|
2004-01-31
|
|
Aprox Portal 3.0 - File Disclosure
|
21 |
WEB
|
Zero X
|
|
2004-01-31
|
|
Leif M. Wright Web Blog 1.1 - Remote Command Execution
|
25 |
WEB
|
ActualMInd
|
|
2004-01-30
|
|
JBrowser 1.0/2.x - Unauthorized Admin Access
|
21 |
WEB
|
Himeur Nourredine
|
|
2012-12-24
|
|
MyBB AwayList Plugin - 'index.php?id' SQL Injection
|
25 |
WEB
|
Red_Hat
|
|
2012-12-24
|
|
MyBB HM My Country Flags - SQL Injection
|
23 |
WEB
|
JoinSe7en
|
|
2012-12-24
|
|
City Directory Review and Rating Script - 'search.php' SQL Injection
|
28 |
WEB
|
3spi0n
|
|
2004-01-30
|
|
Laurent Adda Les Commentaires 2.0 - PHP Script 'admin.php' Remote File Inclusion
|
28 |
WEB
|
Himeur Nourredine
|
|
2004-01-30
|
|
Laurent Adda Les Commentaires 2.0 - PHP Script 'derniers_commentaires.php' Remote File Inclusion
|
31 |
WEB
|
Himeur Nourredine
|
|
2004-01-30
|
|
Laurent Adda Les Commentaires 2.0 - PHP Script 'fonctions.lib.php' Remote File Inclusion
|
29 |
WEB
|
Himeur Nourredine
|
|
2004-01-30
|
|
JBrowser 1.0/2.x - 'browser.php' Directory Traversal
|
19 |
WEB
|
Himeur Nourredine
|
|
2004-01-30
|
|
PHPGedView 2.x - '[GED_File]_conf.php' Remote File Inclusion
|
22 |
WEB
|
Cedric Cochin
|
|
2004-01-30
|
|
PHPGedView 2.x - 'Editconfig_gedcom.php' Directory Traversal
|
26 |
WEB
|
Cedric Cochin
|
|
2004-01-29
|
|
PJ CGI Neo Review - Directory Traversal
|
25 |
WEB
|
Zone-h Security Team
|
|
2004-01-20
|
|
Leif M. Wright Web Blog 1.1 - File Disclosure
|
25 |
WEB
|
Zone-h Security Team
|
|
2004-01-26
|
|
Kietu 2/3 - 'index.php' Remote File Inclusion
|
26 |
WEB
|
Himeur Nourredine
|
|
2004-01-26
|
|
Xoops 2.0.x - 'viewtopic.php' Cross-Site Scripting
|
26 |
WEB
|
Ben Drysdale
|
|
2004-01-26
|
|
Gallery 1.3.x/1.4 - Remote Global Variable Injection
|
25 |
WEB
|
Bharat Mediratta
|
|
2012-12-21
|
|
Elite Bulletin Board 2.1.21 - Multiple SQL Injections
|
24 |
WEB
|
High-Tech Bridge SA
|
|
2012-12-21
|
|
banana dance b.2.6 - Multiple Vulnerabilities
|
21 |
WEB
|
High-Tech Bridge SA
|
|
2012-12-21
|
|
YeaLink IP Phone SIP-TxxP Firmware 9.70.0.100 - Multiple Vulnerabilities
|
25 |
WEB
|
xistence
|
|
2012-12-21
|
|
SelectSurvey CMS - 'ASP.NET' Arbitrary File Upload
|
23 |
WEB
|
040
|
|
2004-01-20
|
|
DUware Software - Multiple Vulnerabilities
|
27 |
WEB
|
Security Corporation
|
|
2004-01-20
|
|
PHPix 2.0.3 - Arbitrary Command Execution
|
26 |
WEB
|
Max Stepanov
|
|
2004-01-19
|
|
YABB SE 1.x - 'SSI.php' ID_MEMBER SQL Injection
|
23 |
WEB
|
BaCkSpAcE
|
|
2004-01-19
|
|
Mambo Open Source 4.5/4.6 - 'mod_mainmenu.php' Remote File Inclusion
|
25 |
