|
2003-05-01
|
|
PHP-Nuke Splatt Forum 4.0 Module - HTML Injection
|
29 |
WEB
|
Morning Wood
|
|
2003-05-01
|
|
PHP-Nuke Splatt Forum 4.0 Module - Cross-Site Scripting
|
23 |
WEB
|
Morning Wood
|
|
2003-04-30
|
|
Microsoft BizTalk Server 2000/2002 DTA - 'RawCustomSearchField.asp' SQL Injection
|
27 |
WEB
|
Cesar Cerrudo
|
|
2003-04-30
|
|
Microsoft BizTalk Server 2000/2002 DTA - 'rawdocdata.asp' SQL Injection
|
26 |
WEB
|
Cesar Cerrudo
|
|
2012-11-07
|
|
AVerCaster Pro RS3400 Web Server - Directory Traversal
|
24 |
WEB
|
Patrick Saladino
|
|
2012-11-07
|
|
Xivo 1.2 - Arbitrary File Download
|
26 |
WEB
|
Mr.Un1k0d3r
|
|
2012-11-07
|
|
Invision Power Board (IP.Board) 3.3.4 - Unserialize Regex Bypass
|
28 |
WEB
|
webDEViL
|
|
2003-04-26
|
|
Mike Bobbitt Album.PL 0.61 - Remote Command Execution
|
24 |
WEB
|
aresu@bosen.net
|
|
2003-04-26
|
|
Macromedia ColdFusion MX 6.0 - Error Message Full Path Disclosure
|
24 |
WEB
|
Network Intelligence
|
|
2003-04-25
|
|
Onecenter Forum 4.0 - IMG Tag Script Injection
|
25 |
WEB
|
David F. Madrid
|
|
2003-04-25
|
|
Xoops 1.3.x/2.0 MyTextSanitizer - HTML Injection
|
29 |
WEB
|
magistrat
|
|
2003-04-25
|
|
Truegalerie 1.0 - Unauthorized Administrative Access
|
24 |
WEB
|
frog
|
|
2003-04-23
|
|
Battleaxe Software BTTLXE Forum - 'login.asp' SQL Injection
|
27 |
WEB
|
Du|L
|
|
2012-11-06
|
|
ZenPhoto 1.4.3.3 - Multiple Vulnerabilities
|
27 |
WEB
|
waraxe
|
|
2003-04-22
|
|
XMB Forum 1.8 - 'member.php' SQL Injection
|
21 |
WEB
|
zeez@bbugs.org
|
|
2003-04-22
|
|
OpenBB 1.0/1.1 - 'member.php' SQL Injection
|
21 |
WEB
|
Albert Puigsech Galicia
|
|
2003-04-22
|
|
OpenBB 1.0/1.1 - 'board.php' SQL Injection
|
24 |
WEB
|
Albert Puigsech Galicia
|
|
2003-04-22
|
|
OpenBB 1.0/1.1 - 'index.php' SQL Injection
|
29 |
WEB
|
Albert Puigsech Galicia
|
|
2003-04-21
|
|
MPCSoftWeb 1.0 - Database Disclosure
|
26 |
WEB
|
drG4njubas
|
|
2003-04-17
|
|
Web Wiz Forum 6.34 - Information Disclosure
|
22 |
WEB
|
Uziel aka nuJIurpuM
|
|
2003-03-31
|
|
Xonic.ru News 1.0 - 'script.php' Remote Command Execution
|
22 |
WEB
|
DWC Gr0up
|
|
2003-05-05
|
|
IkonBoard 3.1 - Lang Cookie Arbitrary Command Execution (2)
|
27 |
WEB
|
snooq
|
|
2003-04-15
|
|
IkonBoard 3.1 - Lang Cookie Arbitrary Command Execution (1)
|
25 |
WEB
|
Nick Cleaton
|
|
2003-04-15
|
|
osCommerce 2.2 - Authentication Bypass
|
19 |
WEB
|
Lorenzo Hernandez Garcia-Hierro
|
|
2012-11-05
|
|
CheckPoint/Sofaware Firewall - Multiple Vulnerabilities
