|
2010-08-05
|
|
PHPFinance 0.6 - '/group.php' SQL Injection / HTML Injection
|
24 |
WEB
|
skskilL
|
|
2014-08-25
|
|
ManageEngine Password Manager - MetadataServlet.dat SQL Injection (Metasploit)
|
23 |
WEB
|
Pedro Ribeiro
|
|
2014-08-25
|
|
Innovaphone PBX Admin-GUI - Cross-Site Request Forgery
|
24 |
WEB
|
Rainer Giedat
|
|
2014-08-25
|
|
PHP Stock Management System 1.02 - Multiple Persistent Cross-Site Scripting Vulnerabilities
|
23 |
WEB
|
Ragha Deepthi K R
|
|
2009-10-08
|
|
OpenSolution Quick.Cart - Local File Inclusion / Cross-Site Scripting
|
27 |
WEB
|
kl3ryk
|
|
2009-10-04
|
|
PHP168 Template Editor - 'Filename' Directory Traversal
|
25 |
WEB
|
esnra
|
|
2014-08-03
|
|
RaidenTunes - 'music_out.php' Cross-Site Scripting
|
23 |
WEB
|
LiquidWorm
|
|
2009-09-25
|
|
Activedition - '/activedition/aelogin.asp' Multiple Cross-Site Scripting Vulnerabilities
|
26 |
WEB
|
Richard Brain
|
|
2010-07-03
|
|
FuseTalk 3.2/4.0 - Multiple Cross-Site Scripting Vulnerabilities
|
26 |
WEB
|
Juan Manuel Garcia
|
|
2010-08-03
|
|
Joomla! Component com_jigsaw - 'Controller' Directory Traversal
|
27 |
WEB
|
FL0RiX
|
|
2010-08-02
|
|
MyIT CRM - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
|
25 |
WEB
|
Juan Manuel Garcia
|
|
2010-07-30
|
|
Sourcefabric Campsite - Multiple Cross-Site Scripting Vulnerabilities
|
23 |
WEB
|
High-Tech Bridge SA
|
|
2010-07-27
|
|
Impact Software AdPeeps - Cross-Site Scripting / HTML Injection
|
21 |
WEB
|
Matt
|
|
2010-07-28
|
|
SPIP 2.1 - 'var_login' Cross-Site Scripting
|
24 |
WEB
|
dotsafe.fr
|
|
2010-07-28
|
|
Cetera eCommerce - Multiple Cross-Site Scripting / HTML Injection Vulnerabilities
|
22 |
WEB
|
MustLive
|
|
2010-07-28
|
|
Cetera eCommerce - Multiple SQL Injections
|
21 |
WEB
|
MustLive
|
|
2010-07-28
|
|
Jira 4.0.1 - Cross-Site Scripting / Information Disclosure
|
19 |
WEB
|
MaXe
|
|
2010-07-27
|
|
Social Media - 'index.php' Local File Inclusion
|
24 |
WEB
|
Harri Johansson
|
|
2014-08-21
|
|
MyBB 1.8 Beta 3 - Multiple Vulnerabilities
|
21 |
WEB
|
DemoLisH B3yaZ
|
|
2009-12-22
|
|
Active Business Directory 2 - 'searchadvance.asp' Cross-Site Scripting
|
19 |
WEB
|
Andrea Bocchetti
|
|
2010-07-26
|
|
SyndeoCMS 2.9 - Multiple HTML Injection Vulnerabilities
|
21 |
WEB
|
High-Tech Bridge SA
|
|
2009-12-04
|
|
Clixint Technologies DPI - Cross-Site Scripting
|
17 |
WEB
|
anonymous
|
|
2010-10-04
|
|
Portili Personal and Team Wiki 1.14 - Multiple Vulnerabilities (2)
|
22 |
WEB
|
Abysssec
|
|
2009-10-06
|
|
e-Courier CMS - 'UserGUID' Multiple Cross-Site Scripting Vulnerabilities
|
22 |
WEB
|
BugsNotHugs
|
|
2010-07-26
|
|
