|
2007-01-16
|
|
Indexu 5.0/5.3 - 'new.php' Multiple Cross-Site Scripting Vulnerabilities
|
8 |
WEB
|
SwEET-DeViL
|
|
2007-01-16
|
|
Indexu 5.0/5.3 - 'power_search.php' Multiple Cross-Site Scripting Vulnerabilities
|
8 |
WEB
|
SwEET-DeViL
|
|
2007-01-16
|
|
Indexu 5.0/5.3 - 'register.php' Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
SwEET-DeViL
|
|
2007-01-16
|
|
Indexu 5.0/5.3 - 'search.php?keyword' Cross-Site Scripting
|
7 |
WEB
|
SwEET-DeViL
|
|
2007-01-16
|
|
Indexu 5.0/5.3 - 'send_pwd.php' Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
SwEET-DeViL
|
|
2013-11-07
|
|
WordPress Theme Kernel - Arbitrary File Upload
|
7 |
WEB
|
link_satisi
|
|
2007-01-16
|
|
Indexu 5.0/5.3 - 'Sendmail.php' Multiple Cross-Site Scripting Vulnerabilities
|
8 |
WEB
|
SwEET-DeViL
|
|
2007-01-16
|
|
Indexu 5.0/5.3 - 'tell_friend.php' Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
SwEET-DeViL
|
|
2007-01-16
|
|
Indexu 5.0/5.3 - 'user_detail.php?u' Cross-Site Scripting
|
7 |
WEB
|
SwEET-DeViL
|
|
2007-01-16
|
|
Indexu 5.0/5.3 - 'suggest_category.php?Error_msg' Cross-Site Scripting
|
7 |
WEB
|
SwEET-DeViL
|
|
2007-01-16
|
|
Indexu 5.0/5.3 - 'upgrade.php?gateway' Cross-Site Scripting
|
7 |
WEB
|
SwEET-DeViL
|
|
2013-11-07
|
|
Microweber 0.905 - Error-Based SQL Injection
|
7 |
WEB
|
Zy0d0x
|
|
2007-01-16
|
|
Scriptme SmE 1.21 - File Mailer Login SQL Injection
|
7 |
WEB
|
CorryL
|
|
2007-01-16
|
|
DT_Guestbook 1.0 - 'index.php' Cross-Site Scripting
|
7 |
WEB
|
Jesper Jurcenoks
|
|
2007-01-15
|
|
Jax Petition 3.06 Book - 'smileys.php?languagepack' Local File Inclusion
|
7 |
WEB
|
ilker Kandemir
|
|
2007-01-15
|
|
Jax Petition Book 3.06 - 'jax_petitionbook.php?languagepack' Local File Inclusion
|
7 |
WEB
|
ilker Kandemir
|
|
2007-01-15
|
|
Liens_Dynamiques 2.1 - Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
sn0oPy
|
|
2007-01-15
|
|
Liens_Dynamiques 2.1 - 'AdminLien.php' Security Restriction Bypass
|
7 |
WEB
|
sn0oPy
|
|
2007-01-15
|
|
InstantASP 4.1 - 'Members1.aspx' Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
Doz
|
|
2007-01-15
|
|
InstantASP 4.1 - 'Logon.aspx?sessionid' Cross-Site Scripting
|
7 |
WEB
|
Doz
|
|
2007-01-13
|
|
PHP-Nuke 7.x - 'Block-Old_Articles.php' SQL Injection
|
5 |
WEB
|
Paisterist
|
|
2007-01-12
|
|
All In One Control Panel 1.3.x - 'cp_downloads.php?did' SQL Injection
|
7 |
WEB
|
Coloss
|
|
2007-01-12
|
|
Ezboxx 0.7.6 Beta - Multiple Input Validation Vulnerabilities
|
7 |
WEB
|
Doron P
|
|
2007-01-11
|
|
phpBB 2.0.21 - 'privmsg.php' HTML Injection
|
7 |
WEB
|
Demential
|
|
2007-01-09
|
|
Edit-X - 'Edit_Address.php' Remote File Inclusion
|
9 |
WEB
|
IbnuSina
|
|
2007-01-07
|
|
Easy Banner Pro 2.8 - 'info.php' Remote File Inclusion
|
7 |
WEB
|
rUnViRuS
