|
2011-12-14
|
|
BrowserCRM 5.100.1 - 'login[]' Cross-Site Scripting
|
27 |
WEB
|
High-Tech Bridge SA
|
|
2011-12-14
|
|
BrowserCRM 5.100.1 - 'clients.php' Cross-Site Scripting
|
29 |
WEB
|
High-Tech Bridge SA
|
|
2011-12-14
|
|
BrowserCRM 5.100.1 - 'framed' Cross-Site Scripting
|
28 |
WEB
|
High-Tech Bridge SA
|
|
2011-12-14
|
|
BrowserCRM 5.100.1 - URI Cross-Site Scripting
|
33 |
WEB
|
High-Tech Bridge SA
|
|
2011-12-14
|
|
BrowserCRM 5.100.1 - 'contact_id' SQL Injection
|
34 |
WEB
|
High-Tech Bridge SA
|
|
2011-12-14
|
|
BrowserCRM 5.100.1 - 'parent_id' SQL Injection
|
25 |
WEB
|
High-Tech Bridge SA
|
|
2011-12-14
|
|
Pulse Pro 1.7.2 - Multiple Cross-Site Scripting Vulnerabilities
|
26 |
WEB
|
Avram Marius
|
|
2011-12-16
|
|
Fork CMS 3.1.5 - Multiple Cross-Site Scripting Vulnerabilities
|
28 |
WEB
|
Avram Marius
|
|
2011-12-31
|
|
WordPress Plugin The Welcomizer 1.3.9.4 - 'twiz-index.php' Cross-Site Scripting
|
27 |
WEB
|
Am!r
|
|
2011-12-13
|
|
WordPress Plugin flash-album-gallery - 'flagshow.php' Cross-Site Scripting
|
26 |
WEB
|
Am!r
|
|
2015-03-19
|
|
Citrix Nitro SDK - Command Injection
|
27 |
WEB
|
Han Sahin
|
|
2015-03-19
|
|
Citrix Command Center - Credential Disclosure
|
28 |
WEB
|
Han Sahin
|
|
2015-03-19
|
|
EMC M&R (Watch4net) - Directory Traversal
|
32 |
WEB
|
Han Sahin
|
|
2015-03-19
|
|
Joomla! Component ECommerce-WD 1.2.5 - SQL Injection
|
28 |
WEB
|
Brandon Perry
|
|
2015-03-19
|
|
EMC M&R (Watch4net) - Credential Disclosure
|
26 |
WEB
|
Han Sahin
|
|
2015-03-19
|
|
Chamilo LMS 1.9.10 - Multiple Vulnerabilities
|
24 |
WEB
|
Rehan Ahmed
|
|
2011-12-12
|
|
WordPress Plugin GRAND FlAGallery 1.57 - 'flagshow.php' Cross-Site Scripting
|
27 |
WEB
|
Am!r
|
|
2011-12-09
|
|
Pet Listing - 'preview.php' Cross-Site Scripting
|
31 |
WEB
|
Mr.PaPaRoSSe
|
|
2015-03-18
|
|
Websense Appliance Manager - Command Injection
|
27 |
WEB
|
Han Sahin
|
|
2015-03-17
|
|
Metasploit Project < 4.11.1 - Initial User Creation Cross-Site Request Forgery (Metasploit)
|
28 |
WEB
|
Mohamed Abdelbaset Elnoby
|
|
2015-03-17
|
|
Moodle 2.5.9/2.6.8/2.7.5/2.8.3 - Block Title Handler Cross-Site Scripting
|
31 |
WEB
|
LiquidWorm
|
|
2015-03-16
|
|
WordPress Plugin WPML 3.1.9 - Multiple Vulnerabilities
|
34 |
WEB
|
Jouko Pynnonen
|
|
2015-03-16
|
|
WordPress Plugin SEO by Yoast 1.7.3.3 - Blind SQL Injection
|
33 |
WEB
|
Ryan Dewhurst
|
|
2011-12-06
|
|
Simple Machines Forum (SMF) 1.1.15 - 'fckeditor' Arbitrary File Upload
|
30 |
WEB
|
HELLBOY
|
|
2011-12-06
|
|
WordPress Plugin Pretty Link 1.5.2 - 'pretty-bar.php' Cross-Site Scripting
|
31 |
WEB
|
Am!r
|
|
2011-12-05
|
|
Elxis CMS 2009 - 'administrator/index.php' URI Cross-Site Scripting
|
30 |
WEB
|
Ewerson Guimaraes
|
|
