|
2013-08-15
|
|
DotNetNuke DNNArticle Module 10.0 - SQL Injection
|
18 |
WEB
|
Sajjad Pourali
|
|
2013-08-15
|
|
Spitfire CMS 1.1.4 - Cross-Site Request Forgery
|
20 |
WEB
|
Yashar shahinzadeh
|
|
2013-08-15
|
|
Pligg CMS 2.0.0rc2 - Cross-Site Request Forgery (File Creation)
|
19 |
WEB
|
DaOne
|
|
2013-08-15
|
|
Mac's CMS 1.1.4 - Multiple Vulnerabilities
|
17 |
WEB
|
Yashar shahinzadeh
|
|
2013-08-15
|
|
KCFinder 2.51 - Local File Disclosure
|
20 |
WEB
|
DaOne
|
|
2006-04-07
|
|
Matt Wright Guestbook 2.3.1 - Guestbook.pl Multiple HTML Injection Vulnerabilities
|
19 |
WEB
|
Liz0ziM
|
|
2006-04-10
|
|
VegaDNS 0.9.9 - 'index.php?cid' SQL Injection
|
17 |
WEB
|
Ph03n1X
|
|
2006-04-10
|
|
SIRE 2.0 - Arbitrary File Upload
|
16 |
WEB
|
simo64
|
|
2006-04-10
|
|
Shadowed Portal 5.7 - 'Load.php' Cross-Site Scripting
|
23 |
WEB
|
Liz0ziM
|
|
2005-04-10
|
|
APT-webshop 3.0/4.0 - 'modules.php' Multiple SQL Injections
|
21 |
WEB
|
r0t
|
|
2006-04-10
|
|
SPIP 1.8.3 - 'Spip_login.php' Remote File Inclusion
|
18 |
WEB
|
cR45H3R
|
|
2006-04-10
|
|
PHPWebGallery 1.4.1 - 'picture.php' Cross-Site Scripting
|
20 |
WEB
|
Psych0
|
|
2006-04-10
|
|
PHPWebGallery 1.4.1 - 'category.php' Cross-Site Scripting
|
19 |
WEB
|
Psych0
|
|
2006-04-10
|
|
PHPMyForum 4.0 - 'index.php?type' CRLF Injection
|
18 |
WEB
|
Psych0
|
|
2006-04-10
|
|
PHPMyForum 4.0 - 'page' Cross-Site Scripting
|
20 |
WEB
|
Psych0
|
|
2006-04-10
|
|
JBook 1.3 - 'index.php' Cross-Site Scripting
|
21 |
WEB
|
Psych0
|
|
2006-04-07
|
|
TalentSoft Web+ Shop 5.0 - 'Deptname' Cross-Site Scripting
|
20 |
WEB
|
r0t
|
|
2006-04-07
|
|
AWeb's Banner Generator 3.0 - Cross-Site Scripting
|
22 |
WEB
|
benozor77
|
|
2006-04-07
|
|
vBulletin 3.5.1 - 'Vbugs.php' Cross-Site Scripting
|
18 |
WEB
|
r0t
|
|
2006-04-07
|
|
Bitweaver CMS 1.3 - Multiple Cross-Site Scripting Vulnerabilities
|
17 |
WEB
|
KaDaL-X
|
|
2006-04-07
|
|
Jupiter CMS 1.1.5 - 'index.php' Cross-Site Scripting
|
21 |
WEB
|
KaDaL-X
|
|
2006-04-06
|
|
MAXDEV CMS 1.0.72/1.0.73 - 'PNuserapi.php' SQL Injection
|
19 |
WEB
|
king_purba
|
|
2006-04-06
|
|
MD News 1 - 'admin.php' SQL Injection
|
17 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2003-04-06
|
|
Basic Analysis and Security Engine (BASE) 1.2.4 - PrintFreshPage Cross-Site Scripting
|
16 |
WEB
|
Adam Ely
|
|
2006-04-06
|
|
SKForum 1.x - 'user.View.action?userID' Cross-Site Scripting
|
19 |
WEB
|
r0t
|
|
2006-04-06
|
|
SKForum 1.x - 'planning.View.action?time' Cross-Site Scripting
|
21 |
WEB
|
r0t
|
|
2006-04-06
|
|
SKForum 1.x - 'area.View.action?areaID' Cross-Site Scripting
