|
2006-07-13
|
|
PhotoCycle 1.0 - 'PhotoCycle.php' Cross-Site Scripting
|
5 |
WEB
|
Luny
|
|
2006-07-12
|
|
Lazarus Guestbook 1.6 - 'picture.php?img' Cross-Site Scripting
|
4 |
WEB
|
simo64
|
|
2006-07-12
|
|
Lazarus Guestbook 1.6 - 'codes-english.php?show' Cross-Site Scripting
|
4 |
WEB
|
simo64
|
|
2006-07-12
|
|
FlexWATCH 3.0 - 'AIndex.asp' Authentication Bypass
|
4 |
WEB
|
Jaime Blasco
|
|
2006-07-11
|
|
Fantastic Guestbook 2.0.1 - 'Guestbook.php' HTML Injection
|
4 |
WEB
|
omnipresent
|
|
2006-06-11
|
|
FlexWATCH Network Camera - Cross-Site Scripting
|
4 |
WEB
|
Jaime Blasco
|
|
2006-07-11
|
|
SaPHPLesson 2.0 - 'add.php' SQL Injection
|
4 |
WEB
|
C.B.B.L
|
|
2006-07-11
|
|
Hosting Controller 1.x - 'error.asp' Cross-Site Scripting
|
4 |
WEB
|
Dea7h
|
|
2006-07-10
|
|
Graffiti Forums 1.0 - 'Topics.php' SQL Injection
|
3 |
WEB
|
Paisterist
|
|
2006-07-10
|
|
Farsinews 3.0 - 'Tiny_mce_gzip.php' Directory Traversal
|
4 |
WEB
|
armin390
|
|
2006-07-09
|
|
Mambo Componen phpBB 1.2.4 - Multiple Remote File Inclusions
|
4 |
WEB
|
h4ntu
|
|
2006-07-08
|
|
RW::Download - 'stats.php' Remote File Inclusion
|
4 |
WEB
|
StorMBoY
|
|
2006-07-08
|
|
Webvizyon - 'SayfalaAltList.asp' SQL Injection
|
4 |
WEB
|
StorMBoY
|
|
2006-07-08
|
|
ATutor 1.5.3 - Multiple Input Validation Vulnerabilities
|
4 |
WEB
|
securityconnection
|
|
2013-09-10
|
|
AjaXplorer 1.0 - Multiple Vulnerabilities
|
4 |
WEB
|
Trustwave's SpiderLabs
|
|
2006-07-07
|
|
Extcalendar 2.0 - 'Extcalendar.php' Remote File Inclusion
|
3 |
WEB
|
Matdhule
|
|
2013-09-10
|
|
glFusion 1.3.0 - 'search.php?cat_id' SQL Injection
|
4 |
WEB
|
Omar Kurt
|
|
2013-09-10
|
|
D-Link DIR-505 1.06 - Multiple Vulnerabilities
|
4 |
WEB
|
Alessandro Di Pinto
|
|
2006-07-06
|
|
ATutor 1.5.x - '/admin/fix_content.php?submit' Cross-Site Scripting
|
4 |
WEB
|
Security News
|
|
2006-07-06
|
|
ATutor 1.5.x - '/users/browse.php?cat' Cross-Site Scripting
|
4 |
WEB
|
Security News
|
|
2006-07-06
|
|
ATutor 1.5.x - 'password_reminder.php?forgot' Cross-Site Scripting
|
4 |
WEB
|
Security News
|
|
2006-07-06
|
|
ATutor 1.5.x - '/documentation/admin/index.php' Cross-Site Scripting
|
4 |
WEB
|
Security News
|
|
2006-07-06
|
|
ATutor 1.5.x - 'create_course.php' Multiple Cross-Site Scripting Vulnerabilities
|
4 |
WEB
|
Security News
|
|
2013-09-09
|
|
Sophos Web Protection Appliance - Multiple Vulnerabilities
|
4 |
WEB
|
Core Security
|
|
2013-09-09
|
|
Moodle 2.3.8/2.4.5 - Multiple Vulnerabilities
|
4 |
WEB
|
Ciaran McNally
|
|
2013-09-09
|
|
Zyxware Health Monitoring System - Multiple Vulnerabilities
|
4 |
WEB
|
