|
2006-07-25
|
|
PHP Pro Bid 5.2.4 - 'auctionsearch.php?advsrc' Cross-Site Scripting
|
6 |
WEB
|
EllipSiS Security
|
|
2006-07-25
|
|
PHPSavant Savant2 - 'Stylesheet.php?MosConfig_absolute_path' Remote File Inclusion
|
7 |
WEB
|
botan
|
|
2013-09-13
|
|
Zimplit CMS 3.0 - Multiple Vulnerabilities
|
7 |
WEB
|
Yashar shahinzadeh
|
|
2006-07-25
|
|
LinksCaffe 3.0 - 'menu.inc.php' Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
simo64
|
|
2006-07-25
|
|
LinksCaffe 3.0 - 'links.php?newdays' Cross-Site Scripting
|
7 |
WEB
|
simo64
|
|
2006-07-25
|
|
LinksCaffe 3.0 - 'counter.php?tablewidth' Cross-Site Scripting
|
6 |
WEB
|
simo64
|
|
2006-07-25
|
|
LinksCaffe 3.0 - 'links.php' Multiple SQL Injections
|
7 |
WEB
|
simo64
|
|
2006-07-24
|
|
Prince Clan Chess Club 0.8 - 'Include.PCchess.php' Remote File Inclusion
|
7 |
WEB
|
OLiBekaS
|
|
2006-07-24
|
|
MusicBox 2.3.4 - 'page' SQL Injection
|
7 |
WEB
|
EllipSiS Security
|
|
2006-07-24
|
|
RadScripts - 'a_editpage.php?Filename' Arbitrary File Overwrite
|
7 |
WEB
|
INVENT
|
|
2006-07-24
|
|
Lussumo Vanilla 1.0 - RootDirectory Remote File Inclusion
|
7 |
WEB
|
MFox
|
|
2006-07-21
|
|
Chameleon LE 1.203 - 'index.php' Directory Traversal
|
7 |
WEB
|
kicktd
|
|
2006-07-21
|
|
Advanced Poll 2.0.2 - 'common.inc.php' Remote File Inclusion
|
7 |
WEB
|
Solpot
|
|
2006-07-20
|
|
MiniBB 1.5 - 'news.php' Remote File Inclusion
|
7 |
WEB
|
AG-Spider
|
|
2006-07-20
|
|
Geodesic Solutions (Multiple Products) - 'index.php?b' SQL Injection
|
7 |
WEB
|
LBDT
|
|
2006-07-20
|
|
GeoAuctions 1.0.6 Enterprise - 'index.php?d' SQL Injection
|
7 |
WEB
|
LBDT
|
|
2006-07-20
|
|
IDevSpot PHPHostBot 1.0 - 'index.php' Remote File Inclusion
|
7 |
WEB
|
r0t
|
|
2006-07-20
|
|
IDevSpot PHPLinkExchange 1.0 - 'index.php' Remote File Inclusion
|
7 |
WEB
|
r0t
|
|
2013-09-12
|
|
Synology DiskStation Manager (DSM) 4.3-3776 - Multiple Vulnerabilities
|
8 |
WEB
|
Andrea Fabrizi
|
|
2013-09-12
|
|
D-Link DSL-2740B - Multiple Cross-Site Request Forgery Vulnerabilities
|
7 |
WEB
|
Ivano Binetti
|
|
2013-09-12
|
|
Microsoft SharePoint 2013 (Cloud) - Persistent Exception Handling (MS13-067)
|
7 |
WEB
|
Vulnerability-Lab
|
|
2013-09-12
|
|
Talkie Bluetooth Video iFiles 2.0 iOS - Multiple Vulnerabilities
|
7 |
WEB
|
Vulnerability-Lab
|
|
2006-07-17
|
|
Mambo Module Calendar 1.5.7 - 'Com_Calendar.php' Remote File Inclusion
|
7 |
WEB
|
Matdhule
|
|
2006-07-17
|
|
ListMessenger 0.9.3 - 'LM_Path' Remote File Inclusion
|
7 |
WEB
|
xoron
|
|
2006-07-17
|
|
VisNetic Mail Server 8.3.5 - Multiple File Inclusions
