|
2010-10-04
|
|
Surgemail SurgeWeb 4.3e - Cross-Site Scripting
|
23 |
WEB
|
Kerem Kocaer
|
|
2009-07-09
|
|
WebAsyst Shop-Script - 'index.php' Cross-Site Scripting
|
23 |
WEB
|
Vrs-hCk
|
|
2010-10-01
|
|
Intellicom Netbiter webSCADA Products - 'read.cgi' Multiple Remote Security Vulnerabilities
|
25 |
WEB
|
Eugene Salov
|
|
2009-07-13
|
|
Top Paidmailer - 'home.php' Remote File Inclusion
|
27 |
WEB
|
Moudi
|
|
2009-07-07
|
|
Swinger Club Portal - 'start.php?go' Remote File Inclusion
|
29 |
WEB
|
Moudi
|
|
2009-07-07
|
|
Swinger Club Portal - 'start.php?id' SQL Injection
|
24 |
WEB
|
Moudi
|
|
2010-09-29
|
|
Pluck CMS 4.6.3 - 'cont1' HTML Injection
|
26 |
WEB
|
High-Tech Bridge SA
|
|
2010-09-29
|
|
Getsimple CMS 2.01 - 'changedata.php' Cross-Site Scripting
|
23 |
WEB
|
High-Tech Bridge SA
|
|
2010-09-29
|
|
MODx manager - '/controllers/default/resource/tvs.php?class_key' Traversal Local File Inclusion
|
22 |
WEB
|
John Leitch
|
|
2010-09-29
|
|
MODx 2.0.2-pl - '/manager/index.php?modahsh' Cross-Site Scripting
|
25 |
WEB
|
John Leitch
|
|
2009-07-14
|
|
eCardMAX - Multiple Cross-Site Scripting Vulnerabilities
|
26 |
WEB
|
Moudi
|
|
2010-09-28
|
|
PHPMyFAQ 2.6.x - 'index.php' Cross-Site Scripting
|
26 |
WEB
|
Yam Mesicka
|
|
2010-09-28
|
|
Micro CMS 1.0 - 'name' HTML Injection (1)
|
27 |
WEB
|
Veerendra G.G
|
|
2009-07-16
|
|
Scriptsez Ultimate Poll - 'demo_page.php' Cross-Site Scripting
|
23 |
WEB
|
Moudi
|
|
2010-09-27
|
|
NetArt Media Car Portal 2.0 - 'car' SQL Injection
|
25 |
WEB
|
RoAd_KiLlEr
|
|
2014-09-25
|
|
WordPress Plugin All In One WP Security 3.8.2 - SQL Injection
|
32 |
WEB
|
High-Tech Bridge SA
|
|
2014-09-25
|
|
Nucom ADSL ADSLR5000UN - ISP Credentials Disclosure
|
34 |
WEB
|
Sebastián Magof
|
|
2009-08-21
|
|
HotScripts Type PHP Clone Script - 'lostpassword.php?msg' Cross-Site Scripting
|
27 |
WEB
|
Moudi
|
|
2009-08-21
|
|
HotScripts Type PHP Clone Script - 'index.php?msg' Cross-Site Scripting
|
24 |
WEB
|
Moudi
|
|
2009-08-21
|
|
HotScripts Type PHP Clone Script - 'feedback.php?msg' Cross-Site Scripting
|
26 |
WEB
|
Moudi
|
|
2010-09-27
|
|
Horde IMP Webmail 4.3.7 - 'fetchmailprefs.php' HTML Injection
|
23 |
WEB
|
Moritz Naumann
|
|
2009-07-17
|
|
Honest Traffic - 'msg' Cross-Site Scripting
|
26 |
WEB
|
Moudi
|
|
2009-07-21
|
|
PHP Scripts Now Hangman - 'index.php?letters' Cross-Site Scripting
|
25 |
WEB
|
Moudi
|
|
2009-07-21
|
|
PHP Scripts Now Hangman - 'index.php?n' SQL Injection
|
25 |
WEB
|
Moudi
|
|
2010-09-27
|
|
MySITE - SQL Injection / Cross-Site Scripting