|
|
2013-11-04
|
|
Apache Tomcat 5.5.25 - Cross-Site Request Forgery
|
9 |
WEB
|
Ivano Binetti
|
|
2007-01-09
|
|
Magic Photo Storage Website - '/user/user_membership_password.php?_config[site_path]' Remote File In
|
7 |
WEB
|
IbnuSina
|
|
2007-01-09
|
|
Magic Photo Storage Website - '/user/user_extend.php?_config[site_path]' Remote File Inclusion
|
7 |
WEB
|
IbnuSina
|
|
2007-01-09
|
|
Magic Photo Storage Website - '/user/user_email.php?_config[site_path]' Remote File Inclusion
|
6 |
WEB
|
IbnuSina
|
|
2007-01-09
|
|
Magic Photo Storage Website - '/user/user_catelog_password.php?_config[site_path]' Remote File Inclu
|
7 |
WEB
|
IbnuSina
|
|
2007-01-09
|
|
Magic Photo Storage Website - '/user/upload_photo.php?_config[site_path]' Remote File Inclusion
|
7 |
WEB
|
IbnuSina
|
|
2007-01-09
|
|
Magic Photo Storage Website - '/user/register.php?_config[site_path]' Remote File Inclusion
|
7 |
WEB
|
IbnuSina
|
|
2007-01-09
|
|
Magic Photo Storage Website - '/user/logout.php?_config[site_path]' Remote File Inclusion
|
7 |
WEB
|
IbnuSina
|
|
2007-01-09
|
|
Magic Photo Storage Website - '/user/login.php?_config[site_path]' Remote File Inclusion
|
8 |
WEB
|
IbnuSina
|
|
2007-01-09
|
|
Magic Photo Storage Website - '/user/index.php?_config[site_path]' Remote File Inclusion
|
7 |
WEB
|
IbnuSina
|
|
2007-01-09
|
|
Magic Photo Storage Website - '/user/delete_category.php?_config[site_path]' Remote File Inclusion
|
7 |
WEB
|
IbnuSina
|
|
2007-01-09
|
|
Magic Photo Storage Website - '/user/couple_profile.php?_config[site_path]' Remote File Inclusion
|
7 |
WEB
|
IbnuSina
|
|
2007-01-09
|
|
Magic Photo Storage Website - '/user/couple_milestone.php?_config[site_path]' Remote File Inclusion
|
7 |
WEB
|
IbnuSina
|
|
2007-01-09
|
|
Magic Photo Storage Website - '/user/change_catalog_template.php?_config[site_path]' Remote File Inc
|
7 |
WEB
|
IbnuSina
|
|
2007-01-09
|
|
Magic Photo Storage Website - '/user/add_news.php?_config[site_path]' Remote File Inclusion
|
8 |
WEB
|
IbnuSina
|
|
2007-01-09
|
|
Magic Photo Storage Website - '/user/add_category.php?_config[site_path]' Remote File Inclusion
|
6 |
WEB
|
IbnuSina
|
|
2007-01-09
|
|
Magic Photo Storage Website - '/include/db_config.php?_config[site_path]' Remote File Inclusion
|
7 |
WEB
|
IbnuSina
|
|
2007-01-09
|
|
Magic Photo Storage Website - '/include/config.php?_config[site_path]' Remote File Inclusion
|
7 |
WEB
|
IbnuSina
|
|
2007-01-09
|
|
Magic Photo Storage Website - '/admin/send_email.php?_config[site_path]' Remote File Inclusion
|
7 |
WEB
|
IbnuSina
|
|
2007-01-09
|
|
Magic Photo Storage Website - '/admin/membership_pricing.php?_config[site_path]' Remote File Inclusi
|
7 |
WEB
|
IbnuSina
|
|
2007-01-09
|
|
