|
2006-05-13
|
|
Gphotos 1.4/1.5 - 'diapo.php?rep' Cross-Site Scripting
|
4 |
WEB
|
Morocco Security Team
|
|
2006-05-13
|
|
Gphotos 1.4/1.5 - 'index.php?rep' Cross-Site Scripting
|
4 |
WEB
|
Morocco Security Team
|
|
2006-05-12
|
|
phpBB 2.0.20 - Unauthorized HTTP Proxy
|
4 |
WEB
|
rgod
|
|
2006-05-12
|
|
OZJournals 1.2 - 'Vname' Cross-Site Scripting
|
4 |
WEB
|
Kiki
|
|
2006-05-11
|
|
phpBB Chart Mod 1.1 - 'charts.php?id' Cross-Site Scripting
|
4 |
WEB
|
sn4k3.23
|
|
2006-05-11
|
|
phpBB Chart Mod 1.1 - 'charts.php?id' SQL Injection
|
4 |
WEB
|
sn4k3.23
|
|
2006-05-11
|
|
Vizra - 'A_Login.php' Cross-Site Scripting
|
4 |
WEB
|
R00TT3R
|
|
2006-04-25
|
|
Cartweaver 2.16.11 - 'Results.cfm' SQL Injection
|
4 |
WEB
|
r0t
|
|
2006-05-09
|
|
EDirectoryPro - 'Search_result.asp' SQL Injection
|
4 |
WEB
|
Dj_Eyes
|
|
2006-05-09
|
|
EImagePro - 'view.asp?Pic' SQL Injection
|
4 |
WEB
|
Dj_Eyes
|
|
2006-05-09
|
|
EImagePro - 'subList.asp?CatID' SQL Injection
|
4 |
WEB
|
Dj_Eyes
|
|
2006-05-09
|
|
ISPConfig 2.2.2/2.2.3 - 'Session.INC.php' Remote File Inclusion
|
4 |
WEB
|
ReZEN
|
|
2006-05-09
|
|
EPublisherPro 0.9.7 - 'Moreinfo.asp' Cross-Site Scripting
|
3 |
WEB
|
Dj_Eyes
|
|
2006-05-09
|
|
MyBB 1.1.1 - 'showthread.php' SQL Injection
|
5 |
WEB
|
Breeeeh
|
|
2006-05-09
|
|
MultiCalendars 3.0 - 'All_calendars.asp' SQL Injection
|
4 |
WEB
|
Dj_Eyes
|
|
2006-05-08
|
|
timobraun Dynamic Galerie 1.0 - 'galerie.php?id' Cross-Site Scripting
|
4 |
WEB
|
d4igoro
|
|
2006-05-08
|
|
timobraun Dynamic Galerie 1.0 - 'index.php?pfad' Cross-Site Scripting
|
3 |
WEB
|
d4igoro
|
|
2006-05-08
|
|
timobraun Dynamic Galerie 1.0 - 'galerie.php?pfad' Arbitrary Directory Listing
|
3 |
WEB
|
d4igoro
|
|
2006-05-08
|
|
timobraun Dynamic Galerie 1.0 - 'index.php?pfad' Arbitrary Directory Listing
|
4 |
WEB
|
d4igoro
|
|
2006-05-08
|
|
EvoTopsite 2.0 - 'index.php' Multiple SQL Injections
|
4 |
WEB
|
Hamid Ebadi
|
|
2006-05-08
|
|
Creative Software UK Community Portal 1.1 - 'DiscReply.php?mid' SQL Injection
|
4 |
WEB
|
r0t
|
|
2006-05-08
|
|
Creative Software UK Community Portal 1.1 - 'PollResults.php' Multiple SQL Injections
|
4 |
WEB
|
r0t
|
|
2006-05-08
|
|
Creative Software UK Community Portal 1.1 - 'EventView.php?event_id' SQL Injection
|
4 |
WEB
|
r0t
|
|
2006-05-08
|
|
Creative Software UK Community Portal 1.1 - 'Discussions.php?forum_id' SQL Injection
|
4 |
WEB
|
r0t
|
|
2006-05-08
|
|
Creative Software UK Community Portal 1.1 - 'DiscView.php?forum_id' SQL Injection
|
4 |
WEB
|
