|
2006-11-10
|
|
Bitweaver 1.x - '/fisheye/index.php?sort_mode' SQL Injection
|
10 |
WEB
|
laurent gaffie
|
|
2013-10-14
|
|
aMSN 0.98.9 Web App - Multiple Vulnerabilities
|
11 |
WEB
|
drone
|
|
2013-10-14
|
|
WordPress Plugin Cart66 1.5.1.14 - Multiple Vulnerabilities
|
10 |
WEB
|
absane
|
|
2013-10-14
|
|
StatusNet/Laconica 0.7.4/0.8.2/0.9.0beta3 - Arbitrary File Reading
|
10 |
WEB
|
spiderboy
|
|
2006-11-10
|
|
Bitweaver 1.x - '/fisheye/list_galleries.php?sort_mode' SQL Injection
|
11 |
WEB
|
laurent gaffie
|
|
2006-11-10
|
|
Bitweaver 1.x - '/blogs/list_blogs.php?sort_mode' SQL Injection
|
10 |
WEB
|
laurent gaffie
|
|
2006-11-09
|
|
Omnistar Article Manager - Multiple SQL Injections
|
8 |
WEB
|
Benjamin Moss
|
|
2006-11-09
|
|
LandShop 0.6.3 - 'ls.php' Multiple SQL Injections
|
11 |
WEB
|
laurent gaffie
|
|
2006-11-09
|
|
LandShop 0.6.3 - 'ls.php' Multiple Cross-Site Scripting Vulnerabilities
|
11 |
WEB
|
laurent gaffie
|
|
2006-11-09
|
|
bitweaver 1.x - '/newsletters/edition.php?tk' SQL Injection
|
10 |
WEB
|
laurent gaffie
|
|
2006-11-08
|
|
Speedywiki 2.0/2.1 - Multiple Input Validation Vulnerabilities
|
10 |
WEB
|
laurent gaffie
|
|
2006-11-08
|
|
Portix-PHP 0.4.2 - Multiple SQL Injections
|
11 |
WEB
|
Benjamin Moss
|
|
2006-11-08
|
|
PHPMyChat Plus 1.9 - Multiple Local File Inclusions
|
9 |
WEB
|
ajann
|
|
2006-11-08
|
|
Abarcar Realty Portal 5.1.5/6.0.1 - Multiple SQL Injections
|
8 |
WEB
|
Benjamin Moss
|
|
2006-11-08
|
|
FreeWebShop 2.1/2.2 - 'index.php?cat' Cross-Site Scripting
|
10 |
WEB
|
laurent gaffie
|
|
2006-11-08
|
|
FreeWebShop 2.1/2.2 - 'index.php?page' Traversal Arbitrary File Access
|
10 |
WEB
|
laurent gaffie
|
|
2006-11-08
|
|
Immediacy .NET CMS 5.2 - 'Logon.aspx' Cross-Site Scripting
|
10 |
WEB
|
Gemma Hughes
|
|
2006-11-08
|
|
PHPMyChat 0.14/0.15 - 'Languages.Lib.php' Local File Inclusion
|
8 |
WEB
|
ajann
|
|
2006-11-07
|
|
Kayako SupportSuite 3.0.32 - 'index.php' Cross-Site Scripting
|
8 |
WEB
|
Dr.HAiL
|
|
2006-11-07
|
|
IPManager 2.3 - 'index.php' Cross-Site Scripting
|
8 |
WEB
|
spaceballyopsolo
|
|
2006-11-06
|
|
AIOCP 1.3.x - 'cp_show_page_help.php' Full Path Disclosure
|
9 |
WEB
|
laurent gaffie
|
|
2006-11-06
|
|
AIOCP 1.3.x - 'cp_show_ec_products.php' Full Path Disclosure
|
8 |
WEB
|
laurent gaffie
|
|
2006-11-06
|
|
AIOCP 1.3.x - Multiple Vulnerabilities
|
9 |
WEB
|
laurent gaffie
|
|
2006-11-06
|
|
AIOCP 1.3.x - 'cp_links_search.php' SQL Injection
|
8 |
WEB
|
laurent gaffie
|
|
2006-11-06
|
|
