|
2006-04-25
|
|
NextAge Shopping Cart - Multiple HTML Injection Vulnerabilities
|
7 |
WEB
|
R@1D3N
|
|
2006-04-25
|
|
PhotoKorn 1.53/1.54 - 'print.php?cat' SQL Injection
|
7 |
WEB
|
Dr.Jr7
|
|
2006-04-25
|
|
PhotoKorn 1.53/1.54 - 'id' SQL Injection
|
7 |
WEB
|
Dr.Jr7
|
|
2006-04-25
|
|
PhotoKorn 1.53/1.54 - 'index.php' Multiple SQL Injections
|
7 |
WEB
|
Dr.Jr7
|
|
2006-04-24
|
|
Scry Gallery 1.1 - 'index.php' Cross-Site Scripting
|
7 |
WEB
|
mayank
|
|
2006-04-24
|
|
Blender 2.36 - '.BVF' File Import Python Code Execution
|
7 |
WEB
|
Joxean Koret
|
|
2006-04-22
|
|
Simplog 0.9.3 - 'ImageList.php' Cross-Site Scripting
|
7 |
WEB
|
nukedx
|
|
2006-04-22
|
|
MKPortal 1.1 - Multiple Input Validation Vulnerabilities
|
7 |
WEB
|
Mustafa Can Bjorn IPEKCI
|
|
2006-04-21
|
|
Scry Gallery - Directory Traversal
|
7 |
WEB
|
Morocco Security Team
|
|
2006-04-21
|
|
phpLDAPadmin 0.9.8 - 'template_engine.php' Cross-Site Scripting
|
7 |
WEB
|
r0t
|
|
2006-04-21
|
|
phpLDAPadmin 0.9.8 - 'search.php' Cross-Site Scripting
|
7 |
WEB
|
r0t
|
|
2006-04-21
|
|
phpLDAPadmin 0.9.8 - 'rename_form.php' Cross-Site Scripting
|
7 |
WEB
|
r0t
|
|
2006-04-21
|
|
phpLDAPadmin 0.9.8 - 'copy_form.php' Cross-Site Scripting
|
7 |
WEB
|
r0t
|
|
2006-04-21
|
|
phpLDAPadmin 0.9.8 - 'compare_form.php' Cross-Site Scripting
|
7 |
WEB
|
r0t
|
|
2006-04-20
|
|
Manic Web MWGuest 2.1 - 'MWguest.php' HTML Injection
|
7 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-04-20
|
|
Portal Pack 6.0 - Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
r0t
|
|
2006-04-20
|
|
ThWboard 3.0 - 'index.php' Cross-Site Scripting
|
7 |
WEB
|
CrAzY CrAcKeR
|
|
2006-04-20
|
|
W2B Online Banking - 'SID' Cross-Site Scripting
|
7 |
WEB
|
r0t
|
|
2006-04-20
|
|
4homepages 4Images 1.7 - 'member.php' Cross-Site Scripting
|
7 |
WEB
|
Qex
|
|
2006-04-20
|
|
I-RATER Platinum - 'Common.php' Remote File Inclusion
|
7 |
WEB
|
r0t
|
|
2006-04-20
|
|
Net Clubs Pro 4.0 - 'login.cgi?Password' Cross-Site Scripting
|
7 |
WEB
|
r0t
|
|
2006-04-20
|
|
Net Clubs Pro 4.0 - 'imessage.cgi?Username' Cross-Site Scripting
|
7 |
WEB
|
r0t
|
|
2006-04-20
|
|
Net Clubs Pro 4.0 - 'sendim.cgi' Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
r0t
|
|
2006-04-19
|
|
AWStats 4.0/5.x/6.x - AWStats.pl Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
r0t
|
|
2006-04-19
|
|
otalCalendar - 'about.php?inc_dir' Remote File Inclusion