2011-12-05
|
|
Elxis CMS 2009 - 'index.php?task' Cross-Site Scripting
|
31 |
WEB
|
Ewerson Guimaraes
|
|
2011-12-01
|
|
Hero 3.69 - 'month' Cross-Site Scripting
|
33 |
WEB
|
Gjoko Krstic
|
|
2011-12-01
|
|
AtMail 1.04 - 'func' Multiple Cross-Site Scripting Vulnerabilities
|
31 |
WEB
|
Dognædis
|
|
2015-03-16
|
|
Smart PHP Poll - Authentication Bypass
|
30 |
WEB
|
Mr.tro0oqy yemen
|
|
2015-03-16
|
|
Joomla! Component com_simplephotogallery 1.0 - SQL Injection
|
29 |
WEB
|
Moneer Masoud
|
|
2011-11-30
|
|
SugarCRM Community Edition 6.3.0RC1 - 'index.php' Multiple SQL Injections
|
33 |
WEB
|
High-Tech Bridge SA
|
|
2011-11-30
|
|
WordPress Plugin flash-album-gallery - 'facebook.php' Cross-Site Scripting
|
32 |
WEB
|
Am!r
|
|
2011-11-30
|
|
WordPress Plugin 1-jquery-photo-gallery-Slideshow-flash 1.01 - Cross-Site Scripting
|
34 |
WEB
|
Am!r
|
|
2011-11-30
|
|
OrangeHRM 2.6.11 - '/lib/controllers/CentralController.php?id' SQL Injection
|
29 |
WEB
|
High-Tech Bridge SA
|
|
2011-11-30
|
|
OrangeHRM 2.6.11 - 'lib/controllers/CentralController.php' URI Cross-Site Scripting
|
31 |
WEB
|
High-Tech Bridge SA
|
|
2011-11-30
|
|
OrangeHRM 2.6.11 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
|
31 |
WEB
|
High-Tech Bridge SA
|
|
2011-11-29
|
|
Virtual Vertex Muster 6.1.6 - Web Interface Directory Traversal
|
25 |
WEB
|
Nick Freeman
|
|
2015-03-08
|
|
WordPress Plugin Reflex Gallery 3.1.3 - Arbitrary File Upload
|
28 |
WEB
|
CrashBandicot
|
|
2015-03-10
|
|
Joomla! Component com_simplephotogallery 1.0 - Arbitrary File Upload
|
27 |
WEB
|
CrashBandicot
|
|
2015-03-04
|
|
WordPress Theme DesignFolio Plus 1.2 - Arbitrary File Upload
|
30 |
WEB
|
CrashBandicot
|
|
2015-03-12
|
|
Codiad 2.5.3 - Local File Inclusion
|
33 |
WEB
|
TUNISIAN CYBER
|
|
2015-03-12
|
|
Citrix Netscaler NS10.5 - WAF Bypass (Via HTTP Header Pollution)
|
30 |
WEB
|
BGA Security
|
|
2015-03-13
|
|
WoltLab Community Gallery - Persistent Cross-Site Scripting
|
32 |
WEB
|
ITAS Team
|
|
2011-11-28
|
|
Manx 1.0.1 - '/admin/admin_pages.php?Filename' Traversal Arbitrary File Access
|
32 |
WEB
|
LiquidWorm
|
|
2011-11-28
|
|
Manx 1.0.1 - '/admin/admin_blocks.php?Filename' Traversal Arbitrary File Access
|
31 |
WEB
|
LiquidWorm
|
|
2011-11-28
|
|
Manx 1.0.1 - '/admin/tiny_mce/plugins/ajaxfilemanager_OLD/ajax_get_file_listing.php' Multiple Cross-
|
31 |
WEB
|
LiquidWorm
|
|
2011-11-28
|
|
Manx 1.0.1 - '/admin/tiny_mce/plugins/ajaxfilemanager/ajax_get_file_listing.php' Multiple Cross-Site
|
32 |
WEB
|
LiquidWorm
|
|
2011-11-28
|
|
WordPress Plugin Skysa App Bar - 'idnews' Cross-Site Scripting
|
29 |
WEB
|
Amir
|
|
2011-11-26
|
|
eSyndiCat Pro 2.3.5 - Multiple Cross-Site Scripting Vulnerabilities
|
29 |
WEB
|
d3v1l