AIOCP 1.3.x - 'cp_codice_fiscale.php' SQL Injection
|
9 |
WEB
|
laurent gaffie
|
|
2006-11-06
|
|
AIOCP 1.3.x - 'cp_users_online.php' SQL Injection
|
9 |
WEB
|
laurent gaffie
|
|
2006-11-06
|
|
AIOCP 1.3.x - 'cp_login.php' SQL Injection
|
8 |
WEB
|
laurent gaffie
|
|
2006-11-06
|
|
AIOCP 1.3.x - 'cp_show_ec_products.php' SQL Injection
|
9 |
WEB
|
laurent gaffie
|
|
2006-11-06
|
|
AIOCP 1.3.x - 'cp_contact_us.php' SQL Injection
|
8 |
WEB
|
laurent gaffie
|
|
2006-11-06
|
|
AIOCP 1.3.x - 'cp_links.php' SQL Injection
|
9 |
WEB
|
laurent gaffie
|
|
2006-11-06
|
|
AIOCP 1.3.x - 'cp_newsletter.php' SQL Injection
|
8 |
WEB
|
laurent gaffie
|
|
2006-11-06
|
|
AIOCP 1.3.x - 'cp_edit_user.php' SQL Injection
|
8 |
WEB
|
laurent gaffie
|
|
2006-11-06
|
|
AIOCP 1.3.x - 'cp_forum_view.php' SQL Injection
|
7 |
WEB
|
laurent gaffie
|
|
2006-11-06
|
|
AIOCP 1.3.x - 'cp_news.php' SQL Injection
|
9 |
WEB
|
laurent gaffie
|
|
2006-11-06
|
|
AIOCP 1.3.x - 'cp_dpage.php' SQL Injection
|
9 |
WEB
|
laurent gaffie
|
|
2006-11-06
|
|
AIOCP 1.3.x - 'load_page' Remote File Inclusion
|
9 |
WEB
|
laurent gaffie
|
|
2006-11-06
|
|
AIOCP 1.3.x - 'cp_links_search.php' Cross-Site Scripting
|
9 |
WEB
|
laurent gaffie
|
|
2006-11-06
|
|
AIOCP 1.3.x - 'cp_users_online.php' Cross-Site Scripting
|
9 |
WEB
|
laurent gaffie
|
|
2006-11-06
|
|
AIOCP 1.3.x - 'cp_show_ec_products.php' Cross-Site Scripting
|
9 |
WEB
|
laurent gaffie
|
|
2006-11-06
|
|
AIOCP 1.3.x - 'cp_dpage.php' Cross-Site Scripting
|
8 |
WEB
|
laurent gaffie
|
|
2006-11-06
|
|
AIOCP 1.3.x - 'cp_forum_view.php' Cross-Site Scripting
|
8 |
WEB
|
laurent gaffie
|
|
2006-11-06
|
|
Xoops 2.0.5 - 'NewList.php' Cross-Site Scripting
|
9 |
WEB
|
CvIr.System
|
|
2006-11-06
|
|
@cid Stats 2.3 - 'Install.php3' Remote File Inclusion
|
9 |
WEB
|
Mahmood_ali
|
|
2006-11-04
|
|
PHPKit 1.6.1 - 'popup.php' SQL Injection
|
9 |
WEB
|
x23
|
|
2006-11-04
|
|
IF-CMS - 'index.php' Cross-Site Scripting
|
9 |
WEB
|
Benjamin Moss
|
|
2006-11-03
|
|
Advanced Guestbook 2.3.1 - 'admin.php' Remote File Inclusion
|
10 |
WEB
|
BrokeN-ProXy
|
|
2006-11-03
|
|
Simplog 0.9.3 - 'archive.php?PID' Cross-Site Scripting
|
8 |
WEB
|
Benjamin Moss
|
|
2006-11-03
|
|
Simplog 0.9.3 - 'BlogID' Multiple SQL Injections
|
9 |
WEB
|
Benjamin Moss
|
|
2006-11-03
|
|
ac4p Mobile - '/cp/index.php?pagenav' Cross-Site Scripting
|
9 |
WEB
|
AL-garnei
|
|
2006-11-03
|
|
ac4p Mobile - 'up.php' Multiple Cross-Site Scripting Vulnerabilities
|
9 |
WEB
|
AL-garnei
|
|
2006-11-03
|
|
ac4p Mobile - 'send.php?cats' Cross-Site Scripting