WEB
|
Yo_Soy
|
|
2004-01-16
|
|
MetaDot Portal Server 5.6.x - 'userchannel.pl?op' Cross-Site Scripting
|
23 |
WEB
|
JeiAr
|
|
2004-01-16
|
|
MetaDot Portal Server 5.6.x - 'index.pl' Multiple Cross-Site Scripting Vulnerabilities
|
21 |
WEB
|
JeiAr
|
|
2004-01-16
|
|
MetaDot Portal Server 5.6.x - index.pl Information Disclosure
|
25 |
WEB
|
JeiAr
|
|
2004-01-16
|
|
MetaDot Portal Server 5.6.x - 'index.pl' Multiple SQL Injections
|
21 |
WEB
|
JeiAr
|
|
2004-01-16
|
|
XtremeASP PhotoGallery 2.0 - 'Adminlogin.asp' SQL Injection
|
24 |
WEB
|
posidron
|
|
2004-01-16
|
|
phpShop Web Shopping Cart 0.6.1 -b - Multiple Function Cross-Site Scripting Vulnerabilities
|
21 |
WEB
|
JeiAr
|
|
2004-01-10
|
|
VisualShapers EZContents 1.4/2.0 - 'module.php' Remote Command Execution
|
23 |
WEB
|
Zero X
|
|
2004-01-10
|
|
Andy's PHP Projects Man Page Lookup Script - Information Disclosure
|
25 |
WEB
|
Cabezon Aurelien
|
|
2004-01-10
|
|
DansGuardian Webmin Module 0.x - 'edit.cgi' Directory Traversal
|
23 |
WEB
|
FIST
|
|
2004-01-06
|
|
PhpGedView 2.61 - PHPInfo Information Disclosure
|
22 |
WEB
|
Windak
|
|
2004-01-06
|
|
PhpGedView 2.61 - Search Script Cross-Site Scripting
|
26 |
WEB
|
Windak
|
|
2004-01-06
|
|
PHPGedView 2.61 - Multiple Remote File Inclusions
|
23 |
WEB
|
Windak
|
|
2004-01-04
|
|
FreznoShop 1.2.3/1.3 - Search Script Cross-Site Scripting
|
24 |
WEB
|
David S. Ferreira
|
|
2004-01-05
|
|
HotNews 0.x - 'config[incdir]' Remote File Inclusion
|
23 |
WEB
|
Officerrr
|
|
2004-01-05
|
|
HotNews 0.x - 'hotnews-engine.inc.php3?config[header]' Remote File Inclusion
|
24 |
WEB
|
Officerrr
|
|
2004-01-04
|
|
ASP-Nuke 1.0/1.2/1.3 - Remote User Database Access
|
23 |
WEB
|
Vietnamese Security Group
|
|
2004-01-04
|
|
ASPApp PortalApp - Remote User Database Access
|
23 |
WEB
|
newbie6290
|
|
2004-01-02
|
|
Athena Web Registration - Remote Command Execution
|
23 |
WEB
|
Peter Kieser
|
|
2004-01-02
|
|
EasyDynamicPages 1.0 - 'config_page.php' PHP Remote File Inclusion
|
24 |
WEB
|
tsbeginnervn
|
|
2012-12-19
|
|
Enterpriser16 Load Balancer 7.1 - Multiple Cross-Site Scripting Vulnerabilities
|
21 |
WEB
|
Vulnerability-Lab
|
|
2012-12-19
|
|
SonicWALL SonicOS 5.8.1.8 WAF - Cross-Site Scripting
|
23 |
WEB
|
Vulnerability-Lab
|
|
2012-12-19
|
|
WordPress Theme Clockstone (and other CMSMasters Themes) - Arbitrary File Upload
|
21 |
WEB
|
DigiP
|
|
2003-12-29
|
|
BulletScript MailList - bsml.pl Information Disclosure
|
23 |
WEB
|
M0rf
|
|
2003-12-29
|
|
PHP-ping - 'Count' Command Execution
|
24 |
WEB
|
ppp-design
|
|
2003-12-27
