|
2006-05-27
|
|
Chipmunk Directory - 'index.php' Cross-Site Scripting
|
7 |
WEB
|
black-code
|
|
2006-05-27
|
|
Chipmunk 1.4 - 'Guestbook index.php' Cross-Site Scripting
|
7 |
WEB
|
black-code
|
|
2006-05-27
|
|
SaPHPLesson 2.0 - 'show.php' SQL Injection
|
7 |
WEB
|
SwEET-DeViL
|
|
2006-05-26
|
|
DoceboLms 2.0.x - 'Lang' Multiple Remote File Inclusions
|
7 |
WEB
|
beford
|
|
2006-05-23
|
|
DoceboLms 2.0.x/3.0.x / DoceboKms 3.0.3 / Docebo CMS 3.0.x - Multiple Remote File Inclusions
|
7 |
WEB
|
Kacper
|
|
2006-05-19
|
|
Artmedic NewsLetter 4.1 - 'Log.php' Remote Script Execution
|
7 |
WEB
|
C.Schmitz
|
|
2006-05-19
|
|
JemWeb DownloadControl 1.0 - 'DC.php' SQL Injection
|
7 |
WEB
|
Luny
|
|
2006-05-19
|
|
CodeAvalanche News 1.2 - 'default.asp' SQL Injection
|
7 |
WEB
|
omnipresent
|
|
2006-05-18
|
|
ASPBB 0.5.2 - 'profile.asp?get' Cross-Site Scripting
|
7 |
WEB
|
TeufeL
|
|
2006-05-18
|
|
ASPBB 0.5.2 - 'default.asp?action' Cross-Site Scripting
|
7 |
WEB
|
TeufeL
|
|
2006-05-18
|
|
Cosmoshop 8.10.78/8.11.106 - 'Lshop.cgi' SQL Injection
|
7 |
WEB
|
l0om
|
|
2006-05-17
|
|
Open Wiki 0.78 - 'ow.asp' Cross-Site Scripting
|
7 |
WEB
|
LiNuX_rOOt
|
|
2006-05-17
|
|
BoastMachine 3.1 - 'admin.php' Cross-Site Scripting
|
7 |
WEB
|
Yunus Emre Yilmaz
|
|
2006-05-16
|
|
Caucho Resin 3.0.17/3.0.18 - Viewfile Information Disclosure
|
7 |
WEB
|
Joseph Pierini
|
|
2006-05-16
|
|
Sphider 1.3 - 'search.php' Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
Soot
|
|
2006-05-16
|
|
PHPRemoteView - 'PRV.php' Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
Soot
|
|
2006-05-15
|
|
Confixx 3.0/3.1 - 'index.php' Cross-Site Scripting
|
7 |
WEB
|
LoK-Crew
|
|
2005-05-15
|
|
MonoChat 1.0 - HTML Injection
|
7 |
WEB
|
X-BOY
|
|
2006-05-15
|
|
PHPODP 1.5 - 'ODP.php' Cross-Site Scripting
|
7 |
WEB
|
Kiki
|
|
2006-05-15
|
|
RadScripts RadLance 7.0 - 'popup.php' Local File Inclusion
|
7 |
WEB
|
Mr.CrackerZ
|
|
2013-08-26
|
|
Joomla! Component com_virtuemart 2.0.22a - SQL Injection
|
7 |
WEB
|
Matias Fontanini
|
|
2013-08-26
|
|
Loftek Nexus 543 IP Cameras - Multiple Vulnerabilities
|
7 |
WEB
|
Craig Young
|
|
2013-08-26
|
|
MusicBox 2.3.8 - Multiple Vulnerabilities
|
7 |
WEB
|
DevilScreaM
|
|
2013-08-26
|
|
PhpVibe 3.1 - Multiple Vulnerabilities
|
6 |
WEB
|
Esac
|
|
2013-08-26
|
|
mooSocial 1.3 - Multiple Vulnerabilities
|
7 |
WEB
|
Esac
|
|
2006-05-15
|
|
PHP Script Tools PSY Auction - 'email_request.php?user_id' Cross-Site Scripting
|
7 |
WEB
|
Luny
|
|
2006-05-15
|
|