|
25 |
WEB
|
Procheckup
|
|
2003-04-15
|
|
EZ Publish 2.2.7/3.0 - Multiple Full Path Disclosure Vulnerabilities
|
26 |
WEB
|
gregory Le Bras
|
|
2003-04-15
|
|
EZ Publish 2.2.7/3.0 - Multiple Cross-Site Scripting Vulnerabilities
|
29 |
WEB
|
gregory Le Bras
|
|
2012-11-05
|
|
ZPanel 10.0.1 - Cross-Site Request Forgery / Cross-Site Scripting / SQL Injection / Password Reset
|
34 |
WEB
|
pcsjj
|
|
2003-04-14
|
|
Web Wiz Site News 3.6 - Information Disclosure
|
26 |
WEB
|
drG4njubas
|
|
2003-04-14
|
|
InstaBoard 1.3 - 'index.cfm' SQL Injection
|
25 |
WEB
|
Jim Dew
|
|
2003-04-11
|
|
Ocean12 ASP Guestbook Manager 1.0 - Information Disclosure
|
25 |
WEB
|
drG4njubas
|
|
2003-04-10
|
|
Guestbook 4.0 - Sensitive Information Disclosure
|
26 |
WEB
|
Over_G
|
|
2002-04-10
|
|
Super Guestbook 1.0 - Sensitive Information Disclosure
|
27 |
WEB
|
Over_G
|
|
2003-04-09
|
|
PHPay 2.2 - Cross-Site Scripting
|
25 |
WEB
|
Ahmet Sabri ALPER
|
|
2003-04-09
|
|
PHPay 2.2 - Multiple Full Path Disclosure Vulnerabilities
|
29 |
WEB
|
Ahmet Sabri ALPER
|
|
2003-04-07
|
|
Py-Membres 4.0 - SQL Injection
|
25 |
WEB
|
frog
|
|
2003-04-07
|
|
Coppermine Photo Gallery 1.0 - PHP Code Injection
|
27 |
WEB
|
Berend-Jan Wever
|
|
2012-11-04
|
|
WordPress Plugin Spider Catalog 1.1 - HTML Code Injection / Cross-Site Scripting
|
25 |
WEB
|
D4NB4R
|
|
2003-04-05
|
|
Invision Board 1.1.1 - 'functions.php' SQL Injection
|
29 |
WEB
|
Gossi The Dog
|
|
2003-04-04
|
|
PHPSysInfo 2.0/2.1 - 'index.php' LNG File Disclosure
|
22 |
WEB
|
Albert Puigsech Galicia
|
|
2003-04-03
|
|
PHPSysInfo 2.0/2.1 - 'index.php' File Disclosure
|
26 |
WEB
|
Albert Puigsech Galicia
|
|
2003-04-02
|
|
Phorum 3.4 - Email Subject Line Script Injection
|
24 |
WEB
|
peter
|
|
2003-03-29
|
|
ScozBook 1.1 - Full Path Disclosure
|
24 |
WEB
|
euronymous
|
|
2003-03-29
|
|
Justice Guestbook 1.3 - Full Path Disclosure
|
25 |
WEB
|
euronymous
|
|
2003-03-29
|
|
Beanwebb Guestbook 1.0 - Unauthorized Administrative Access
|
27 |
WEB
|
euronymous
|
|
2003-03-28
|
|
PostNuke 0.72x Members_List Module - Full Path Disclosure
|
22 |
WEB
|
rkc
|
|
2003-03-28
|
|
PostNuke 0.72x Stats Module - Full Path Disclosure
|
24 |
WEB
|
rkc
|
|
2002-03-27
|
|
MyGuestBK - Unauthorized Admin Panel Access
|
19 |
WEB
|
Over_G
|
|
2002-03-27
|
|
MyGuestBK - 'Add.asp' Cross-Site Scripting
|
24 |
WEB
|
Over_G
|
|
2012-11-02
|
|
Achievo 1.4.5 - Multiple Vulnerabilities (1)
