|
2008-08-21
|
|
FAR-PHP 1.0 - 'index.php' Local File Inclusion
|
15 |
WEB
|
Beenu Arora
|
|
2008-08-20
|
|
vBulletin 3.6.10/3.7.2 - '$newpm[title]' Cross-Site Scripting
|
13 |
WEB
|
Core Security
|
|
2008-08-21
|
|
Simasy CMS - 'id' SQL Injection
|
13 |
WEB
|
r45c4l
|
|
2008-08-21
|
|
Scripts4Profit DXShopCart 4.30 - 'pid' SQL Injection
|
12 |
WEB
|
Hussin X
|
|
2014-03-15
|
|
Church Edit - Blind SQL Injection
|
13 |
WEB
|
ThatIcyChill
|
|
2008-06-19
|
|
Folder Lock 5.9.5 - Weak Password Encryption Local Information Disclosure
|
11 |
WEB
|
Charalambous Glafkos
|
|
2008-08-20
|
|
YourFreeWorld Ad-Exchange Script - 'id' SQL Injection
|
12 |
WEB
|
Hussin X
|
|
2008-08-19
|
|
Vanilla 1.1.4 - HTML Injection / Cross-Site Scripting
|
12 |
WEB
|
GulfTech Security
|
|
2008-08-18
|
|
K Web CMS - 'sayfala.asp' SQL Injection
|
11 |
WEB
|
baltazar
|
|
2008-08-18
|
|
itMedia - Multiple SQL Injections
|
10 |
WEB
|
baltazar
|
|
2014-03-14
|
|
Synology DSM 4.3-3827 - 'article.php' Blind SQL Injection
|
12 |
WEB
|
Michael Wisniewski
|
|
2008-08-18
|
|
Ovidentia 6.6.5 - 'index.php' Cross-Site Scripting
|
11 |
WEB
|
ThE dE@Th
|
|
2008-08-18
|
|
NewsHOWLER 1.03 - Cookie Data SQL Injection
|
12 |
WEB
|
Khashayar Fereidani
|
|
2008-08-18
|
|
Freeway 1.4.1.171 - '/templates/Freeway/mainpage_modules/mainpage.php?language' Traversal Local File
|
14 |
WEB
|
Digital Security Research Group
|
|
2008-08-18
|
|
Freeway 1.4.1.171 - '/templates/Freeway/boxes/whos_online.php?language' Traversal Local File Inclusi
|
12 |
WEB
|
Digital Security Research Group
|
|
2008-08-18
|
|
Freeway 1.4.1.171 - '/templates/Freeway/boxes/loginbox.php?language' Traversal Local File Inclusion
|
12 |
WEB
|
Digital Security Research Group
|
|
2008-08-18
|
|
Freeway 1.4.1.171 - '/templates/Freeway/boxes/card1.php?language' Traversal Local File Inclusion
|
12 |
WEB
|
Digital Security Research Group
|
|
2008-08-18
|
|
Freeway 1.4.1.171 - '/includes/modules/newsdesk/newsdesk_article_require.php?language' Traversal Loc
|
12 |
WEB
|
Digital Security Research Group
|
|
2008-08-18
|
|
Freeway 1.4.1.171 - '/includes/modules/faqdesk/faqdesk_article_require.php?language' Traversal Local
|
11 |
WEB
|
Digital Security Research Group
|
|
2008-08-18
|
|
Freeway 1.4.1.171 - '/french/account_newsletters.php?language' Traversal Local File Inclusion
|
12 |
WEB
|
Digital Security Research Group
|
|
2014-03-14
|
|
Fonality trixbox - 'mac' Remote Code Injection
|
11 |
WEB
|
i-Hmx
|
|
2008-08-18
|
|
Freeway 1.4.1.171 - '/english/account.php?language' Traversal Local File Inclusion
|
14 |
WEB
|
Digital Security Research Group
|
|
2008-08-18
|
|
AWStats 6.8 - 'AWStats.pl' Cross-Site Scripting
|
11 |
WEB
|
Morgan Todd
|
|
2008-08-15
|
|
PromoProducts - 'view_product.php' Multiple SQL Injections
|
11 |
WEB
|
