|
2002-07-10
|
|
Fluid Dynamics Search Engine 2.0 - Cross-Site Scripting
|
9 |
WEB
|
VALDEUX
|
|
2002-07-10
|
|
Apache Tomcat 4.0.3 - Denial of Service 'Device Name' / Cross-Site Scripting
|
8 |
WEB
|
Matt Moore
|
|
2002-07-02
|
|
phpAuction 1/2 - Unauthorized Administrative Access
|
8 |
WEB
|
ethx
|
|
2002-07-01
|
|
BlackBoard 5.0 - Cross-Site Scripting
|
8 |
WEB
|
Berend-Jan Wever
|
|
2002-07-01
|
|
BBC Education Betsie 1.5 - Parserl.pl Cross-Site Scripting
|
8 |
WEB
|
Mark Rowe
|
|
2002-06-21
|
|
YaBB 1 - Invalid Topic Error Page Cross-Site Scripting
|
8 |
WEB
|
methodic
|
|
2002-06-19
|
|
BasiliX Webmail 1.1 - Message Content Script Injection
|
8 |
WEB
|
Ulf Harnhammar
|
|
2002-06-06
|
|
WebScripts WebBBS 4.x/5.0 - Remote Command Execution
|
11 |
WEB
|
NERF Security
|
|
2002-06-17
|
|
PHP-Address 0.2 e - Remote File Inclusion
|
8 |
WEB
|
Tim Vandermeerch
|
|
2002-06-16
|
|
osCommerce 2.1 - Remote File Inclusion
|
8 |
WEB
|
Tim Vandermeerch
|
|
2002-06-17
|
|
Wolfram Research webMathematica 4.0 - File Disclosure
|
7 |
WEB
|
Andrew Badr
|
|
2002-06-15
|
|
My Postcards 6.0 - 'MagicCard.cgi' Arbitrary File Disclosure
|
8 |
WEB
|
cult
|
|
2002-06-15
|
|
ZeroBoard 4.1 - PHP Include File Arbitrary Command Execution
|
7 |
WEB
|
onlooker
|
|
2002-06-14
|
|
Mewsoft NetAuction 3.0 - Cross-Site Scripting
|
9 |
WEB
|
windows-1256
|
|
2002-06-14
|
|
PHP Classifieds 6.0.5 - Cross-Site Scripting
|
8 |
WEB
|
windows-1256
|
|
2012-09-27
|
|
Trend Micro Control Manager 5.5/6.0 AdHocQuery - (Authenticated) Blind SQL Injection
|
8 |
WEB
|
otoy
|
|
2012-09-27
|
|
JAMF Casper Suite MDM - Cross-Site Request Forgery
|
7 |
WEB
|
Jacob Holcomb
|
|
2002-06-13
|
|
Ruslan Communications Builder - Authentication Bypass
|
8 |
WEB
|
Alexander Korchagin
|
|
2002-06-12
|
|
MakeBook 2.2 - Form Field Input Validation
|
7 |
WEB
|
b0iler
|
|
2002-06-11
|
|
CGIScript.net csNews 1.0 - Header File Type Restriction Bypass
|
7 |
WEB
|
Steve Gustin
|
|
2002-06-11
|
|
CGIScript.net csNews 1.0 - Double URL Encoding Unauthorized Administrative Access
|
7 |
WEB
|
Steve Gustin
|
|
2002-06-10
|
|
W-Agora 4.1.x - Remote File Inclusion
|
8 |
WEB
|
frog
|
|
2002-06-10
|
|
Geeklog 1.3.5 - Calendar Event Form Script Injection
|
7 |
WEB
|
Ahmet Sabri ALPER
|
|
2002-06-10
|
|
MyHelpDesk 20020509 - SQL Injection
|
7 |
WEB
|
Ahmet Sabri ALPER
|
|
2002-06-10
|
|
MyHelpDesk 20020509 - Cross-Site Scripting
|
7 |
WEB
|
Ahmet Sabri ALPER
|
|
2002-06-10
|
|
Geeklog 1.3.5 - Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
Ahmet Sabri ALPER
|
|
2012-09-26
|
|
ViArt Shop Evaluation 4.1 - Multiple Remote File Inclusions
|
7 |
WEB
|
L0n3ly-H34rT
|
|
2012-09-25
|
|
ViArt Shop Enterprise 4.1 - Arbitrary Command Execution
|
8 |
WEB
|
LiquidWorm
|
|
2002-06-10
|
|
MyHelpDesk 20020509 - HTML Injection
|
8 |
WEB
|
Ahmet Sabri ALPER
|
|
2002-06-06
|
|
Voxel Dot Net CBms 0.x - Multiple Code Injection Vulnerabilities