PHP Script Tools PSY Auction - 'item.php?id' SQL Injection
|
7 |
WEB
|
Luny
|
|
2006-05-15
|
|
Pixaria PopPhoto 3.5.4 - 'CFG[popphoto_base_path]' Remote File Inclusion
|
8 |
WEB
|
VietMafia
|
|
2006-05-13
|
|
Gphotos 1.4/1.5 - 'index.php?rep' Traversal Arbitrary Directory Listing
|
6 |
WEB
|
Morocco Security Team
|
|
2006-05-13
|
|
Gphotos 1.4/1.5 - 'affich.php?image' Cross-Site Scripting
|
7 |
WEB
|
Morocco Security Team
|
|
2006-05-13
|
|
Gphotos 1.4/1.5 - 'diapo.php?rep' Cross-Site Scripting
|
7 |
WEB
|
Morocco Security Team
|
|
2006-05-13
|
|
Gphotos 1.4/1.5 - 'index.php?rep' Cross-Site Scripting
|
7 |
WEB
|
Morocco Security Team
|
|
2006-05-12
|
|
phpBB 2.0.20 - Unauthorized HTTP Proxy
|
7 |
WEB
|
rgod
|
|
2006-05-12
|
|
OZJournals 1.2 - 'Vname' Cross-Site Scripting
|
7 |
WEB
|
Kiki
|
|
2006-05-11
|
|
phpBB Chart Mod 1.1 - 'charts.php?id' Cross-Site Scripting
|
7 |
WEB
|
sn4k3.23
|
|
2006-05-11
|
|
phpBB Chart Mod 1.1 - 'charts.php?id' SQL Injection
|
7 |
WEB
|
sn4k3.23
|
|
2006-05-11
|
|
Vizra - 'A_Login.php' Cross-Site Scripting
|
7 |
WEB
|
R00TT3R
|
|
2006-04-25
|
|
Cartweaver 2.16.11 - 'Results.cfm' SQL Injection
|
7 |
WEB
|
r0t
|
|
2006-05-09
|
|
EDirectoryPro - 'Search_result.asp' SQL Injection
|
7 |
WEB
|
Dj_Eyes
|
|
2006-05-09
|
|
EImagePro - 'view.asp?Pic' SQL Injection
|
7 |
WEB
|
Dj_Eyes
|
|
2006-05-09
|
|
EImagePro - 'subList.asp?CatID' SQL Injection
|
7 |
WEB
|
Dj_Eyes
|
|
2006-05-09
|
|
ISPConfig 2.2.2/2.2.3 - 'Session.INC.php' Remote File Inclusion
|
7 |
WEB
|
ReZEN
|
|
2006-05-09
|
|
EPublisherPro 0.9.7 - 'Moreinfo.asp' Cross-Site Scripting
|
6 |
WEB
|
Dj_Eyes
|
|
2006-05-09
|
|
MyBB 1.1.1 - 'showthread.php' SQL Injection
|
8 |
WEB
|
Breeeeh
|
|
2006-05-09
|
|
MultiCalendars 3.0 - 'All_calendars.asp' SQL Injection
|
7 |
WEB
|
Dj_Eyes
|
|
2006-05-08
|
|
timobraun Dynamic Galerie 1.0 - 'galerie.php?id' Cross-Site Scripting
|
7 |
WEB
|
d4igoro
|
|
2006-05-08
|
|
timobraun Dynamic Galerie 1.0 - 'index.php?pfad' Cross-Site Scripting
|
6 |
WEB
|
d4igoro
|
|
2006-05-08
|
|
timobraun Dynamic Galerie 1.0 - 'galerie.php?pfad' Arbitrary Directory Listing
|
6 |
WEB
|
d4igoro
|
|
2006-05-08
|
|
timobraun Dynamic Galerie 1.0 - 'index.php?pfad' Arbitrary Directory Listing
|
7 |
WEB
|
d4igoro
|
|
2006-05-08
|
|
EvoTopsite 2.0 - 'index.php' Multiple SQL Injections
|
7 |
WEB
|
Hamid Ebadi
|
|
2006-05-08
|
|
Creative Software UK Community Portal 1.1 - 'DiscReply.php?mid' SQL Injection
|
7 |
WEB
|
r0t
|
|
2006-05-08
|
|