baltazar
|
|
2008-08-15
|
|
FipsCMS 2.1 - 'neu.asp' SQL Injection
|
16 |
WEB
|
U238
|
|
2008-08-15
|
|
FlexCMS 2.5 - 'inc-core-admin-editor-previouscolorsjs.php' Cross-Site Scripting
|
13 |
WEB
|
Dr.Crash
|
|
2008-08-15
|
|
Mambo Open Source 4.6.2 - '/mambots/editors/mostlyce/' PHP/connector.php?Query String Cross-Site Scr
|
12 |
WEB
|
Khashayar Fereidani
|
|
2008-08-15
|
|
Mambo Open Source 4.6.2 - '/administrator/popups/index3pop.php?mosConfig_sitename' Cross-Site Script
|
12 |
WEB
|
Khashayar Fereidani
|
|
2008-08-15
|
|
PHPizabi 0.848b C1 HP3 - 'id' Local File Inclusion
|
13 |
WEB
|
Lostmon
|
|
2008-08-15
|
|
mUnky 0.01 - 'index.php' Remote Code Execution
|
11 |
WEB
|
Khashayar Fereidani
|
|
2008-08-14
|
|
Openfire 3.5.2 - 'login.jsp' Cross-Site Scripting
|
12 |
WEB
|
Daniel Henninger
|
|
2008-08-13
|
|
Nortel Networks SRG V16 - 'modules.php?module' Traversal Local File Inclusion
|
15 |
WEB
|
CraCkEr
|
|
2008-08-13
|
|
Nortel Networks SRG V16 - 'admin_modules.php?module' Traversal Local File Inclusion
|
15 |
WEB
|
CraCkEr
|
|
2008-08-13
|
|
Nortel Networks SRG V16 - 'modules.php?module' Cross-Site Scripting
|
14 |
WEB
|
CraCkEr
|
|
2008-08-13
|
|
YapBB 1.2 - 'class_yapbbcooker.php' Remote File Inclusion
|
13 |
WEB
|
CraCkEr
|
|
2008-08-13
|
|
Nukeviet 2.0 - '/admin/login.php' Cookie Authentication Bypass
|
15 |
WEB
|
Ciph3r
|
|
2008-08-13
|
|
PHP-Fusion 4.01 - 'readmore.php' SQL Injection
|
15 |
WEB
|
Rake
|
|
2008-08-13
|
|
PHP Realty - 'dpage.php' SQL Injection
|
15 |
WEB
|
CraCkEr
|
|
2008-08-13
|
|
Freeway 1.4.1 - Multiple Input Validation Vulnerabilities
|
14 |
WEB
|
Digital Security Research Group
|
|
2014-03-13
|
|
Fonality trixbox - SQL Injection
|
15 |
WEB
|
Sc4nX
|
|
2014-03-13
|
|
Ubee EVW3200 - Cross-Site Request Forgery
|
16 |
WEB
|
Jeroen - IT Nerdbox
|
|
2014-03-13
|
|
Ubee EVW3200 - Multiple Persistent Cross-Site Scripting Vulnerabilities
|
17 |
WEB
|
Jeroen - IT Nerdbox
|
|
2008-08-13
|
|
Meet#Web 0.8 - 'RegRightsResource.class.php?root_path' Remote File Inclusion
|
16 |
WEB
|
Rakesh S
|
|
2008-08-13
|
|
Meet#Web 0.8 - 'RegResource.class.php?root_path' Remote File Inclusion
|
15 |
WEB
|
Rakesh S
|
|
2008-08-13
|
|
Meet#Web 0.8 - 'RegForm.class.php?root_path' Remote File Inclusion
|
15 |
WEB
|
Rakesh S
|
|
2008-08-13
|
|
Meet#Web 0.8 - 'ManagerRightsResource.class.php?root_path' Remote File Inclusion
|
15 |
WEB
|
Rakesh S
|
|
2008-08-13
|
|
Meet#Web 0.8 - 'ManagerResource.class.php?root_path' Remote File Inclusion
|
13 |
WEB
|
Rakesh S
|
|
2008-08-13
|
|
Meet#Web 0.8 - 'modules.php?root_path' Remote File Inclusion
|
13 |
WEB
|
Rakesh S
|
|
2008-08-12
|
|
IDevSpot PHPLinkExchange 1.01/1.02 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
|
13 |
WEB
|
sl4xUz
|
|
2008-08-12
|
|
Datafeed Studio 1.6.2 - 'search.php' Cross-Site Scripting