|
|
Private Message System 2.x - 'index.php?Page' Cross-Site Scripting
|
22 |
WEB
|
David S. Ferreira
|
|
2003-12-26
|
|
L-Soft 1.8 - Listserv Multiple Cross-Site Scripting Vulnerabilities
|
21 |
WEB
|
http-equiv
|
|
2003-12-27
|
|
PHP-Nuke 6.x/7.0 Survey Module - SQL Injection
|
24 |
WEB
|
idtwolf@pisem.net
|
|
2003-12-27
|
|
OpenBB 1.0 - 'board.php' Cross-Site Scripting
|
23 |
WEB
|
gr00vy
|
|
2003-12-24
|
|
Psychoblogger PB-beta1 - errormessage Cross-Site Scripting
|
24 |
WEB
|
Andrew Smith
|
|
2003-12-24
|
|
Psychoblogger PB-beta1 - 'desc' Cross-Site Scripting
|
26 |
WEB
|
Andrew Smith
|
|
2003-12-24
|
|
KnowledgeBuilder 2.0/2.1/3.0 - Remote File Inclusion
|
22 |
WEB
|
Zero X
|
|
2003-12-23
|
|
phpBB 2.0.6 - 'privmsg.php' Cross-Site Scripting
|
24 |
WEB
|
Ben Drysdale
|
|
2003-12-23
|
|
Webfroot Shoutbox 2.32 - 'Viewshoutbox.php' Cross-Site Scripting
|
21 |
WEB
|
Ben Drysdale
|
|
2003-12-23
|
|
My Little Forum 1.3 - 'email.php' Cross-Site Scripting
|
26 |
WEB
|
David S. Ferreira
|
|
2003-12-23
|
|
iSoft-Solutions QuikStore Shopping Cart 2.12 - 'template' Directory Traversal
|
22 |
WEB
|
Dr Ponidi Haryanto
|
|
2003-12-23
|
|
iSoft-Solutions QuikStore Shopping Cart 2.12 - 'store' Full Path Disclosure
|
24 |
WEB
|
Dr Ponidi Haryanto
|
|
2003-12-22
|
|
osCommerce 2.2 - 'manufacturers_id' Cross-Site Scripting
|
25 |
WEB
|
JeiAr
|
|
2003-12-22
|
|
osCommerce 2.2 - 'products_id' SQL Injection
|
22 |
WEB
|
JeiAr
|
|
2003-12-21
|
|
Xoops 2.0.5.1 - 'MyLinks Myheader.php' Cross-Site Scripting
|
21 |
WEB
|
Chintan Trivedi
|
|
2003-12-20
|
|
BES-CMS 0.4/0.5 - 'hacking.php' File Inclusion
|
23 |
WEB
|
frog
|
|
2003-12-20
|
|
BES-CMS 0.4/0.5 - 'folder.php' File Inclusion
|
24 |
WEB
|
frog
|
|
2003-12-20
|
|
BES-CMS 0.4/0.5 - 'start.php' File Inclusion
|
23 |
WEB
|
frog
|
|
2003-12-20
|
|
BES-CMS 0.4/0.5 - 'message.php' File Inclusion
|
24 |
WEB
|
frog
|
|
2003-12-20
|
|
BES-CMS 0.4/0.5 - '/members/index.inc.php' File Inclusion
|
23 |
WEB
|
frog
|
|
2003-12-20
|
|
BES-CMS 0.4/0.5 - 'index.inc.php' File Inclusion
|
23 |
WEB
|
frog
|
|
2012-12-17
|
|
PHPWCMS 1.5.4.6 - 'preg_replace' Multiple Vulnerabilities
|
22 |
WEB
|
aeon
|
|
2003-12-18
|
|
SiteInteractive Subscribe Me - 'Setup.pl' Arbitrary Command Execution
|
29 |
WEB
|
Paul Craig
|
|
2003-12-17
|
|
osCommerce 2.2 - 'osCsid' Cross-Site Scripting
|
23 |
WEB
|
JeiAr
|
|
2003-12-16
|
|
Aardvark Topsites 4.1 PHP - Multiple Vulnerabilities
|
25 |
WEB
|
JeiAr
|
|
2003-12-15
|
|
elektropost episerver 3/4 - Multiple Vulnerabilities
|
22 |
WEB
|
babbelbubbel