|
20 |
WEB
|
r0t
|
|
2006-04-05
|
|
Chucky A. Ivey N.T. 1.1 - 'index.php' Multiple HTML Injection Vulnerabilities
|
22 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-04-04
|
|
ArabPortal 2.0.1 - Multiple Input Validation Vulnerabilities
|
18 |
WEB
|
o.y.6
|
|
2006-04-03
|
|
LucidCMS 2.0 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
|
19 |
WEB
|
Rusydi Hasan
|
|
2006-04-03
|
|
Web-APP.net WebAPP 0.9.x - '/mods/calendar/index.cgi?vsSD' Cross-Site Scripting
|
22 |
WEB
|
r0t
|
|
2006-04-03
|
|
Web-APP.net WebAPP 0.9.x - 'index.cgi' Multiple Cross-Site Scripting Vulnerabilities
|
17 |
WEB
|
r0t
|
|
2006-04-03
|
|
aWebNews 1.2 - 'visview.php?_GET['cid']' SQL Injection
|
19 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-04-03
|
|
Bugzero 4.3.1 - 'edit.jsp' Multiple Cross-Site Scripting Vulnerabilities
|
21 |
WEB
|
r0t
|
|
2006-04-03
|
|
Bugzero 4.3.1 - 'query.jsp?msg' Cross-Site Scripting
|
21 |
WEB
|
r0t
|
|
2006-04-01
|
|
PHPSelect Submit-A-Link - HTML Injection
|
23 |
WEB
|
s3rv3r_hack3r
|
|
2006-04-01
|
|
ISP Site Man - 'admin_login.asp' SQL Injection
|
19 |
WEB
|
s3rv3r_hack3r
|
|
2006-03-31
|
|
Blank'N'Berg 0.2 - Cross-Site Scripting
|
19 |
WEB
|
Amine ABOUD
|
|
2006-03-31
|
|
Blank'N'Berg 0.2 - Directory Traversal
|
21 |
WEB
|
Amine ABOUD
|
|
2006-03-31
|
|
Claroline 1.x - 'rqmkhtml.php' Cross-Site Scripting
|
21 |
WEB
|
rgod
|
|
2006-03-31
|
|
Claroline 1.x - 'rqmkhtml.php' Information Disclosure
|
20 |
WEB
|
rgod
|
|
2006-03-31
|
|
SoftBiz Image Gallery - 'images.php?cid' SQL Injection
|
19 |
WEB
|
Linux_Drox
|
|
2006-03-31
|
|
SoftBiz Image Gallery - 'insert_rating.php?img_id' SQL Injection
|
19 |
WEB
|
Linux_Drox
|
|
2006-03-31
|
|
SoftBiz Image Gallery - 'suggest_image.php?cid' SQL Injection
|
21 |
WEB
|
Linux_Drox
|
|
2006-03-31
|
|
SoftBiz Image Gallery - 'template.php?provided' SQL Injection
|
17 |
WEB
|
Linux_Drox
|
|
2006-03-31
|
|
SoftBiz Image Gallery - 'mage_desc.php' Multiple SQL Injections
|
21 |
WEB
|
Linux_Drox
|
|
2006-03-31
|
|
DbbS 2.0 - 'Topics.php' SQL Injection
|
18 |
WEB
|
DaBDouB-MoSiKaR
|
|
2006-03-31
|
|
RedCMS 0.1 - 'register.php' Multiple Cross-Site Scripting Vulnerabilities
|
18 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-03-31
|
|
RedCMS 0.1 - 'login.php' Multiple SQL Injections
|
16 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-03-31
|
|
RedCMS 0.1 - 'profile.php?u' SQL Injection
|
18 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-03-31
|
|
Warcraft III Replay Parser for PHP 1.8.c - 'index.php' Remote File Inclusion
