|
2009-08-30
|
|
e-soft24 Article Directory Script - 'q' Cross-Site Scripting
|
8 |
WEB
|
599eme Man
|
|
2014-09-16
|
|
USB&WiFi Flash Drive 1.3 iOS - Code Execution
|
8 |
WEB
|
Vulnerability-Lab
|
|
2014-09-16
|
|
WordPress Plugin Slideshow Gallery 1.4.6 - Arbitrary File Upload
|
8 |
WEB
|
Claudio Viviani
|
|
2014-09-16
|
|
ZTE ZXDSL-931VII - Configuration Dump
|
8 |
WEB
|
L0ukanik0-s S0kniaku0l
|
|
2009-08-29
|
|
WebStatCaffe - '/stat/referer.php?date' Cross-Site Scripting
|
8 |
WEB
|
Moudi
|
|
2009-08-29
|
|
WebStatCaffe - '/stat/pageviewerschart.php?date' Cross-Site Scripting
|
8 |
WEB
|
Moudi
|
|
2009-08-29
|
|
WebStatCaffe - '/stat/pageviewers.php?date' Cross-Site Scripting
|
8 |
WEB
|
Moudi
|
|
2009-08-29
|
|
WebStatCaffe - '/stat/mostvisitpagechart.php?nopagesmost' Cross-Site Scripting
|
7 |
WEB
|
Moudi
|
|
2009-08-29
|
|
WebStatCaffe - '/stat/visitorduration.php?nodayshow' Cross-Site Scripting
|
6 |
WEB
|
Moudi
|
|
2009-08-29
|
|
WebStatCaffe - '/stat/mostvisitpage.php?nodayshow' Cross-Site Scripting
|
9 |
WEB
|
Moudi
|
|
2009-08-28
|
|
Tukanas Classifieds 1.0 - 'index.php' SQL Injection
|
8 |
WEB
|
Moudi
|
|
2014-09-15
|
|
CacheGuard-OS 5.7.7 - Cross-Site Request Forgery
|
8 |
WEB
|
William Costa
|
|
2014-09-15
|
|
ALCASAR 2.8.1 - Remote Code Execution
|
8 |
WEB
|
eF
|
|
2014-09-15
|
|
Briefcase 4.0 iOS - Code Execution / File Inclusion
|
10 |
WEB
|
Vulnerability-Lab
|
|
2009-08-29
|
|
x10 MP3 Automatic Search Engine 1.6.5b - '/adult/video_listing.php?key' Cross-Site Scripting
|
8 |
WEB
|
Moudi
|
|
2009-08-29
|
|
x10 MP3 Automatic Search Engine 1.6.5b - 'lyrics.php?id' Cross-Site Scripting
|
8 |
WEB
|
Moudi
|
|
2009-08-29
|
|
x10 MP3 Automatic Search Engine 1.6.5b - 'info.php?name' Cross-Site Scripting
|
9 |
WEB
|
Moudi
|
|
2009-08-29
|
|
x10 MP3 Automatic Search Engine 1.6.5b - 'embed.php?name' Cross-Site Scripting
|
9 |
WEB
|
Moudi
|
|
2009-08-29
|
|
x10 MP3 Automatic Search Engine 1.6.5b - 'video_listing.php?key' Cross-Site Scripting
|
8 |
WEB
|
Moudi
|
|
2009-08-29
|
|
x10 MP3 Automatic Search Engine 1.6.5b - '/templates/header1.php?id' Cross-Site Scripting
|
7 |
WEB
|
Moudi
|
|
2009-08-29
|
|
x10 MP3 Automatic Search Engine 1.6.5 - 'linkvideos_listing.php?category' Cross-Site Scripting
|
10 |
WEB
|
Moudi
|
|
2009-08-29
|
|
x10 MP3 Automatic Search Engine 1.6.5 - '/includes/video_ad.php?pic_id' Cross-Site Scripting
|
8 |
WEB
|
Moudi
|
|
2009-08-28
|
|
Open Classifieds - Multiple Cross-Site Scripting Vulnerabilities