|
7 |
WEB
|
Tan Chew Keong
|
|
2006-07-14
|
|
Subberz Lite - UserFunc Remote File Inclusion
|
7 |
WEB
|
Chironex Fleckeri
|
|
2006-07-13
|
|
Dream4 Koobi Pro 5.6 - 'showtopic' SQL Injection
|
7 |
WEB
|
Evampire chiristof
|
|
2006-07-13
|
|
Forum 5 - 'pm.php' Local File Inclusion
|
7 |
WEB
|
rgod
|
|
2006-07-13
|
|
FlatNuke 2.5.7 - 'index.php' Remote File Inclusion
|
7 |
WEB
|
rgod
|
|
2006-07-13
|
|
PHP Event Calendar 1.4 - 'calendar.php' Remote File Inclusion
|
7 |
WEB
|
Solpot
|
|
2006-07-13
|
|
PhotoCycle 1.0 - 'PhotoCycle.php' Cross-Site Scripting
|
7 |
WEB
|
Luny
|
|
2006-07-12
|
|
Lazarus Guestbook 1.6 - 'picture.php?img' Cross-Site Scripting
|
7 |
WEB
|
simo64
|
|
2006-07-12
|
|
Lazarus Guestbook 1.6 - 'codes-english.php?show' Cross-Site Scripting
|
7 |
WEB
|
simo64
|
|
2006-07-12
|
|
FlexWATCH 3.0 - 'AIndex.asp' Authentication Bypass
|
7 |
WEB
|
Jaime Blasco
|
|
2006-07-11
|
|
Fantastic Guestbook 2.0.1 - 'Guestbook.php' HTML Injection
|
7 |
WEB
|
omnipresent
|
|
2006-06-11
|
|
FlexWATCH Network Camera - Cross-Site Scripting
|
7 |
WEB
|
Jaime Blasco
|
|
2006-07-11
|
|
SaPHPLesson 2.0 - 'add.php' SQL Injection
|
7 |
WEB
|
C.B.B.L
|
|
2006-07-11
|
|
Hosting Controller 1.x - 'error.asp' Cross-Site Scripting
|
7 |
WEB
|
Dea7h
|
|
2006-07-10
|
|
Graffiti Forums 1.0 - 'Topics.php' SQL Injection
|
6 |
WEB
|
Paisterist
|
|
2006-07-10
|
|
Farsinews 3.0 - 'Tiny_mce_gzip.php' Directory Traversal
|
7 |
WEB
|
armin390
|
|
2006-07-09
|
|
Mambo Componen phpBB 1.2.4 - Multiple Remote File Inclusions
|
7 |
WEB
|
h4ntu
|
|
2006-07-08
|
|
RW::Download - 'stats.php' Remote File Inclusion
|
7 |
WEB
|
StorMBoY
|
|
2006-07-08
|
|
Webvizyon - 'SayfalaAltList.asp' SQL Injection
|
7 |
WEB
|
StorMBoY
|
|
2006-07-08
|
|
ATutor 1.5.3 - Multiple Input Validation Vulnerabilities
|
7 |
WEB
|
securityconnection
|
|
2013-09-10
|
|
AjaXplorer 1.0 - Multiple Vulnerabilities
|
7 |
WEB
|
Trustwave's SpiderLabs
|
|
2006-07-07
|
|
Extcalendar 2.0 - 'Extcalendar.php' Remote File Inclusion
|
6 |
WEB
|
Matdhule
|
|
2013-09-10
|
|
glFusion 1.3.0 - 'search.php?cat_id' SQL Injection
|
7 |
WEB
|
Omar Kurt
|
|
2013-09-10
|
|
D-Link DIR-505 1.06 - Multiple Vulnerabilities
|
7 |
WEB
|
Alessandro Di Pinto
|
|
2006-07-06
|
|
ATutor 1.5.x - '/admin/fix_content.php?submit' Cross-Site Scripting
|
7 |
WEB
|
Security News
|
|
2006-07-06
|
|
ATutor 1.5.x - '/users/browse.php?cat' Cross-Site Scripting
|
7 |
WEB
|
Security News
|
|
2006-07-06
|
|
ATutor 1.5.x - 'password_reminder.php?forgot' Cross-Site Scripting
|