|
16 |
WEB
|
Bug Researchers Group
|
|
2008-08-12
|
|
Datafeed Studio - 'patch.php' Remote File Inclusion
|
13 |
WEB
|
Bug Researchers Group
|
|
2008-08-11
|
|
Kayako SupportSuite 3.x - '/staff/index.php?customfieldlinkid' SQL Injection
|
13 |
WEB
|
GulfTech Security
|
|
2008-08-11
|
|
Kayako SupportSuite 3.x - 'index.php?filter' Cross-Site Scripting
|
14 |
WEB
|
GulfTech Security
|
|
2008-08-11
|
|
Kayako SupportSuite 3.x - '/visitor/index.php?sessionid' Cross-Site Scripting
|
15 |
WEB
|
GulfTech Security
|
|
2008-08-11
|
|
Domain Group Network GooCMS 1.02 - 'index.php' Cross-Site Scripting
|
17 |
WEB
|
ahmadbaby
|
|
2008-08-08
|
|
Linkspider 1.08 - Multiple Remote File Inclusions
|
14 |
WEB
|
Rohit Bansal
|
|
2008-08-09
|
|
RMSOFT Downloads Plus - '/(rmdp) 1.5/1.7 Module for XOOPS down.php?id' Cross-Site Scripting
|
14 |
WEB
|
Lostmon
|
|
2008-08-09
|
|
RMSOFT Downloads Plus - '/(rmdp) 1.5/1.7 Module for XOOPS search.php?key' Cross-Site Scripting
|
16 |
WEB
|
Lostmon
|
|
2014-03-12
|
|
FreePBX 2.11.0 - Remote Command Execution
|
15 |
WEB
|
@0x00string
|
|
2014-03-12
|
|
vTiger CRM 5.4.0/6.0 RC/6.0.0 GA - 'browse.php' Local File Inclusion
|
16 |
WEB
|
Portcullis
|
|
2014-03-12
|
|
Procentia IntelliPen 1.1.12.1520 - 'data.aspx' Blind SQL Injection
|
16 |
WEB
|
Portcullis
|
|
2014-03-12
|
|
LuxCal 3.2.2 - Cross-Site Request Forgery / Blind SQL Injection
|
13 |
WEB
|
TUNISIAN CYBER
|
|
2014-03-12
|
|
GNUPanel 0.3.5_R4 - Multiple Vulnerabilities
|
14 |
WEB
|
Necmettin COSKUN
|
|
2014-03-12
|
|
ZYXEL P-660HN-T1A Router - Authentication Bypass
|
15 |
WEB
|
Michael Grifalconi
|
|
2008-08-09
|
|
Yogurt Social Network 3.2 rc1 Module for XOOPS - 'tribes.php?uid' Cross-Site Scripting
|
15 |
WEB
|
Lostmon
|
|
2008-08-09
|
|
Yogurt Social Network 3.2 rc1 Module for XOOPS - 'index.php?uid' Cross-Site Scripting
|
17 |
WEB
|
Lostmon
|
|
2008-08-09
|
|
Yogurt Social Network 3.2 rc1 Module for XOOPS - 'scrapbook.php?uid' Cross-Site Scripting
|
13 |
WEB
|
Lostmon
|
|
2008-08-09
|
|
Yogurt Social Network 3.2 rc1 Module for XOOPS - 'album.php?uid' Cross-Site Scripting
|
17 |
WEB
|
Lostmon
|
|
2008-08-09
|
|
Yogurt Social Network 3.2 rc1 Module for XOOPS - 'seutubo.php?uid' Cross-Site Scripting
|
18 |
WEB
|
Lostmon
|
|
2008-08-09
|
|
Yogurt Social Network 3.2 rc1 Module for XOOPS - 'friends.php?uid' Cross-Site Scripting
|
16 |
WEB
|
Lostmon
|
|
2008-08-09
|
|
RMSOFT MiniShop 1.0 - 'search.php' Multiple Cross-Site Scripting Vulnerabilities
|
15 |
WEB
|
Lostmon
|
|
2008-08-06
|
|
PHP-Nuke Kleinanzeigen Module - 'lid' SQL Injection
|
15 |
WEB
|
Lovebug
|
|
2008-08-06
|
|
Kshop 2.22 - 'kshop_search.php' Cross-Site Scripting
|
19 |
WEB
|
Lostmon
|
|
2008-08-06
|
|
WebmasterSite (Multiple Products) - Remote Command Execution
|
14 |
WEB
|