Creative Software UK Community Portal 1.1 - 'PollResults.php' Multiple SQL Injections
|
7 |
WEB
|
r0t
|
|
2006-05-08
|
|
Creative Software UK Community Portal 1.1 - 'EventView.php?event_id' SQL Injection
|
7 |
WEB
|
r0t
|
|
2006-05-08
|
|
Creative Software UK Community Portal 1.1 - 'Discussions.php?forum_id' SQL Injection
|
7 |
WEB
|
r0t
|
|
2006-05-08
|
|
Creative Software UK Community Portal 1.1 - 'DiscView.php?forum_id' SQL Injection
|
7 |
WEB
|
r0t
|
|
2006-05-08
|
|
Creative Software UK Community Portal 1.1 - 'ArticleView.php?article_id' SQL Injection
|
7 |
WEB
|
r0t
|
|
2006-05-08
|
|
Phil's Bookmark Script - 'admin.php' Authentication Bypass
|
7 |
WEB
|
alp_eren@ayyildiz.org
|
|
2006-05-08
|
|
Ocean12 Technologies Calendar Manager Pro 1.0 1 - '/admin/main.asp?date' Cross-Site Scripting
|
7 |
WEB
|
dj_eyes2005
|
|
2006-05-08
|
|
Ocean12 Technologies Calendar Manager Pro 1.0 1 - '/admin/edit.asp?ID' SQL Injection
|
6 |
WEB
|
dj_eyes2005
|
|
2006-05-08
|
|
Ocean12 Technologies Calendar Manager Pro 1.0 1 - '/admin/view.asp?searchFor' SQL Injection
|
7 |
WEB
|
dj_eyes2005
|
|
2006-05-08
|
|
Ocean12 Technologies Calendar Manager Pro 1.0 1 - '/admin/main.asp?date' SQL Injection
|
7 |
WEB
|
dj_eyes2005
|
|
2006-05-08
|
|
Singapore 0.9.7 - 'index.php' Cross-Site Scripting
|
7 |
WEB
|
alp_eren@ayyildiz.org
|
|
2006-05-08
|
|
openEngine 1.7/1.8 - Template Unauthorized Access
|
7 |
WEB
|
ck@caroli.info
|
|
2006-05-06
|
|
MyBloggie 2.1.2/2.1.3 - BBCode IMG Tag HTML Injection
|
7 |
WEB
|
zerogue
|
|
2006-05-06
|
|
OpenFAQ 0.4 - 'Validate.php' HTML Injection
|
8 |
WEB
|
Kamil Sienicki
|
|
2006-05-05
|
|
CuteNews 1.4.1 - 'search.php' Multiple Cross-Site Scripting Vulnerabilities
|
8 |
WEB
|
NST
|
|
2006-05-04
|
|
Invision Power Board 2.0/2.1 - 'index.php' SQL Injection
|
7 |
WEB
|
almaster
|
|
2006-05-03
|
|
CyberBuild - 'result.asp' Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
r0t
|
|
2006-05-03
|
|
CyberBuild - 'browse0.htm?ProductIndex' Cross-Site Scripting
|
7 |
WEB
|
r0t
|
|
2006-05-03
|
|
CyberBuild - 'login.asp?sessionid' Cross-Site Scripting
|
8 |
WEB
|
r0t
|
|
2006-05-03
|
|
CyberBuild - 'browse0.htm?ProductIndex' SQL Injection
|
7 |
WEB
|
r0t
|
|
2006-05-03
|
|
CyberBuild - 'login.asp?sessionid' SQL Injection
|
6 |
WEB
|
r0t
|
|
2006-05-03
|
|
PHP Linkliste 1.0 - 'Linkliste.php' Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
d4igoro
|
|
2006-05-02
|
|
Albinator 2.0.8 - 'showpic.php?preloadSlideShow' Cross-Site Scripting
|
7 |
WEB
|
r0t
|
|
2006-05-02
|
|