|
7 |
WEB
|
Ulf Harnhammar
|
|
2002-06-06
|
|
Splatt Forum 3.0 - Image Tag HTML Injection
|
10 |
WEB
|
MegaHz
|
|
2002-06-03
|
|
Teekai Tracking Online 1.0 - Cross-Site Scripting
|
9 |
WEB
|
frog
|
|
2002-05-30
|
|
CGIScript.net - 'csPassword.cgi' 1.0 HTAccess File Modification
|
8 |
WEB
|
Steve Gustin
|
|
2002-05-30
|
|
CGIScript.net - 'csPassword.cgi' 1.0 Information Disclosure
|
7 |
WEB
|
Steve Gustin
|
|
2002-05-29
|
|
Gafware CFXImage 1.6.4/1.6.6 - ShowTemp File Disclosure
|
8 |
WEB
|
Richard Brain
|
|
2002-05-28
|
|
Image Display System 0.8.1 - Directory Existence Disclosure
|
9 |
WEB
|
isox
|
|
2002-05-26
|
|
PHPBB2 - Image Tag HTML Injection
|
8 |
WEB
|
Martijn Boerwinkel
|
|
2002-05-20
|
|
GNU Mailman 2.0.x - Admin Login Cross-Site Scripting
|
7 |
WEB
|
office
|
|
2002-05-24
|
|
OpenBB 1.0.0 RC3 - Cross-Site Scripting
|
7 |
WEB
|
frog
|
|
2002-05-24
|
|
OpenBB 1.0 - Unauthorized Moderator Access
|
7 |
WEB
|
frog
|
|
2002-05-24
|
|
OpenBB 1.0.0 RC3 - BBCode Cross Agent HTML Injection
|
8 |
WEB
|
frog
|
|
2002-05-24
|
|
ViewCVS 0.9.2 - Cross-Site Scripting
|
7 |
WEB
|
office
|
|
2002-05-19
|
|
Hosting Controller 1.x - 'Browse.asp' File Disclosure
|
7 |
WEB
|
Bao Dai Nhan
|
|
2002-05-17
|
|
mcNews 1.x - File Disclosure
|
7 |
WEB
|
frog
|
|
2002-05-18
|
|
Phorum 3.3.2 - Cross-Site Scripting
|
8 |
WEB
|
markus arndt
|
|
2002-05-17
|
|
CGIScript.net 1.0 - Information Disclosure
|
7 |
WEB
|
Steve Gustin
|
|
2002-05-17
|
|
Phorum 3.3.2a - Remote Command Execution
|
8 |
WEB
|
markus arndt
|
|
2002-05-17
|
|
Hosting Controller 1.4 - Import Root Directory Command Execution
|
9 |
WEB
|
hdlkha
|
|
2002-05-17
|
|
Hosting Controller 1.x - DSNManager Directory Traversal
|
8 |
WEB
|
hdlkha
|
|
2002-05-12
|
|
Clicky Web Pseudo-frames 1.0 - Remote File Inclusion
|
9 |
WEB
|
frog
|
|
2002-05-14
|
|
NOCC 0.9.x - Webmail Script Injection
|
7 |
WEB
|
ppp-design
|
|
2002-05-11
|
|
XMB Forum 1.6 - Magic Lantern Log File
|
7 |
WEB
|
frog
|
|
2002-05-11
|
|
XMB Forum 1.6 - Magic Lantern Cross-Site Scripting
|
7 |
WEB
|
frog
|
|
2002-05-06
|
|
B2 0.6 - 'b2edit.showposts.php?b2inc' Remote File Inclusion
|
8 |
WEB
|
Frank
|
|
2002-05-05
|
|
askSam 4.0 Web Publisher - Cross-Site Scripting
|
7 |
WEB
|
frog
|
|
2002-05-02
|
|
Outfront Spooky 2.x - Login SQL Query Manipulation Password
|
7 |
WEB
|
anonymous
|
|
2002-04-30
|
|
MyGuestbook 1.0 - Script Injection
|
7 |
WEB
|
BrainRawt
|
|
2002-04-17
|
|
MiniBB 1.2 - Cross-Site Scripting
|
7 |
WEB
|
frog
|
|
2002-04-28
|
|
Blahz-DNS 0.2 - Direct Script Call Authentication Bypass
|
7 |
WEB
|
ppp-design
|
|
2002-04-28
|
|
DNSTools 2.0 - Authentication Bypass
|
8 |
WEB
|
ppp-design
|
|
2002-04-17
|
|
ADManager 1.1 - Content Manipulation
|
7 |
WEB
|
frog
|
|
2002-04-25
|
|
Ultimate PHP Board 1.0/1.1 - Image Tag Script Injection
|
8 |
WEB
|
frog
|
|
2002-04-25
|
|
PHProjekt 2.x/3.x - Authentication Bypass
|
9 |
WEB
|