|
19 |
WEB
|
botan
|
|
2006-03-31
|
|
SiteSearch Indexer 3.5 - 'searchresults.asp' Cross-Site Scripting
|
19 |
WEB
|
r0t
|
|
2006-03-30
|
|
O2PHP Oxygen 1.0/1.1 - 'post.php' SQL Injection
|
15 |
WEB
|
Morocco Security Team
|
|
2006-03-30
|
|
MediaSlash Gallery - 'index.php' Remote File Inclusion
|
19 |
WEB
|
Morocco Security Team
|
|
2006-03-30
|
|
X-Changer 0.20 - Multiple SQL Injections
|
16 |
WEB
|
Morocco Security Team
|
|
2013-08-12
|
|
Joomla! Component redSHOP 1.2 - SQL Injection
|
19 |
WEB
|
Matias Fontanini
|
|
2013-08-12
|
|
WordPress Plugin Hms Testimonials 2.0.10 - Multiple Vulnerabilities
|
17 |
WEB
|
RogueCoder
|
|
2013-08-12
|
|
Integrated CMS 1.0 - SQL Injection
|
19 |
WEB
|
DSST
|
|
2013-08-12
|
|
Gnew 2013.1 - Multiple Vulnerabilities (1)
|
21 |
WEB
|
LiquidWorm
|
|
2013-08-12
|
|
Ajax PHP Penny Auction 1.x 2.x - Multiple Vulnerabilities
|
19 |
WEB
|
Taha Hunter
|
|
2013-08-12
|
|
PHPVID 1.2.3 - Multiple Vulnerabilities
|
19 |
WEB
|
3spi0n
|
|
2013-08-12
|
|
MLMAuction Script - 'gallery.php?id' SQL Injection
|
20 |
WEB
|
3spi0n
|
|
2013-08-12
|
|
Open Real Estate CMS 1.5.1 - Multiple Vulnerabilities
|
19 |
WEB
|
Yashar shahinzadeh
|
|
2013-08-12
|
|
Tribq CMS 5.2.7 - Cross-Site Request Forgery (Adding/Editing New Administrator Account)
|
18 |
WEB
|
Yashar shahinzadeh
|
|
2006-03-30
|
|
VNews 1.2 - Multiple SQL Injections
|
18 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-03-29
|
|
PhxContacts 0.93 - 'login.php' Cross-Site Scripting
|
17 |
WEB
|
DaBDouB-MoSiKaR
|
|
2006-03-29
|
|
PhxContacts 0.93 - 'contact_view.php?id_contact' SQL Injection
|
16 |
WEB
|
Morocco Security Team
|
|
2006-03-29
|
|
PhxContacts 0.93 - 'carnet.php' Multiple SQL Injections
|
17 |
WEB
|
Morocco Security Team
|
|
2006-03-28
|
|
OneOrZero 1.6.3 Helpdesk - 'index.php' SQL Injection
|
21 |
WEB
|
Preddy
|
|
2006-03-28
|
|
AL-Caricatier 2.5 - Multiple Cross-Site Scripting Vulnerabilities
|
21 |
WEB
|
Linux_Drox
|
|
2006-03-28
|
|
Connect Daily 3.2.8/3.2.9 - 'ViewWeek.html?week' Cross-Site Scripting
|
15 |
WEB
|
r0t
|
|
2006-03-28
|
|
Connect Daily 3.2.8/3.2.9 - 'ViewCal.html?item_type_id' Cross-Site Scripting
|
23 |
WEB
|
r0t
|
|
2006-03-28
|
|
Connect Daily 3.2.8/3.2.9 - 'ViewYear.html' Multiple Cross-Site Scripting Vulnerabilities
|
18 |
WEB
|
r0t
|
|
2006-03-28
|
|
Connect Daily 3.2.8/3.2.9 - 'ViewSearch.html' Multiple Cross-Site Scripting Vulnerabilities
|
18 |
WEB
|
r0t
|
|
2006-03-28
|
|
Connect Daily 3.2.8/3.2.9 - 'ViewDay.html' Multiple Cross-Site Scripting Vulnerabilities
|
17 |
WEB
|
r0t
|
|
