
|
23 |
WEB
|
Jesper Jurcenoks
|
|
2007-05-21
|
|
Jetbox CMS 2.1 - Multiple SQL Injections
|
21 |
WEB
|
Jesper Jurcenoks
|
|
2007-05-21
|
|
GaliX 2.0 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
|
20 |
WEB
|
John Martinelli
|
|
2007-05-19
|
|
HLstats 1.35 - 'hlstats.php' Multiple Cross-Site Scripting Vulnerabilities
|
22 |
WEB
|
John Martinelli
|
|
2013-12-06
|
|
WordPress Plugin DZS Video Gallery 3.1.3 - Remote File Disclosure / Local File Disclosure
|
21 |
WEB
|
aceeeeeeeer .
|
|
2013-12-06
|
|
D-Link DSR Router Series - Remote Command Execution
|
21 |
WEB
|
0_o
|
|
2013-12-06
|
|
Eaton Network Shutdown Module 3.21 - Remote PHP Code Injection
|
18 |
WEB
|
Filip Waeytens
|
|
2013-12-05
|
|
Wireless Transfer App 3.7 iOS - Multiple Web Vulnerabilities
|
23 |
WEB
|
Vulnerability-Lab
|
|
2013-12-05
|
|
SonicWALL Gms 7.x - Filter Bypass / Persistent
|
20 |
WEB
|
Vulnerability-Lab
|
|
2007-05-19
|
|
ClientExec 3.0 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
|
22 |
WEB
|
r0t
|
|
2007-05-17
|
|
PsychoStats 2.3 - 'Server.php' Full Path Disclosure
|
24 |
WEB
|
kefka
|
|
2007-05-17
|
|
WordPress Theme Redoable 1.2 - 'header.php?s' Cross-Site Scripting
|
23 |
WEB
|
John Martinelli
|
|
2007-05-17
|
|
VP-ASP Shopping Cart 6.50 - 'ShopContent.asp' Cross-Site Scripting
|
23 |
WEB
|
John Martinelli
|
|
2007-05-16
|
|
vBulletin 3.6.6 - 'calendar.php' HTML Injection
|
23 |
WEB
|
laurent gaffie
|
|
2007-05-15
|
|
Jetbox CMS 2.1 - view/supplynews Multiple Cross-Site Scripting Vulnerabilities
|
21 |
WEB
|
Mikhail Markin
|
|
2007-05-15
|
|
Jetbox CMS 2.1 - '/view/search/?path' Cross-Site Scripting
|
17 |
WEB
|
Mikhail Markin
|
|
2007-05-15
|
|
Jetbox CMS 2.1 Email - 'FormMail.php' Input Validation
|
25 |
WEB
|
Jesper Jurcenoks
|
|
2007-05-14
|
|
WordPress Plugin Akismet 2.1.3 - Cross-Site Scripting
|
18 |
WEB
|
David Kierznowski
|
|
2007-05-14
|
|
SonicBB 1.0 - Multiple SQL Injections
|
22 |
WEB
|
Jesper Jurcenoks
|
|
2013-12-04
|
|
Imagam iFiles 1.16.0 iOS - Multiple Web Vulnerabilities
|
22 |
WEB
|
Vulnerability-Lab
|
|
2007-05-14
|
|
SonicBB 1.0 - 'search.php' Cross-Site Scripting
|
17 |
WEB
|
Jesper Jurcenoks
|
|
2007-05-12
|
|
EQdkp 1.3.1 - Cross-Site Scripting
|
17 |
WEB
|
kefka
|
|
2007-05-12
|
|
CommuniGate Pro 5.1.8 - Web Mail HTML Injection
|
21 |
WEB
|
Alla Bezroutchko
|
|
2007-05-10
|
|
PHP Multi User Randomizer 2006.09.13 - 'Configure_Plugin.TPL.php' Cross-Site Scripting
|
19 |
WEB
|
the_Edit0r
|
|
2007-05-08
|
|
Advanced Guestbook 2.4.2 - 'Lang' Cookie Local File Inclusion
|
19 |
WEB
|
netVigilance
|
|
2013-12-03
|
|
