|
2002-08-31
|
|
FactoSystem Weblog 0.9/1.0/1.1 - Multiple SQL Injections
|
17 |
WEB
|
Matthew Murphy
|
|
2002-08-24
|
|
PHPReactor 1.2.7 - Style Attribute HTML Injection
|
21 |
WEB
|
Matthew Murphy
|
|
2002-08-22
|
|
Achievo 0.7/0.8/0.9 - Remote File Inclusion / Command Execution
|
19 |
WEB
|
Jeroen Latour
|
|
2012-10-04
|
|
Novell Sentinel Log Manager 1.2.0.2 - Retention Policy
|
16 |
WEB
|
Piotr Chmylkowski
|
|
2012-10-04
|
|
phpMyBitTorrent 2.04 - Multiple Vulnerabilities
|
20 |
WEB
|
waraxe
|
|
2012-10-04
|
|
Template CMS 2.1.1 - Multiple Vulnerabilities
|
18 |
WEB
|
High-Tech Bridge SA
|
|
2012-10-04
|
|
phpMyChat Plus 1.94 RC1 - Multiple Vulnerabilities
|
16 |
WEB
|
L0n3ly-H34rT
|
|
2002-08-20
|
|
Mozilla Bonsai 1.3 - Full Path Disclosure
|
22 |
WEB
|
Stan Bubrouski
|
|
2002-08-20
|
|
Mozilla Bonsai - Multiple Cross-Site Scripting Vulnerabilities
|
17 |
WEB
|
Stan Bubrouski
|
|
2002-08-19
|
|
Kerio MailServer 5.0/5.1 Web Mail - Multiple Cross-Site Scripting Vulnerabilities
|
18 |
WEB
|
Abraham Lincoln
|
|
2002-08-19
|
|
Mantis Bug Tracker 0.15.x/0.16/0.17.x - JPGraph Remote File Inclusion Command Execution
|
19 |
WEB
|
Joao Gouveia
|
|
2002-08-19
|
|
Ilia Alshanetsky FUDForum 1.2.8/1.9.8/2.0.2 - File Modification
|
19 |
WEB
|
Ulf Harnhammar
|
|
2002-08-19
|
|
Ilia Alshanetsky FUDForum 1.2.8/1.9.8/2.0.2 - File Disclosure
|
20 |
WEB
|
Ulf Harnhammar
|
|
2012-10-03
|
|
Omnistar Mailer 7.2 - Multiple Vulnerabilities
|
17 |
WEB
|
Vulnerability-Lab
|
|
2012-10-03
|
|
WordPress Plugin spider Calendar - Multiple Vulnerabilities
|
18 |
WEB
|
D4NB4R
|
|
2002-08-14
|
|
Leszek Krupinski L-Forum 2.4 - Search Script SQL Injection
|
20 |
WEB
|
Matthew Murphy
|
|
2002-08-10
|
|
Midicart ASP - Remote Customer Information Retrieval
|
16 |
WEB
|
Dimitri Sekhniashvili
|
|
2002-07-30
|
|
Dispair 0.1/0.2 - Remote Command Execution
|
17 |
WEB
|
anonymous
|
|
2002-08-01
|
|
Bharat Mediratta Gallery 1.x - Remote File Inclusion
|
19 |
WEB
|
PowerTech
|
|
2002-07-29
|
|
ShoutBox 1.2 - 'Form' HTML Injection
|
19 |
WEB
|
delusion
|
|
2012-10-02
|
|
phptax 0.8 - Remote Code Execution
|
17 |
WEB
|
Jean Pascal Pereira
|
|
2002-07-29
|
|
dotProject 0.2.1 - User Cookie Authentication Bypass
|
14 |
WEB
|
pokleyzz
|
|
2002-07-29
|
|
phpBB2 Gender Mod 1.1.3 - SQL Injection
|
20 |
WEB
|
langtuhaohoa caothuvolam
|
|
2002-07-29
|
|
Ben Chivers Easy Guestbook 1.0 - Administrative Access