|
7 |
WEB
|
VietMafia
|
|
2006-04-19
|
|
Plexum PlexCart X5 - Multiple SQL Injections
|
6 |
WEB
|
r0t
|
|
2006-04-19
|
|
xFlow 5.46.11 - 'index.cgi' Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
r0t
|
|
2006-04-19
|
|
xFlow 5.46.11 - 'index.cgi' Multiple SQL Injections
|
7 |
WEB
|
r0t
|
|
2006-04-19
|
|
BannerFarm 2.3 - Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
r0t
|
|
2006-04-19
|
|
ContentBoxx - 'login.php' Cross-Site Scripting
|
7 |
WEB
|
botan
|
|
2006-04-19
|
|
ThWboard 2.8 - 'showtopic.php' SQL Injection
|
7 |
WEB
|
Qex
|
|
2006-04-19
|
|
IntelliLink Pro 5.06 - 'edit.cgi' Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
r0t
|
|
2006-04-19
|
|
IntelliLink Pro 5.06 - 'addlink_lwp.cgi?url' Cross-Site Scripting
|
7 |
WEB
|
r0t
|
|
2006-04-19
|
|
Cisco Wireless Lan Solution Engine - ArchiveApplyDisplay.jsp Cross-Site Scripting
|
6 |
WEB
|
Adam Pointon
|
|
2006-04-19
|
|
CommuniMail 1.2 - 'templates.cgi?form_id' Cross-Site Scripting
|
7 |
WEB
|
r0t
|
|
2006-04-19
|
|
CommuniMail 1.2 - 'mailadmin.cgi?list_id' Cross-Site Scripting
|
7 |
WEB
|
r0t
|
|
2006-04-19
|
|
Visale 1.0 - 'pblsmb.cgi?listno' Cross-Site Scripting
|
6 |
WEB
|
r0t
|
|
2006-04-19
|
|
Visale 1.0 - 'pblscg.cgi?catsubno' Cross-Site Scripting
|
7 |
WEB
|
r0t
|
|
2006-04-19
|
|
Visale 1.0 - 'pbpgst.cgi?keyval' Cross-Site Scripting
|
7 |
WEB
|
r0t
|
|
2006-04-19
|
|
ModernBill 4.3 - 'user.php' SQL Injection
|
6 |
WEB
|
r0t
|
|
2006-04-19
|
|
Article Publisher 1.0.1 Pro - Multiple SQL Injections
|
7 |
WEB
|
r0t
|
|
2006-04-19
|
|
CutePHP CuteNews 1.4.1 Editnews Module - Cross-Site Scripting
|
7 |
WEB
|
LoK-Crew
|
|
2006-04-18
|
|
PHPLister 0.4.1 - 'index.php' Cross-Site Scripting
|
7 |
WEB
|
botan
|
|
2006-04-18
|
|
RechnungsZentrale 2 1.1.3 - 'Authent.php4' SQL Injection
|
7 |
WEB
|
GroundZero Security
|
|
2006-04-18
|
|
PHPLinks 2.1.2/2.1.3 - 'index.php' Cross-Site Scripting
|
7 |
WEB
|
r0t
|
|
2006-04-18
|
|
axoverzicht.CGI - Cross-Site Scripting
|
7 |
WEB
|
Qex
|
|
2006-04-17
|
|
Coppermine 1.4.4 - 'index.php' Local File Inclusion
|
7 |
WEB
|
imei
|
|
2006-04-17
|
|
MyBB 1.1 - Global Variable Overwrite
|
7 |
WEB
|
imei
|
|
2006-04-17
|
|
Manila 9.0.1 - Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
Aaron Kaplan
|
|
2006-04-17
|
|
Calendarix 0.7 - 'YearCal.php' Cross-Site Scripting
|
7 |
WEB
|
botan
|
|
2006-04-17
|
|