|
26 |
WEB
|
MustLive
|
|
2014-09-25
|
|
Cart Engine 3.0 - Multiple Vulnerabilities
|
26 |
WEB
|
Quantum Leap
|
|
2014-09-25
|
|
OSClass 3.4.1 - 'index.php' Local File Inclusion
|
24 |
WEB
|
Netsparker
|
|
2014-09-25
|
|
WordPress Plugin Login Widget With ShortCode 3.1.1 - Multiple Vulnerabilities
|
22 |
WEB
|
dxw
|
|
2014-09-24
|
|
webEdition 6.3.8.0 (SVN-Revision: 6985) - Directory Traversal
|
24 |
WEB
|
High-Tech Bridge SA
|
|
2014-09-24
|
|
Restaurant Script (PizzaInn Project) - Persistent Cross-Site Scripting
|
22 |
WEB
|
Kenneth F. Belva
|
|
2014-09-24
|
|
Glype 1.4.9 - Local Address Filter Bypass
|
25 |
WEB
|
Securify
|
|
2014-09-24
|
|
Glype 1.4.9 - Cookie Injection Directory Traversal Local File Inclusion
|
22 |
WEB
|
Securify
|
|
2014-09-24
|
|
Joomla! Component com_macgallery 1.5 - Arbitrary File Download
|
19 |
WEB
|
Claudio Viviani
|
|
2014-09-24
|
|
Joomla! Component com_facegallery 1.0 - Multiple Vulnerabilities
|
22 |
WEB
|
Claudio Viviani
|
|
2014-09-24
|
|
Onlineon E-Ticaret - Database Disclosure
|
25 |
WEB
|
ZoRLu
|
|
2014-09-24
|
|
ZYXEL Prestig P-660HNU-T1 - ISP Credentials Disclosure
|
26 |
WEB
|
Sebastián Magof
|
|
2009-07-21
|
|
CJ Dynamic Poll Pro 2.0 - 'admin_index.php' Cross-Site Scripting
|
21 |
WEB
|
Moudi
|
|
2009-07-21
|
|
Classified Linktrader Script - 'addlink.php' SQL Injection
|
25 |
WEB
|
Moudi
|
|
2014-09-23
|
|
LittleSite 0.1 - 'index.php' Local File Inclusion
|
21 |
WEB
|
Eolas_Gadai
|
|
2009-07-20
|
|
Web TV - 'chn' Cross-Site Scripting
|
25 |
WEB
|
Moudi
|
|
2009-07-20
|
|
YourFreeWorld Ultra Classifieds - 'subclass.php?cname' Cross-Site Scripting
|
22 |
WEB
|
Moudi
|
|
2009-07-20
|
|
YourFreeWorld Ultra Classifieds - 'listads.php' Multiple Cross-Site Scripting Vulnerabilities
|
22 |
WEB
|
Moudi
|
|
2009-07-20
|
|
Proxy List Script - 'index.php' Cross-Site Scripting
|
24 |
WEB
|
Moudi
|
|
2009-07-20
|
|
MyWeight 1.0 - 'user_login.php' Multiple Cross-Site Scripting Vulnerabilities
|
21 |
WEB
|
Moudi
|
|
2009-07-20
|
|
MyWeight 1.0 - 'user_forgot_pwd_form.php?info' Cross-Site Scripting
|
22 |
WEB
|
Moudi
|
|
2009-07-20
|
|
MyWeight 1.0 - 'user_addfood.php?date' Cross-Site Scripting
|
20 |
WEB
|
Moudi
|
|
2009-07-20
|
|
GejoSoft Image Hosting Community - Cross-Site Scripting
|
24 |
WEB
|
Moudi
|
|
2009-07-20
|
|
EZodiak - 'index.php' Cross-Site Scripting
|
24 |
WEB
|
Moudi
|
|
2009-08-20
|
|
EZArticles - 'articles.php' Cross-Site Scripting
|
22 |
WEB
|
Moudi
|
|
2009-07-20
|
|
DragDropCart - 'productdetail.php?product' Cross-Site Scripting