|
|
2003-12-13
|
|
osCommerce 2.2 - SQL Injection
|
24 |
WEB
|
GulfTech Security
|
|
2003-12-11
|
|
RemotelyAnywhere - Default.HTML Logout Message Injection
|
22 |
WEB
|
Oliver Karow
|
|
2003-12-10
|
|
Mambo Open Source 4.0.14 - 'PollBooth.php' Multiple SQL Injections
|
22 |
WEB
|
frog
|
|
2003-12-10
|
|
Mambo Open Source 4.0.14 Server - SQL Injection
|
24 |
WEB
|
Chintan Trivedi
|
|
2003-12-10
|
|
Mambo 4.5 Server - 'user.php' Script Unauthorized Access
|
22 |
WEB
|
frog
|
|
2012-12-16
|
|
MyBB User Profile Skype ID Plugin 1.0 - Persistent Cross-Site Scripting
|
21 |
WEB
|
limb0
|
|
2003-12-09
|
|
calacode @mail webmail system 3.52 - Multiple Vulnerabilities
|
22 |
WEB
|
Nick Gudov
|
|
2003-12-09
|
|
Bitfolge Snif 1.2.6 - 'index.php' Path Cross-Site Scripting
|
21 |
WEB
|
Justin Hagstrom
|
|
2003-12-08
|
|
Webgate WebEye - Information Disclosure
|
22 |
WEB
|
datapath
|
|
2003-12-06
|
|
Xoops 1.3.x/2.0.x - Multiple Vulnerabilities
|
23 |
WEB
|
frog
|
|
2003-12-05
|
|
Virtual Programming VP-ASP 4/5 - 'shopdisplayproducts.asp' Cross-Site Scripting
|
24 |
WEB
|
Xnuxer Research
|
|
2003-12-02
|
|
IBM Directory Server 4.1 - Web Administration Interface Cross-Site Scripting
|
22 |
WEB
|
Oliver Karow
|
|
2003-12-01
|
|
Jason Maloney's Guestbook 3.0 - Remote Command Execution
|
24 |
WEB
|
shaun2k2
|
|
2003-12-01
|
|
Virtual Programming VP-ASP 4.00/5.00 - 'shopdisplayproducts.asp' SQL Injection
|
21 |
WEB
|
Nick Gudov
|
|
2003-12-01
|
|
Virtual Programming VP-ASP 4.00/5.00 - 'shopsearch.asp' SQL Injection
|
23 |
WEB
|
Nick Gudov
|
|
2003-12-01
|
|
CuteNews 1.3 - Debug Query Information Disclosure
|
23 |
WEB
|
scrap
|
|
2003-11-26
|
|
My_eGallery Module 3.1.1 - Remote File Inclusion Command Injection
|
24 |
WEB
|
Bojan Zdrnja
|
|
2003-11-26
|
|
Macromedia JRun 4.0 build 61650 - Administrative Interface Multiple Cross-Site Scripting Vulnerabili
|
22 |
WEB
|
dr_insane
|
|
2003-11-24
|
|
CommerceSQL Shopping Cart 2.2 - 'index.cgi' Directory Traversal
|
22 |
WEB
|
Mariusz Ciesla
|
|
2003-11-17
|
|
Justin Hagstrom Auto Directory Index 1.2.3 - Cross-Site Scripting
|
22 |
WEB
|
David Sopas Ferreira
|
|
2003-11-17
|
|
Koch Roland Rolis Guestbook 1.0 - '$path' Remote File Inclusion
|
21 |
WEB
|
RusH security team
|
|
2012-12-14
|
|
Social Sites MyBB Plugin 0.2.2 - Cross-Site Scripting
|
27 |
WEB
|
s3m00t
|
|
2003-11-17
|
|
PHPWebFileManager 2.0 - 'index.php' Directory Traversal
|
23 |
WEB
|
RusH security team
|
|
2003-11-11
|
|
PHP-Coolfile 1.4 - Unauthorized Administrative Access
|
21 |
WEB
|
r00t@rsteam.ru
|
|