Albinator 2.0.8 - 'dlisting.php?cid' Cross-Site Scripting
|
7 |
WEB
|
r0t
|
|
2006-05-03
|
|
MyNews 1.6.2 - Multiple Cross-Site Scripting Vulnerabilities
|
6 |
WEB
|
DreamLord
|
|
2006-05-03
|
|
Pacheckbook 1.1 - 'index.php' Multiple SQL Injections
|
6 |
WEB
|
almaster
|
|
2006-05-03
|
|
Fast Click SQL Lite 1.1.2/1.1.3 - 'show.php' Remote File Inclusion
|
7 |
WEB
|
R@1D3N
|
|
2006-05-03
|
|
321soft PHP-Gallery 0.9 - 'index.php?path' Cross-Site Scripting
|
7 |
WEB
|
d4igoro
|
|
2006-05-03
|
|
321soft PHP-Gallery 0.9 - 'index.php?path' Arbitrary Directory Listing
|
7 |
WEB
|
d4igoro
|
|
2006-05-02
|
|
Pinnacle Cart 3.3 - 'index.php' Cross-Site Scripting
|
7 |
WEB
|
r0t
|
|
2006-05-02
|
|
Virtual Hosting Control System 2.4.7.1 - 'Server_day_stats.php' Multiple Cross-Site Scripting Vulner
|
7 |
WEB
|
O.U.T.L.A.W
|
|
2006-05-02
|
|
GeoBlog MOD_1.0 - 'viewcat.php' Cross-Site Scripting
|
7 |
WEB
|
SubjectZero
|
|
2006-05-02
|
|
XDT Pro 2.3 - 'stats.php' Cross-Site Scripting
|
7 |
WEB
|
almaster
|
|
2006-05-02
|
|
ZenPhoto 0.9/1.0 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
zone14
|
|
2006-05-02
|
|
ZenPhoto 0.9/1.0 - 'i.php?a' Cross-Site Scripting
|
8 |
WEB
|
zone14
|
|
2006-05-02
|
|
JSBoard 2.0.10/2.0.11 - 'login.php' Cross-Site Scripting
|
7 |
WEB
|
Alexander Klink
|
|
2006-05-01
|
|
Collaborative Portal Server 3.4 - 'POS' Cross-Site Scripting
|
8 |
WEB
|
r0t
|
|
2006-05-01
|
|
SunShop Shopping Cart 3.5 - Multiple Cross-Site Scripting Vulnerabilities
|
6 |
WEB
|
r0t
|
|
2006-05-01
|
|
OrbitHYIP 2.0 - 'members.php?id' Cross-Site Scripting
|
7 |
WEB
|
r0t
|
|
2006-05-01
|
|
OrbitHYIP 2.0 - 'signup.php?referral' Cross-Site Scripting
|
7 |
WEB
|
r0t
|
|
2006-05-01
|
|
MaxTrade 1.0.1 - Multiple SQL Injections
|
7 |
WEB
|
r0t
|
|
2006-05-01
|
|
phpBB Knowledge Base 2.0.2 - 'Mod KB_constants.php' Remote File Inclusion
|
7 |
WEB
|
[Oo]
|
|
2006-05-01
|
|
DMCounter 0.9.2 -b - 'Kopf.php' Remote File Inclusion
|
7 |
WEB
|
beford
|
|
2006-04-29
|
|
PlanetGallery - 'Gallery_admin.php' Authentication Bypass
|
7 |
WEB
|
tugr@
|
|
2006-04-29
|
|
W-Agora 4.2 - BBCode Script Injection
|
7 |
WEB
|
r0xes
|
|
2006-04-29
|
|
TextFileBB 1.0.16 - Multiple Tag Script Injection Vulnerabilities
|
7 |
WEB
|
r0xes
|
|
2006-04-29
|
|
4Images 1.7.1 - 'member.php?sessionid' SQL Injection
|
7 |
WEB
|
CrAzY.CrAcKeR
|
|
2006-04-29
|
|
4Images 1.7.1 - 'top.php?sessionid' SQL Injection
|
7 |
WEB
|
CrAzY.CrAcKeR
|
|
2006-04-29
|
|
Advanced Guestbook 2.x - 'Addentry.php' Remote File Inclusion