2006-03-28
|
|
Arab Portal 2.0 - 'download.php' Cross-Site Scripting
|
18 |
WEB
|
o.y.6
|
|
2006-03-28
|
|
Arab Portal 2.0 - 'online.php' Cross-Site Scripting
|
21 |
WEB
|
o.y.6
|
|
2006-03-28
|
|
CONTROLzx Hms 3.3.4 - 'server_management.php?plan_id' Cross-Site Scripting
|
19 |
WEB
|
r0t
|
|
2006-03-28
|
|
CONTROLzx Hms 3.3.4 - 'dedicated_order.php?dedicatedPlanID' Cross-Site Scripting
|
16 |
WEB
|
r0t
|
|
2006-03-28
|
|
CONTROLzx Hms 3.3.4 - 'shared_order.php?sharedPlanID' Cross-Site Scripting
|
16 |
WEB
|
r0t
|
|
2006-03-28
|
|
PHPCOIN 1.2 - 'mod.php?fs' Cross-Site Scripting
|
18 |
WEB
|
r0t
|
|
2006-03-28
|
|
PHPCOIN 1.2 - 'mod_print.php?fs' Cross-Site Scripting
|
18 |
WEB
|
r0t
|
|
2006-03-28
|
|
phpMyFamily 1.4.1 - 'Track.php' Cross-Site Scripting
|
18 |
WEB
|
matrix_killer
|
|
2006-03-28
|
|
RealestateZONE 4.2 - Multiple Cross-Site Scripting Vulnerabilities
|
19 |
WEB
|
r0t
|
|
2006-03-27
|
|
ActiveCampaign SupportTrio 2.50.2 - Multiple Cross-Site Scripting Vulnerabilities
|
18 |
WEB
|
r0t
|
|
2006-03-27
|
|
FusionZONE CouponZONE 4.2 - Multiple SQL Injections
|
21 |
WEB
|
r0t
|
|
2006-03-28
|
|
ClassifiedZONE 1.2 - 'Accountlogon.cfm' Cross-Site Scripting
|
16 |
WEB
|
r0t
|
|
2006-03-28
|
|
FusionZONE CouponZONE 4.2 - Multiple Cross-Site Scripting Vulnerabilities
|
19 |
WEB
|
r0t
|
|
2006-03-27
|
|
BlankOL 1.0 - 'Bol.cgi' Multiple Cross-Site Scripting Vulnerabilities
|
18 |
WEB
|
r0t
|
|
2006-03-27
|
|
Web Host Automation Ltd. Helm 3.2.10 Beta - 'default.asp' Multiple Cross-Site Scripting Vulnerabilit
|
20 |
WEB
|
r0t
|
|
2006-03-27
|
|
Web Host Automation Ltd. Helm 3.2.10 Beta - 'domains.asp?txtDomainName' Cross-Site Scripting
|
16 |
WEB
|
r0t
|
|
2006-03-27
|
|
DSLogin 1.0 - 'index.php' Multiple SQL Injections
|
18 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-03-27
|
|
Pixel Motion - 'index.php?date' SQL Injection
|
18 |
WEB
|
DaBDouB-MoSiKaR
|
|
2006-03-27
|
|
Pixel Motion - '/admin/index.php' Multiple SQL Injections
|
18 |
WEB
|
DaBDouB-MoSiKaR
|
|
2006-03-27
|
|
Caloris Planitia Technologies School Management System 1.0 - Cross-Site Scripting
|
21 |
WEB
|
r0t
|
|
2006-03-27
|
|
Online Quiz System - 'student.asp?msg' Cross-Site Scripting
|
21 |
WEB
|
r0t
|
|
2006-03-27
|
|
Online Quiz System - 'prequiz.asp?exam' Cross-Site Scripting
|
25 |
WEB
|
r0t
|
|
2006-03-27
|
|
Toast Forums 1.6 - 'Toast.asp' Multiple Cross-Site Scripting Vulnerabilities
|
21 |
WEB
|
r0t
|
|
2006-03-27
|
|
Maian Weblog 2.0 - 'mail.php' SQL Injection
|
18 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-03-27
|