Joomla! Component FreiChat 1.0/2.x - HTML Injection
|
20 |
WEB
|
nag_sunny
|
|
2010-07-25
|
|
MC Content Manager 10.1 - SQL Injection / Cross-Site Scripting
|
23 |
WEB
|
MustLive
|
|
2010-07-23
|
|
SAP NetWeaver 6.4/7.0 - 'wsnavigator' Cross-Site Scripting
|
25 |
WEB
|
Alexandr Polyakov
|
|
2009-10-28
|
|
Piwigo 2.0 - 'comments.php' Multiple Cross-Site Scripting Vulnerabilities
|
23 |
WEB
|
Andrew Paterson
|
|
2009-11-02
|
|
Stratek Web Design Twilight CMS 4.0 - 'calendar' Cross-Site Scripting
|
19 |
WEB
|
Vladimir Vorontsov
|
|
2010-07-22
|
|
Claus Muus Spitfire 1.0.336 - Multiple Cross-Site Scripting Vulnerabilities
|
17 |
WEB
|
High-Tech Bridge SA
|
|
2014-08-18
|
|
Tenda A5s Router 3.02.05_CN - Authentication Bypass
|
21 |
WEB
|
zixian
|
|
2009-12-15
|
|
Scriptsez Ez FAQ Maker 1.0 - Cross-Site Scripting / Cross-Site Request Forgery
|
22 |
WEB
|
Milos Zivanovic
|
|
2009-12-14
|
|
TenderSystem 0.9.5 - 'main.php' Multiple Local File Inclusions
|
20 |
WEB
|
Packetdeath
|
|
2010-07-19
|
|
SnowFlake CMS 0.9.5 Beta - 'uid' SQL Injection
|
20 |
WEB
|
Dinesh Arora
|
|
2009-12-16
|
|
BOLDfx Recipe Script 5.0 - Multiple Remote Vulnerabilities
|
22 |
WEB
|
Milos Zivanovic
|
|
2009-12-16
|
|
BOLDfx eUploader 3.1.1 - 'admin.php' Multiple Remote Vulnerabilities
|
19 |
WEB
|
Milos Zivanovic
|
|
2010-07-15
|
|
Sourcefabric Campsite Articles - HTML Injection
|
22 |
WEB
|
D4rk357
|
|
2010-07-18
|
|
YACS CMS 10.5.27 - 'context[path_to_root]' Remote File Inclusion
|
21 |
WEB
|
eidelweiss
|
|
2010-07-18
|
|
iOffice 0.1 - 'parametre' Remote Command Execution
|
23 |
WEB
|
Marshall Whittaker
|
|
2009-12-17
|
|
jCore - 'search' Cross-Site Scripting
|
23 |
WEB
|
loneferret
|
|
2009-12-17
|
|
Pre Jobo.NET - Multiple SQL Injections
|
23 |
WEB
|
bi0
|
|
2007-12-17
|
|
MOJO IWms 7 - 'default.asp' Cookie Manipulation
|
29 |
WEB
|
cp77fk4r
|
|
2009-12-14
|
|
Ez Poll Hoster - Multiple Cross-Site Scripting Vulnerabilities
|
21 |
WEB
|
Milos Zivanovic
|
|
2009-09-21
|
|
WX-Guestbook 1.1.208 - SQL Injection / HTML Injection
|
22 |
WEB
|
learn3r
|
|
2010-07-15
|
|
Pligg CMS 1.0.4 - 'search.php' Cross-Site Scripting
|
24 |
WEB
|
High-Tech Bridge SA
|
|
2010-07-15
|
|
Pixie 1.0.4 - HTML Injection / Cross-Site Scripting
|
25 |
WEB
|
High-Tech Bridge SA
|
|
2010-07-15
|
|
Gekko Web Builder 9.0 - 'index.php' Cross-Site Scripting
|
24 |
WEB
|
High-Tech Bridge SA
|
|
2014-08-14
|
|
WordPress Plugin Disqus 2.7.5 - Cross-Site Request Forgery (Admin Persistent) / Cross-Site Scripting
|
28 |
WEB
|
Nik Cubrilovic
|
|
2010-07-15
|
|
FestOS 2.3 - 'contents' Cross-Site Scripting
|
19 |
WEB
|
High-Tech Bridge SA
|
|
2010-07-15
|
|