|
16 |
WEB
|
Arek Suroboyo
|
|
2002-07-29
|
|
Ben Chivers Easy Homepage Creator 1.0 - File Modification
|
16 |
WEB
|
Arek Suroboyo
|
|
2012-10-01
|
|
WordPress Theme Archin 3.2 - Configuration Access
|
18 |
WEB
|
bwall
|
|
2002-07-24
|
|
Cobalt Qube 3.0 - Authentication Bypass
|
18 |
WEB
|
pokley
|
|
2002-07-19
|
|
Geeklog 1.3.5 - HTML Attribute Cross-Site Scripting
|
20 |
WEB
|
Ulf Harnhammar
|
|
2002-07-17
|
|
PHP-Wiki 1.2/1.3 - Cross-Site Scripting
|
23 |
WEB
|
Pistone
|
|
2002-07-17
|
|
Macromedia Sitespring 1.2 - Default Error Page Cross-Site Scripting
|
17 |
WEB
|
Peter Gründl
|
|
2002-07-15
|
|
IMHO Webmail 0.9x - Account Hijacking
|
19 |
WEB
|
Security Bugware
|
|
2002-07-11
|
|
Sun i-Runbook 2.5.2 - Directory and File Content Disclosure
|
19 |
WEB
|
JWC
|
|
2002-07-10
|
|
Fluid Dynamics Search Engine 2.0 - Cross-Site Scripting
|
18 |
WEB
|
VALDEUX
|
|
2002-07-10
|
|
Apache Tomcat 4.0.3 - Denial of Service 'Device Name' / Cross-Site Scripting
|
17 |
WEB
|
Matt Moore
|
|
2002-07-02
|
|
phpAuction 1/2 - Unauthorized Administrative Access
|
16 |
WEB
|
ethx
|
|
2002-07-01
|
|
BlackBoard 5.0 - Cross-Site Scripting
|
19 |
WEB
|
Berend-Jan Wever
|
|
2002-07-01
|
|
BBC Education Betsie 1.5 - Parserl.pl Cross-Site Scripting
|
17 |
WEB
|
Mark Rowe
|
|
2002-06-21
|
|
YaBB 1 - Invalid Topic Error Page Cross-Site Scripting
|
17 |
WEB
|
methodic
|
|
2002-06-19
|
|
BasiliX Webmail 1.1 - Message Content Script Injection
|
16 |
WEB
|
Ulf Harnhammar
|
|
2002-06-06
|
|
WebScripts WebBBS 4.x/5.0 - Remote Command Execution
|
22 |
WEB
|
NERF Security
|
|
2002-06-17
|
|
PHP-Address 0.2 e - Remote File Inclusion
|
17 |
WEB
|
Tim Vandermeerch
|
|
2002-06-16
|
|
osCommerce 2.1 - Remote File Inclusion
|
16 |
WEB
|
Tim Vandermeerch
|
|
2002-06-17
|
|
Wolfram Research webMathematica 4.0 - File Disclosure
|
18 |
WEB
|
Andrew Badr
|
|
2002-06-15
|
|
My Postcards 6.0 - 'MagicCard.cgi' Arbitrary File Disclosure
|
20 |
WEB
|
cult
|
|
2002-06-15
|
|
ZeroBoard 4.1 - PHP Include File Arbitrary Command Execution
|
19 |
WEB
|
onlooker
|
|
2002-06-14
|
|
Mewsoft NetAuction 3.0 - Cross-Site Scripting
|
18 |
WEB
|
windows-1256
|
|
2002-06-14
|
|
PHP Classifieds 6.0.5 - Cross-Site Scripting
|
19 |
WEB
|
windows-1256
|
|
2012-09-27
|
|
Trend Micro Control Manager 5.5/6.0 AdHocQuery - (Authenticated) Blind SQL Injection
|
23 |
WEB
|
otoy