|
9 |
WEB
|
Moudi
|
|
2010-09-17
|
|
e107 0.7.23 - Multiple SQL Injections
|
9 |
WEB
|
High-Tech Bridge SA
|
|
2009-08-30
|
|
e-Soft24 PTC Script 1.2 - 'login.php' Multiple Cross-Site Scripting Vulnerabilities
|
10 |
WEB
|
599eme Man
|
|
2009-08-30
|
|
e-Soft24 Jokes Portal Script Seo 1.0 - Multiple Cross-Site Scripting Vulnerabilities
|
9 |
WEB
|
599eme Man
|
|
2009-08-30
|
|
e-Soft24 Flash Games Script 1.0 - Cross-Site Scripting
|
9 |
WEB
|
599eme Man
|
|
2010-09-17
|
|
Netautor Professional 5.5 - 'login2.php' Cross-Site Scripting
|
9 |
WEB
|
Gjoko Krstic
|
|
2009-08-03
|
|
Blog Ink (Blink) - Multiple SQL Injections
|
10 |
WEB
|
Drosophila
|
|
2009-08-06
|
|
Silurus Classifieds - 'search.php?keywords' Cross-Site Scripting
|
8 |
WEB
|
Moudi
|
|
2009-08-06
|
|
Silurus Classifieds - 'wcategory.php?ID' Cross-Site Scripting
|
8 |
WEB
|
Moudi
|
|
2009-08-06
|
|
Silurus Classifieds - 'category.php?ID' Cross-Site Scripting
|
8 |
WEB
|
Moudi
|
|
2009-08-06
|
|
AJ Auction Pro OOPD 3.0 - 'txtkeyword' Cross-Site Scripting
|
9 |
WEB
|
599eme Man
|
|
2010-09-15
|
|
ChillyCMS 2.3.4.3 - Arbitrary File Upload
|
8 |
WEB
|
John Leitch
|
|
2010-09-15
|
|
Mollify 1.6 - 'index.php' Cross-Site Scripting
|
9 |
WEB
|
John Leitch
|
|
2010-09-15
|
|
CMScout IBrowser TinyMCE Plugin 2.3.4.3 - Local File Inclusion
|
7 |
WEB
|
John Leitch
|
|
2014-09-12
|
|
Joomla! Component com_formmaker 3.4 - SQL Injection
|
9 |
WEB
|
Claudio Viviani
|
|
2010-09-15
|
|
NWS-Classifieds - 'cmd' Local File Inclusion
|
8 |
WEB
|
John Leitch
|
|
2009-08-06
|
|
Willscript Auction Website Script - 'category.php' SQL Injection
|
7 |
WEB
|
599eme Man
|
|
2010-09-15
|
|
Multple I-Escorts Products - 'escorts_search.php' Cross-Site Scripting
|
8 |
WEB
|
599eme Man
|
|
2009-08-08
|
|
SpiceWorks - 'query' Cross-Site Scripting
|
10 |
WEB
|
Adam Baldwin
|
|
2009-08-06
|
|
Multi Website 1.5 - 'search' HTML Injection
|
9 |
WEB
|
599eme Man
|
|
2010-09-15
|
|
ATutor 1.0 - Multiple 'cid' Cross-Site Scripting Vulnerabilities
|
10 |
WEB
|
High-Tech Bridge SA
|
|
2010-09-15
|
|
AChecker 1.0 - 'URI' Cross-Site Scripting
|
8 |
WEB
|
High-Tech Bridge SA
|
|
2010-09-15
|
|
AContent 1.0 - Cross-Site Scripting / HTML Injection
|
9 |
WEB
|
High-Tech Bridge SA
|
|
2010-09-06
|
|
Santafox 2.0.2 - 'search' Cross-Site Scripting
|
9 |
WEB
|
High-Tech Bridge SA
|
|
2014-09-11
|
|
ChatSecure IM 2.2.4 iOS - Persistent Cross-Site Scripting
|
8 |
WEB
|