2003-11-10
|
|
ncube server manager 1.0 - Directory Traversal
|
22 |
WEB
|
Beck Mr.R
|
|
2003-11-10
|
|
OnlineArts DailyDose 1.1 - 'dose.pl' Remote Command Execution
|
27 |
WEB
|
Don_Huan
|
|
2003-11-08
|
|
phpBB 2.0.x - 'profile.php' SQL Injection
|
25 |
WEB
|
JOCANOR
|
|
2012-12-13
|
|
Centreon Enterprise Server 2.3.3 < 2.3.9-4 - Blind SQL Injection
|
23 |
WEB
|
modpr0be
|
|
2012-12-13
|
|
MyBB DyMy User Agent Plugin - 'newreply.php' SQL Injection
|
23 |
WEB
|
JoinSe7en
|
|
2012-12-13
|
|
WordPress Plugin Portable phpMyAdmin - Authentication Bypass
|
23 |
WEB
|
Mark Stanislav
|
|
2012-12-13
|
|
Facebook Profile MyBB Plugin 2.4 - Persistent Cross-Site Scripting
|
20 |
WEB
|
limb0
|
|
2012-12-13
|
|
MyBB AJAX Chat - Persistent Cross-Site Scripting
|
23 |
WEB
|
Mr. P-teo
|
|
2012-12-13
|
|
MyYoutube MyBB Plugin 1.0 - SQL Injection
|
27 |
WEB
|
Zixem
|
|
2003-11-04
|
|
John Beatty Easy PHP Photo Album 1.0 - 'dir' HTML Injection
|
24 |
WEB
|
nimber@designer.ru
|
|
2003-11-04
|
|
OpenAutoClassifieds 1.0 - 'Listing' Cross-Site Scripting
|
22 |
WEB
|
David Sopas Ferreira
|
|
2003-11-03
|
|
VieNuke VieBoard 2.6 - SQL Injection
|
24 |
WEB
|
ekerazha@yahoo.it
|
|
2003-11-02
|
|
PHPKit 1.6 - 'Include.php' Cross-Site Scripting
|
22 |
WEB
|
ben.moeckel@badwebmasters.net
|
|
2003-11-03
|
|
MPM Guestbook 1.2 - Cross-Site Scripting
|
22 |
WEB
|
David Ferreira
|
|
2003-11-03
|
|
Web Wiz Forum 6.34/7.0/7.5 - Unauthorized Private Forum Access
|
20 |
WEB
|
Alexander Antipov
|
|
2003-11-03
|
|
Synthetic Reality SymPoll 1.5 - Cross-Site Scripting
|
26 |
WEB
|
Michael Frame
|
|
2003-11-01
|
|
http commander 4.0 - Directory Traversal
|
23 |
WEB
|
Zero X
|
|
2012-12-12
|
|
Axway Secure Transport 5.1 SP2 - Directory Traversal
|
23 |
WEB
|
Sebastian Perez
|
|
2012-12-12
|
|
TipsOfTheDay MyBB Plugin - Multiple Vulnerabilities
|
30 |
WEB
|
VipVince
|
|
2003-10-31
|
|
Tritanium Scripts Tritanium Bulletin Board 1.2.3 - Unauthorized Access
|
25 |
WEB
|
Virginity Security
|
|
2003-10-31
|
|
BEA WebLogic 6/7/8 - InteractiveQuery.jsp Cross-Site Scripting
|
23 |
WEB
|
Corsaire Limited
|
|
2003-10-30
|
|
Ledscripts LedForums - Multiple HTML Injections
|
23 |
WEB
|
ProXy
|
|
2003-10-27
|
|
Les Visiteurs 2.0 - Remote File Inclusion
|
23 |
WEB
|
Matthieu Peschaud
|
|
2003-10-27
|
|
Chi Kien Uong Guestbook 1.51 - Cross-Site Scripting
|
23 |
WEB
|
Joshua P. Miller
|
|
2012-12-11
|
|
PHP-Nuke 8.2.4 - Cross-Site Request Forgery
|
23 |
WEB
|
sajith
|
|
2012-12-11
|
|
MyBB Profile Blogs Plugin 1.2 - Multiple Vulnerabilities
|
21 |
WEB
|
Zixem
|