|
29 |
WEB
|
Canberk BOLAT
|
|
2012-11-02
|
|
PrestaShop 1.5.1 - Persistent Cross-Site Scripting
|
24 |
WEB
|
David Sopas
|
|
2012-11-02
|
|
vBulletin ChangUonDyU Advanced Statistics - SQL Injection
|
22 |
WEB
|
Juno_okyo
|
|
2012-11-02
|
|
WordPress Plugin All Video Gallery 1.1 - SQL Injection
|
22 |
WEB
|
Ashiyane Digital Security Team
|
|
2003-03-25
|
|
PHP-Nuke 6.0/6.5 Forum Module - 'viewforum.php' SQL Injection
|
24 |
WEB
|
frog
|
|
2003-03-25
|
|
PHP-Nuke 6.0/6.5 Forum Module - 'viewtopic.php' SQL Injection
|
24 |
WEB
|
frog
|
|
2003-03-25
|
|
PHP-Nuke 6.5 Addon - 'Viewpage.php' File Disclosure
|
26 |
WEB
|
Zero-X www.lobnan.de Team
|
|
2003-03-25
|
|
Web Chat Manager 2.0 - HTML Code Injection
|
24 |
WEB
|
Over_G
|
|
2003-03-23
|
|
PHP-Nuke 5.6/6.x News Module - 'index.php' SQL Injection
|
21 |
WEB
|
frog
|
|
2003-03-22
|
|
PHP-Nuke 5.6/6.x News Module - 'article.php' SQL Injection
|
24 |
WEB
|
frog
|
|
2003-03-22
|
|
Advanced Poll 2.0 - Remote Information Disclosure
|
26 |
WEB
|
subj
|
|
2003-03-22
|
|
PHP-Nuke 5.6/6.x - 'banners.php' Banner Manager Password Disclosure
|
23 |
WEB
|
frog
|
|
2003-03-21
|
|
Planetmoon - Guestbook Clear Text Password Retrieval
|
24 |
WEB
|
subj
|
|
2012-11-01
|
|
MyBB Follower User Plugin - SQL Injection
|
24 |
WEB
|
Zixem
|
|
2012-11-01
|
|
Joomla! Component Spider Catalog 1.1 - 'Product_ID' SQL Injection
|
25 |
WEB
|
D4NB4R
|
|
2012-11-01
|
|
Endpoint Protector 4.0.4.2 - Multiple Persistent Cross-Site Scripting Vulnerabilities
|
23 |
WEB
|
CYBSEC Labs
|
|
2012-11-01
|
|
Invision Power Board (IP.Board) 3.3.4 - 'Unserialize()' PHP Code Execution
|
21 |
WEB
|
EgiX
|
|
2012-11-01
|
|
WordPress Plugin bbPress - Multiple Vulnerabilities
|
22 |
WEB
|
Dark-Puzzle
|
|
2003-03-20
|
|
osCommerce 2.1/2.2 - 'Checkout_Payment.php' Error Output Cross-Site Scripting
|
25 |
WEB
|
iProyectos group
|
|
2003-03-20
|
|
osCommerce 2.1/2.2 - Info_Message Cross-Site Scripting
|
24 |
WEB
|
iProyectos group
|
|
2003-03-20
|
|
osCommerce 2.1/2.2 - Error_Message Cross-Site Scripting
|
25 |
WEB
|
iProyectos group
|
|
2003-03-20
|
|
XOOPS 2.0 XoopsOption - Information Disclosure
|
23 |
WEB
|
gregory Le Bras
|
|
2003-03-19
|
|
DCP-Portal 5.3.1 - 'calendar.php' Cross-Site Scripting
|
24 |
WEB
|
Ertan Kurt
|
|
2003-03-19
|
|
Siteframe CMS 2.2.4 - 'download.php' Information Disclosure
|
21 |
WEB
|
Ertan Kurt
|
|
2003-03-19
|
|
Basit 1.0 Search Module - Cross-Site Scripting
