|
2006-04-29
|
|
PlanetGallery - 'Gallery_admin.php' Authentication Bypass
|
20 |
WEB
|
tugr@
|
|
2006-04-29
|
|
W-Agora 4.2 - BBCode Script Injection
|
18 |
WEB
|
r0xes
|
|
2006-04-29
|
|
TextFileBB 1.0.16 - Multiple Tag Script Injection Vulnerabilities
|
22 |
WEB
|
r0xes
|
|
2006-04-29
|
|
4Images 1.7.1 - 'member.php?sessionid' SQL Injection
|
19 |
WEB
|
CrAzY.CrAcKeR
|
|
2006-04-29
|
|
4Images 1.7.1 - 'top.php?sessionid' SQL Injection
|
18 |
WEB
|
CrAzY.CrAcKeR
|
|
2006-04-29
|
|
Advanced Guestbook 2.x - 'Addentry.php' Remote File Inclusion
|
19 |
WEB
|
[Oo]
|
|
2013-08-22
|
|
DeWeS 0.4.2 - Directory Traversal
|
19 |
WEB
|
High-Tech Bridge SA
|
|
2013-08-22
|
|
Foreman (RedHat OpenStack/Satellite) - users/create Mass Assignment (Metasploit)
|
20 |
WEB
|
Metasploit
|
|
2013-08-22
|
|
Netgear ProSafe - Information Disclosure
|
21 |
WEB
|
Juan J. Guelfo
|
|
2013-08-22
|
|
CBHotel Hotel Software and Booking system 1.8 - Multiple Vulnerabilities
|
17 |
WEB
|
Dylan Irzi
|
|
2013-08-22
|
|
Ovidentia 7.9.4 - Multiple Vulnerabilities
|
19 |
WEB
|
LiquidWorm
|
|
2006-04-29
|
|
Blog 0.2.3/0.2.4 Mod - 'Weblog_posting.php' SQL Injection
|
19 |
WEB
|
Qex
|
|
2006-04-28
|
|
CoolMenus 4.0 - 'index.php' Remote File Inclusion
|
18 |
WEB
|
botan
|
|
2006-04-28
|
|
Artmedic Event - 'index.php' Remote File Inclusion
|
21 |
WEB
|
botan
|
|
2006-04-28
|
|
I-RATER Platinum - 'Config_settings.TPL.php' Remote File Inclusion
|
17 |
WEB
|
O.U.T.L.A.W
|
|
2006-04-28
|
|
NeoMail - 'NeoMail.pl?sessionid' Cross-Site Scripting
|
17 |
WEB
|
O.U.T.L.A.W
|
|
2006-04-28
|
|
DUclassified - 'detail.asp' SQL Injection
|
18 |
WEB
|
sadegh.sarshogh
|
|
2013-08-21
|
|
Sitecom N300/N600 Devices - Multiple Vulnerabilities
|
16 |
WEB
|
Roberto Paleari
|
|
2013-08-21
|
|
Adobe ColdFusion 9 - Administrative Authentication Bypass
|
20 |
WEB
|
Scott Buckel
|
|
2013-08-21
|
|
Samsung DVR Firmware 1.10 - Authentication Bypass
|
19 |
WEB
|
Andrea Fabrizi
|
|
2013-08-21
|
|
WordPress Plugin ThinkIT 0.1 - Multiple Vulnerabilities
|
18 |
WEB
|
Yashar shahinzadeh
|
|
2013-08-21
|
|
Bitbot (C2 Web Panel) - 'gate2.php' Multiple Vulnerabilities
|
22 |
WEB
|
bwall
|
|
2006-04-04
|
|
MySmartBB 1.1.2/1.1.3 - Multiple Input Validation Vulnerabilities
|
16 |
WEB
|
BoNy-m
|
|
2006-04-26
|
|
DevBB 1.0 - 'member.php' Cross-Site Scripting
|
24 |
WEB
|
Qex
|
|
2006-04-26
|
|
Farsinews 2.5.3 - Multiple Cross-Site Scripting Vulnerabilities
|
17 |
WEB
|
O.U.T.L.A.W.