Sarahma Security
|
|
2006-07-05
|
|
Blog:CMS 4.1 - 'Thumb.php' Remote File Inclusion
|
4 |
WEB
|
EllipSiS Security
|
|
2006-07-05
|
|
Invision Power Board (IP.Board) 1.x/2.x - Multiple SQL Injections
|
4 |
WEB
|
CrAzY CrAcKeR
|
|
2006-07-05
|
|
LifeType 1.0.5 - 'index.php?Date' SQL Injection
|
4 |
WEB
|
Alejandro Ramos
|
|
2006-07-04
|
|
PostNuke 0.6x/0.7x - Multiple Cross-Site Scripting Vulnerabilities
|
4 |
WEB
|
rgod
|
|
2006-07-04
|
|
Randshop 0.9.3/1.2 - 'index.php' Remote File Inclusion
|
4 |
WEB
|
black-code
|
|
2006-07-04
|
|
PHPWebGallery 1.x - 'comments.php' Cross-Site Scripting
|
4 |
WEB
|
iss4m
|
|
2006-07-03
|
|
Glossaire 1.7 - Remote File Inclusion
|
4 |
WEB
|
CrAzY CrAcKeR
|
|
2006-07-03
|
|
QTO File Manager 1.0 - Multiple Cross-Site Scripting Vulnerabilities
|
4 |
WEB
|
EllipSiS Security
|
|
2006-07-03
|
|
VirtuaStore 2.0 - 'Password' SQL Injection
|
4 |
WEB
|
supermalhacao
|
|
2006-07-03
|
|
free QBoard 1.1 - 'history.php?qb_path' Remote File Inclusion
|
4 |
WEB
|
CrAsh_oVeR_rIdE
|
|
2006-07-03
|
|
free QBoard 1.1 - 'features.php?qb_path' Remote File Inclusion
|
4 |
WEB
|
CrAsh_oVeR_rIdE
|
|
2006-07-03
|
|
free QBoard 1.1 - 'faq.php?qb_path' Remote File Inclusion
|
4 |
WEB
|
CrAsh_oVeR_rIdE
|
|
2006-07-03
|
|
free QBoard 1.1 - 'delete.php?qb_path' Remote File Inclusion
|
4 |
WEB
|
CrAsh_oVeR_rIdE
|
|
2006-07-03
|
|
free QBoard 1.1 - 'contact.php?qb_path' Remote File Inclusion
|
4 |
WEB
|
CrAsh_oVeR_rIdE
|
|
2006-07-03
|
|
free QBoard 1.1 - 'about.php?qb_path' Remote File Inclusion
|
3 |
WEB
|
CrAsh_oVeR_rIdE
|
|
2006-07-03
|
|
free QBoard 1.1 - 'index.php?qb_path' Remote File Inclusion
|
4 |
WEB
|
CrAsh_oVeR_rIdE
|
|
2006-07-03
|
|
Plume CMS 1.0.4 - 'search.php?_PX_config[manager_path]' Remote File Inclusion
|
4 |
WEB
|
CrAsh_oVeR_rIdE
|
|
2007-07-03
|
|
Plume CMS 1.0.4 - 'rss.php?_PX_config[manager_path]' Remote File Inclusion
|
4 |
WEB
|
CrAsh_oVeR_rIdE
|
|
2007-07-03
|
|
Plume CMS 1.0.4 - 'index.php?_PX_config[manager_path]' Remote File Inclusion
|
4 |
WEB
|
CrAsh_oVeR_rIdE
|
|
2006-07-03
|
|
Vincent Leclercq News 5.2 - Cross-Site Scripting
|
4 |
WEB
|
DarkFig
|
|
2006-07-01
|
|
SturGeoN Upload - Arbitrary File Upload
|
4 |
WEB
|
Jihad BENABRA
|
|
2006-07-01
|
|
Diesel Joke Site - 'Category.php' SQL Injection
|
4 |
WEB
|
black-code
|
|
2006-06-01
|
|
SiteBuilder-FX - 'top.php' Remote File Inclusion
|
4 |
WEB
|
MazaGi
|
|
2006-06-29
|
|
SoftBiz Banner Exchange Script 1.0 - 'index.php?PHPSESSID' Cross-Site Scripting
|
4 |
WEB
|
securityconnection
|
|
2006-06-29
|
|
SoftBiz Banner Exchange Script 1.0 - 'gen_confirm_mem.php?PHPSESSID' Cross-Site Scripting