|
|
2015-03-11
|
|
CS-Cart 4.2.4 - Cross-Site Request Forgery
|
32 |
WEB
|
Luis Santana
|
|
2011-11-24
|
|
HP Network Node Manager (NMM) i 9.10 - 'nnm/protected/traceroute.jsp?nodename' Cross-Site Scripting
|
31 |
WEB
|
anonymous
|
|
2011-11-24
|
|
HP Network Node Manager (NMM) i 9.10 - 'nnm/protected/statuspoll.jsp?nodename' Cross-Site Scripting
|
34 |
WEB
|
anonymous
|
|
2011-11-24
|
|
HP Network Node Manager (NMM) i 9.10 - 'nnm/protected/ping.jsp?nodename' Cross-Site Scripting
|
33 |
WEB
|
anonymous
|
|
2011-11-24
|
|
HP Network Node Manager (NMM) i 9.10 - 'nnm/protected/configurationpoll.jsp?nodename' Cross-Site Scr
|
34 |
WEB
|
anonymous
|
|
2011-11-24
|
|
HP Network Node Manager (NMM) i 9.10 - '/nnm/mibdiscover?node' Cross-Site Scripting
|
31 |
WEB
|
anonymous
|
|
2011-11-24
|
|
Balitbang CMS 3.3 - 'alumni.php?hal' SQL Injection
|
30 |
WEB
|
X-Cisadane
|
|
2011-11-24
|
|
Balitbang CMS 3.3 - 'index.php?hal' SQL Injection
|
30 |
WEB
|
X-Cisadane
|
|
2011-11-24
|
|
AdaptCMS 2.0 - SQL Injection
|
33 |
WEB
|
X-Cisadane
|
|
2011-11-23
|
|
Pro Clan Manager 0.4.2 - SQL Injection
|
29 |
WEB
|
anonymous
|
|
2011-11-22
|
|
Hastymail2 - 'rs' Cross-Site Scripting
|
33 |
WEB
|
HTrovao
|
|
2011-11-23
|
|
Zen Cart CMS 1.3.9h - Multiple Cross-Site Scripting Vulnerabilities
|
31 |
WEB
|
RPinto
|
|
2011-11-23
|
|
Prestashop 1.4.4.1 - 'displayImage.php' HTTP Response Splitting
|
32 |
WEB
|
RGouveia
|
|
2011-11-23
|
|
PrestaShop 1.4.4.1 - '/admin/ajaxfilemanager/ajax_save_text.php' Multiple Cross-Site Scripting Vulne
|
32 |
WEB
|
Prestashop
|
|
2011-11-23
|
|
PrestaShop 1.4.4.1 - '/modules/mondialrelay/kit_mondialrelay/SuiviExpedition_ajax.php?Expedition' Cr
|
30 |
WEB
|
Prestashop
|
|
2011-11-23
|
|
PrestaShop 1.4.4.1 - '/modules/mondialrelay/googlemap.php' Multiple Cross-Site Scripting Vulnerabili
|
30 |
WEB
|
Prestashop
|
|
2011-11-23
|
|
PrestaShop 1.4.4.1 mondialrelay (kit_mondialrelay) - Multiple Cross-Site Scripting Vulnerabilities
|
32 |
WEB
|
Prestashop
|
|
2011-11-23
|
|
WordPress Plugin NewsLetter Meenews 5.1 - 'idnews' Cross-Site Scripting
|
32 |
WEB
|
Amir
|
|
2011-11-23
|
|
WordPress Plugin Featurific For WordPress 1.6.2 - 'snum' Cross-Site Scripting
|
30 |
WEB
|
Amir
|
|
2011-11-23
|
|
WordPress Plugin ClickDesk Live Support 2.0 - 'cdwidget' Cross-Site Scripting
|
35 |
WEB
|
Amir
|
|
2011-11-23
|
|
Dolibarr ERP/CRM 3.1.0 - '/admin/boxes.php?rowid' SQL Injection
|
30 |
WEB
|
High-Tech Bridge SA
|
|
2011-11-23
|
|
Dolibarr ERP/CRM 3.1.0 - '/user/info.php?id' SQL Injection
|
38 |
WEB
|
High-Tech Bridge SA
|
|
2011-11-23
|
|
Dolibarr ERP/CRM 3.1.0 - '/user/index.php' Multiple SQL Injections
|
32 |
WEB
|
High-Tech Bridge SA
|
|
2011-11-23
|
|