r0t
|
|
2006-05-08
|
|
Creative Software UK Community Portal 1.1 - 'ArticleView.php?article_id' SQL Injection
|
4 |
WEB
|
r0t
|
|
2006-05-08
|
|
Phil's Bookmark Script - 'admin.php' Authentication Bypass
|
4 |
WEB
|
alp_eren@ayyildiz.org
|
|
2006-05-08
|
|
Ocean12 Technologies Calendar Manager Pro 1.0 1 - '/admin/main.asp?date' Cross-Site Scripting
|
4 |
WEB
|
dj_eyes2005
|
|
2006-05-08
|
|
Ocean12 Technologies Calendar Manager Pro 1.0 1 - '/admin/edit.asp?ID' SQL Injection
|
3 |
WEB
|
dj_eyes2005
|
|
2006-05-08
|
|
Ocean12 Technologies Calendar Manager Pro 1.0 1 - '/admin/view.asp?searchFor' SQL Injection
|
4 |
WEB
|
dj_eyes2005
|
|
2006-05-08
|
|
Ocean12 Technologies Calendar Manager Pro 1.0 1 - '/admin/main.asp?date' SQL Injection
|
4 |
WEB
|
dj_eyes2005
|
|
2006-05-08
|
|
Singapore 0.9.7 - 'index.php' Cross-Site Scripting
|
4 |
WEB
|
alp_eren@ayyildiz.org
|
|
2006-05-08
|
|
openEngine 1.7/1.8 - Template Unauthorized Access
|
4 |
WEB
|
ck@caroli.info
|
|
2006-05-06
|
|
MyBloggie 2.1.2/2.1.3 - BBCode IMG Tag HTML Injection
|
4 |
WEB
|
zerogue
|
|
2006-05-06
|
|
OpenFAQ 0.4 - 'Validate.php' HTML Injection
|
4 |
WEB
|
Kamil Sienicki
|
|
2006-05-05
|
|
CuteNews 1.4.1 - 'search.php' Multiple Cross-Site Scripting Vulnerabilities
|
4 |
WEB
|
NST
|
|
2006-05-04
|
|
Invision Power Board 2.0/2.1 - 'index.php' SQL Injection
|
4 |
WEB
|
almaster
|
|
2006-05-03
|
|
CyberBuild - 'result.asp' Multiple Cross-Site Scripting Vulnerabilities
|
4 |
WEB
|
r0t
|
|
2006-05-03
|
|
CyberBuild - 'browse0.htm?ProductIndex' Cross-Site Scripting
|
4 |
WEB
|
r0t
|
|
2006-05-03
|
|
CyberBuild - 'login.asp?sessionid' Cross-Site Scripting
|
5 |
WEB
|
r0t
|
|
2006-05-03
|
|
CyberBuild - 'browse0.htm?ProductIndex' SQL Injection
|
4 |
WEB
|
r0t
|
|
2006-05-03
|
|
CyberBuild - 'login.asp?sessionid' SQL Injection
|
3 |
WEB
|
r0t
|
|
2006-05-03
|
|
PHP Linkliste 1.0 - 'Linkliste.php' Multiple Cross-Site Scripting Vulnerabilities
|
4 |
WEB
|
d4igoro
|
|
2006-05-02
|
|
Albinator 2.0.8 - 'showpic.php?preloadSlideShow' Cross-Site Scripting
|
4 |
WEB
|
r0t
|
|
2006-05-02
|
|
Albinator 2.0.8 - 'dlisting.php?cid' Cross-Site Scripting
|
4 |
WEB
|
r0t
|
|
2006-05-03
|
|
MyNews 1.6.2 - Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
DreamLord
|
|
2006-05-03
|
|
Pacheckbook 1.1 - 'index.php' Multiple SQL Injections
|
3 |
WEB
|
almaster
|
|
2006-05-03
|
|
Fast Click SQL Lite 1.1.2/1.1.3 - 'show.php' Remote File Inclusion
|
4 |
WEB
|
R@1D3N
|
|
2006-05-03
|
|
321soft PHP-Gallery 0.9 - 'index.php?path' Cross-Site Scripting