|
8 |
WEB
|
AL-garnei
|
|
2006-11-03
|
|
ac4p Mobile - 'polls.php' Multiple Cross-Site Scripting Vulnerabilities (1)
|
9 |
WEB
|
AL-garnei
|
|
2006-11-03
|
|
ac4p Mobile - 'MobileNews.php' Multiple Cross-Site Scripting Vulnerabilities
|
8 |
WEB
|
AL-garnei
|
|
2006-11-03
|
|
ac4p Mobile - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
|
6 |
WEB
|
AL-garnei
|
|
2006-11-07
|
|
NewP News Publishing System 1.0 - 'Class.Database.php' Remote File Inclusion
|
7 |
WEB
|
navairum
|
|
2006-11-02
|
|
FreeWebShop 2.2 - 'index.php' SQL Injection
|
9 |
WEB
|
Spiked
|
|
2006-11-02
|
|
RunCMS 1.x - Avatar Arbitrary File Upload
|
8 |
WEB
|
securfrog
|
|
2006-11-08
|
|
KnowledgeBuilder 2.2 - 'visEdit_Control.Class.php' Remote File Inclusion
|
9 |
WEB
|
igi
|
|
2006-11-01
|
|
RSSonate - 'Project_Root' Remote File Inclusion
|
8 |
WEB
|
Arab4services
|
|
2006-10-31
|
|
Mirapoint Web Mail - 'Expression()' HTML Injection
|
8 |
WEB
|
LegendaryZion
|
|
2006-10-31
|
|
iPlanet Messaging Server - Messenger Express Expression() HTML Injection
|
9 |
WEB
|
LegendaryZion
|
|
2006-10-31
|
|
Netquery 4.0 - 'NQUser.php' Cross-Site Scripting
|
8 |
WEB
|
Tal Argoni
|
|
2006-10-30
|
|
The Search Engine Project 0.942 - 'Configfunction.php' Remote File Inclusion
|
9 |
WEB
|
Cyber Security
|
|
2006-10-31
|
|
PHP-Nuke 7.x Journal Module - 'search.php' SQL Injection
|
9 |
WEB
|
Paisterist
|
|
2006-10-31
|
|
Easy Web Portal 2.1.2 - Multiple Remote File Inclusions
|
8 |
WEB
|
MEFISTO
|
|
2005-10-30
|
|
phpFaber CMS 1.3.36 - 'Htmlarea.php' Cross-Site Scripting
|
7 |
WEB
|
Vigilon
|
|
2006-10-30
|
|
Foresite CMS - 'Index_2.php' Cross-Site Scripting
|
8 |
WEB
|
David Vieira-Kurz
|
|
2006-10-30
|
|
Evandor Easy notesManager 0.0.1 - Search Page SQL Injection
|
8 |
WEB
|
poplix
|
|
2006-10-30
|
|
Evandor Easy notesManager 0.0.1 - 'login.php?Username' SQL Injection
|
8 |
WEB
|
poplix
|
|
2006-10-30
|
|
Freenews 1.1 - 'Aff_News.php' Remote File Inclusion
|
9 |
WEB
|
MoHaNdKo
|
|
2006-10-30
|
|
Exhibit Engine 1.22 - 'fstyles.php?toroot' Remote File Inclusion
|
8 |
WEB
|
Cyber Security
|
|
2006-10-30
|
|
Exhibit Engine 1.22 - 'fetchsettings.php?toroot' Remote File Inclusion
|
8 |
WEB
|
Cyber Security
|
|
2006-10-30
|
|
Actionpoll 1.1.1 - '/db/PollDB.php?CONFIG_DATAREADERWRITER' Remote File Inclusion
|
8 |
WEB
|
Cyber Security
|
|
2006-10-30
|
|
Actionpoll 1.1.1 - '/db/DataReaderWriter.php?CONFIG_DB' Remote File Inclusion
|
8 |
WEB
|
Cyber Security
|
|
2006-10-30
|
|
PunBB 1.x - SQL Injection