Jax Guestbook 3.50 - 'Page' Cross-Site Scripting
|
7 |
WEB
|
ALMOKANN3
|
|
2006-04-17
|
|
DbbS 2.0 - Multiple Input Validation Vulnerabilities
|
7 |
WEB
|
rgod
|
|
2006-04-17
|
|
Blursoft Blur6ex 0.3.462 - 'index.php' Local File Inclusion
|
7 |
WEB
|
Hamid Ebadi
|
|
2006-04-17
|
|
TinyPHPForum 3.6 - Multiple Cross-Site Scripting Vulnerabilities (1)
|
7 |
WEB
|
Hessam-x
|
|
2006-04-17
|
|
Monster Top List 1.4 - 'functions.php' Remote File Inclusion
|
7 |
WEB
|
r0t
|
|
2006-04-17
|
|
PHPFaber TopSites - 'index.php' Cross-Site Scripting
|
7 |
WEB
|
botan
|
|
2006-04-15
|
|
PHPGuestbook 0.0.2/1.0 - HTML Injection
|
7 |
WEB
|
Qex
|
|
2013-08-17
|
|
Photo Transfer Upload 1.0 iOS - Multiple Vulnerabilities
|
7 |
WEB
|
Vulnerability-Lab
|
|
2013-08-17
|
|
Copy to WebDAV 1.1 iOS - Multiple Vulnerabilities
|
7 |
WEB
|
Vulnerability-Lab
|
|
2013-08-17
|
|
Quack Chat 1.0 - Multiple Vulnerabilities
|
7 |
WEB
|
Dylan Irzi
|
|
2006-04-15
|
|
Tiny Web Gallery 1.4 - 'index.php' Cross-Site Scripting
|
7 |
WEB
|
Qex
|
|
2006-04-14
|
|
Farsinews 2.1/2.5 - 'search.php' Cross-Site Scripting
|
7 |
WEB
|
amin emami
|
|
2006-04-14
|
|
MODx CMS 0.9.1 - 'index.php' Directory Traversal
|
7 |
WEB
|
Rusydi Hasan
|
|
2006-04-14
|
|
MODx CMS 0.9.1 - 'index.php' Cross-Site Scripting
|
6 |
WEB
|
Rusydi Hasan
|
|
2006-04-14
|
|
Papoo 2.1.x - 'print.php' Cross-Site Scripting
|
7 |
WEB
|
Rusydi Hasan
|
|
2006-04-13
|
|
LifeType 1.0.3 - 'index.php' Cross-Site Scripting
|
7 |
WEB
|
Rusydi Hasan
|
|
2006-04-13
|
|
PowerClan 1.14 - 'member.php' SQL Injection
|
7 |
WEB
|
d4igoro
|
|
2006-04-13
|
|
PlanetSearch + - 'Planetsearchplus.php' Cross-Site Scripting
|
7 |
WEB
|
d4igoro
|
|
2006-04-15
|
|
PHPAlbum 0.2.2/0.2.3/4.1 - 'Language.php' File Inclusion
|
7 |
WEB
|
rgod
|
|
2006-04-14
|
|
AR-Blog 5.2 - 'print.php' Cross-Site Scripting
|
7 |
WEB
|
ALMOKANN3
|
|
2006-04-13
|
|
SimpleBBS 1.0.6/1.0.7/1.1 - Arbitrary Command Execution
|
7 |
WEB
|
rUnViRuS
|
|
2006-04-12
|
|
PatroNet CMS - 'index.php' Cross-Site Scripting
|
7 |
WEB
|
Soothackers
|
|
2006-04-12
|
|
MyBB 1.10 - 'member.php' Cross-Site Scripting
|
7 |
WEB
|
o.y.6
|
|
2005-10-31
|
|
phpMyAdmin 2.7 - 'sql.php' Cross-Site Scripting
|
8 |
WEB
|
p0w3r
|
|
2006-04-12
|
|
Interaktiv.shop 4/5 - Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
r0t
|
|
2006-04-12
|
|
Chipmunk Guestbook 1.3 - 'index.php' SQL Injection
|
7 |
WEB
|
Dr.Jr7