|
|
2012-09-27
|
|
JAMF Casper Suite MDM - Cross-Site Request Forgery
|
20 |
WEB
|
Jacob Holcomb
|
|
2002-06-13
|
|
Ruslan Communications Builder - Authentication Bypass
|
18 |
WEB
|
Alexander Korchagin
|
|
2002-06-12
|
|
MakeBook 2.2 - Form Field Input Validation
|
20 |
WEB
|
b0iler
|
|
2002-06-11
|
|
CGIScript.net csNews 1.0 - Header File Type Restriction Bypass
|
18 |
WEB
|
Steve Gustin
|
|
2002-06-11
|
|
CGIScript.net csNews 1.0 - Double URL Encoding Unauthorized Administrative Access
|
17 |
WEB
|
Steve Gustin
|
|
2002-06-10
|
|
W-Agora 4.1.x - Remote File Inclusion
|
17 |
WEB
|
frog
|
|
2002-06-10
|
|
Geeklog 1.3.5 - Calendar Event Form Script Injection
|
17 |
WEB
|
Ahmet Sabri ALPER
|
|
2002-06-10
|
|
MyHelpDesk 20020509 - SQL Injection
|
18 |
WEB
|
Ahmet Sabri ALPER
|
|
2002-06-10
|
|
MyHelpDesk 20020509 - Cross-Site Scripting
|
16 |
WEB
|
Ahmet Sabri ALPER
|
|
2002-06-10
|
|
Geeklog 1.3.5 - Multiple Cross-Site Scripting Vulnerabilities
|
19 |
WEB
|
Ahmet Sabri ALPER
|
|
2012-09-26
|
|
ViArt Shop Evaluation 4.1 - Multiple Remote File Inclusions
|
17 |
WEB
|
L0n3ly-H34rT
|
|
2012-09-25
|
|
ViArt Shop Enterprise 4.1 - Arbitrary Command Execution
|
17 |
WEB
|
LiquidWorm
|
|
2002-06-10
|
|
MyHelpDesk 20020509 - HTML Injection
|
20 |
WEB
|
Ahmet Sabri ALPER
|
|
2002-06-06
|
|
Voxel Dot Net CBms 0.x - Multiple Code Injection Vulnerabilities
|
18 |
WEB
|
Ulf Harnhammar
|
|
2002-06-06
|
|
Splatt Forum 3.0 - Image Tag HTML Injection
|
22 |
WEB
|
MegaHz
|
|
2002-06-03
|
|
Teekai Tracking Online 1.0 - Cross-Site Scripting
|
18 |
WEB
|
frog
|
|
2002-05-30
|
|
CGIScript.net - 'csPassword.cgi' 1.0 HTAccess File Modification
|
21 |
WEB
|
Steve Gustin
|
|
2002-05-30
|
|
CGIScript.net - 'csPassword.cgi' 1.0 Information Disclosure
|
19 |
WEB
|
Steve Gustin
|
|
2002-05-29
|
|
Gafware CFXImage 1.6.4/1.6.6 - ShowTemp File Disclosure
|
19 |
WEB
|
Richard Brain
|
|
2002-05-28
|
|
Image Display System 0.8.1 - Directory Existence Disclosure
|
19 |
WEB
|
isox
|
|
2002-05-26
|
|
PHPBB2 - Image Tag HTML Injection
|
22 |
WEB
|
Martijn Boerwinkel
|
|
2002-05-20
|
|
GNU Mailman 2.0.x - Admin Login Cross-Site Scripting
|
18 |
WEB
|
office
|
|
2002-05-24
|
|
OpenBB 1.0.0 RC3 - Cross-Site Scripting
|
19 |
WEB
|
frog
|
|
2002-05-24
|
|
OpenBB 1.0 - Unauthorized Moderator Access
|
16 |
WEB
|
frog
|
|
2002-05-24
|
|
OpenBB 1.0.0 RC3 - BBCode Cross Agent HTML Injection