Ulf Harnhammar
|
|
2012-09-20
|
|
Manhali 1.8 - Local File Inclusion
|
7 |
WEB
|
L0n3ly-H34rT
|
|
2012-09-20
|
|
Thomson Wireless VoIP Cable Modem - Authentication Bypass
|
8 |
WEB
|
Glafkos Charalambous
|
|
2002-04-21
|
|
vqServer 1.9.x - CGI Demo Program Script Injection
|
8 |
WEB
|
Matthew Murphy
|
|
2002-04-21
|
|
Philip Chinery's Guestbook 1.1 - Script Injection
|
9 |
WEB
|
markus arndt
|
|
2002-04-20
|
|
Jon Howell Faq-O-Matic 2.7 - Cross-Site Scripting
|
7 |
WEB
|
BrainRawt
|
|
2002-04-19
|
|
PostBoard 2.0 - Topic Title Script Execution
|
8 |
WEB
|
gcsb
|
|
2002-04-19
|
|
PostBoard 2.0 - BBCode IMG Tag Script Injection
|
8 |
WEB
|
gcsb
|
|
2002-04-19
|
|
Snitz Forums 2000 3.x - 'members.asp' SQL Injection
|
7 |
WEB
|
acemi
|
|
2002-04-19
|
|
IcrediBB 1.1 - Script Injection
|
8 |
WEB
|
Daniel Nyström
|
|
2002-04-18
|
|
PVote 1.0/1.5 - Unauthorized Administrative Password Change
|
7 |
WEB
|
Daniel Nyström
|
|
2012-09-19
|
|
torrenttrader 2.08 - Multiple Vulnerabilities
|
6 |
WEB
|
waraxe
|
|
2012-09-19
|
|
Fortigate UTM WAF Appliance - Multiple Vulnerabilities
|
6 |
WEB
|
Vulnerability-Lab
|
|
2012-09-19
|
|
SonicWALL email security 7.3.5 - Multiple Vulnerabilities
|
7 |
WEB
|
Vulnerability-Lab
|
|
2012-09-19
|
|
WordPress Plugin wp-topbar 4.02 - Multiple Vulnerabilities
|
7 |
WEB
|
Blake Entrekin
|
|
2012-09-19
|
|
SpiceWorks 6.0.00993 - Multiple Script Injection Vulnerabilities
|
7 |
WEB
|
LiquidWorm
|
|
2002-04-18
|
|
PVote 1.0/1.5 - Poll Content Manipulation
|
7 |
WEB
|
Daniel Nyström
|
|
2002-04-14
|
|
xNewsletter 1.0 - Form Field Input Validation
|
8 |
WEB
|
Firehack
|
|
2002-04-14
|
|
XGB 1.2 - Remote Form Field Input Validation
|
7 |
WEB
|
Firehack
|
|
2002-04-15
|
|
XGB Guestbook 1.2 - User-Embedded Scripting
|
7 |
WEB
|
Firehack
|
|
2002-04-15
|
|
Burning Board 1.1.1 - 'URL' Manipulation
|
7 |
WEB
|
SeazoN
|
|
2002-04-13
|
|
SunShop Shopping Cart 1.5/2.x - User-Embedded Scripting
|
10 |
WEB
|
ppp-design
|
|
2002-04-11
|
|
IBM Informix Web Datablade 4.1x - Page Request SQL Injection
|
9 |
WEB
|
Simon Lodal
|
|
2002-03-28
|
|
SquirrelMail 1.2.x - Theme Remote Command Execution
|
7 |
WEB
|
pokleyzz sakamaniaka
|
|
2002-03-28
|
|
PostNuke 0.703 - caselist Arbitrary Module Include
|
9 |
WEB
|
pokleyzz sakamaniaka
|
|
2002-03-25
|
|
DCShop Beta 1.0 - Form Manipulation
|
7 |
WEB
|
pokleyzz sakamaniaka
|
|
2002-03-21
|
|
PHP-Nuke 5.x - Error Message Web Root Disclosure
|
9 |
WEB
|
godminus
|
|
2002-03-13
|
|
PHProjekt 3.1 - Remote File Inclusion
|
11 |
WEB
|
b0iler
|
|
2012-09-17
|
|
Netsweeper WebAdmin Portal - Multiple Vulnerabilities
|
7 |
WEB
|
Jacob Holcomb
|
|
2012-09-17
|
|
Auxilium PetRatePro - Multiple Vulnerabilities
|
8 |
WEB
|
DaOne
|
|
2012-09-17
|
|
webERP 4.08.4 - 'WorkOrderEntry.php' SQL Injection
|
7 |
WEB
|
modpr0be
|
|
2012-09-17
|
|
luxcal 2.7.0 - Multiple Vulnerabilities
|
9 |
WEB
|
L0n3ly-H34rT
|
|
2012-09-14
|
|