Magic Photo Storage Website - '/admin/list_members.php?_config[site_path]' Remote File Inclusion
|
7 |
WEB
|
IbnuSina
|
|
2007-01-09
|
|
Magic Photo Storage Website - '/admin/index.php?_config[site_path]' Remote File Inclusion
|
7 |
WEB
|
IbnuSina
|
|
2007-01-09
|
|
Magic Photo Storage Website - '/admin/delete_member.php?_config[site_path]' Remote File Inclusion
|
7 |
WEB
|
IbnuSina
|
|
2007-01-09
|
|
Magic Photo Storage Website - '/admin/approve_member.php?_config[site_path]' Remote File Inclusion
|
7 |
WEB
|
IbnuSina
|
|
2007-01-09
|
|
Magic Photo Storage Website - '/admin/admin_paypal_email.php?_config[site_path]' Remote File Inclusi
|
7 |
WEB
|
IbnuSina
|
|
2007-01-09
|
|
Magic Photo Storage Website - '/admin/add_templates.php?_config[site_path]' Remote File Inclusion
|
7 |
WEB
|
IbnuSina
|
|
2007-01-09
|
|
Magic Photo Storage Website - '/admin/admin_email.php?_config[site_path]' Remote File Inclusion
|
7 |
WEB
|
IbnuSina
|
|
2007-01-09
|
|
Magic Photo Storage Website - '/admin/add_welcome_text.php?_config[site_path]' Remote File Inclusion
|
8 |
WEB
|
IbnuSina
|
|
2007-01-09
|
|
Magic Photo Storage Website - '/admin/admin_password.php?_config[site_path]' Remote File Inclusion
|
6 |
WEB
|
IbnuSina
|
|
2007-01-09
|
|
PHPKit 1.6.1 - 'comment.php' SQL Injection
|
7 |
WEB
|
yorn
|
|
2007-01-09
|
|
MediaWiki 1.x - 'AJAX index.php' Cross-Site Scripting
|
7 |
WEB
|
Moshe Ben-Abu
|
|
2007-01-08
|
|
CreateAuction - 'Cats.asp' SQL Injection
|
7 |
WEB
|
IbnuSina
|
|
2007-01-06
|
|
Shopstorenow E-Commerce Shopping Cart - 'Orange.asp' SQL Injection
|
8 |
WEB
|
IbnuSina
|
|
2007-01-05
|
|
Coppermine Photo Gallery 1.4.11 - SQL Injection
|
7 |
WEB
|
DarkFig
|
|
2007-01-05
|
|
EditTag 1.2 - 'mkpw.cgi?plain' Cross-Site Scripting
|
8 |
WEB
|
NetJackal
|
|
2007-01-05
|
|
EditTag 1.2 - 'mkpw.pl?plain' Cross-Site Scripting
|
7 |
WEB
|
NetJackal
|
|
2007-01-05
|
|
EditTag 1.2 - 'mkpw_mp.cgi?plain' Cross-Site Scripting
|
8 |
WEB
|
NetJackal
|
|
2007-01-05
|
|
EditTag 1.2 - 'edittag_mp.pl?file' Arbitrary File Disclosure
|
6 |
WEB
|
NetJackal
|
|
2007-01-05
|
|
EditTag 1.2 - 'edittag_mp.cgi?file' Arbitrary File Disclosure
|
7 |
WEB
|
NetJackal
|
|
2007-01-05
|
|
EditTag 1.2 - 'edittag.pl?file' Arbitrary File Disclosure
|
7 |
WEB
|
NetJackal
|
|
2007-01-05
|
|
EditTag 1.2 - 'edittag.cgi?file' Arbitrary File Disclosure
|
8 |
WEB
|
NetJackal
|
|
2013-11-03
|
|
Practico 13.9 - Multiple Vulnerabilities
|
7 |
WEB
|
LiquidWorm
|
|
2007-01-05
|
|
Kolayindir Download - 'down.asp' SQL Injection
|
7 |
WEB
|
ShaFuck31
|
|
2007-01-05
|
|
RI Blog 1.3 - 'search.asp' Cross-Site Scripting
|
7 |
WEB
|
ShaFuck31
|
|
2007-01-02
|
|
AShop Deluxe 4.5 - 'salesadmin.php' Cross-Site Scripting
|
7 |
WEB
|
Hackers Center Security
|
|
2007-01-02
|
|