|
17 |
WEB
|
frog
|
|
2002-05-24
|
|
ViewCVS 0.9.2 - Cross-Site Scripting
|
19 |
WEB
|
office
|
|
2002-05-19
|
|
Hosting Controller 1.x - 'Browse.asp' File Disclosure
|
16 |
WEB
|
Bao Dai Nhan
|
|
2002-05-17
|
|
mcNews 1.x - File Disclosure
|
24 |
WEB
|
frog
|
|
2002-05-18
|
|
Phorum 3.3.2 - Cross-Site Scripting
|
19 |
WEB
|
markus arndt
|
|
2002-05-17
|
|
CGIScript.net 1.0 - Information Disclosure
|
17 |
WEB
|
Steve Gustin
|
|
2002-05-17
|
|
Phorum 3.3.2a - Remote Command Execution
|
19 |
WEB
|
markus arndt
|
|
2002-05-17
|
|
Hosting Controller 1.4 - Import Root Directory Command Execution
|
18 |
WEB
|
hdlkha
|
|
2002-05-17
|
|
Hosting Controller 1.x - DSNManager Directory Traversal
|
16 |
WEB
|
hdlkha
|
|
2002-05-12
|
|
Clicky Web Pseudo-frames 1.0 - Remote File Inclusion
|
20 |
WEB
|
frog
|
|
2002-05-14
|
|
NOCC 0.9.x - Webmail Script Injection
|
17 |
WEB
|
ppp-design
|
|
2002-05-11
|
|
XMB Forum 1.6 - Magic Lantern Log File
|
17 |
WEB
|
frog
|
|
2002-05-11
|
|
XMB Forum 1.6 - Magic Lantern Cross-Site Scripting
|
17 |
WEB
|
frog
|
|
2002-05-06
|
|
B2 0.6 - 'b2edit.showposts.php?b2inc' Remote File Inclusion
|
18 |
WEB
|
Frank
|
|
2002-05-05
|
|
askSam 4.0 Web Publisher - Cross-Site Scripting
|
15 |
WEB
|
frog
|
|
2002-05-02
|
|
Outfront Spooky 2.x - Login SQL Query Manipulation Password
|
14 |
WEB
|
anonymous
|
|
2002-04-30
|
|
MyGuestbook 1.0 - Script Injection
|
17 |
WEB
|
BrainRawt
|
|
2002-04-17
|
|
MiniBB 1.2 - Cross-Site Scripting
|
18 |
WEB
|
frog
|
|
2002-04-28
|
|
Blahz-DNS 0.2 - Direct Script Call Authentication Bypass
|
17 |
WEB
|
ppp-design
|
|
2002-04-28
|
|
DNSTools 2.0 - Authentication Bypass
|
17 |
WEB
|
ppp-design
|
|
2002-04-17
|
|
ADManager 1.1 - Content Manipulation
|
16 |
WEB
|
frog
|
|
2002-04-25
|
|
Ultimate PHP Board 1.0/1.1 - Image Tag Script Injection
|
16 |
WEB
|
frog
|
|
2002-04-25
|
|
PHProjekt 2.x/3.x - Authentication Bypass
|
19 |
WEB
|
Ulf Harnhammar
|
|
2012-09-20
|
|
Manhali 1.8 - Local File Inclusion
|
19 |
WEB
|
L0n3ly-H34rT
|
|
2012-09-20
|
|
Thomson Wireless VoIP Cable Modem - Authentication Bypass
|
19 |
WEB
|
Glafkos Charalambous
|
|
2002-04-21
|
|
vqServer 1.9.x - CGI Demo Program Script Injection
|
19 |
WEB
|
Matthew Murphy
|
|
2002-04-21
|
|
Philip Chinery's Guestbook 1.1 - Script Injection
|
20 |
WEB
|
markus arndt
|
|
2002-04-20
|
|
Jon Howell Faq-O-Matic 2.7 - Cross-Site Scripting