|
27 |
WEB
|
Ertan Kurt
|
|
2003-03-19
|
|
Basit 1.0 Submit Module - Cross-Site Scripting
|
24 |
WEB
|
Ertan Kurt
|
|
2003-03-18
|
|
Mambo Site Server 4.0.10 - 'index.php' Cross-Site Scripting
|
25 |
WEB
|
Ertan Kurt
|
|
2003-01-05
|
|
Smart Search 4.25 - Remote Command Execution
|
22 |
WEB
|
knight420
|
|
2003-03-17
|
|
MyABraCaDaWeb 1.0 - Full Path Disclosure
|
24 |
WEB
|
gregory Le Bras
|
|
2003-03-17
|
|
Kebi Academy 2001 - Input Validation
|
28 |
WEB
|
dong-h0un U
|
|
2012-10-31
|
|
WordPress Plugin foxypress 0.4.2.5 - Multiple Vulnerabilities
|
25 |
WEB
|
waraxe
|
|
2012-10-31
|
|
PG Dating Pro CMS 1.0 - Multiple Vulnerabilities
|
23 |
WEB
|
Vulnerability-Lab
|
|
2012-10-31
|
|
vam shop 1.69 - Multiple Vulnerabilities
|
23 |
WEB
|
Security Effect Team
|
|
2003-03-17
|
|
Outblaze Webmail - Cookie Authentication Bypass
|
23 |
WEB
|
dong-h0un U
|
|
2003-03-15
|
|
RSA ClearTrust 4.6/4.7 - Login Page Cross-Site Scripting
|
21 |
WEB
|
sir.mordred@hushmail.com
|
|
2003-03-12
|
|
PHP-Nuke Splatt Forum 3.2 Module - Full Path Disclosure
|
26 |
WEB
|
Rynho Zeros Web
|
|
2003-03-12
|
|
PHP-Nuke 5.5/6.0 News Module - Full Path Disclosure
|
23 |
WEB
|
Rynho Zeros Web
|
|
2003-03-12
|
|
PHP-Nuke 5.5/6.0 AvantGo Module - Full Path Disclosure
|
24 |
WEB
|
Rynho Zeros Web
|
|
2003-03-11
|
|
VPOPMail 0.9x - 'vpopmail.php' Remote Command Execution
|
25 |
WEB
|
ERRor
|
|
2003-03-07
|
|
SimpleBBS 1.0.6 - 'users.php' Insecure File Permissions
|
21 |
WEB
|
flur
|
|
2003-03-07
|
|
Wordit Logbook 098b3 - Logbook.pl Remote Command Execution
|
26 |
WEB
|
Aleksey Sintsov
|
|
2003-03-06
|
|
PHPPing 0.1 - Remote Command Execution
|
26 |
WEB
|
gregory Le Bras
|
|
2003-03-03
|
|
Webchat 0.77 - 'Defines.php' Remote File Inclusion
|
23 |
WEB
|
frog
|
|
2003-03-03
|
|
GTCatalog 0.8.16/0.9 - Remote File Inclusion
|
22 |
WEB
|
frog
|
|
2003-02-28
|
|
Typo3 3.5 b5 - HTML Hidden Form Field Information Disclosure (2)
|
22 |
WEB
|
Martin Eiszner
|
|
2003-02-28
|
|
Typo3 3.5 b5 - HTML Hidden Form Field Information Disclosure (1)
|
23 |
WEB
|
Martin Eiszner
|
|
2012-10-28
|
|
WordPress Plugin Easy Webinar - Blind SQL Injection
|
23 |
WEB
|
Robert Cooper
|
|
2003-02-28
|
|
Typo3 3.5 b5 - 'Translations.php' Remote File Inclusion
|
26 |
WEB
|
Martin Eiszner
|
|
2003-02-28
|
|
Typo3 3.5 b5 - 'showpic.php' File Enumeration
|
24 |
WEB
|
Martin Eiszner
|
|
2003-02-27
|
|
Invision Board 1.1.1 - 'ipchat.php' Remote File Inclusion