|
4 |
WEB
|
securityconnection
|
|
2006-06-29
|
|
SoftBiz Banner Exchange Script 1.0 - 'lostpassword.php?PHPSESSID' Cross-Site Scripting
|
4 |
WEB
|
securityconnection
|
|
2006-06-29
|
|
SoftBiz Banner Exchange Script 1.0 - 'insertmember.php?city' Cross-Site Scripting
|
4 |
WEB
|
securityconnection
|
|
2006-06-23
|
|
Vincent-Leclercq News 5.2 - 'Diver.php' SQL Injection
|
4 |
WEB
|
DarkFig
|
|
2006-06-29
|
|
newsPHP 2006 PRO - '/inc/rss_feed.php?category' SQL Injection
|
4 |
WEB
|
securityconnection
|
|
2006-06-29
|
|
newsPHP 2006 PRO - 'index.php' Multiple SQL Injections
|
4 |
WEB
|
securityconnection
|
|
2006-06-29
|
|
newsPHP 2006 PRO - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
|
4 |
WEB
|
securityconnection
|
|
2006-06-29
|
|
PHP ICalender 2.22 - 'index.php' Cross-Site Scripting
|
4 |
WEB
|
Kurdish Security
|
|
2013-09-06
|
|
Practico CMS 13.7 - Authentication Bypass
|
4 |
WEB
|
shiZheni
|
|
2013-09-06
|
|
CMS Mini 0.2.2 - Multiple Vulnerabilities
|
4 |
WEB
|
SANTHO
|
|
2013-09-06
|
|
Woltlab Burning Board FLVideo Addon - 'video.php?value' SQL Injection
|
4 |
WEB
|
Easy Laster
|
|
2006-06-28
|
|
PHPClassifieds.Info - Multiple Input Validation Vulnerabilities
|
4 |
WEB
|
Luny
|
|
2006-06-28
|
|
MKPortal 1.0.1 - 'index.php' Directory Traversal
|
4 |
WEB
|
rUnViRuS
|
|
2006-06-19
|
|
vCard PRO - 'search.php?event_id' SQL Injection
|
4 |
WEB
|
CrAzY CrAcKeR
|
|
2006-06-19
|
|
vCard PRO - 'create.php?card_id' SQL Injection
|
4 |
WEB
|
CrAzY CrAcKeR
|
|
2006-06-19
|
|
vCard PRO - 'rating.php?card_id' SQL Injection
|
4 |
WEB
|
CrAzY CrAcKeR
|
|
2006-06-19
|
|
vCard PRO - 'gbrowse.php?cat_id' SQL Injection
|
4 |
WEB
|
CrAzY CrAcKeR
|
|
2006-06-27
|
|
MF Piadas 1.0 - 'admin.php' Remote File Inclusion
|
4 |
WEB
|
botan
|
|
2006-06-27
|
|
H-Sphere 2.5.1 - Multiple Cross-Site Scripting Vulnerabilities
|
4 |
WEB
|
r0t
|
|
2006-06-27
|
|
MF Piadas 1.0 - 'admin.php' Cross-Site Scripting
|
4 |
WEB
|
botan
|
|
2006-06-27
|
|
CrisoftRicette 1.0 - 'Cookbook.php' Remote File Inclusion
|
5 |
WEB
|
CrAzY.CrAcKeR
|
|
2006-06-27
|
|
cPanel 10.8.1/10.8.2 - OnMouseover Cross-Site Scripting
|
4 |
WEB
|
MexHackTeam.org
|
|
2006-06-26
|
|
OpenGuestbook 0.5 - 'view.php?offset' SQL Injection
|
4 |
WEB
|
simo64
|
|
2006-06-26
|
|
OpenGuestbook 0.5 - 'header.php?title' Cross-Site Scripting
|
4 |
WEB
|
simo64
|
|
2006-06-26
|
|
MVNForum Activatemember 1.0 - Cross-Site Scripting
|
4 |
WEB
|
r0t
|
|
2006-06-23
|
|
Usenet 0.5 - 'index.php' Cross-Site Scripting
|
4 |
WEB
|
Luny
|
|
2006-06-26
|
|