|
4 |
WEB
|
d4igoro
|
|
2006-05-03
|
|
321soft PHP-Gallery 0.9 - 'index.php?path' Arbitrary Directory Listing
|
4 |
WEB
|
d4igoro
|
|
2006-05-02
|
|
Pinnacle Cart 3.3 - 'index.php' Cross-Site Scripting
|
4 |
WEB
|
r0t
|
|
2006-05-02
|
|
Virtual Hosting Control System 2.4.7.1 - 'Server_day_stats.php' Multiple Cross-Site Scripting Vulner
|
4 |
WEB
|
O.U.T.L.A.W
|
|
2006-05-02
|
|
GeoBlog MOD_1.0 - 'viewcat.php' Cross-Site Scripting
|
4 |
WEB
|
SubjectZero
|
|
2006-05-02
|
|
XDT Pro 2.3 - 'stats.php' Cross-Site Scripting
|
4 |
WEB
|
almaster
|
|
2006-05-02
|
|
ZenPhoto 0.9/1.0 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
|
4 |
WEB
|
zone14
|
|
2006-05-02
|
|
ZenPhoto 0.9/1.0 - 'i.php?a' Cross-Site Scripting
|
5 |
WEB
|
zone14
|
|
2006-05-02
|
|
JSBoard 2.0.10/2.0.11 - 'login.php' Cross-Site Scripting
|
4 |
WEB
|
Alexander Klink
|
|
2006-05-01
|
|
Collaborative Portal Server 3.4 - 'POS' Cross-Site Scripting
|
5 |
WEB
|
r0t
|
|
2006-05-01
|
|
SunShop Shopping Cart 3.5 - Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
r0t
|
|
2006-05-01
|
|
OrbitHYIP 2.0 - 'members.php?id' Cross-Site Scripting
|
4 |
WEB
|
r0t
|
|
2006-05-01
|
|
OrbitHYIP 2.0 - 'signup.php?referral' Cross-Site Scripting
|
4 |
WEB
|
r0t
|
|
2006-05-01
|
|
MaxTrade 1.0.1 - Multiple SQL Injections
|
4 |
WEB
|
r0t
|
|
2006-05-01
|
|
phpBB Knowledge Base 2.0.2 - 'Mod KB_constants.php' Remote File Inclusion
|
4 |
WEB
|
[Oo]
|
|
2006-05-01
|
|
DMCounter 0.9.2 -b - 'Kopf.php' Remote File Inclusion
|
4 |
WEB
|
beford
|
|
2006-04-29
|
|
PlanetGallery - 'Gallery_admin.php' Authentication Bypass
|
4 |
WEB
|
tugr@
|
|
2006-04-29
|
|
W-Agora 4.2 - BBCode Script Injection
|
4 |
WEB
|
r0xes
|
|
2006-04-29
|
|
TextFileBB 1.0.16 - Multiple Tag Script Injection Vulnerabilities
|
4 |
WEB
|
r0xes
|
|
2006-04-29
|
|
4Images 1.7.1 - 'member.php?sessionid' SQL Injection
|
4 |
WEB
|
CrAzY.CrAcKeR
|
|
2006-04-29
|
|
4Images 1.7.1 - 'top.php?sessionid' SQL Injection
|
4 |
WEB
|
CrAzY.CrAcKeR
|
|
2006-04-29
|
|
Advanced Guestbook 2.x - 'Addentry.php' Remote File Inclusion
|
4 |
WEB
|
[Oo]
|
|
2013-08-22
|
|
DeWeS 0.4.2 - Directory Traversal
|
4 |
WEB
|
High-Tech Bridge SA
|
|
2013-08-22
|
|
Foreman (RedHat OpenStack/Satellite) - users/create Mass Assignment (Metasploit)
|
4 |
WEB
|
Metasploit
|
|
2013-08-22
|
|
Netgear ProSafe - Information Disclosure
|
4 |
WEB
|
Juan J. Guelfo
|
|
2013-08-22
|
|
CBHotel Hotel Software and Booking system 1.8 - Multiple Vulnerabilities
|