Dolibarr ERP/CRM 3.1 - Multiple Script URI Cross-Site Scripting Vulnerabilities
|
33 |
WEB
|
High-Tech Bridge SA
|
|
2011-11-22
|
|
TA.CMS (TeachArabia) - 'lang' Traversal Local File Inclusion
|
35 |
WEB
|
CoBRa_21
|
|
2011-11-22
|
|
TA.CMS (TeachArabia) - 'index.php?id' SQL Injection
|
34 |
WEB
|
CoBRa_21
|
|
2011-11-21
|
|
WordPress Plugin Lanoba Social 1.0 - 'action' Cross-Site Scripting
|
32 |
WEB
|
Amir
|
|
2011-11-21
|
|
WordPress Plugin Adminimize 1.7.21 - 'page' Cross-Site Scripting
|
34 |
WEB
|
Am!r
|
|
2011-11-21
|
|
WordPress Plugin Advanced Text Widget 2.0 - 'page' Cross-Site Scripting
|
31 |
WEB
|
Amir
|
|
2011-11-21
|
|
WordPress Plugin Alert Before Your Post - 'name' Cross-Site Scripting
|
34 |
WEB
|
Am!r
|
|
2011-11-20
|
|
Digital Attic Foundation CMS - 'id' SQL Injection
|
29 |
WEB
|
tempe_mendoan
|
|
2015-03-10
|
|
GeniXCMS 0.0.1 - Multiple Vulnerabilities
|
31 |
WEB
|
LiquidWorm
|
|
2015-03-10
|
|
CodoForum 2.5.1 - Arbitrary File Download
|
33 |
WEB
|
Kacper Szurek
|
|
2011-11-17
|
|
WordPress Plugin Flexible Custom Post Type - 'id' Cross-Site Scripting
|
32 |
WEB
|
Am!r
|
|
2011-11-17
|
|
ZOHO ManageEngine ADSelfService Plus 4.5 Build 4521 - Cross-Site Scripting
|
32 |
WEB
|
James webb
|
|
2011-11-17
|
|
webERP 4.3.8 - '/reportwriter/FormMaker.php?ReportID' SQL Injection
|
35 |
WEB
|
High-Tech Bridge SA
|
|
2011-11-17
|
|
webERP 4.3.8 - '/reportwriter/ReportMaker.php?reportid' SQL Injection
|
28 |
WEB
|
High-Tech Bridge SA
|
|
2011-11-17
|
|
webERP 4.3.8 - Multiple Script URI Cross-Site Scripting Vulnerabilities
|
30 |
WEB
|
High-Tech Bridge SA
|
|
2011-11-16
|
|
Webistry 1.6 - 'pid' SQL Injection
|
33 |
WEB
|
CoBRa_21
|
|
2011-11-13
|
|
Search Plugin for Hotaru CMS 1.4.2 - 'admin_index.php?site_name' Cross-Site Scripting
|
30 |
WEB
|
Gjoko Krstic
|
|
2015-03-06
|
|
PHP Betoffice (Betster) 1.0.4 - Authentication Bypass / SQL Injection
|
36 |
WEB
|
ZeQ3uL
|
|
2015-03-07
|
|
Elastix 2.x - Blind SQL Injection
|
30 |
WEB
|
Ahmed Aboul-Ela
|
|
2015-03-06
|
|
ProjectSend r561 - SQL Injection
|
33 |
WEB
|
ITAS Team
|
|
2011-11-14
|
|
Joomla! Component Content - 'year' SQL Injection
|
33 |
WEB
|
E.Shahmohamadi
|
|
2014-11-24
|
|
WordPress Plugin Download Manager 2.7.2 - Privilege Escalation
|
32 |
WEB
|
Kacper Szurek
|
|
2011-11-11
|
|
Infoblox NetMRI 6.2.1 - Admin Login Page Multiple Cross-Site Scripting Vulnerabilities
|
37 |
WEB
|
Jose Carlos de Arriba
|
|
2011-11-10
|
|
Joomla! Component com_alfcontact 1.9.3 - Multiple Cross-Site Scripting Vulnerabilities
|
29 |
WEB
|
Jose Carlos de Arriba
|
|
2011-11-09
|
|
AShop - Open Redirection / Cross-Site Scripting
|
30 |
WEB
|
Infoserve Security Team
|
|
2011-11-08
|
|
PBCS Technology - 'articlenav.php' SQL Injection