Vulnerability-Lab
|
|
2014-09-11
|
|
Photorange 1.0 iOS - Local File Inclusion
|
9 |
WEB
|
Vulnerability-Lab
|
|
2014-09-11
|
|
Joomla! Component Spider Contacts 1.3.6 - 'contacts_id' SQL Injection
|
9 |
WEB
|
Claudio Viviani
|
|
2014-09-11
|
|
OroCRM - Persistent Cross-Site Scripting
|
9 |
WEB
|
Provensec
|
|
2010-09-14
|
|
PaysiteReviewCMS - 'image.php' Cross-Site Scripting
|
7 |
WEB
|
Valentin Hoebel
|
|
2010-09-14
|
|
PaysiteReviewCMS 1.1 - 'search.php' Cross-Site Scripting
|
9 |
WEB
|
Valentin Hoebel
|
|
2009-09-06
|
|
Omnistar Recruiting - 'resume_register.php' Cross-Site Scripting
|
9 |
WEB
|
MizoZ
|
|
2009-08-06
|
|
Waverider Systems Perlshop - Multiple Input Validation Vulnerabilities
|
9 |
WEB
|
Shadow
|
|
2009-08-13
|
|
Elkagroup Elkapax - 'q' Cross-Site Scripting
|
9 |
WEB
|
Isfahan
|
|
2010-09-09
|
|
SmarterTools SmarterStats 5.3.3819 - 'frmHelp.aspx' Cross-Site Scripting
|
8 |
WEB
|
David Hoyt
|
|
2010-09-07
|
|
ZenPhoto 1.3 - '/zp-core/admin.php' Multiple Cross-Site Scripting Vulnerabilities
|
8 |
WEB
|
Bogdan Calin
|
|
2010-09-07
|
|
ZenPhoto 1.3 - '/zp-core/full-image.php?a' SQL Injection
|
8 |
WEB
|
Bogdan Calin
|
|
2010-09-06
|
|
MySource Matrix - 'char_map.php' Multiple Cross-Site Scripting Vulnerabilities
|
7 |
WEB
|
Gjoko Krstic
|
|
2010-09-06
|
|
HeffnerCMS 1.22 - 'index.php' Local File Inclusion
|
7 |
WEB
|
MiND C0re
|
|
2010-09-02
|
|
TBDev 2.0 - Remote File Inclusion / SQL Injection
|
9 |
WEB
|
Inj3ct0r
|
|
2009-09-02
|
|
Webformatique Reservation Manager 2.4 - 'index.php' Cross-Site Scripting
|
8 |
WEB
|
Moudi
|
|
2010-09-06
|
|
Horde Application Framework 3.3.8 - 'icon_browser.php' Cross-Site Scripting
|
8 |
WEB
|
Moritz Naumann
|
|
2010-09-06
|
|
BlueCMS 1.6 - 'x-forwarded-for' Header SQL Injection
|
8 |
WEB
|
cnryan
|
|
2009-09-11
|
|
Match Agency BiZ - 'report.php?pid' Cross-Site Scripting
|
6 |
WEB
|
Moudi
|
|
2009-09-11
|
|
Match Agency BiZ - 'edit_profile.php?important' Cross-Site Scripting
|
6 |
WEB
|
Moudi
|
|
2009-09-10
|
|
tourismscripts HotelBook - 'hotel_id' Multiple SQL Injections
|
6 |
WEB
|
Mr.SQL
|
|
2009-09-11
|
|
SZNews 2.7 - 'printnews.php3' Remote File Inclusion
|
6 |
WEB
|
kurdish hackers team
|
|
2010-09-10
|
|
Datetopia Buy Dating Site - Cross-Site Scripting
|
8 |
WEB
|
Moudi
|
|
2010-09-03
|
|
Pligg CMS 1.0.4 - SQL Injection / Cross-Site Scripting
|
6 |
WEB
|
Bogdan Calin
|
|
2014-09-09
|
|
Parallels Plesk Sitebuilder 9.5 - Multiple Vulnerabilities
|
8 |
WEB