AShop Deluxe 4.5 - 'editcatalogue.php' Cross-Site Scripting
|
7 |
WEB
|
Hackers Center Security
|
|
2007-01-02
|
|
AShop Deluxe 4.5 - 'shipping.php' Cross-Site Scripting
|
6 |
WEB
|
Hackers Center Security
|
|
2007-01-02
|
|
AShop Deluxe 4.5 - 'search.php' Cross-Site Scripting
|
7 |
WEB
|
Hackers Center Security
|
|
2007-01-02
|
|
AShop Deluxe 4.5 - 'basket.php' Cross-Site Scripting
|
6 |
WEB
|
Hackers Center Security
|
|
2007-01-02
|
|
AShop Deluxe 4.5 - 'catalogue.php' Cross-Site Scripting
|
7 |
WEB
|
Hackers Center Security
|
|
2007-01-02
|
|
VCard Pro - 'gbrowse.php' Cross-Site Scripting
|
7 |
WEB
|
exexp
|
|
2007-01-02
|
|
Simplog 0.9.3 - 'archive.php' SQL Injection
|
8 |
WEB
|
Javor Ninov
|
|
2006-12-30
|
|
Spooky 2.7 - 'login/register.asp' SQL Injection
|
7 |
WEB
|
Doz
|
|
2006-12-29
|
|
Mobilelib Gold - Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
viP HaCKEr
|
|
2006-12-27
|
|
PHP iCalendar 1.1/2.x - 'preferences.php' Cross-Site Scripting
|
8 |
WEB
|
Lostmon
|
|
2006-12-27
|
|
PHP iCalendar 1.1/2.x - 'print.php' Cross-Site Scripting
|
7 |
WEB
|
Lostmon
|
|
2006-12-27
|
|
PHP iCalendar 1.1/2.x - 'getdate' Cross-Site Scripting
|
7 |
WEB
|
Lostmon
|
|
2006-12-27
|
|
PHP iCalendar 1.1/2.x - 'search.php' Cross-Site Scripting
|
7 |
WEB
|
Lostmon
|
|
2006-12-27
|
|
PHP iCalendar 1.1/2.x - 'week.php' Cross-Site Scripting
|
7 |
WEB
|
Lostmon
|
|
2006-12-27
|
|
PHP iCalendar 1.1/2.x - 'year.php' Cross-Site Scripting
|
7 |
WEB
|
Lostmon
|
|
2006-12-27
|
|
PHP iCalendar 1.1/2.x - 'month.php' Cross-Site Scripting
|
7 |
WEB
|
Lostmon
|
|
2006-12-27
|
|
PHP iCalendar 1.1/2.x - 'day.php' Cross-Site Scripting
|
7 |
WEB
|
Lostmon
|
|
2006-12-27
|
|
DMXReady Secure Login Manager 1.0 - '/applications/SecureLoginManager/inc_secureloginmanager.asp?sen
|
7 |
WEB
|
Doz
|
|
2006-12-27
|
|
DMXReady Secure Login Manager 1.0 - 'members.asp?sent' SQL Injection
|
7 |
WEB
|
Doz
|
|
2006-12-27
|
|
DMXReady Secure Login Manager 1.0 - 'content.asp?sent' SQL Injection
|
7 |
WEB
|
Doz
|
|
2006-12-27
|
|
DMXReady Secure Login Manager 1.0 - 'login.asp?sent' SQL Injection
|
7 |
WEB
|
Doz
|
|
2006-12-27
|
|
Hosting Controller 7C - 'FolderManager.aspx' Directory Traversal
|
7 |
WEB
|
KAPDA
|
|
2006-12-27
|
|
WordPress Core 1.x/2.0.x - 'template.php' HTML Injection
|
7 |
WEB
|
David Kierznowski
|
|
2013-11-01
|
|
pdirl PHP Directory Listing 1.0.4 - Cross-Site Scripting
|
8 |
WEB
|
Vulnerability-Lab
|
|
2006-12-26
|
|
phpCMS 1.1.7 - 'class.layout_PHPcms.php' Remote File Inclusion
|
6 |
WEB
|
Federico Fazzi
|
|
2006-12-26
|
|
phpCMS 1.1.7 - 'class.lib_indexer_universal_PHPcms.php' Remote File Inclusion
|
7 |
WEB
|
Federico Fazzi
|
|
2006-12-26
|
|
phpCMS 1.1.7 - 'class.search_PHPcms.php' Remote File Inclusion
|