4 |
WEB
|
Dylan Irzi
|
|
2013-08-22
|
|
Ovidentia 7.9.4 - Multiple Vulnerabilities
|
4 |
WEB
|
LiquidWorm
|
|
2006-04-29
|
|
Blog 0.2.3/0.2.4 Mod - 'Weblog_posting.php' SQL Injection
|
4 |
WEB
|
Qex
|
|
2006-04-28
|
|
CoolMenus 4.0 - 'index.php' Remote File Inclusion
|
4 |
WEB
|
botan
|
|
2006-04-28
|
|
Artmedic Event - 'index.php' Remote File Inclusion
|
4 |
WEB
|
botan
|
|
2006-04-28
|
|
I-RATER Platinum - 'Config_settings.TPL.php' Remote File Inclusion
|
4 |
WEB
|
O.U.T.L.A.W
|
|
2006-04-28
|
|
NeoMail - 'NeoMail.pl?sessionid' Cross-Site Scripting
|
4 |
WEB
|
O.U.T.L.A.W
|
|
2006-04-28
|
|
DUclassified - 'detail.asp' SQL Injection
|
4 |
WEB
|
sadegh.sarshogh
|
|
2013-08-21
|
|
Sitecom N300/N600 Devices - Multiple Vulnerabilities
|
4 |
WEB
|
Roberto Paleari
|
|
2013-08-21
|
|
Adobe ColdFusion 9 - Administrative Authentication Bypass
|
4 |
WEB
|
Scott Buckel
|
|
2013-08-21
|
|
Samsung DVR Firmware 1.10 - Authentication Bypass
|
4 |
WEB
|
Andrea Fabrizi
|
|
2013-08-21
|
|
WordPress Plugin ThinkIT 0.1 - Multiple Vulnerabilities
|
3 |
WEB
|
Yashar shahinzadeh
|
|
2013-08-21
|
|
Bitbot (C2 Web Panel) - 'gate2.php' Multiple Vulnerabilities
|
4 |
WEB
|
bwall
|
|
2006-04-04
|
|
MySmartBB 1.1.2/1.1.3 - Multiple Input Validation Vulnerabilities
|
4 |
WEB
|
BoNy-m
|
|
2006-04-26
|
|
DevBB 1.0 - 'member.php' Cross-Site Scripting
|
4 |
WEB
|
Qex
|
|
2006-04-26
|
|
Farsinews 2.5.3 - Multiple Cross-Site Scripting Vulnerabilities
|
4 |
WEB
|
O.U.T.L.A.W.
|
|
2006-04-26
|
|
CuteNews 1.4.1 - Multiple Cross-Site Scripting Vulnerabilities
|
4 |
WEB
|
outlaw.dll
|
|
2006-04-25
|
|
Instant Photo Gallery 1.0 - 'portfolio_photo_popup.php?id' Cross-Site Scripting
|
4 |
WEB
|
Qex
|
|
2006-04-25
|
|
Instant Photo Gallery 1.0 - 'portfolio.php?cat_id' Cross-Site Scripting
|
3 |
WEB
|
Qex
|
|
2006-04-25
|
|
Instant Photo Gallery 1.0 - 'member.php?member' Cross-Site Scripting
|
4 |
WEB
|
Qex
|
|
2006-05-25
|
|
Invision Power Board 2.0/2.1 - 'index.php?CK' SQL Injection
|
4 |
WEB
|
IceShaman
|
|
2006-04-25
|
|
PHPWebFTP 2.3 - Multiple Cross-Site Scripting Vulnerabilities
|
4 |
WEB
|
arko.dhar
|
|
2006-04-25
|
|
NextAge Shopping Cart - Multiple HTML Injection Vulnerabilities
|
4 |
WEB
|
R@1D3N
|
|
2006-04-25
|
|
PhotoKorn 1.53/1.54 - 'print.php?cat' SQL Injection
|
4 |
WEB
|
Dr.Jr7
|
|
2006-04-25
|
|
PhotoKorn 1.53/1.54 - 'id' SQL Injection
|
4 |
WEB
|
Dr.Jr7
|
|
2006-04-25
|
|
PhotoKorn 1.53/1.54 - 'index.php' Multiple SQL Injections
|
4 |
WEB
|
Dr.Jr7
|
|
2006-04-24
|
|