|
|
2006-04-26
|
|
CuteNews 1.4.1 - Multiple Cross-Site Scripting Vulnerabilities
|
17 |
WEB
|
outlaw.dll
|
|
2006-04-25
|
|
Instant Photo Gallery 1.0 - 'portfolio_photo_popup.php?id' Cross-Site Scripting
|
21 |
WEB
|
Qex
|
|
2006-04-25
|
|
Instant Photo Gallery 1.0 - 'portfolio.php?cat_id' Cross-Site Scripting
|
15 |
WEB
|
Qex
|
|
2006-04-25
|
|
Instant Photo Gallery 1.0 - 'member.php?member' Cross-Site Scripting
|
21 |
WEB
|
Qex
|
|
2006-05-25
|
|
Invision Power Board 2.0/2.1 - 'index.php?CK' SQL Injection
|
19 |
WEB
|
IceShaman
|
|
2006-04-25
|
|
PHPWebFTP 2.3 - Multiple Cross-Site Scripting Vulnerabilities
|
19 |
WEB
|
arko.dhar
|
|
2006-04-25
|
|
NextAge Shopping Cart - Multiple HTML Injection Vulnerabilities
|
18 |
WEB
|
R@1D3N
|
|
2006-04-25
|
|
PhotoKorn 1.53/1.54 - 'print.php?cat' SQL Injection
|
23 |
WEB
|
Dr.Jr7
|
|
2006-04-25
|
|
PhotoKorn 1.53/1.54 - 'id' SQL Injection
|
18 |
WEB
|
Dr.Jr7
|
|
2006-04-25
|
|
PhotoKorn 1.53/1.54 - 'index.php' Multiple SQL Injections
|
19 |
WEB
|
Dr.Jr7
|
|
2006-04-24
|
|
Scry Gallery 1.1 - 'index.php' Cross-Site Scripting
|
20 |
WEB
|
mayank
|
|
2006-04-24
|
|
Blender 2.36 - '.BVF' File Import Python Code Execution
|
20 |
WEB
|
Joxean Koret
|
|
2006-04-22
|
|
Simplog 0.9.3 - 'ImageList.php' Cross-Site Scripting
|
18 |
WEB
|
nukedx
|
|
2006-04-22
|
|
MKPortal 1.1 - Multiple Input Validation Vulnerabilities
|
22 |
WEB
|
Mustafa Can Bjorn IPEKCI
|
|
2006-04-21
|
|
Scry Gallery - Directory Traversal
|
22 |
WEB
|
Morocco Security Team
|
|
2006-04-21
|
|
phpLDAPadmin 0.9.8 - 'template_engine.php' Cross-Site Scripting
|
19 |
WEB
|
r0t
|
|
2006-04-21
|
|
phpLDAPadmin 0.9.8 - 'search.php' Cross-Site Scripting
|
19 |
WEB
|
r0t
|
|
2006-04-21
|
|
phpLDAPadmin 0.9.8 - 'rename_form.php' Cross-Site Scripting
|
23 |
WEB
|
r0t
|
|
2006-04-21
|
|
phpLDAPadmin 0.9.8 - 'copy_form.php' Cross-Site Scripting
|
19 |
WEB
|
r0t
|
|
2006-04-21
|
|
phpLDAPadmin 0.9.8 - 'compare_form.php' Cross-Site Scripting
|
19 |
WEB
|
r0t
|
|
2006-04-20
|
|
Manic Web MWGuest 2.1 - 'MWguest.php' HTML Injection
|
22 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-04-20
|
|
Portal Pack 6.0 - Multiple Cross-Site Scripting Vulnerabilities
|
22 |
WEB
|
r0t
|
|
2006-04-20
|
|
ThWboard 3.0 - 'index.php' Cross-Site Scripting
|
21 |
WEB
|
CrAzY CrAcKeR
|
|
2006-04-20
|
|
W2B Online Banking - 'SID' Cross-Site Scripting
|
18 |
WEB
|
r0t
|
|
2006-04-20
|
|