DSite CMS 4.81 - 'modmenu.php' Cross-Site Scripting
|
21 |
WEB
|
High-Tech Bridge SA
|
|
2010-07-15
|
|
PHPWCMS 1.4.5 - 'PHPwcms.php' Cross-Site Scripting
|
26 |
WEB
|
High-Tech Bridge SA
|
|
2010-07-15
|
|
Spitfire 1.0.381 - Cross-Site Scripting / Cross-Site Request Forgery
|
21 |
WEB
|
Nijel the Destroyer
|
|
2009-12-14
|
|
Ez Cart - 'index.php' Cross-Site Scripting
|
20 |
WEB
|
anti-gov
|
|
2009-12-13
|
|
Zeecareers 2.0 - Cross-Site Scripting / Authentication Bypass
|
26 |
WEB
|
bi0
|
|
2009-12-13
|
|
WS Interactive Automne 4.0 - '228-recherche.php' Cross-Site Scripting
|
23 |
WEB
|
loneferret
|
|
2009-12-14
|
|
The Next Generation of Genealogy Sitebuilding - 'searchform.php' Cross-Site Scripting
|
22 |
WEB
|
bi0
|
|
2014-08-09
|
|
TomatoCart 1.x - SQL Injection
|
18 |
WEB
|
Breaking.Technology
|
|
2014-08-09
|
|
Easy FTP Pro 4.2 iOS - Command Injection
|
27 |
WEB
|
Vulnerability-Lab
|
|
2014-08-09
|
|
PhotoSync Wifi & Bluetooth 1.0 - Local File Inclusion
|
21 |
WEB
|
Vulnerability-Lab
|
|
2010-07-13
|
|
Diem 5.1.2 - Multiple Cross-Site Scripting Vulnerabilities
|
21 |
WEB
|
High-Tech Bridge SA
|
|
2010-07-11
|
|
CMS Made Simple Module Antz Toolkit 1.02 - Arbitrary File Upload
|
23 |
WEB
|
John Leitch
|
|
2010-07-11
|
|
CMS Made Simple 1.8 - 'default_cms_lang' Local File Inclusion
|
19 |
WEB
|
John Leitch
|
|
2010-07-11
|
|
CMS Made Simple Module Download Manager 1.4.1 - Arbitrary File Upload
|
21 |
WEB
|
John Leitch
|
|
2010-07-11
|
|
CSSTidy 1.3 - 'css_optimiser.php' Cross-Site Scripting
|
19 |
WEB
|
John Leitch
|
|
2010-07-11
|
|
RunCMS 2.1 - 'magpie_debug.php' Cross-Site Scripting
|
25 |
WEB
|
John Leitch
|
|
2010-07-09
|
|
WordPress Plugin Firestats 1.6.5 - Multiple Cross-Site Scripting Vulnerabilities
|
19 |
WEB
|
Jelmer de Hen
|
|
2010-07-12
|
|
dotDefender 4.02 - 'clave' Cross-Site Scripting
|
22 |
WEB
|
David K
|
|
2010-07-10
|
|
eliteCMS 1.01 - Multiple Cross-Site Scripting Vulnerabilities
|
23 |
WEB
|
10n1z3d
|
|
2010-07-10
|
|
Joomla! Component Rapid-Recipe - HTML Injection
|
22 |
WEB
|
Sid3^effects
|
|
2010-07-11
|
|
Mac's CMS 1.1.4 - 'SearchString' Cross-Site Scripting
|
24 |
WEB
|
10n1z3d
|
|
2009-12-21
|
|
Web Cocoon simpleCMS - 'show.php' SQL Injection
|
22 |
WEB
|
anonymous
|
|
2009-12-22
|
|
pragmaMX 0.1.11 - 'modules.php' Multiple SQL Injections
|
21 |
WEB
|
Hadi Kiamarsi
|
|
2010-07-09
|
|
Yappa 3.1.2 - 'yappa.php' Multiple Remote Command Execution Vulnerabilities
|
25 |
WEB
|
Sn!pEr.S!Te Hacker
|
|
2010-07-09
|
|
SimpNews 2.47.3 - Multiple Cross-Site Scripting Vulnerabilities
|
21 |
WEB
|
MustLive
|
|
2010-12-13
|
|
Articlems 2.0 - 'c[]' Cross-Site Scripting
|
28 |