|
Maian Weblog 2.0 - 'print.php' SQL Injection
|
22 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-03-27
|
|
SaPHPLesson 2.0 - 'print.php' SQL Injection
|
20 |
WEB
|
Linux_Drox
|
|
2006-03-27
|
|
EZHomePagePro 1.5 - 'users_mgallery.asp?usid' Cross-Site Scripting
|
22 |
WEB
|
r0t
|
|
2006-03-27
|
|
EZHomePagePro 1.5 - 'users_profiles.asp' Multiple Cross-Site Scripting Vulnerabilities
|
24 |
WEB
|
r0t
|
|
2006-03-27
|
|
EZHomePagePro 1.5 - 'users_calendar.asp?page' Cross-Site Scripting
|
20 |
WEB
|
r0t
|
|
2006-03-27
|
|
EZHomePagePro 1.5 - 'users_search.asp' Multiple Cross-Site Scripting Vulnerabilities
|
17 |
WEB
|
r0t
|
|
2006-03-27
|
|
EZHomePagePro 1.5 - 'email.asp' Multiple Cross-Site Scripting Vulnerabilities
|
19 |
WEB
|
r0t
|
|
2006-03-27
|
|
Nuked-klaN 1.x - 'index.php' SQL Injection
|
19 |
WEB
|
DaBDouB-MoSiKaR
|
|
2006-03-27
|
|
ConfTool 1.1 - 'index.php' Cross-Site Scripting
|
18 |
WEB
|
botan
|
|
2006-03-24
|
|
VihorDesign - 'index.php' Remote File Inclusion
|
19 |
WEB
|
botan
|
|
2006-03-24
|
|
VihorDesign - 'index.php' Cross-Site Scripting
|
19 |
WEB
|
botan
|
|
2006-03-24
|
|
Cholod MySQL Based Message Board - 'Mb.cgi' SQL Injection
|
24 |
WEB
|
kspecial
|
|
2006-03-23
|
|
IBM Tivoli Business Systems Manager 3.1 - APWC_Win_Main.jsp Cross-Site Scripting
|
23 |
WEB
|
anonymous
|
|
2003-03-23
|
|
AdMan 1.0.20051221 - 'ViewStatement.php' SQL Injection
|
18 |
WEB
|
r0t
|
|
2006-03-23
|
|
CoMoblog 1.0 - 'Img.php' Cross-Site Scripting
|
19 |
WEB
|
FarhadKey
|
|
2006-03-23
|
|
EasyMoblog 0.5 - 'Img.php' Cross-Site Scripting
|
17 |
WEB
|
FarhadKey
|
|
2006-03-22
|
|
1WebCalendar 4.0 - 'mainCal.cfm' SQL Injection
|
16 |
WEB
|
r0t3d3Vil
|
|
2006-03-22
|
|
1WebCalendar 4.0 - '/news/newsView.cfm?NewsID' SQL Injection
|
18 |
WEB
|
r0t3d3Vil
|
|
2006-03-22
|
|
1WebCalendar 4.0 - 'viewEvent.cfm?EventID' SQL Injection
|
18 |
WEB
|
r0t3d3Vil
|
|
2006-03-22
|
|
Motorola - BlueTooth Interface Dialog Spoofing
|
19 |
WEB
|
kspecial
|
|
2006-03-20
|
|
Verisign MPKI 6.0 - 'Haydn.exe' Cross-Site Scripting
|
17 |
WEB
|
Alberto Soli
|
|
2006-02-24
|
|
WinHKI 1.4/1.5/1.6 - Directory Traversal
|
21 |
WEB
|
raphael.huck@free.fr
|
|
2006-03-20
|
|
phpWebSite 0.8.2/0.8.3 - 'article.php?sid' SQL Injection
|
18 |
WEB
|
DaBDouB-MoSiKaR
|
|
2006-03-20
|
|
phpWebSite 0.8.2/0.8.3 - 'friend.php?sid' SQL Injection
|
17 |
WEB
|
DaBDouB-MoSiKaR
|
|
2006-03-18
|
|
MusicBox 2.3 - 'cart.php' Cross-Site Scripting
|
19 |
WEB
|
Linux_Drox
|
|
2006-03-18
|
|
MusicBox 2.3 - 'index.php' Cross-Site Scripting
|
17 |
WEB
|
Linux_Drox
|