|
24 |
WEB
|
Moudi
|
|
2009-07-20
|
|
DragDropCart - 'login.php?redirect' Cross-Site Scripting
|
20 |
WEB
|
Moudi
|
|
2009-07-20
|
|
DragDropCart - 'search.php?search' Cross-Site Scripting
|
22 |
WEB
|
Moudi
|
|
2009-07-20
|
|
DragDropCart - 'index.php?search' Cross-Site Scripting
|
22 |
WEB
|
Moudi
|
|
2009-07-20
|
|
DragDropCart - '/includes/ajax/getstate.php?prefix' Cross-Site Scripting
|
26 |
WEB
|
Moudi
|
|
2009-07-20
|
|
DragDropCart - '/assets/js/ddcart.php?sid' Cross-Site Scripting
|
25 |
WEB
|
Moudi
|
|
2014-09-20
|
|
ClassApps SelectSurvey.net - Multiple SQL Injections
|
27 |
WEB
|
BillV-Lists
|
|
2014-09-20
|
|
Livefyre LiveComments Plugin - Persistent Cross-Site Scripting
|
24 |
WEB
|
Brij Kishore Mishra
|
|
2014-09-20
|
|
M/Monit 3.3.2 - Cross-Site Request Forgery
|
27 |
WEB
|
Dolev Farhi
|
|
2014-09-20
|
|
vBulletin 4.x Verify Email Before Registration Plugin - SQL Injection
|
30 |
WEB
|
Dave
|
|
2009-07-20
|
|
AdQuick - 'account.php' Cross-Site Scripting
|
24 |
WEB
|
Moudi
|
|
2009-08-17
|
|
Freelancers - 'post_resume.php?jobid' Cross-Site Scripting
|
25 |
WEB
|
Moudi
|
|
2009-08-17
|
|
Freelancers - 'placebid.php?id' Cross-Site Scripting
|
24 |
WEB
|
Moudi
|
|
2009-07-20
|
|
Freewebscriptz HUBScript - 'single_winner1.php' Cross-Site Scripting
|
25 |
WEB
|
Moudi
|
|
2009-08-21
|
|
Paypal Shopping Cart Script - 'index.php?cid' SQL Injection
|
25 |
WEB
|
599eme Man
|
|
2009-08-21
|
|
Paypal Shopping Cart Script - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
|
25 |
WEB
|
599eme Man
|
|
2009-07-20
|
|
Astrology - 'celebrities.php' Cross-Site Scripting
|
25 |
WEB
|
Moudi
|
|
2010-09-23
|
|
Joomla! Component com_tax - 'eid' SQL Injection
|
28 |
WEB
|
FL0RiX
|
|
2009-08-17
|
|
RadAFFILIATE Links - 'index.php' Cross-Site Scripting
|
25 |
WEB
|
Moudi
|
|
2009-07-21
|
|
MyDLstore Meta Search Engine Script 1.0 - 'url' Remote File Inclusion
|
22 |
WEB
|
Moudi
|
|
2009-07-21
|
|
APBook 1.3 - Admin Login Multiple SQL Injections
|
26 |
WEB
|
n3w7u
|
|
2009-07-21
|
|
MyDLstore Pixel Ad Script - 'payment.php' Cross-Site Scripting
|
23 |
WEB
|
Moudi
|
|
2009-07-24
|
|
Million Dollar Pixel Ads - Cross-Site Scripting / SQL Injection
|
26 |
WEB
|
Moudi
|
|
2009-07-24
|
|
TurnkeySetup Net Marketing 6.0 - 'faqs.php' Cross-Site Scripting
|
26 |
WEB
|
Moudi
|
|
2009-07-24
|
|
SkaLinks 1.5 - 'cat' Multiple Cross-Site Scripting Vulnerabilities
|
26 |
WEB
|
Moudi
|
|
2009-07-24
|
|
WebShop Hun 1.062s - '/index.php' Local File Inclusion / Cross-Site Scripting
|
24 |
WEB
|
u.f.