7 |
WEB
|
Security News
|
|
2006-07-06
|
|
ATutor 1.5.x - '/documentation/admin/index.php' Cross-Site Scripting
|
7 |
WEB
|
Security News
|
|
2006-07-06
|
|
ATutor 1.5.x - 'create_course.php' Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
Security News
|
|
2013-09-09
|
|
Sophos Web Protection Appliance - Multiple Vulnerabilities
|
7 |
WEB
|
Core Security
|
|
2013-09-09
|
|
Moodle 2.3.8/2.4.5 - Multiple Vulnerabilities
|
7 |
WEB
|
Ciaran McNally
|
|
2013-09-09
|
|
Zyxware Health Monitoring System - Multiple Vulnerabilities
|
7 |
WEB
|
Sarahma Security
|
|
2006-07-05
|
|
Blog:CMS 4.1 - 'Thumb.php' Remote File Inclusion
|
7 |
WEB
|
EllipSiS Security
|
|
2006-07-05
|
|
Invision Power Board (IP.Board) 1.x/2.x - Multiple SQL Injections
|
7 |
WEB
|
CrAzY CrAcKeR
|
|
2006-07-05
|
|
LifeType 1.0.5 - 'index.php?Date' SQL Injection
|
7 |
WEB
|
Alejandro Ramos
|
|
2006-07-04
|
|
PostNuke 0.6x/0.7x - Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
rgod
|
|
2006-07-04
|
|
Randshop 0.9.3/1.2 - 'index.php' Remote File Inclusion
|
7 |
WEB
|
black-code
|
|
2006-07-04
|
|
PHPWebGallery 1.x - 'comments.php' Cross-Site Scripting
|
7 |
WEB
|
iss4m
|
|
2006-07-03
|
|
Glossaire 1.7 - Remote File Inclusion
|
7 |
WEB
|
CrAzY CrAcKeR
|
|
2006-07-03
|
|
QTO File Manager 1.0 - Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
EllipSiS Security
|
|
2006-07-03
|
|
VirtuaStore 2.0 - 'Password' SQL Injection
|
7 |
WEB
|
supermalhacao
|
|
2006-07-03
|
|
free QBoard 1.1 - 'history.php?qb_path' Remote File Inclusion
|
7 |
WEB
|
CrAsh_oVeR_rIdE
|
|
2006-07-03
|
|
free QBoard 1.1 - 'features.php?qb_path' Remote File Inclusion
|
7 |
WEB
|
CrAsh_oVeR_rIdE
|
|
2006-07-03
|
|
free QBoard 1.1 - 'faq.php?qb_path' Remote File Inclusion
|
7 |
WEB
|
CrAsh_oVeR_rIdE
|
|
2006-07-03
|
|
free QBoard 1.1 - 'delete.php?qb_path' Remote File Inclusion
|
7 |
WEB
|
CrAsh_oVeR_rIdE
|
|
2006-07-03
|
|
free QBoard 1.1 - 'contact.php?qb_path' Remote File Inclusion
|
7 |
WEB
|
CrAsh_oVeR_rIdE
|
|
2006-07-03
|
|
free QBoard 1.1 - 'about.php?qb_path' Remote File Inclusion
|
6 |
WEB
|
CrAsh_oVeR_rIdE
|
|
2006-07-03
|
|
free QBoard 1.1 - 'index.php?qb_path' Remote File Inclusion
|
7 |
WEB
|
CrAsh_oVeR_rIdE
|
|
2006-07-03
|
|
Plume CMS 1.0.4 - 'search.php?_PX_config[manager_path]' Remote File Inclusion
|
7 |
WEB
|
CrAsh_oVeR_rIdE
|
|
2007-07-03
|
|
Plume CMS 1.0.4 - 'rss.php?_PX_config[manager_path]' Remote File Inclusion
|
7 |
WEB
|
CrAsh_oVeR_rIdE
|
|
2007-07-03
|
|
Plume CMS 1.0.4 - 'index.php?_PX_config[manager_path]' Remote File Inclusion