|
|
2006-04-11
|
|
SWSoft Confixx 3.0.6/3.0.8/3.1.2 - 'index.php' SQL Injection
|
7 |
WEB
|
LoK-Crew
|
|
2006-04-11
|
|
Tritanium Bulletin Board 1.2.3 - Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
d4igoro
|
|
2006-04-11
|
|
Indexu 5.0 - Multiple Remote File Inclusions
|
7 |
WEB
|
SnIpEr_SA
|
|
2006-04-11
|
|
PHPKIT 1.6.1 R2 - 'Include.php' SQL Injection
|
7 |
WEB
|
Hamid Ebadi
|
|
2006-04-11
|
|
SWSoft Confixx 3.1.2 - 'Jahr' Cross-Site Scripting
|
8 |
WEB
|
Snake_23
|
|
2006-04-11
|
|
Dokeos 1.x - 'viewtopic.php' SQL Injection
|
7 |
WEB
|
Alvaro Olavarria
|
|
2006-04-11
|
|
Clever Copy 3.0 - 'Connect.INC' Information Disclosure
|
5 |
WEB
|
M.Hasran Addahroni
|
|
2006-04-11
|
|
Microsoft FrontPage - Server Extensions Cross-Site Scripting
|
6 |
WEB
|
Esteban Martinez Fayo
|
|
2006-04-11
|
|
JetPhoto 1.0/2.0/2.1 - 'detail.php?page' Cross-Site Scripting
|
7 |
WEB
|
0o_zeus_o0
|
|
2006-04-11
|
|
JetPhoto 1.0/2.0/2.1 - 'Slideshow.php?name' Cross-Site Scripting
|
6 |
WEB
|
0o_zeus_o0
|
|
2006-04-11
|
|
JetPhoto 1.0/2.0/2.1 - 'gallery.php?page' Cross-Site Scripting
|
7 |
WEB
|
0o_zeus_o0
|
|
2006-04-11
|
|
JetPhoto 1.0/2.0/2.1 - 'thumbnail.php?page' Cross-Site Scripting
|
7 |
WEB
|
0o_zeus_o0
|
|
2006-04-11
|
|
AzDGVote - Remote File Inclusion
|
7 |
WEB
|
SnIpEr_SA
|
|
2006-04-10
|
|
ShopWeezle 2.0 - 'memo.php?itemID' SQL Injection
|
7 |
WEB
|
r0t
|
|
2006-04-10
|
|
ShopWeezle 2.0 - 'index.php' Multiple SQL Injections
|
7 |
WEB
|
r0t
|
|
2006-04-10
|
|
ShopWeezle 2.0 - 'login.php?itemID' SQL Injection
|
7 |
WEB
|
r0t
|
|
2013-08-15
|
|
Alibaba Clone Tritanium Version - 'news_desc.html' SQL Injection
|
7 |
WEB
|
IRAQ_JAGUAR
|
|
2013-08-15
|
|
w-CMS 2.0.1 - Remote Code Execution
|
7 |
WEB
|
ICheer_No0M
|
|
2013-08-15
|
|
DotNetNuke DNNArticle Module 10.0 - SQL Injection
|
8 |
WEB
|
Sajjad Pourali
|
|
2013-08-15
|
|
Spitfire CMS 1.1.4 - Cross-Site Request Forgery
|
6 |
WEB
|
Yashar shahinzadeh
|
|
2013-08-15
|
|
Pligg CMS 2.0.0rc2 - Cross-Site Request Forgery (File Creation)
|
7 |
WEB
|
DaOne
|
|
2013-08-15
|
|
Mac's CMS 1.1.4 - Multiple Vulnerabilities
|
7 |
WEB
|
Yashar shahinzadeh
|
|
2013-08-15
|
|
KCFinder 2.51 - Local File Disclosure
|
7 |
WEB
|
DaOne
|
|
2006-04-07
|
|
Matt Wright Guestbook 2.3.1 - Guestbook.pl Multiple HTML Injection Vulnerabilities
|
7 |
WEB
|
Liz0ziM
|
|
2006-04-10
|
|
VegaDNS 0.9.9 - 'index.php?cid' SQL Injection