|
|
2010-09-23
|
|
OpenText LiveLink 9.7.1 - Multiple Cross-Site Scripting Vulnerabilities
|
22 |
WEB
|
Alejandro Ramos
|
|
2009-07-24
|
|
Clipbucket 1.7.1 - Multiple SQL Injections
|
23 |
WEB
|
Qabandi
|
|
2009-08-27
|
|
Free Arcade Script 1.0 - 'search' Cross-Site Scripting
|
21 |
WEB
|
599eme Man
|
|
2009-07-27
|
|
WebAsyst Shop-Script PREMIUM - 'SearchString' Cross-Site Scripting
|
23 |
WEB
|
u.f.
|
|
2010-09-21
|
|
@Mail 6.1.9 - 'MailType' Cross-Site Scripting
|
26 |
WEB
|
Vicente Aguilera Diaz
|
|
2009-08-27
|
|
Smart Magician Blog 1.0 - Multiple SQL Injections
|
21 |
WEB
|
Evil-Cod3r
|
|
2009-07-27
|
|
Basilic 1.5.13 - 'index.php' Cross-Site Scripting
|
27 |
WEB
|
PLATEN
|
|
2009-08-27
|
|
Smart ASP Survey - 'catid' SQL Injection
|
25 |
WEB
|
Moudi
|
|
2010-09-20
|
|
Joomla! Component com_spain - 'nv' SQL Injection
|
21 |
WEB
|
FL0RiX
|
|
2009-08-30
|
|
e-soft24 Article Directory Script - 'q' Cross-Site Scripting
|
24 |
WEB
|
599eme Man
|
|
2014-09-16
|
|
USB&WiFi Flash Drive 1.3 iOS - Code Execution
|
29 |
WEB
|
Vulnerability-Lab
|
|
2014-09-16
|
|
WordPress Plugin Slideshow Gallery 1.4.6 - Arbitrary File Upload
|
26 |
WEB
|
Claudio Viviani
|
|
2014-09-16
|
|
ZTE ZXDSL-931VII - Configuration Dump
|
29 |
WEB
|
L0ukanik0-s S0kniaku0l
|
|
2009-08-29
|
|
WebStatCaffe - '/stat/referer.php?date' Cross-Site Scripting
|
27 |
WEB
|
Moudi
|
|
2009-08-29
|
|
WebStatCaffe - '/stat/pageviewerschart.php?date' Cross-Site Scripting
|
27 |
WEB
|
Moudi
|
|
2009-08-29
|
|
WebStatCaffe - '/stat/pageviewers.php?date' Cross-Site Scripting
|
25 |
WEB
|
Moudi
|
|
2009-08-29
|
|
WebStatCaffe - '/stat/mostvisitpagechart.php?nopagesmost' Cross-Site Scripting
|
25 |
WEB
|
Moudi
|
|
2009-08-29
|
|
WebStatCaffe - '/stat/visitorduration.php?nodayshow' Cross-Site Scripting
|
26 |
WEB
|
Moudi
|
|
2009-08-29
|
|
WebStatCaffe - '/stat/mostvisitpage.php?nodayshow' Cross-Site Scripting
|
26 |
WEB
|
Moudi
|
|
2009-08-28
|
|
Tukanas Classifieds 1.0 - 'index.php' SQL Injection
|
27 |
WEB
|
Moudi
|
|
2014-09-15
|
|
CacheGuard-OS 5.7.7 - Cross-Site Request Forgery
|
27 |
WEB
|
William Costa
|
|
2014-09-15
|
|
ALCASAR 2.8.1 - Remote Code Execution
|
29 |
WEB
|
eF
|
|
2014-09-15
|
|
Briefcase 4.0 iOS - Code Execution / File Inclusion
|
27 |
WEB
|
Vulnerability-Lab
|
|
2009-08-29
|
|
x10 MP3 Automatic Search Engine 1.6.5b - '/adult/video_listing.php?key' Cross-Site Scripting
|
28 |
WEB
|
Moudi
|
|
2009-08-29
|
|
x10 MP3 Automatic Search Engine 1.6.5b - 'lyrics.php?id' Cross-Site Scripting
|
26 |
WEB
|
Moudi
|
|
2009-08-29
|
|
x10 MP3 Automatic Search Engine 1.6.5b - 'info.php?name' Cross-Site Scripting