Scry Gallery 1.1 - 'index.php' Cross-Site Scripting
|
4 |
WEB
|
mayank
|
|
2006-04-24
|
|
Blender 2.36 - '.BVF' File Import Python Code Execution
|
4 |
WEB
|
Joxean Koret
|
|
2006-04-22
|
|
Simplog 0.9.3 - 'ImageList.php' Cross-Site Scripting
|
4 |
WEB
|
nukedx
|
|
2006-04-22
|
|
MKPortal 1.1 - Multiple Input Validation Vulnerabilities
|
4 |
WEB
|
Mustafa Can Bjorn IPEKCI
|
|
2006-04-21
|
|
Scry Gallery - Directory Traversal
|
4 |
WEB
|
Morocco Security Team
|
|
2006-04-21
|
|
phpLDAPadmin 0.9.8 - 'template_engine.php' Cross-Site Scripting
|
4 |
WEB
|
r0t
|
|
2006-04-21
|
|
phpLDAPadmin 0.9.8 - 'search.php' Cross-Site Scripting
|
4 |
WEB
|
r0t
|
|
2006-04-21
|
|
phpLDAPadmin 0.9.8 - 'rename_form.php' Cross-Site Scripting
|
4 |
WEB
|
r0t
|
|
2006-04-21
|
|
phpLDAPadmin 0.9.8 - 'copy_form.php' Cross-Site Scripting
|
4 |
WEB
|
r0t
|
|
2006-04-21
|
|
phpLDAPadmin 0.9.8 - 'compare_form.php' Cross-Site Scripting
|
4 |
WEB
|
r0t
|
|
2006-04-20
|
|
Manic Web MWGuest 2.1 - 'MWguest.php' HTML Injection
|
4 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-04-20
|
|
Portal Pack 6.0 - Multiple Cross-Site Scripting Vulnerabilities
|
4 |
WEB
|
r0t
|
|
2006-04-20
|
|
ThWboard 3.0 - 'index.php' Cross-Site Scripting
|
4 |
WEB
|
CrAzY CrAcKeR
|
|
2006-04-20
|
|
W2B Online Banking - 'SID' Cross-Site Scripting
|
4 |
WEB
|
r0t
|
|
2006-04-20
|
|
4homepages 4Images 1.7 - 'member.php' Cross-Site Scripting
|
4 |
WEB
|
Qex
|
|
2006-04-20
|
|
I-RATER Platinum - 'Common.php' Remote File Inclusion
|
4 |
WEB
|
r0t
|
|
2006-04-20
|
|
Net Clubs Pro 4.0 - 'login.cgi?Password' Cross-Site Scripting
|
4 |
WEB
|
r0t
|
|
2006-04-20
|
|
Net Clubs Pro 4.0 - 'imessage.cgi?Username' Cross-Site Scripting
|
4 |
WEB
|
r0t
|
|
2006-04-20
|
|
Net Clubs Pro 4.0 - 'sendim.cgi' Multiple Cross-Site Scripting Vulnerabilities
|
4 |
WEB
|
r0t
|
|
2006-04-19
|
|
AWStats 4.0/5.x/6.x - AWStats.pl Multiple Cross-Site Scripting Vulnerabilities
|
4 |
WEB
|
r0t
|
|
2006-04-19
|
|
otalCalendar - 'about.php?inc_dir' Remote File Inclusion
|
4 |
WEB
|
VietMafia
|
|
2006-04-19
|
|
Plexum PlexCart X5 - Multiple SQL Injections
|
3 |
WEB
|
r0t
|
|
2006-04-19
|
|
xFlow 5.46.11 - 'index.cgi' Multiple Cross-Site Scripting Vulnerabilities
|
4 |
WEB
|
r0t
|
|
2006-04-19
|
|
xFlow 5.46.11 - 'index.cgi' Multiple SQL Injections
|
4 |
WEB
|
r0t
|
|
2006-04-19
|
|
BannerFarm 2.3 - Multiple Cross-Site Scripting Vulnerabilities
|
4 |
WEB
|
r0t
|
|
2006-04-19
|
|
ContentBoxx - 'login.php' Cross-Site Scripting
|
4 |
WEB
|
botan
|