|
9 |
WEB
|
nmsh_sa
|
|
2006-10-28
|
|
Web Wiz Forum 6.34/7.x - 'search.asp' SQL Injection
|
10 |
WEB
|
almaster
|
|
2006-10-27
|
|
PLS-Bannieres 1.21 - 'Bannieres.php' Remote File Inclusion
|
9 |
WEB
|
Mahmood_ali
|
|
2006-10-27
|
|
TorrentFlux 2.1 - 'dir.php' Directory Traversal
|
9 |
WEB
|
Christopher
|
|
2006-10-30
|
|
IG Shop 1.4 - 'Change_Pass.php' Cross-Site Scripting
|
9 |
WEB
|
SnipEr.X
|
|
2006-10-27
|
|
PHPTreeView 1.0 - 'TreeViewClass.php' Remote File Inclusion
|
9 |
WEB
|
Prince Islam
|
|
2006-10-26
|
|
PHPLeague 0.81 - '/consult/miniseul.php?cheminmini' Remote File Inclusion
|
8 |
WEB
|
ajaan
|
|
2006-10-26
|
|
MAXdev MD-Pro 1.0.76 - 'user.php' Cross-Site Scripting
|
9 |
WEB
|
r00t
|
|
2006-10-25
|
|
PHPMyConferences 8.0.2 - 'Init.php' Remote File Inclusion
|
9 |
WEB
|
The-0utl4w
|
|
2006-10-25
|
|
Comment IT 0.2 - 'PathToComment' Remote File Inclusion
|
8 |
WEB
|
Cold Zero
|
|
2006-10-24
|
|
Simpnews 2.x - 'pwlost.php' Cross-Site Scripting
|
8 |
WEB
|
security@vigilon.com
|
|
2006-10-24
|
|
Simpnews 2.x - 'index.php' Cross-Site Scripting
|
8 |
WEB
|
security@vigilon.com
|
|
2006-10-24
|
|
Snitz Forums 2000 3.4.6 - 'Pop_Mail.asp' SQL Injection
|
8 |
WEB
|
Arham Muhammad
|
|
2013-10-10
|
|
Imperva SecureSphere Web Application Firewall MX 9.5.6 - Blind SQL Injection
|
9 |
WEB
|
Giuseppe D'Amore
|
|
2006-10-24
|
|
Crafty Syntax Live Help 2.9.9 - Multiple Remote File Inclusions
|
9 |
WEB
|
Crackers_Child
|
|
2006-10-23
|
|
WikiNi 0.4.x - 'Waka.php' Multiple HTML Injection Vulnerabilities
|
9 |
WEB
|
Raphael Huck
|
|
2006-10-23
|
|
Shop-Script - Multiple HTTP Response Splitting Vulnerabilities
|
8 |
WEB
|
Debasis Mohanty
|
|
2006-10-23
|
|
cPanel 10.9 - 'editzonetemplate?template' Cross-Site Scripting
|
7 |
WEB
|
Crackers_Child
|
|
2006-10-23
|
|
cPanel 10.9 - 'dosetmytheme?theme' Cross-Site Scripting
|
8 |
WEB
|
Crackers_Child
|
|
2006-10-23
|
|
Zwahlen's Online Shop 5.2.2 - 'Cat' Cross-Site Scripting
|
9 |
WEB
|
MC.Iglo
|
|
2006-10-23
|
|
SchoolAlumni Portal 2.26 - 'mod.php?mod' Traversal Local File Inclusion
|
9 |
WEB
|
MP
|
|
2006-10-23
|
|
SchoolAlumni Portal 2.26 - '/smumdadotcom_ascyb_alumni/mod.php?katalog Module query' Cross-Site Scri
|
9 |
WEB
|
MP
|
|
2006-10-23
|
|
ClanLite - 'conf-php.php' Remote File Inclusion
|
9 |
WEB
|
x_w0x
|
|
2006-10-20
|
|
Casinosoft Casino Script 3.2 - 'config.php' SQL Injection
|
8 |
WEB
|
G1UK
|
|
2006-10-19
|
|
ATutor 1.5.3 - Multiple Remote File Inclusions
|
9 |
WEB
|
SuBzErO
|
|
2006-10-19
|
|