|
29 |
WEB
|
Moudi
|
|
2009-08-29
|
|
x10 MP3 Automatic Search Engine 1.6.5b - 'embed.php?name' Cross-Site Scripting
|
31 |
WEB
|
Moudi
|
|
2009-08-29
|
|
x10 MP3 Automatic Search Engine 1.6.5b - 'video_listing.php?key' Cross-Site Scripting
|
28 |
WEB
|
Moudi
|
|
2009-08-29
|
|
x10 MP3 Automatic Search Engine 1.6.5b - '/templates/header1.php?id' Cross-Site Scripting
|
28 |
WEB
|
Moudi
|
|
2009-08-29
|
|
x10 MP3 Automatic Search Engine 1.6.5 - 'linkvideos_listing.php?category' Cross-Site Scripting
|
33 |
WEB
|
Moudi
|
|
2009-08-29
|
|
x10 MP3 Automatic Search Engine 1.6.5 - '/includes/video_ad.php?pic_id' Cross-Site Scripting
|
28 |
WEB
|
Moudi
|
|
2009-08-28
|
|
Open Classifieds - Multiple Cross-Site Scripting Vulnerabilities
|
30 |
WEB
|
Moudi
|
|
2010-09-17
|
|
e107 0.7.23 - Multiple SQL Injections
|
26 |
WEB
|
High-Tech Bridge SA
|
|
2009-08-30
|
|
e-Soft24 PTC Script 1.2 - 'login.php' Multiple Cross-Site Scripting Vulnerabilities
|
25 |
WEB
|
599eme Man
|
|
2009-08-30
|
|
e-Soft24 Jokes Portal Script Seo 1.0 - Multiple Cross-Site Scripting Vulnerabilities
|
27 |
WEB
|
599eme Man
|
|
2009-08-30
|
|
e-Soft24 Flash Games Script 1.0 - Cross-Site Scripting
|
24 |
WEB
|
599eme Man
|
|
2010-09-17
|
|
Netautor Professional 5.5 - 'login2.php' Cross-Site Scripting
|
30 |
WEB
|
Gjoko Krstic
|
|
2009-08-03
|
|
Blog Ink (Blink) - Multiple SQL Injections
|
28 |
WEB
|
Drosophila
|
|
2009-08-06
|
|
Silurus Classifieds - 'search.php?keywords' Cross-Site Scripting
|
26 |
WEB
|
Moudi
|
|
2009-08-06
|
|
Silurus Classifieds - 'wcategory.php?ID' Cross-Site Scripting
|
26 |
WEB
|
Moudi
|
|
2009-08-06
|
|
Silurus Classifieds - 'category.php?ID' Cross-Site Scripting
|
26 |
WEB
|
Moudi
|
|
2009-08-06
|
|
AJ Auction Pro OOPD 3.0 - 'txtkeyword' Cross-Site Scripting
|
29 |
WEB
|
599eme Man
|
|
2010-09-15
|
|
ChillyCMS 2.3.4.3 - Arbitrary File Upload
|
26 |
WEB
|
John Leitch
|
|
2010-09-15
|
|
Mollify 1.6 - 'index.php' Cross-Site Scripting
|
27 |
WEB
|
John Leitch
|
|
2010-09-15
|
|
CMScout IBrowser TinyMCE Plugin 2.3.4.3 - Local File Inclusion
|
23 |
WEB
|
John Leitch
|
|
2014-09-12
|
|
Joomla! Component com_formmaker 3.4 - SQL Injection
|
26 |
WEB
|
Claudio Viviani
|
|
2010-09-15
|
|
NWS-Classifieds - 'cmd' Local File Inclusion
|
27 |
WEB
|
John Leitch
|
|
2009-08-06
|
|
Willscript Auction Website Script - 'category.php' SQL Injection
|
27 |
WEB
|
599eme Man
|
|
2010-09-15
|
|
Multple I-Escorts Products - 'escorts_search.php' Cross-Site Scripting
|
30 |
WEB
|
599eme Man
|
|
2009-08-08
|
|
SpiceWorks - 'query' Cross-Site Scripting
|
29 |
WEB
|
Adam Baldwin
|