|
22 |
WEB
|
frog
|
|
2003-01-06
|
|
E-theni - Remote File Inclusion Command Execution
|
26 |
WEB
|
frog
|
|
2003-02-25
|
|
CuteNews 0.88 - 'comments.php' Remote File Inclusion
|
24 |
WEB
|
Over_G
|
|
2003-02-25
|
|
CuteNews 0.88 - 'search.php' Remote File Inclusion
|
20 |
WEB
|
Over_G
|
|
2003-02-25
|
|
CuteNews 0.88 - 'shownews.php' Remote File Inclusion
|
25 |
WEB
|
Over_G
|
|
2003-02-24
|
|
WihPhoto 0.86 dev - 'sendphoto.php' File Disclosure
|
22 |
WEB
|
frog
|
|
2003-02-24
|
|
Mambo Site Server 4.0.12 RC2 - Cookie Validation
|
21 |
WEB
|
Simen Bergo
|
|
2003-02-24
|
|
GONiCUS System Administrator 1.0 - Remote File Inclusion
|
24 |
WEB
|
Karol Wiesek
|
|
2003-02-23
|
|
Nuked-klaN 1.3 - Remote Information Disclosure
|
25 |
WEB
|
gregory Le Bras
|
|
2003-02-20
|
|
myPHPNuke 1.8.8 - 'links.php' Cross-Site Scripting
|
22 |
WEB
|
Tacettin Karadeniz
|
|
2003-02-19
|
|
PHPBB2 - 'Page_Header.php' SQL Injection
|
24 |
WEB
|
David Zentner
|
|
2003-02-19
|
|
PHP-Nuke 5.6/6.0 - Search Engine SQL Injection
|
23 |
WEB
|
David Zentner
|
|
2003-02-19
|
|
cPanel 5.0 - 'Guestbook.cgi' Remote Command Execution (4)
|
24 |
WEB
|
pokleyzz
|
|
2003-02-19
|
|
cPanel 5.0 - 'Guestbook.cgi' Remote Command Execution (3)
|
23 |
WEB
|
SPAX
|
|
2003-02-19
|
|
cPanel 5.0 - 'Guestbook.cgi' Remote Command Execution (2)
|
23 |
WEB
|
CaMaLeoN
|
|
2003-02-19
|
|
cPanel 5.0 - 'Guestbook.cgi' Remote Command Execution (1)
|
24 |
WEB
|
bob
|
|
2003-02-18
|
|
D-Forum 1 - 'footer' Remote File Inclusion
|
23 |
WEB
|
frog
|
|
2003-02-18
|
|
D-Forum 1 - 'header' Remote File Inclusion
|
23 |
WEB
|
frog
|
|
2003-02-15
|
|
DotBr 0.1 - 'Exec.php3' Remote Command Execution
|
22 |
WEB
|
frog
|
|
2003-02-15
|
|
DotBr 0.1 - 'System.php3' Remote Command Execution
|
23 |
WEB
|
frog
|
|
2003-02-15
|
|
PHP-Board 1.0 - User Password Disclosure
|
22 |
WEB
|
frog
|
|
2003-02-09
|
|
Cedric Email Reader 0.4 - Global Configuration Script Remote File Inclusion
|
23 |
WEB
|
MGhz
|
|
2003-02-09
|
|
Cedric Email Reader 0.2/0.3 - Skin Configuration Script Remote File Inclusion
|
24 |
WEB
|
MGhz
|
|
2002-04-16
|
|
FileSeek - CGI Script File Disclosure
|
26 |
WEB
|
Thijs Bosschert
|
|
2002-04-16
|
|
FileSeek CGI Script - Remote Command Execution
|
23 |
WEB
|
Thijs Bosschert
|
|
2003-02-04
|
|
TOPO 1.41 - Full Path Disclosure
|
23 |
WEB
|
Rynho Zeros Web
|
|
2012-10-24
|
|
Bitweaver 2.8.1 - Multiple Vulnerabilities
|
22 |
WEB
|
Trustwave's SpiderLabs
|