4homepages 4Images 1.7 - 'member.php' Cross-Site Scripting
|
21 |
WEB
|
Qex
|
|
2006-04-20
|
|
I-RATER Platinum - 'Common.php' Remote File Inclusion
|
18 |
WEB
|
r0t
|
|
2006-04-20
|
|
Net Clubs Pro 4.0 - 'login.cgi?Password' Cross-Site Scripting
|
19 |
WEB
|
r0t
|
|
2006-04-20
|
|
Net Clubs Pro 4.0 - 'imessage.cgi?Username' Cross-Site Scripting
|
18 |
WEB
|
r0t
|
|
2006-04-20
|
|
Net Clubs Pro 4.0 - 'sendim.cgi' Multiple Cross-Site Scripting Vulnerabilities
|
19 |
WEB
|
r0t
|
|
2006-04-19
|
|
AWStats 4.0/5.x/6.x - AWStats.pl Multiple Cross-Site Scripting Vulnerabilities
|
21 |
WEB
|
r0t
|
|
2006-04-19
|
|
otalCalendar - 'about.php?inc_dir' Remote File Inclusion
|
20 |
WEB
|
VietMafia
|
|
2006-04-19
|
|
Plexum PlexCart X5 - Multiple SQL Injections
|
20 |
WEB
|
r0t
|
|
2006-04-19
|
|
xFlow 5.46.11 - 'index.cgi' Multiple Cross-Site Scripting Vulnerabilities
|
20 |
WEB
|
r0t
|
|
2006-04-19
|
|
xFlow 5.46.11 - 'index.cgi' Multiple SQL Injections
|
21 |
WEB
|
r0t
|
|
2006-04-19
|
|
BannerFarm 2.3 - Multiple Cross-Site Scripting Vulnerabilities
|
22 |
WEB
|
r0t
|
|
2006-04-19
|
|
ContentBoxx - 'login.php' Cross-Site Scripting
|
18 |
WEB
|
botan
|
|
2006-04-19
|
|
ThWboard 2.8 - 'showtopic.php' SQL Injection
|
19 |
WEB
|
Qex
|
|
2006-04-19
|
|
IntelliLink Pro 5.06 - 'edit.cgi' Multiple Cross-Site Scripting Vulnerabilities
|
20 |
WEB
|
r0t
|
|
2006-04-19
|
|
IntelliLink Pro 5.06 - 'addlink_lwp.cgi?url' Cross-Site Scripting
|
19 |
WEB
|
r0t
|
|
2006-04-19
|
|
Cisco Wireless Lan Solution Engine - ArchiveApplyDisplay.jsp Cross-Site Scripting
|
20 |
WEB
|
Adam Pointon
|
|
2006-04-19
|
|
CommuniMail 1.2 - 'templates.cgi?form_id' Cross-Site Scripting
|
22 |
WEB
|
r0t
|
|
2006-04-19
|
|
CommuniMail 1.2 - 'mailadmin.cgi?list_id' Cross-Site Scripting
|
19 |
WEB
|
r0t
|
|
2006-04-19
|
|
Visale 1.0 - 'pblsmb.cgi?listno' Cross-Site Scripting
|
16 |
WEB
|
r0t
|
|
2006-04-19
|
|
Visale 1.0 - 'pblscg.cgi?catsubno' Cross-Site Scripting
|
20 |
WEB
|
r0t
|
|
2006-04-19
|
|
Visale 1.0 - 'pbpgst.cgi?keyval' Cross-Site Scripting
|
19 |
WEB
|
r0t
|
|
2006-04-19
|
|
ModernBill 4.3 - 'user.php' SQL Injection
|
17 |
WEB
|
r0t
|
|
2006-04-19
|
|
Article Publisher 1.0.1 Pro - Multiple SQL Injections
|
18 |
WEB
|
r0t
|
|
2006-04-19
|
|
CutePHP CuteNews 1.4.1 Editnews Module - Cross-Site Scripting
|
21 |
WEB
|
LoK-Crew
|
|
2006-04-18
|
|
PHPLister 0.4.1 - 'index.php' Cross-Site Scripting
|
18 |
WEB
|
botan
|
|