|
7 |
WEB
|
CrAsh_oVeR_rIdE
|
|
2006-07-03
|
|
Vincent Leclercq News 5.2 - Cross-Site Scripting
|
7 |
WEB
|
DarkFig
|
|
2006-07-01
|
|
SturGeoN Upload - Arbitrary File Upload
|
7 |
WEB
|
Jihad BENABRA
|
|
2006-07-01
|
|
Diesel Joke Site - 'Category.php' SQL Injection
|
7 |
WEB
|
black-code
|
|
2006-06-01
|
|
SiteBuilder-FX - 'top.php' Remote File Inclusion
|
7 |
WEB
|
MazaGi
|
|
2006-06-29
|
|
SoftBiz Banner Exchange Script 1.0 - 'index.php?PHPSESSID' Cross-Site Scripting
|
7 |
WEB
|
securityconnection
|
|
2006-06-29
|
|
SoftBiz Banner Exchange Script 1.0 - 'gen_confirm_mem.php?PHPSESSID' Cross-Site Scripting
|
7 |
WEB
|
securityconnection
|
|
2006-06-29
|
|
SoftBiz Banner Exchange Script 1.0 - 'lostpassword.php?PHPSESSID' Cross-Site Scripting
|
7 |
WEB
|
securityconnection
|
|
2006-06-29
|
|
SoftBiz Banner Exchange Script 1.0 - 'insertmember.php?city' Cross-Site Scripting
|
7 |
WEB
|
securityconnection
|
|
2006-06-23
|
|
Vincent-Leclercq News 5.2 - 'Diver.php' SQL Injection
|
7 |
WEB
|
DarkFig
|
|
2006-06-29
|
|
newsPHP 2006 PRO - '/inc/rss_feed.php?category' SQL Injection
|
7 |
WEB
|
securityconnection
|
|
2006-06-29
|
|
newsPHP 2006 PRO - 'index.php' Multiple SQL Injections
|
7 |
WEB
|
securityconnection
|
|
2006-06-29
|
|
newsPHP 2006 PRO - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
securityconnection
|
|
2006-06-29
|
|
PHP ICalender 2.22 - 'index.php' Cross-Site Scripting
|
7 |
WEB
|
Kurdish Security
|
|
2013-09-06
|
|
Practico CMS 13.7 - Authentication Bypass
|
7 |
WEB
|
shiZheni
|
|
2013-09-06
|
|
CMS Mini 0.2.2 - Multiple Vulnerabilities
|
7 |
WEB
|
SANTHO
|
|
2013-09-06
|
|
Woltlab Burning Board FLVideo Addon - 'video.php?value' SQL Injection
|
7 |
WEB
|
Easy Laster
|
|
2006-06-28
|
|
PHPClassifieds.Info - Multiple Input Validation Vulnerabilities
|
7 |
WEB
|
Luny
|
|
2006-06-28
|
|
MKPortal 1.0.1 - 'index.php' Directory Traversal
|
7 |
WEB
|
rUnViRuS
|
|
2006-06-19
|
|
vCard PRO - 'search.php?event_id' SQL Injection
|
7 |
WEB
|
CrAzY CrAcKeR
|
|
2006-06-19
|
|
vCard PRO - 'create.php?card_id' SQL Injection
|
7 |
WEB
|
CrAzY CrAcKeR
|
|
2006-06-19
|
|
vCard PRO - 'rating.php?card_id' SQL Injection
|
8 |
WEB
|
CrAzY CrAcKeR
|
|
2006-06-19
|
|
vCard PRO - 'gbrowse.php?cat_id' SQL Injection
|
7 |
WEB
|
CrAzY CrAcKeR
|
|
2006-06-27
|
|
MF Piadas 1.0 - 'admin.php' Remote File Inclusion
|
7 |
WEB
|
botan
|
|
2006-06-27
|
|
H-Sphere 2.5.1 - Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
r0t
|
|
2006-06-27
|
|
MF Piadas 1.0 - 'admin.php' Cross-Site Scripting