MyMail 1.0 - 'login.php' Cross-Site Scripting
|
3 |
WEB
|
botan
|
|
2006-06-26
|
|
cPanel 10 - Select.HTML Cross-Site Scripting
|
4 |
WEB
|
preth00nker
|
|
2006-06-16
|
|
Bee-hive 1.2 - Multiple Remote File Inclusions
|
4 |
WEB
|
Kw3[R]Ln
|
|
2006-06-26
|
|
eNpaper1 - 'Root_Header.php' Remote File Inclusion
|
4 |
WEB
|
almaster
|
|
2006-06-26
|
|
ADODB 4.6/4.7 - 'Tmssql.php' Cross-Site Scripting
|
4 |
WEB
|
Rodrigo Silva
|
|
2006-06-24
|
|
Winged Gallery 1.0 - 'Thumb.php' Cross-Site Scripting
|
4 |
WEB
|
Luny
|
|
2006-06-24
|
|
Custom Dating Biz 1.0 - Multiple Input Validation Vulnerabilities
|
4 |
WEB
|
Luny
|
|
2006-06-22
|
|
PHP Blue Dragon CMS 2.9.1 - Multiple Remote File Inclusions
|
4 |
WEB
|
Shm
|
|
2006-06-22
|
|
Dating Agent 4.7.1 - Multiple Input Validation Vulnerabilities
|
4 |
WEB
|
EllipSiS Security
|
|
2006-06-22
|
|
SoftBizScripts Dating Script 1.0 - 'news_desc.php' SQL Injection
|
4 |
WEB
|
EllipSiS Security
|
|
2006-06-22
|
|
SoftBizScripts Dating Script 1.0 - 'index.php' SQL Injection
|
4 |
WEB
|
EllipSiS Security
|
|
2006-06-22
|
|
SoftBizScripts Dating Script 1.0 - 'products.php' SQL Injection
|
4 |
WEB
|
EllipSiS Security
|
|
2006-06-22
|
|
SoftBizScripts Dating Script 1.0 - 'featured_photos.php' SQL Injection
|
4 |
WEB
|
EllipSiS Security
|
|
2006-06-22
|
|
MyBulletinBoard (MyBB) 1.0.x/1.1.x - 'usercp.php' SQL Injection
|
4 |
WEB
|
imei
|
|
2006-06-22
|
|
Woltlab Burning Board 1.2/2.0/2.3 - 'showmods.php?boardid' SQL Injection
|
4 |
WEB
|
CrAzY CrAcKeR
|
|
2006-06-22
|
|
Woltlab Burning Board 1.2/2.0/2.3 - 'report.php?postid' SQL Injection
|
4 |
WEB
|
CrAzY CrAcKeR
|
|
2006-06-22
|
|
Woltlab Burning Board 1.2/2.0/2.3 - 'newthread.php?boardid' SQL Injection
|
4 |
WEB
|
CrAzY CrAcKeR
|
|
2006-06-22
|
|
PHP Event Calendar 4.2 - SQL Injection
|
4 |
WEB
|
Silitix
|
|
2006-06-21
|
|
Maximus SchoolMAX 4.0.1 - 'Error_msg' Cross-Site Scripting
|
4 |
WEB
|
Charles Hooper
|
|
2006-06-21
|
|
e107 0.7.5 - 'Subject' HTML Injection
|
4 |
WEB
|
EllipSiS Security
|
|
2006-06-20
|
|
vBulletin 3.0.9/3.5.x - 'member.php' Cross-Site Scripting
|
4 |
WEB
|
CrAzY.CrAcKeR
|
|
2006-06-20
|
|
V3 Chat Instant Messenger - 'mycontacts.php' membername Arbitrary User Buddy List Manipulation
|
4 |
WEB
|
Luny
|
|
2006-06-20
|
|
V3 Chat Instant Messenger - 'expire.php?cust_name' Cross-Site Scripting
|
4 |
WEB
|
Luny
|
|
2006-06-20
|
|
V3 Chat Instant Messenger - 'profileview.php?membername' Cross-Site Scripting
|
3 |
WEB
|
Luny
|
|
2006-06-20
|
|
V3 Chat Instant Messenger - 'profile.php?site_id' Cross-Site Scripting
|
4 |
WEB
|
Luny
|
|
2006-06-20
|
|