|
alieye
|
|
2014-09-09
|
|
WordPress Plugin WP Support Plus Responsive Ticket System 2.0 - Multiple Vulnerabilities
|
8 |
WEB
|
Fikri Fadzil
|
|
2014-09-08
|
|
Jenkins 1.578 - Multiple Vulnerabilities
|
9 |
WEB
|
JoeV
|
|
2014-09-08
|
|
Mpay24 PrestaShop Payment Module 1.5 - Multiple Vulnerabilities
|
7 |
WEB
|
Wireghoul
|
|
2014-09-08
|
|
Atmail Webmail 7.2 - Multiple Vulnerabilities
|
7 |
WEB
|
smash
|
|
2014-09-08
|
|
TP-Link TL-WR841N / TL-WR841ND - Multiple Vulnerabilities
|
6 |
WEB
|
smash
|
|
2014-09-08
|
|
TP-Link TL-WR340G / TL-WR340GD - Multiple Vulnerabilities
|
6 |
WEB
|
smash
|
|
2014-09-08
|
|
osCommerce 2.3.4 - Multiple Vulnerabilities
|
6 |
WEB
|
smash
|
|
2014-09-08
|
|
Zen Cart 1.5.3 - Multiple Vulnerabilities
|
6 |
WEB
|
smash
|
|
2014-09-08
|
|
phpMyFAQ 2.8.x - Multiple Vulnerabilities
|
6 |
WEB
|
smash
|
|
2014-09-08
|
|
vBulletin 5.1.x - Persistent Cross-Site Scripting
|
9 |
WEB
|
smash
|
|
2014-09-08
|
|
WordPress Theme Acento - 'view-pdf.php?File' Arbitrary File Download
|
8 |
WEB
|
alieye
|
|
2014-09-08
|
|
WordPress Plugin Bulk Delete Users by Email 1.0 - Cross-Site Request Forgery
|
7 |
WEB
|
Fikri Fadzil
|
|
2014-09-08
|
|
Joomla! Component Spider Calendar 3.2.6 - SQL Injection
|
7 |
WEB
|
Claudio Viviani
|
|
2010-09-03
|
|
NuSOAP 0.9.5 - 'nusoap.php' Cross-Site Scripting
|
8 |
WEB
|
Bogdan Calin
|
|
2010-09-02
|
|
CMS WebManager-Pro - 'c.php' SQL Injection
|
7 |
WEB
|
MustLive
|
|
2010-09-02
|
|
OneCMS 2.6.1 - 'index.php' Cross-Site Scripting
|
8 |
WEB
|
anT!-Tr0J4n
|
|
2009-10-14
|
|
AdaptBB 1.0 - 'q' Cross-Site Scripting
|
8 |
WEB
|
drunken danish rednecks
|
|
2009-09-07
|
|
KingCMS 0.6 - 'CONFIG[AdminPath]' Remote File Inclusion
|
8 |
WEB
|
Securitylab.ir
|
|
2010-09-01
|
|
ArtGK CMS - Cross-Site Scripting / HTML Injection
|
8 |
WEB
|
High-Tech Bridge SA
|
|
2010-09-01
|
|
Rumba XML 2.4 - 'index.php' Multiple HTML Injection Vulnerabilities
|
8 |
WEB
|
High-Tech Bridge SA
|
|
2010-09-01
|
|
Amiro.CMS 5.8.4.0 - Multiple HTML Injection Vulnerabilities
|
8 |
WEB
|
High-Tech Bridge SA
|
|
2014-09-07
|
|
PhpOnlineChat 3.0 - Cross-Site Scripting
|
9 |
WEB
|
N0 Feel
|
|
2014-09-07
|
|
WordPress Plugin Like Dislike Counter 1.2.3 - SQL Injection
|
11 |
WEB
|
Att4ck3r.ir
|
|
2014-09-07
|
|
LoadedCommerce7 - Systemic Query Factory
|
9 |
WEB
|
Breaking.Technology
|
|
2014-09-07
|
|
Invision Power Board (IP.Board) 3.x - Cross-Site Request Forgery / Token Hjiacking
|
7 |
WEB
|
Piotr S.