WEB
|
Packetdeath
|
|
2010-07-08
|
|
osCSS 1.2.2 - 'page' Cross-Site Scripting
|
20 |
WEB
|
High-Tech Bridge SA
|
|
2009-12-13
|
|
Model Agency Manager - 'search_process.php' Cross-Site Scripting
|
20 |
WEB
|
bi0
|
|
2010-07-09
|
|
Real Estate Manager 1.0.1 - 'index.php' Cross-Site Scripting
|
24 |
WEB
|
bi0
|
|
2010-07-04
|
|
phpFaber CMS 2.0.5 - Multiple Cross-Site Scripting Vulnerabilities
|
23 |
WEB
|
prodigy
|
|
2014-08-06
|
|
Feng Office - Persistent Cross-Site Scripting
|
25 |
WEB
|
Juan Sacco
|
|
2014-08-06
|
|
Pro Chat Rooms 8.2.0 - Multiple Vulnerabilities
|
27 |
WEB
|
Mike Manzotti
|
|
2014-08-06
|
|
HybridAuth 2.2.2 - Remote Code Execution
|
21 |
WEB
|
@u0x
|
|
2010-07-07
|
|
Worxware DCP-Portal 7.0 - Multiple Cross-Site Scripting Vulnerabilities
|
23 |
WEB
|
Andrei Rimsa Alvares
|
|
2010-07-07
|
|
RunCMS 2.1 - 'check.php' Cross-Site Scripting
|
27 |
WEB
|
Andrei Rimsa Alvares
|
|
2010-07-07
|
|
Exponent CMS 0.97 - 'Slideshow.js.php' Cross-Site Scripting
|
21 |
WEB
|
Andrei Rimsa Alvares
|
|
2014-08-04
|
|
FreeDisk 1.01 iOS - Multiple Vulnerabilities
|
34 |
WEB
|
Vulnerability-Lab
|
|
2014-08-04
|
|
Video WiFi Transfer 1.01 - Directory Traversal
|
29 |
WEB
|
Vulnerability-Lab
|
|
2010-07-05
|
|
odCMS 1.07 - 'archive.php' Cross-Site Scripting
|
28 |
WEB
|
John Leitch
|
|
2010-07-05
|
|
Bitweaver 2.7 - 'fImg' Cross-Site Scripting
|
25 |
WEB
|
John Leitch
|
|
2010-07-05
|
|
NewsOffice 2.0.18 - 'news_show.php' Cross-Site Scripting
|
28 |
WEB
|
John Leitch
|
|
2010-07-06
|
|
NTSOFT BBS E-Market Professional - Multiple Cross-Site Scripting Vulnerabilities (2)
|
26 |
WEB
|
Ivan Sanchez
|
|
2010-07-05
|
|
SocialABC NetworX 1.0.3 - Arbitrary File Upload / Cross-Site Scripting
|
27 |
WEB
|
John Leitch
|
|
2010-07-03
|
|
cPanel 11.25 - Cross-Site Request Forgery
|
28 |
WEB
|
G0D-F4Th3r
|
|
2014-08-03
|
|
TP-Link TL-WR740N v4 Router (FW-Ver. 3.16.6 Build 130529 Rel.47286n) - Command Execution
|
25 |
WEB
|
Christoph Kuhl
|
|
2010-07-05
|
|
Orbis CMS 1.0.2 - 'editor-body.php' Cross-Site Scripting
|
24 |
WEB
|
John Leitch
|
|
2010-07-06
|
|
i-Net Solution Matrimonial Script 2.0.3 - 'alert.php' Cross-Site Scripting
|
28 |
WEB
|
Andrea Bocchetti
|
|
2010-07-05
|
|
Joomla! Component Canteen 1.0 - Local File Inclusion
|
27 |
WEB
|
Drosophila
|
|
2009-12-25
|
|
AL-Caricatier 2.5 - 'comment.php' Cross-Site Scripting
|
23 |
WEB
|
indoushka
|
|
2014-08-02
|
|
ArticleFR 11.06.2014 - 'data.php' Privilege Escalation
|
29 |
WEB
|
High-Tech Bridge SA
|
|
2014-08-02
|
|
Photo WiFi Transfer 1.01 - Directory Traversal
|
27 |
WEB
|
Vulnerability-Lab
|
|
2014-08-02
|
|