|
7 |
WEB
|
[Oo]
|
|
2013-08-22
|
|
DeWeS 0.4.2 - Directory Traversal
|
7 |
WEB
|
High-Tech Bridge SA
|
|
2013-08-22
|
|
Foreman (RedHat OpenStack/Satellite) - users/create Mass Assignment (Metasploit)
|
7 |
WEB
|
Metasploit
|
|
2013-08-22
|
|
Netgear ProSafe - Information Disclosure
|
7 |
WEB
|
Juan J. Guelfo
|
|
2013-08-22
|
|
CBHotel Hotel Software and Booking system 1.8 - Multiple Vulnerabilities
|
7 |
WEB
|
Dylan Irzi
|
|
2013-08-22
|
|
Ovidentia 7.9.4 - Multiple Vulnerabilities
|
7 |
WEB
|
LiquidWorm
|
|
2006-04-29
|
|
Blog 0.2.3/0.2.4 Mod - 'Weblog_posting.php' SQL Injection
|
8 |
WEB
|
Qex
|
|
2006-04-28
|
|
CoolMenus 4.0 - 'index.php' Remote File Inclusion
|
7 |
WEB
|
botan
|
|
2006-04-28
|
|
Artmedic Event - 'index.php' Remote File Inclusion
|
7 |
WEB
|
botan
|
|
2006-04-28
|
|
I-RATER Platinum - 'Config_settings.TPL.php' Remote File Inclusion
|
7 |
WEB
|
O.U.T.L.A.W
|
|
2006-04-28
|
|
NeoMail - 'NeoMail.pl?sessionid' Cross-Site Scripting
|
7 |
WEB
|
O.U.T.L.A.W
|
|
2006-04-28
|
|
DUclassified - 'detail.asp' SQL Injection
|
7 |
WEB
|
sadegh.sarshogh
|
|
2013-08-21
|
|
Sitecom N300/N600 Devices - Multiple Vulnerabilities
|
7 |
WEB
|
Roberto Paleari
|
|
2013-08-21
|
|
Adobe ColdFusion 9 - Administrative Authentication Bypass
|
7 |
WEB
|
Scott Buckel
|
|
2013-08-21
|
|
Samsung DVR Firmware 1.10 - Authentication Bypass
|
7 |
WEB
|
Andrea Fabrizi
|
|
2013-08-21
|
|
WordPress Plugin ThinkIT 0.1 - Multiple Vulnerabilities
|
6 |
WEB
|
Yashar shahinzadeh
|
|
2013-08-21
|
|
Bitbot (C2 Web Panel) - 'gate2.php' Multiple Vulnerabilities
|
7 |
WEB
|
bwall
|
|
2006-04-04
|
|
MySmartBB 1.1.2/1.1.3 - Multiple Input Validation Vulnerabilities
|
7 |
WEB
|
BoNy-m
|
|
2006-04-26
|
|
DevBB 1.0 - 'member.php' Cross-Site Scripting
|
7 |
WEB
|
Qex
|
|
2006-04-26
|
|
Farsinews 2.5.3 - Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
O.U.T.L.A.W.
|
|
2006-04-26
|
|
CuteNews 1.4.1 - Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
outlaw.dll
|
|
2006-04-25
|
|
Instant Photo Gallery 1.0 - 'portfolio_photo_popup.php?id' Cross-Site Scripting
|
7 |
WEB
|
Qex
|
|
2006-04-25
|
|
Instant Photo Gallery 1.0 - 'portfolio.php?cat_id' Cross-Site Scripting
|
6 |
WEB
|
Qex
|
|
2006-04-25
|
|
Instant Photo Gallery 1.0 - 'member.php?member' Cross-Site Scripting
|
7 |
WEB
|
Qex
|
|
2006-05-25
|
|
Invision Power Board 2.0/2.1 - 'index.php?CK' SQL Injection
|
7 |
WEB
|
IceShaman
|
|
2006-04-25
|
|
PHPWebFTP 2.3 - Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
arko.dhar
|