|
|
2009-09-10
|
|
Datemill - 'search.php?st' Cross-Site Scripting
|
9 |
WEB
|
Moudi
|
|
2009-09-10
|
|
Datemill - 'photo_search.php?st' Cross-Site Scripting
|
9 |
WEB
|
Moudi
|
|
2009-09-10
|
|
Datemill - 'photo_view.php?return' Cross-Site Scripting
|
11 |
WEB
|
Moudi
|
|
2010-08-31
|
|
HP Insight Diagnostics Online Edition 8.4 - 'custom.php?testmode' Cross-Site Scripting
|
11 |
WEB
|
Mr Teatime
|
|
2010-08-31
|
|
HP Insight Diagnostics Online Edition 8.4 - 'globals.php?tabpage' Cross-Site Scripting
|
9 |
WEB
|
Mr Teatime
|
|
2010-08-31
|
|
HP Insight Diagnostics Online Edition 8.4 - 'survey.php?category' Cross-Site Scripting
|
10 |
WEB
|
Mr Teatime
|
|
2010-08-31
|
|
HP Insight Diagnostics Online Edition 8.4 - 'idstatusframe.php' Multiple Cross-Site Scripting Vulner
|
9 |
WEB
|
Mr Teatime
|
|
2010-08-31
|
|
HP Insight Diagnostics Online Edition 8.4 - 'parameters.php?device' Cross-Site Scripting
|
9 |
WEB
|
Mr Teatime
|
|
2010-08-29
|
|
WebsiteKit Gbplus - 'Name' / 'Body' HTML Injection
|
10 |
WEB
|
MiND
|
|
2014-09-05
|
|
MyBB User Social Networks Plugin 1.2 - Persistent Cross-Site Scripting
|
10 |
WEB
|
Fikri Fadzil
|
|
2014-09-05
|
|
WordPress Plugin Premium Gallery Manager - Configuration Access
|
9 |
WEB
|
Hannaichi
|
|
2010-08-26
|
|
CompuCMS - Multiple SQL Injections / Cross-Site Scripting Vulnerabilities
|
9 |
WEB
|
High-Tech Bridge SA
|
|
2010-08-26
|
|
Valarsoft WebMatic 3.0.5 - Multiple HTML Injection Vulnerabilities
|
8 |
WEB
|
High-Tech Bridge SA
|
|
2010-08-26
|
|
TCMS - Multiple Input Validation Vulnerabilities
|
9 |
WEB
|
High-Tech Bridge SA
|
|
2010-08-23
|
|
Auto CMS 1.6 - 'autocms.php' Cross-Site Scripting
|
9 |
WEB
|
High-Tech Bridge SA
|
|
2010-08-25
|
|
BlastChat Client 3.3 - Cross-Site Scripting
|
10 |
WEB
|
Aung Khant
|
|
2010-08-25
|
|
Acunetix Web Vulnerability Scanner - DLL Loading Arbitrary Code Execution
|
11 |
WEB
|
Kolor
|
|
2014-09-03
|
|
vBulletin 4.0.x < 4.1.2 - 'search.php?cat' SQL Injection
|
11 |
WEB
|
D35m0nd142
|
|
2014-09-02
|
|
Syslog LogAnalyzer 3.6.5 - Persistent Cross-Site Scripting
|
9 |
WEB
|
Dolev Farhi
|
|
2014-09-02
|
|
WordPress Plugin Huge-IT Image Gallery 1.0.1 - (Authenticated) SQL Injection
|
9 |
WEB
|
Claudio Viviani
|
|
2014-09-01
|
|
ManageEngine EventLog Analyzer - Multiple Vulnerabilities (1)
|
10 |
WEB
|
Hans-Martin Muench
|
|
2014-09-01
|
|
ManageEngine Desktop Central - Arbitrary File Upload / Remote Code Execution
|
9 |
WEB
|
Pedro Ribeiro
|
|
2014-09-01
|
|
WordPress Plugin Slideshow Gallery 1.4.6 - Arbitrary File Upload
|
8 |
WEB
|
Jesus Ramirez Pichardo
|
|
2014-09-01
|
|
Arachni Web Application Scanner Web UI - Persistent Cross-Site Scripting
|
11 |
WEB
|
Prakhar Prasad
|
|
2014-09-01
|
|
Mulitple WordPress Themes - 'admin-ajax.php?img' Arbitrary File Download
|
11 |
WEB
|
Hugo Santiago
|
|
2010-08-23
|
|
AneCMS 1.0/1.3 - 'register/next' SQL Injection
|
10 |
WEB
|
Sweet
|
|
2010-08-19
|
|
Cacti 0.8.7 (RedHat High Performance Computing [HPC]) - 'utilities.php?Filter' Cross-Site Scripting
|
12 |
WEB
|
Marc Schoenefeld
|
|
2010-08-19
|
|
Syntax Highlighter 3.0.83 - 'index.html' HTML Injection
|
10 |
WEB
|
indoushka
|
|
2009-08-10
|
|
Hitron Soft Answer Me - 'answers.php' Cross-Site Scripting
|
9 |
WEB
|
Moudi
|