2006-04-18
|
|
RechnungsZentrale 2 1.1.3 - 'Authent.php4' SQL Injection
|
19 |
WEB
|
GroundZero Security
|
|
2006-04-18
|
|
PHPLinks 2.1.2/2.1.3 - 'index.php' Cross-Site Scripting
|
18 |
WEB
|
r0t
|
|
2006-04-18
|
|
axoverzicht.CGI - Cross-Site Scripting
|
19 |
WEB
|
Qex
|
|
2006-04-17
|
|
Coppermine 1.4.4 - 'index.php' Local File Inclusion
|
21 |
WEB
|
imei
|
|
2006-04-17
|
|
MyBB 1.1 - Global Variable Overwrite
|
17 |
WEB
|
imei
|
|
2006-04-17
|
|
Manila 9.0.1 - Multiple Cross-Site Scripting Vulnerabilities
|
20 |
WEB
|
Aaron Kaplan
|
|
2006-04-17
|
|
Calendarix 0.7 - 'YearCal.php' Cross-Site Scripting
|
20 |
WEB
|
botan
|
|
2006-04-17
|
|
Jax Guestbook 3.50 - 'Page' Cross-Site Scripting
|
21 |
WEB
|
ALMOKANN3
|
|
2006-04-17
|
|
DbbS 2.0 - Multiple Input Validation Vulnerabilities
|
20 |
WEB
|
rgod
|
|
2006-04-17
|
|
Blursoft Blur6ex 0.3.462 - 'index.php' Local File Inclusion
|
23 |
WEB
|
Hamid Ebadi
|
|
2006-04-17
|
|
TinyPHPForum 3.6 - Multiple Cross-Site Scripting Vulnerabilities (1)
|
21 |
WEB
|
Hessam-x
|
|
2006-04-17
|
|
Monster Top List 1.4 - 'functions.php' Remote File Inclusion
|
19 |
WEB
|
r0t
|
|
2006-04-17
|
|
PHPFaber TopSites - 'index.php' Cross-Site Scripting
|
19 |
WEB
|
botan
|
|
2006-04-15
|
|
PHPGuestbook 0.0.2/1.0 - HTML Injection
|
20 |
WEB
|
Qex
|
|
2013-08-17
|
|
Photo Transfer Upload 1.0 iOS - Multiple Vulnerabilities
|
17 |
WEB
|
Vulnerability-Lab
|
|
2013-08-17
|
|
Copy to WebDAV 1.1 iOS - Multiple Vulnerabilities
|
19 |
WEB
|
Vulnerability-Lab
|
|
2013-08-17
|
|
Quack Chat 1.0 - Multiple Vulnerabilities
|
23 |
WEB
|
Dylan Irzi
|
|
2006-04-15
|
|
Tiny Web Gallery 1.4 - 'index.php' Cross-Site Scripting
|
23 |
WEB
|
Qex
|
|
2006-04-14
|
|
Farsinews 2.1/2.5 - 'search.php' Cross-Site Scripting
|
17 |
WEB
|
amin emami
|
|
2006-04-14
|
|
MODx CMS 0.9.1 - 'index.php' Directory Traversal
|
21 |
WEB
|
Rusydi Hasan
|
|
2006-04-14
|
|
MODx CMS 0.9.1 - 'index.php' Cross-Site Scripting
|
17 |
WEB
|
Rusydi Hasan
|
|
2006-04-14
|
|
Papoo 2.1.x - 'print.php' Cross-Site Scripting
|
20 |
WEB
|
Rusydi Hasan
|
|
2006-04-13
|
|
LifeType 1.0.3 - 'index.php' Cross-Site Scripting
|
20 |
WEB
|
Rusydi Hasan
|
|
2006-04-13
|
|
PowerClan 1.14 - 'member.php' SQL Injection
|
18 |
WEB
|
d4igoro
|
|
2006-04-13
|
|
PlanetSearch + - 'Planetsearchplus.php' Cross-Site Scripting
|
24 |
WEB
|
d4igoro
|
|
2006-04-15
|
|
PHPAlbum 0.2.2/0.2.3/4.1 - 'Language.php' File Inclusion
|
18 |