|
7 |
WEB
|
Ph03n1X
|
|
2006-04-10
|
|
SIRE 2.0 - Arbitrary File Upload
|
7 |
WEB
|
simo64
|
|
2006-04-10
|
|
Shadowed Portal 5.7 - 'Load.php' Cross-Site Scripting
|
7 |
WEB
|
Liz0ziM
|
|
2005-04-10
|
|
APT-webshop 3.0/4.0 - 'modules.php' Multiple SQL Injections
|
7 |
WEB
|
r0t
|
|
2006-04-10
|
|
SPIP 1.8.3 - 'Spip_login.php' Remote File Inclusion
|
7 |
WEB
|
cR45H3R
|
|
2006-04-10
|
|
PHPWebGallery 1.4.1 - 'picture.php' Cross-Site Scripting
|
7 |
WEB
|
Psych0
|
|
2006-04-10
|
|
PHPWebGallery 1.4.1 - 'category.php' Cross-Site Scripting
|
7 |
WEB
|
Psych0
|
|
2006-04-10
|
|
PHPMyForum 4.0 - 'index.php?type' CRLF Injection
|
7 |
WEB
|
Psych0
|
|
2006-04-10
|
|
PHPMyForum 4.0 - 'page' Cross-Site Scripting
|
7 |
WEB
|
Psych0
|
|
2006-04-10
|
|
JBook 1.3 - 'index.php' Cross-Site Scripting
|
7 |
WEB
|
Psych0
|
|
2006-04-07
|
|
TalentSoft Web+ Shop 5.0 - 'Deptname' Cross-Site Scripting
|
7 |
WEB
|
r0t
|
|
2006-04-07
|
|
AWeb's Banner Generator 3.0 - Cross-Site Scripting
|
7 |
WEB
|
benozor77
|
|
2006-04-07
|
|
vBulletin 3.5.1 - 'Vbugs.php' Cross-Site Scripting
|
7 |
WEB
|
r0t
|
|
2006-04-07
|
|
Bitweaver CMS 1.3 - Multiple Cross-Site Scripting Vulnerabilities
|
8 |
WEB
|
KaDaL-X
|
|
2006-04-07
|
|
Jupiter CMS 1.1.5 - 'index.php' Cross-Site Scripting
|
7 |
WEB
|
KaDaL-X
|
|
2006-04-06
|
|
MAXDEV CMS 1.0.72/1.0.73 - 'PNuserapi.php' SQL Injection
|
7 |
WEB
|
king_purba
|
|
2006-04-06
|
|
MD News 1 - 'admin.php' SQL Injection
|
7 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2003-04-06
|
|
Basic Analysis and Security Engine (BASE) 1.2.4 - PrintFreshPage Cross-Site Scripting
|
7 |
WEB
|
Adam Ely
|
|
2006-04-06
|
|
SKForum 1.x - 'user.View.action?userID' Cross-Site Scripting
|
7 |
WEB
|
r0t
|
|
2006-04-06
|
|
SKForum 1.x - 'planning.View.action?time' Cross-Site Scripting
|
7 |
WEB
|
r0t
|
|
2006-04-06
|
|
SKForum 1.x - 'area.View.action?areaID' Cross-Site Scripting
|
7 |
WEB
|
r0t
|
|
2006-04-05
|
|
Chucky A. Ivey N.T. 1.1 - 'index.php' Multiple HTML Injection Vulnerabilities
|
7 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-04-04
|
|
ArabPortal 2.0.1 - Multiple Input Validation Vulnerabilities
|
7 |
WEB
|
o.y.6
|
|
2006-04-03
|
|
LucidCMS 2.0 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
Rusydi Hasan
|
|
2006-04-03
|
|
Web-APP.net WebAPP 0.9.x - '/mods/calendar/index.cgi?vsSD' Cross-Site Scripting
|
7 |
WEB
|
r0t
|