8 |
WEB
|
Federico Fazzi
|
|
2006-12-26
|
|
phpCMS 1.1.7 - 'class.cache_PHPcms.php' Remote File Inclusion
|
6 |
WEB
|
Federico Fazzi
|
|
2006-12-26
|
|
phpCMS 1.1.7 - 'class.http_indexer_PHPcms.php' Remote File Inclusion
|
6 |
WEB
|
Federico Fazzi
|
|
2006-12-26
|
|
phpCMS 1.1.7 - 'class.edit_PHPcms.php' Remote File Inclusion
|
7 |
WEB
|
Federico Fazzi
|
|
2006-12-26
|
|
phpCMS 1.1.7 - 'class.session_PHPcms.php' Remote File Inclusion
|
7 |
WEB
|
Federico Fazzi
|
|
2006-12-26
|
|
phpCMS 1.1.7 - 'class.parser_PHPcms.php' Remote File Inclusion
|
7 |
WEB
|
Federico Fazzi
|
|
2006-12-26
|
|
phpCMS 1.1.7 - 'parser.php' Remote File Inclusion
|
7 |
WEB
|
Federico Fazzi
|
|
2006-12-26
|
|
phpCMS 1.1.7 - 'counter.php' Remote File Inclusion
|
7 |
WEB
|
Federico Fazzi
|
|
2006-12-26
|
|
Luckybot 3 - 'DIR' Multiple Remote File Inclusions
|
7 |
WEB
|
Red_Casper
|
|
2006-12-25
|
|
vBulletin 3.5.x/3.6.x - SWF Script Injection
|
6 |
WEB
|
Ashraf Morad
|
|
2006-12-24
|
|
TimberWolf 1.2.2 - 'shownews.php' Cross-Site Scripting
|
7 |
WEB
|
CorryL
|
|
2006-12-24
|
|
Chatwm 1.0 - 'SelGruFra.asp' SQL Injection
|
6 |
WEB
|
ShaFuq31
|
|
2006-12-23
|
|
Future Internet - 'index.cfm?categoryId' Cross-Site Scripting
|
7 |
WEB
|
Linux_Drox
|
|
2006-12-23
|
|
Future Internet - 'index.cfm' Multiple SQL Injections
|
7 |
WEB
|
Linux_Drox
|
|
2006-12-22
|
|
Efkan Forum 1.0 - 'Grup' SQL Injection
|
7 |
WEB
|
ShaFuq31
|
|
2013-11-01
|
|
WordPress Theme Think Responsive 1.0 - Arbitrary File Upload
|
7 |
WEB
|
Byakuya Kouta
|
|
2013-11-01
|
|
ImpressPages CMS 3.6 - 'manage()' Remote Code Execution
|
7 |
WEB
|
LiquidWorm
|
|
2013-11-01
|
|
WordPress Theme Switchblade 1.3 - Arbitrary File Upload
|
7 |
WEB
|
Byakuya Kouta
|
|
2013-11-01
|
|
ImpressPages CMS 3.6 - Arbitrary File Deletion
|
6 |
WEB
|
LiquidWorm
|
|
2013-10-31
|
|
Opsview pre 4.4.1 - Blind SQL Injection
|
7 |
WEB
|
J. Oquendo
|
|
2013-10-31
|
|
ImpressPages CMS 3.6 - Multiple Cross-Site Scripting / SQL Injection Vulnerabilities
|
7 |
WEB
|
LiquidWorm
|
|
2006-12-22
|
|
Xt-News 0.1 - 'show_news.php?id_news' SQL Injection
|
7 |
WEB
|
Mr_KaLiMaN
|
|
2006-12-22
|
|
Xt-News 0.1 - 'show_news.php?id_news' Cross-Site Scripting
|
7 |
WEB
|
Mr_KaLiMaN
|
|
2013-10-30
|
|
Unicorn Router WB-3300NR - Cross-Site Request Forgery (Factory Reset/DNS Change)
|
8 |
WEB
|
absane
|
|
2006-12-22
|
|
Xt-News 0.1 - 'add_comment.php?id_news' Cross-Site Scripting
|
7 |
WEB
|
Mr_KaLiMaN
|
|
2006-12-22
|
|
Oracle Portal 9i/10g - Container_Tabs.jsp Cross-Site Scripting
|
8 |
WEB
|
putosoft softputo
|
|
2006-12-22
|
|
A-Blog 1.0 - Cross-Site Scripting
|
7 |
WEB
|
Fukumori
|
|
2006-12-20
|
|
Calacode @Mail Webmail 4.51 - Filtering Engine HTML Injection
|
7 |
WEB
|
Philippe C. Caturegli
|