V3 Chat Instant Messenger - 'search.php' Multiple Cross-Site Scripting Vulnerabilities
|
4 |
WEB
|
Luny
|
|
2006-06-20
|
|
V3 Chat Instant Messenger - 'online.php?site_id' Cross-Site Scripting
|
4 |
WEB
|
Luny
|
|
2006-06-20
|
|
V3 Chat Instant Messenger - '/mail/reply.php?id' Cross-Site Scripting
|
4 |
WEB
|
Luny
|
|
2006-06-20
|
|
V3 Chat Instant Messenger - '/mail/index.php?id' Cross-Site Scripting
|
3 |
WEB
|
Luny
|
|
2006-06-19
|
|
Singapore 0.9.x/0.10 - 'index.php?template' Cross-Site Scripting
|
4 |
WEB
|
simo64
|
|
2006-06-19
|
|
Singapore 0.9.x/0.10 - Multiple Traversal Arbitrary File Access
|
4 |
WEB
|
simo64
|
|
2006-03-06
|
|
Qto File Manager 1.0 - 'index.php' Cross-Site Scripting
|
4 |
WEB
|
alijsb
|
|
2006-06-19
|
|
e107 0.7.5 - 'search.php' Cross-Site Scripting
|
4 |
WEB
|
securityconnection
|
|
2006-06-19
|
|
Cisco CallManager 3.x/4.x - 'Web Interface 'ccmuser/logon.asp' Cross-Site Scripting
|
4 |
WEB
|
Jake Reynolds
|
|
2006-06-19
|
|
Cisco CallManager 3.x/4.x - 'Web Interface 'ccmadmin/phonelist.asp?Pattern' Cross-Site Scripting
|
4 |
WEB
|
Jake Reynolds
|
|
2006-06-19
|
|
Datecomm 1.1 - Multiple Cross-Site Scripting Vulnerabilities
|
4 |
WEB
|
Luny
|
|
2006-06-19
|
|
SaphpLesson 1.1/2.0/3.0 - Multiple SQL Injections
|
4 |
WEB
|
CrAzY CrAcKeR
|
|
2006-06-19
|
|
Eduha Meeting - 'index.php' Arbitrary File Upload
|
4 |
WEB
|
Liz0ziM
|
|
2006-06-17
|
|
Cline Communications - Multiple SQL Injections
|
4 |
WEB
|
Liz0ziM
|
|
2013-09-03
|
|
TP-Link TD-W8951ND - Multiple Vulnerabilities
|
4 |
WEB
|
xistence
|
|
2013-09-03
|
|
WordPress Plugin IndiaNIC Testimonial - Multiple Vulnerabilities
|
4 |
WEB
|
RogueCoder
|
|
2013-09-03
|
|
Zoom Telephonics ADSL Modem/Router - Multiple Vulnerabilities
|
4 |
WEB
|
Kyle Lovett
|
|
2006-06-17
|
|
RahnemaCo - 'page.php' PageID Remote File Inclusion
|
4 |
WEB
|
CrAzY.CrAcKeR
|
|
2006-06-17
|
|
CMS Faethon 1.3.2 - Multiple Remote File Inclusions
|
4 |
WEB
|
M.Hasran Addahroni
|
|
2006-06-03
|
|
dotWidget for articles 2.0 - '/admin/editconfig.php' Multiple Remote File Inclusions
|
4 |
WEB
|
SwEET-DeViL
|
|
2006-06-03
|
|
dotWidget for articles 2.0 - '/admin/categories.php' Multiple Remote File Inclusions
|
3 |
WEB
|
SwEET-DeViL
|
|
2006-06-03
|
|
dotWidget for articles 2.0 - '/admin/index.php' Multiple Remote File Inclusions
|
4 |
WEB
|
SwEET-DeViL
|
|
2006-06-03
|
|
dotWidget for articles 2.0 - '/admin/articles.php' Multiple Remote File Inclusions
|
4 |
WEB
|
SwEET-DeViL
|
|
2006-06-03
|
|
dotWidget for articles 2.0 - '/admin/authors.php' Multiple Remote File Inclusions
|
4 |
WEB
|
SwEET-DeViL
|