|
7 |
WEB
|
botan
|
|
2006-06-27
|
|
CrisoftRicette 1.0 - 'Cookbook.php' Remote File Inclusion
|
8 |
WEB
|
CrAzY.CrAcKeR
|
|
2006-06-27
|
|
cPanel 10.8.1/10.8.2 - OnMouseover Cross-Site Scripting
|
7 |
WEB
|
MexHackTeam.org
|
|
2006-06-26
|
|
OpenGuestbook 0.5 - 'view.php?offset' SQL Injection
|
7 |
WEB
|
simo64
|
|
2006-06-26
|
|
OpenGuestbook 0.5 - 'header.php?title' Cross-Site Scripting
|
7 |
WEB
|
simo64
|
|
2006-06-26
|
|
MVNForum Activatemember 1.0 - Cross-Site Scripting
|
7 |
WEB
|
r0t
|
|
2006-06-23
|
|
Usenet 0.5 - 'index.php' Cross-Site Scripting
|
7 |
WEB
|
Luny
|
|
2006-06-26
|
|
MyMail 1.0 - 'login.php' Cross-Site Scripting
|
6 |
WEB
|
botan
|
|
2006-06-26
|
|
cPanel 10 - Select.HTML Cross-Site Scripting
|
7 |
WEB
|
preth00nker
|
|
2006-06-16
|
|
Bee-hive 1.2 - Multiple Remote File Inclusions
|
7 |
WEB
|
Kw3[R]Ln
|
|
2006-06-26
|
|
eNpaper1 - 'Root_Header.php' Remote File Inclusion
|
7 |
WEB
|
almaster
|
|
2006-06-26
|
|
ADODB 4.6/4.7 - 'Tmssql.php' Cross-Site Scripting
|
7 |
WEB
|
Rodrigo Silva
|
|
2006-06-24
|
|
Winged Gallery 1.0 - 'Thumb.php' Cross-Site Scripting
|
7 |
WEB
|
Luny
|
|
2006-06-24
|
|
Custom Dating Biz 1.0 - Multiple Input Validation Vulnerabilities
|
7 |
WEB
|
Luny
|
|
2006-06-22
|
|
PHP Blue Dragon CMS 2.9.1 - Multiple Remote File Inclusions
|
7 |
WEB
|
Shm
|
|
2006-06-22
|
|
Dating Agent 4.7.1 - Multiple Input Validation Vulnerabilities
|
7 |
WEB
|
EllipSiS Security
|
|
2006-06-22
|
|
SoftBizScripts Dating Script 1.0 - 'news_desc.php' SQL Injection
|
7 |
WEB
|
EllipSiS Security
|
|
2006-06-22
|
|
SoftBizScripts Dating Script 1.0 - 'index.php' SQL Injection
|
7 |
WEB
|
EllipSiS Security
|
|
2006-06-22
|
|
SoftBizScripts Dating Script 1.0 - 'products.php' SQL Injection
|
7 |
WEB
|
EllipSiS Security
|
|
2006-06-22
|
|
SoftBizScripts Dating Script 1.0 - 'featured_photos.php' SQL Injection
|
7 |
WEB
|
EllipSiS Security
|
|
2006-06-22
|
|
MyBulletinBoard (MyBB) 1.0.x/1.1.x - 'usercp.php' SQL Injection
|
7 |
WEB
|
imei
|
|
2006-06-22
|
|
Woltlab Burning Board 1.2/2.0/2.3 - 'showmods.php?boardid' SQL Injection
|
7 |
WEB
|
CrAzY CrAcKeR
|
|
2006-06-22
|
|
Woltlab Burning Board 1.2/2.0/2.3 - 'report.php?postid' SQL Injection
|
7 |
WEB
|
CrAzY CrAcKeR
|
|
2006-06-22
|
|
Woltlab Burning Board 1.2/2.0/2.3 - 'newthread.php?boardid' SQL Injection
|
7 |
WEB
|
CrAzY CrAcKeR
|
|
2006-06-22
|
|
PHP Event Calendar 4.2 - SQL Injection
|
7 |
WEB
|
Silitix
|
|
2006-06-21
|
|
Maximus SchoolMAX 4.0.1 - 'Error_msg' Cross-Site Scripting
|
7 |
WEB
|
Charles Hooper
|