Trend Micro Interscan Messaging Security Suite - Persistent Cross-Site Scripting / Cross-Site Reques
|
8 |
WEB
|
modpr0be
|
|
2012-09-14
|
|
NeoBill CMS 0.8 Alpha - Multiple Vulnerabilities
|
7 |
WEB
|
Vulnerability-Lab
|
|
2012-09-14
|
|
ASTPP VoIP Billing (4cf207a) - Multiple Vulnerabilities
|
8 |
WEB
|
Vulnerability-Lab
|
|
2002-03-04
|
|
ReBB 1.0 - Image Tag Cross-Agent Scripting
|
8 |
WEB
|
skizzik
|
|
2002-02-27
|
|
Snitz Forums 2000 3.0/3.1/3.3 - Image Tag Cross-Agent Scripting
|
7 |
WEB
|
Justin
|
|
2002-02-26
|
|
IkonBoard 2.17/3.0/3.1 - Image Tag Cross-Agent Scripting
|
10 |
WEB
|
godminus
|
|
2002-02-25
|
|
OpenBB 1.0.x - Image Tag Cross-Agent Scripting
|
8 |
WEB
|
skizzik
|
|
2002-02-22
|
|
XMB Forum 1.6 pre-beta - Image Tag Script Injection
|
7 |
WEB
|
skizzik
|
|
2002-02-22
|
|
Powie PForum 1.1x - 'Username' Cross-Site Scripting
|
8 |
WEB
|
Jens Liebchen
|
|
2002-02-04
|
|
Portix-PHP 0.4 - Cookie Manipulation
|
7 |
WEB
|
frog
|
|
2002-02-04
|
|
Portix-PHP 0.4 - 'view.php' Directory Traversal
|
8 |
WEB
|
frog
|
|
2002-02-04
|
|
Portix-PHP 0.4 - 'index.php' Directory Traversal
|
8 |
WEB
|
frog
|
|
2012-09-12
|
|
Ezylog Photovoltaic Management Server - Multiple Vulnerabilities
|
8 |
WEB
|
Roberto Paleari
|
|
2012-09-12
|
|
Knowledge Base Enterprise Edition 4.62.0 - SQL Injection
|
7 |
WEB
|
Vulnerability-Lab
|
|
2012-09-12
|
|
Webify Photo Gallery - Arbitrary File Deletion
|
7 |
WEB
|
JIKO
|
|
2012-09-12
|
|
Webify Business Directory - Arbitrary File Deletion
|
7 |
WEB
|
JIKO
|
|
2012-09-12
|
|
Webify eDownloads Cart - Arbitrary File Deletion
|
8 |
WEB
|
JIKO
|
|
2012-09-12
|
|
Subrion CMS 2.2.1 - Cross-Site Request Forgery (Add Admin)
|
8 |
WEB
|
LiquidWorm
|
|
2002-01-29
|
|
AHG Search Engine 1.0 - 'search.cgi' Arbitrary Command Execution
|
10 |
WEB
|
Aleksey Sintsov
|
|
2012-09-11
|
|
akcms 4.2.4 - Information Disclosure
|
9 |
WEB
|
L0n3ly-H34rT
|
|
2012-09-11
|
|
Webify Blog - Arbitrary File Deletion
|
10 |
WEB
|
JIKO
|
|
2002-01-02
|
|
WikkiTikkiTavi 0.x - Remote File Inclusion
|
7 |
WEB
|
Scott Moonen
|
|
2002-01-18
|
|
PHP-Nuke 4.x/5.x - SQL_Debug Information Disclosure
|
7 |
WEB
|
zataz.com
|
|
2002-01-16
|
|
PHP-Nuke 4.x/5.x - Arbitrary File Inclusion
|
8 |
WEB
|
Handle Nopman
|
|
2012-09-10
|
|
SiteGo - Remote File Inclusion
|
7 |
WEB
|
L0n3ly-H34rT
|
|
2012-09-10
|
|
Joomla! Component RokModule 1.1 - 'module' Blind SQL Injection
|
7 |
WEB
|
Yarolinux
|
|
2012-09-10
|
|
VICIDIAL Call Center Suite 2.2.1-237 - Multiple Vulnerabilities
|
6 |
WEB
|
Ertebat Gostar Co
|
|
2002-01-09
|
|
Ultimate Bulletin Board 5.4/6.0/6.2 - Cross-Agent Scripting
|
8 |
WEB
|
Obscure
|
|
2002-01-09
|
|
YaBB 9.1.2000 - Cross-Agent Scripting
|
8 |
WEB
|
Obscure
|
|
2002-01-06
|
|
PHP-Nuke AddOn PHPToNuke.php 1.0 - Cross-Site Scripting
|
8 |
WEB
|
frog
|
|
2001-12-18
|
|
Aktivate 1.0 3 - Shopping Cart Cross-Site Scripting
|
7 |
WEB
|
Tamer Sahin
|