WEB
|
rgod
|
|
2006-04-14
|
|
AR-Blog 5.2 - 'print.php' Cross-Site Scripting
|
20 |
WEB
|
ALMOKANN3
|
|
2006-04-13
|
|
SimpleBBS 1.0.6/1.0.7/1.1 - Arbitrary Command Execution
|
19 |
WEB
|
rUnViRuS
|
|
2006-04-12
|
|
PatroNet CMS - 'index.php' Cross-Site Scripting
|
20 |
WEB
|
Soothackers
|
|
2006-04-12
|
|
MyBB 1.10 - 'member.php' Cross-Site Scripting
|
22 |
WEB
|
o.y.6
|
|
2005-10-31
|
|
phpMyAdmin 2.7 - 'sql.php' Cross-Site Scripting
|
24 |
WEB
|
p0w3r
|
|
2006-04-12
|
|
Interaktiv.shop 4/5 - Multiple Cross-Site Scripting Vulnerabilities
|
18 |
WEB
|
r0t
|
|
2006-04-12
|
|
Chipmunk Guestbook 1.3 - 'index.php' SQL Injection
|
19 |
WEB
|
Dr.Jr7
|
|
2006-04-11
|
|
SWSoft Confixx 3.0.6/3.0.8/3.1.2 - 'index.php' SQL Injection
|
20 |
WEB
|
LoK-Crew
|
|
2006-04-11
|
|
Tritanium Bulletin Board 1.2.3 - Multiple Cross-Site Scripting Vulnerabilities
|
18 |
WEB
|
d4igoro
|
|
2006-04-11
|
|
Indexu 5.0 - Multiple Remote File Inclusions
|
20 |
WEB
|
SnIpEr_SA
|
|
2006-04-11
|
|
PHPKIT 1.6.1 R2 - 'Include.php' SQL Injection
|
17 |
WEB
|
Hamid Ebadi
|
|
2006-04-11
|
|
SWSoft Confixx 3.1.2 - 'Jahr' Cross-Site Scripting
|
18 |
WEB
|
Snake_23
|
|
2006-04-11
|
|
Dokeos 1.x - 'viewtopic.php' SQL Injection
|
19 |
WEB
|
Alvaro Olavarria
|
|
2006-04-11
|
|
Clever Copy 3.0 - 'Connect.INC' Information Disclosure
|
17 |
WEB
|
M.Hasran Addahroni
|
|
2006-04-11
|
|
Microsoft FrontPage - Server Extensions Cross-Site Scripting
|
21 |
WEB
|
Esteban Martinez Fayo
|
|
2006-04-11
|
|
JetPhoto 1.0/2.0/2.1 - 'detail.php?page' Cross-Site Scripting
|
18 |
WEB
|
0o_zeus_o0
|
|
2006-04-11
|
|
JetPhoto 1.0/2.0/2.1 - 'Slideshow.php?name' Cross-Site Scripting
|
17 |
WEB
|
0o_zeus_o0
|
|
2006-04-11
|
|
JetPhoto 1.0/2.0/2.1 - 'gallery.php?page' Cross-Site Scripting
|
15 |
WEB
|
0o_zeus_o0
|
|
2006-04-11
|
|
JetPhoto 1.0/2.0/2.1 - 'thumbnail.php?page' Cross-Site Scripting
|
21 |
WEB
|
0o_zeus_o0
|
|
2006-04-11
|
|
AzDGVote - Remote File Inclusion
|
18 |
WEB
|
SnIpEr_SA
|
|
2006-04-10
|
|
ShopWeezle 2.0 - 'memo.php?itemID' SQL Injection
|
19 |
WEB
|
r0t
|
|
2006-04-10
|
|
ShopWeezle 2.0 - 'index.php' Multiple SQL Injections
|
21 |
WEB
|
r0t
|
|
2006-04-10
|
|
ShopWeezle 2.0 - 'login.php?itemID' SQL Injection
|
17 |
WEB
|
r0t
|
|
2013-08-15
|
|
Alibaba Clone Tritanium Version - 'news_desc.html' SQL Injection
|
17 |
WEB
|
IRAQ_JAGUAR
|
|
2013-08-15
|
|
w-CMS 2.0.1 - Remote Code Execution
|
25 |
WEB
|
ICheer_No0M
|