|
31 |
WEB
|
Kalashinkov3
|
|
2011-11-04
|
|
Centreon 2.3.1 - 'command_name' Remote Command Execution
|
27 |
WEB
|
Christophe de la Fuente
|
|
2011-11-07
|
|
Oracle NoSQL 11g 1.1.100 R2 - 'log' Directory Traversal
|
30 |
WEB
|
Buherátor
|
|
2011-11-07
|
|
Admin Bot - 'news.php' SQL Injection
|
30 |
WEB
|
baltazar
|
|
2011-11-07
|
|
SmartJobBoard - 'keywords' Cross-Site Scripting
|
30 |
WEB
|
Mr.PaPaRoSSe
|
|
2011-11-04
|
|
WordPress Theme Bonus 1.0 - 's' Cross-Site Scripting
|
35 |
WEB
|
3spi0n
|
|
2011-11-04
|
|
DreamBox DM800 - 'file' Local File Disclosure
|
33 |
WEB
|
Todor Donev
|
|
2011-11-03
|
|
CmyDocument - Multiple Cross-Site Scripting Vulnerabilities
|
33 |
WEB
|
demonalex
|
|
2011-11-03
|
|
S9Y Serendipity 1.5.5 - 'serendipity[filter][bp.ALT]' Cross-Site Scripting
|
33 |
WEB
|
Stefan Schurtz
|
|
2011-11-02
|
|
eFront 3.6.x - Multiple Cross-Site Scripting / SQL Injections
|
28 |
WEB
|
High-Tech Bridge SA
|
|
2011-11-01
|
|
Symphony 2.2.3 - '/symphony/publish/comments?filter' SQL Injection
|
31 |
WEB
|
Mesut Timur
|
|
2011-11-01
|
|
Symphony 2.2.3 - '/symphony/publish/images?filter' Cross-Site Scripting
|
43 |
WEB
|
Mesut Timur
|
|
2011-11-01
|
|
eFront 3.6.10 Build 11944 - Multiple Cross-Site Scripting Vulnerabilities
|
26 |
WEB
|
Netsparker Advisories
|
|
2011-11-01
|
|
IBSng B1.34(T96) - 'str' Cross-Site Scripting
|
36 |
WEB
|
Isfahan
|
|
2011-11-01
|
|
Hyperic HQ Enterprise 4.5.1 - Cross-Site Scripting / Multiple Security Vulnerabilities
|
33 |
WEB
|
Benjamin Kunz Mejri
|
|
2011-11-01
|
|
vBulletin 4.1.7 - Multiple Remote File Inclusions
|
29 |
WEB
|
indoushka
|
|
2011-11-01
|
|
Domain Shop - 'index.php' Cross-Site Scripting
|
32 |
WEB
|
Mr.PaPaRoSSe
|
|
2011-10-28
|
|
Plici Search 2.0.0.Stable.r.1878 - 'p48-search.html' Cross-Site Scripting
|
25 |
WEB
|
599eme Man
|
|
2011-10-28
|
|
SjXjV 2.3 - 'post.php' SQL Injection
|
32 |
WEB
|
599eme Man
|
|
2015-03-04
|
|
BEdita CMS 3.5.0 - Multiple Vulnerabilities
|
31 |
WEB
|
Edric Teo
|
|
2015-03-04
|
|
SolarWinds Orion Service - SQL Injection
|
27 |
WEB
|
Brandon Perry
|
|
2011-10-28
|
|
eFront 3.6.10 - 'professor.php' Script Multiple SQL Injections
|
31 |
WEB
|
Vulnerability Research Laboratory
|
|
2011-10-26
|
|
vTiger CRM 5.2.1 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities (2)
|
29 |
WEB
|
LiquidWorm
|
|
2011-10-25
|
|
Alsbtain Bulletin 1.5/1.6 - Multiple Local File Inclusions
|
27 |
WEB
|
Null H4ck3r
|
|
2011-10-24
|
|
InverseFlow 2.4 - Multiple Cross-Site Scripting Vulnerabilities
|
28 |
WEB
|
Amir Expl0its
|
|
2011-10-24
|
|
e107 0.7.24 - 'cmd' Remote Command Execution
|
28 |
WEB
|
Matt Bergin
|
|
2015-03-03
|
|
PHPMoAdmin - Unauthorized Remote Code Execution
|
31 |
WEB
|
@u0x
|