|
18 |
WEB
|
BrainRawt
|
|
2002-04-19
|
|
PostBoard 2.0 - Topic Title Script Execution
|
18 |
WEB
|
gcsb
|
|
2002-04-19
|
|
PostBoard 2.0 - BBCode IMG Tag Script Injection
|
19 |
WEB
|
gcsb
|
|
2002-04-19
|
|
Snitz Forums 2000 3.x - 'members.asp' SQL Injection
|
20 |
WEB
|
acemi
|
|
2002-04-19
|
|
IcrediBB 1.1 - Script Injection
|
21 |
WEB
|
Daniel Nyström
|
|
2002-04-18
|
|
PVote 1.0/1.5 - Unauthorized Administrative Password Change
|
18 |
WEB
|
Daniel Nyström
|
|
2012-09-19
|
|
torrenttrader 2.08 - Multiple Vulnerabilities
|
15 |
WEB
|
waraxe
|
|
2012-09-19
|
|
Fortigate UTM WAF Appliance - Multiple Vulnerabilities
|
16 |
WEB
|
Vulnerability-Lab
|
|
2012-09-19
|
|
SonicWALL email security 7.3.5 - Multiple Vulnerabilities
|
16 |
WEB
|
Vulnerability-Lab
|
|
2012-09-19
|
|
WordPress Plugin wp-topbar 4.02 - Multiple Vulnerabilities
|
20 |
WEB
|
Blake Entrekin
|
|
2012-09-19
|
|
SpiceWorks 6.0.00993 - Multiple Script Injection Vulnerabilities
|
17 |
WEB
|
LiquidWorm
|
|
2002-04-18
|
|
PVote 1.0/1.5 - Poll Content Manipulation
|
17 |
WEB
|
Daniel Nyström
|
|
2002-04-14
|
|
xNewsletter 1.0 - Form Field Input Validation
|
15 |
WEB
|
Firehack
|
|
2002-04-14
|
|
XGB 1.2 - Remote Form Field Input Validation
|
16 |
WEB
|
Firehack
|
|
2002-04-15
|
|
XGB Guestbook 1.2 - User-Embedded Scripting
|
18 |
WEB
|
Firehack
|
|
2002-04-15
|
|
Burning Board 1.1.1 - 'URL' Manipulation
|
16 |
WEB
|
SeazoN
|
|
2002-04-13
|
|
SunShop Shopping Cart 1.5/2.x - User-Embedded Scripting
|
19 |
WEB
|
ppp-design
|
|
2002-04-11
|
|
IBM Informix Web Datablade 4.1x - Page Request SQL Injection
|
23 |
WEB
|
Simon Lodal
|
|
2002-03-28
|
|
SquirrelMail 1.2.x - Theme Remote Command Execution
|
20 |
WEB
|
pokleyzz sakamaniaka
|
|
2002-03-28
|
|
PostNuke 0.703 - caselist Arbitrary Module Include
|
21 |
WEB
|
pokleyzz sakamaniaka
|
|
2002-03-25
|
|
DCShop Beta 1.0 - Form Manipulation
|
17 |
WEB
|
pokleyzz sakamaniaka
|
|
2002-03-21
|
|
PHP-Nuke 5.x - Error Message Web Root Disclosure
|
20 |
WEB
|
godminus
|
|
2002-03-13
|
|
PHProjekt 3.1 - Remote File Inclusion
|
24 |
WEB
|
b0iler
|
|
2012-09-17
|
|
Netsweeper WebAdmin Portal - Multiple Vulnerabilities
|
18 |
WEB
|
Jacob Holcomb
|
|
2012-09-17
|
|
Auxilium PetRatePro - Multiple Vulnerabilities
|
19 |
WEB
|
DaOne
|
|
2012-09-17
|
|
webERP 4.08.4 - 'WorkOrderEntry.php' SQL Injection
|
17 |
WEB
|
modpr0be
|