Simple Machines Forum (SMF) 1.0/1.1 - 'index.php' Cross-Site Scripting
|
8 |
WEB
|
b0rizQ
|
|
2006-10-19
|
|
Free FAQ 1.0 - 'index.php' Remote File Inclusion
|
9 |
WEB
|
Alireza Ahari
|
|
2006-10-18
|
|
Kinesis Interactive Cinema System - 'index.asp' SQL Injection
|
9 |
WEB
|
fireboy
|
|
2006-10-19
|
|
Zorum 3.5 - 'DBProperty.php' Remote File Inclusion
|
9 |
WEB
|
MoHaNdKo
|
|
2006-10-18
|
|
PHP Live Helper 1.17 - Multiple Remote File Inclusions
|
8 |
WEB
|
Matdhule
|
|
2006-10-18
|
|
Cerberus Helpdesk 3.2.1 - 'Rpc.php' Unauthorized Access
|
8 |
WEB
|
jonepet
|
|
2006-10-17
|
|
Dev Web Manager System 1.5 - 'index.php' Cross-Site Scripting
|
9 |
WEB
|
CorryL
|
|
2006-10-17
|
|
phpList 2.10.2 - 'index.php' Cross-Site Scripting
|
9 |
WEB
|
b0rizQ
|
|
2006-10-16
|
|
PowerMovieList 0.13/0.14 - Edit User HTML Injection
|
9 |
WEB
|
MP
|
|
2006-10-16
|
|
Maintain 3.0.0-RC2 - 'Example6.php' Remote File Inclusion
|
9 |
WEB
|
ERNE
|
|
2006-10-17
|
|
Webgenius Goop Gallery 2.0 - 'index.php' Cross-Site Scripting
|
9 |
WEB
|
Lostmon
|
|
2006-10-17
|
|
Lodel CMS 0.7.3 - 'Calcul-page.php' Remote File Inclusion
|
8 |
WEB
|
The_BeKiR
|
|
2006-10-16
|
|
Mambo Module MOStlyCE 4.5.4 - 'HTMLTemplate.php' Remote File Inclusion
|
9 |
WEB
|
The_BeKiR
|
|
2006-10-14
|
|
H-Sphere WebShell 2.x - 'login.php' Cross-Site Scripting
|
8 |
WEB
|
b0rizQ
|
|
2006-10-13
|
|
RamaCMS - 'ADODB.Inc.php' Remote File Inclusion
|
9 |
WEB
|
Le CoPrA
|
|
2013-10-08
|
|
WordPress Plugin Quick Contact Form 6.0 - Persistent Cross-Site Scripting
|
8 |
WEB
|
Zy0d0x
|
|
2013-10-08
|
|
WHMCompleteSolution (WHMCS) 5.2.7 - SQL Injection
|
8 |
WEB
|
localhost.re
|
|
2006-10-13
|
|
phpBB Add Name Module - 'Not_Mem.php' Remote File Inclusion
|
8 |
WEB
|
Nima Salehi
|
|
2006-10-13
|
|
Xoops 2.2.3 - 'search.php' Cross-Site Scripting
|
8 |
WEB
|
b0rizQ
|
|
2006-10-13
|
|
Bloq 0.5.4 - '/files/mainfile.php?page[path]' Remote File Inclusion
|
8 |
WEB
|
KorsaN
|
|
2006-10-13
|
|
Bloq 0.5.4 - 'rdf.php?page[path]' Remote File Inclusion
|
9 |
WEB
|
KorsaN
|
|
2006-10-13
|
|
Bloq 0.5.4 - 'rss2.php?page[path]' Remote File Inclusion
|
8 |
WEB
|
KorsaN
|
|
2006-10-13
|
|
Bloq 0.5.4 - 'rss.php?page[path]' Remote File Inclusion
|
9 |
WEB
|
KorsaN
|
|
2006-10-13
|
|
Bloq 0.5.4 - 'admin.php?page[path]' Remote File Inclusion
|
8 |
WEB
|
KorsaN
|
|
2006-10-13
|
|
Bloq 0.5.4 - 'index.php?page[path]' Remote File Inclusion
|
9 |
WEB
|
KorsaN
|
|
2006-09-29
|
|
Buzlas 2006-1 Full - 'Archive_Topic.php' Remote File Inclusion
|
9 |
WEB
|
Nima Salehi
|