ISPConfig 3.0.54p1 - (Authenticated) Admin Privilege Escalation
|
28 |
WEB
|
mra
|
|
2014-08-02
|
|
TigerCom iFolder+ 1.2 iOS - Multiple Vulnerabilities
|
21 |
WEB
|
Vulnerability-Lab
|
|
2014-08-02
|
|
Status2k Server Monitoring Software - Multiple Vulnerabilities
|
24 |
WEB
|
Shayan S
|
|
2014-08-02
|
|
Sphider Search Engine - Multiple Vulnerabilities
|
24 |
WEB
|
Shayan S
|
|
2010-07-02
|
|
Xplico 0.5.7 - 'add.ctp' Cross-Site Scripting (2)
|
23 |
WEB
|
Marcos Garcia & Maximiliano Soler
|
|
2010-07-01
|
|
ReCMS - 'users_lang' Directory Traversal
|
25 |
WEB
|
Locu
|
|
2010-07-01
|
|
Wiki Web Help 0.2.7 - Cross-Site Scripting / HTML Injection
|
22 |
WEB
|
John Leitch
|
|
2010-07-01
|
|
Flatnux 2010-06.09 - 'find' Cross-Site Scripting
|
25 |
WEB
|
ITSecTeam
|
|
2010-07-01
|
|
DPScms - 'q' SQL Injection / Cross-Site Scripting
|
28 |
WEB
|
Ariko-Security
|
|
2009-12-30
|
|
LiveZilla 3.1.8.3 - Multiple Cross-Site Scripting Vulnerabilities
|
24 |
WEB
|
MaXe
|
|
2010-06-29
|
|
ArcademSX 2.904 - 'cat' Cross-Site Scripting
|
22 |
WEB
|
Th3 RDX
|
|
2010-06-30
|
|
System CMS Contentia - 'news.php' SQL Injection
|
25 |
WEB
|
GlaDiaT0R
|
|
2010-06-29
|
|
TornadoStore 1.4.3 - SQL Injection / HTML Injection
|
23 |
WEB
|
Lucas Apa
|
|
2010-06-29
|
|
Kryn.cms 6.0 - Cross-Site Request Forgery / HTML Injection
|
19 |
WEB
|
TurboBorland
|
|
2010-06-29
|
|
Miyabi CGI Tools 1.02 - 'index.pl' Remote Command Execution
|
26 |
WEB
|
Marshall Whittaker
|
|
2010-06-29
|
|
Grafik CMS - '/admin.php' SQL Injection / Cross-Site Scripting
|
21 |
WEB
|
High-Tech Bridge SA
|
|
2010-06-29
|
|
Iatek PortalApp 3.3/4.0 - 'login.asp' Multiple Cross-Site Scripting Vulnerabilities
|
25 |
WEB
|
High-Tech Bridge SA
|
|
2010-06-29
|
|
CANDID - '/image/view.php?image_id' Cross-Site Scripting
|
24 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-29
|
|
CANDID - '/image/view.php?image_id' SQL Injection
|
22 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-28
|
|
V-EVA Classified Script 5.1 - 'classified_img.php' SQL Injection
|
24 |
WEB
|
Sid3^effects
|
|
2010-06-28
|
|
Clix'N'Cash Clone 2010 - 'index.php' SQL Injection
|
25 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-28
|
|
eBay Clone Script 2010 - 'showcategory.php' SQL Injection
|
25 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-28
|
|
MySpace Clone 2010 - SQL Injection / Cross-Site Scripting
|
23 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-29
|
|
PHP Bible Search - 'bible.php?chapter' Cross-Site Scripting
|
22 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-29
|
|
PHP Bible Search - 'bible.php?chapter' SQL Injection
|
25 |
WEB
|
L0rd CrusAd3r
|