Dokeos 2.2 RC2 - 'index.php?language' SQL Injection
|
24 |
WEB
|
High-Tech Bridge SA
|
|
2013-12-03
|
|
Chamilo Lms 1.9.6 - 'profile.php?password' SQL Injection
|
20 |
WEB
|
High-Tech Bridge SA
|
|
2007-05-08
|
|
Campsite 2.6.1 - 'LocalizerLanguage.php?g_documentRoot' Remote File Inclusion
|
22 |
WEB
|
anonymous
|
|
2007-05-08
|
|
Campsite 2.6.1 - 'LocalizerConfig.php?g_documentRoot' Remote File Inclusion
|
23 |
WEB
|
anonymous
|
|
2007-05-08
|
|
Campsite 2.6.1 - '/implementation/Management/db_connect.php?g_documentRoot' Remote File Inclusion
|
19 |
WEB
|
anonymous
|
|
2007-05-08
|
|
Campsite 2.6.1 - '/implementation/Management/configuration.php?g_documentRoot' Remote File Inclusion
|
19 |
WEB
|
anonymous
|
|
2013-12-02
|
|
WordPress Plugin Formcraft - SQL Injection
|
23 |
WEB
|
Ashiyane Digital Security Team
|
|
2013-12-02
|
|
Photo Transfer Wifi 1.4.4 iOS - Multiple Web Vulnerabilities
|
16 |
WEB
|
Vulnerability-Lab
|
|
2007-05-08
|
|
Campsite 2.6.1 - 'UserType.php?g_documentRoot' Remote File Inclusion
|
20 |
WEB
|
anonymous
|
|
2007-05-08
|
|
Campsite 2.6.1 - 'user.php?g_documentRoot' Remote File Inclusion
|
17 |
WEB
|
anonymous
|
|
2007-05-08
|
|
Campsite 2.6.1 - 'UrlType.php?g_documentRoot' Remote File Inclusion
|
17 |
WEB
|
anonymous
|
|
2007-05-08
|
|
Campsite 2.6.1 - 'topic.php?g_documentRoot' Remote File Inclusion
|
17 |
WEB
|
anonymous
|
|
2007-05-08
|
|
Campsite 2.6.1 - 'TimeUnit.php?g_documentRoot' Remote File Inclusion
|
20 |
WEB
|
anonymous
|
|
2007-05-08
|
|
Campsite 2.6.1 - 'template.php?g_documentRoot' Remote File Inclusion
|
19 |
WEB
|
anonymous
|
|
2007-05-08
|
|
Campsite 2.6.1 - 'SystemPref.php?g_documentRoot' Remote File Inclusion
|
16 |
WEB
|
anonymous
|
|
2007-05-08
|
|
Campsite 2.6.1 - 'SubscriptionSection.php?g_documentRoot' Remote File Inclusion
|
22 |
WEB
|
anonymous
|
|
2007-05-08
|
|
Campsite 2.6.1 - 'SubscriptionDefaultTime.php?g_documentRoot' Remote File Inclusion
|
17 |
WEB
|
anonymous
|
|
2007-05-08
|
|
Campsite 2.6.1 - 'Subscription.php?g_documentRoot' Remote File Inclusion
|
16 |
WEB
|
anonymous
|
|
2007-05-08
|
|
Campsite 2.6.1 - 'ShortURL.php?g_documentRoot' Remote File Inclusion
|
19 |
WEB
|
anonymous
|
|
2007-05-08
|
|
Campsite 2.6.1 - 'Section.php?g_documentRoot' Remote File Inclusion
|
15 |
WEB
|
anonymous
|
|
2007-05-08
|
|
Campsite 2.6.1 - 'Publication.php?g_documentRoot' Remote File Inclusion
|
19 |
WEB
|
anonymous
|
|
2007-05-08
|
|
Campsite 2.6.1 - 'LoginAttempts.php?g_documentRoot' Remote File Inclusion
|
17 |
WEB
|
anonymous
|
|
2007-05-08
|
|
Campsite 2.6.1 - 'Log.php?g_documentRoot' Remote File Inclusion
|
19 |
WEB
|
anonymous
|