otmorozok428
|
|
2008-08-06
|
|
Joomla! / Mambo Component com_utchat 0.2 - Multiple Remote File Inclusions
|
17 |
WEB
|
by_casper41
|
|
2008-08-06
|
|
Quate CMS 0.3.4 - Multiple Cross-Site Scripting Vulnerabilities
|
17 |
WEB
|
CraCkEr
|
|
2008-08-06
|
|
KAPhotoservice - 'search.asp?Filename' Cross-Site Scripting
|
16 |
WEB
|
by_casper41
|
|
2008-08-06
|
|
KAPhotoservice - 'order.asp?page' Cross-Site Scripting
|
17 |
WEB
|
by_casper41
|
|
2008-08-06
|
|
PHPKF-Portal 1.10 - 'anket_yonetim.php?portal_ayarlarportal_dili' Traversal Local File Inclusion
|
16 |
WEB
|
KnocKout
|
|
2008-08-06
|
|
PHPKF-Portal 1.10 - 'baslik.php?tema_dizin' Traversal Local File Inclusion
|
15 |
WEB
|
KnocKout
|
|
2008-08-06
|
|
Battle.net Clan Script 1.5.x - 'index.php' Multiple SQL Injections
|
19 |
WEB
|
Khashayar Fereidani
|
|
2008-08-06
|
|
Chupix CMS Contact Module 0.1 - 'index.php' Multiple Local File Inclusions
|
20 |
WEB
|
casper41
|
|
2008-08-05
|
|
POWERGAP ShopSystem - 's03.php' SQL Injection
|
18 |
WEB
|
Rohit Bansal
|
|
2008-08-05
|
|
Softbiz Image Gallery - 'browsecats.php?msg' Cross-Site Scripting
|
20 |
WEB
|
sl4xUz
|
|
2008-08-05
|
|
Softbiz Image Gallery - 'cleanup.php?msg' Cross-Site Scripting
|
14 |
WEB
|
sl4xUz
|
|
2008-08-05
|
|
Softbiz Image Gallery - 'changepassword.php?msg' Cross-Site Scripting
|
17 |
WEB
|
sl4xUz
|
|
2008-08-05
|
|
Softbiz Image Gallery - 'config.php?msg' Cross-Site Scripting
|
20 |
WEB
|
sl4xUz
|
|
2008-08-05
|
|
Softbiz Image Gallery - 'adminhome.php?msg' Cross-Site Scripting
|
15 |
WEB
|
sl4xUz
|
|
2008-08-05
|
|
Softbiz Image Gallery - 'image_desc.php?latest' Cross-Site Scripting
|
18 |
WEB
|
sl4xUz
|
|
2008-08-05
|
|
Softbiz Image Gallery - 'suggest_image.php' Multiple Cross-Site Scripting Vulnerabilities
|
19 |
WEB
|
sl4xUz
|
|
2008-08-05
|
|
Softbiz Image Gallery - 'images.php' Multiple Cross-Site Scripting Vulnerabilities
|
16 |
WEB
|
sl4xUz
|
|
2008-08-05
|
|
Softbiz Image Gallery - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
|
15 |
WEB
|
sl4xUz
|
|
2008-08-05
|
|
Crafty Syntax Live Help 2.14.6 - 'livehelp_js.php' Cross-Site Scripting
|
15 |
WEB
|
CoRSaNTuRK
|
|
2008-08-05
|
|
Pluck CMS 4.5.2 - Multiple Cross-Site Scripting Vulnerabilities
|
19 |
WEB
|
Khashayar Fereidani
|
|
2014-03-10
|
|
ownCloud 4.0.x/4.5.x - 'upload.php?Filename' Remote Code Execution
|
15 |
WEB
|
Portcullis
|
|
2014-03-10
|
|
Huawei E5331 MiFi Mobile Hotspot 21.344.11.00.414 - Multiple Vulnerabilities
|
16 |
WEB
|
SEC Consult
|
|
2014-03-10
|
|
Kentico CMS 7.0.75 - User Information Disclosure
|
17 |
WEB
|
Charlie Campbell & Lyndon Mendoza
|
|
2008-08-04
|
|
Pcshey Portal - 'kategori.asp' SQL Injection
|
14 |
WEB
|
U238
|
|
2008-08-04
|
|
UNAK-CMS 1.5 - 'connector.php' Local File Inclusion
|
14 |
WEB
|
Sina Yazdanmehr
|
|
2008-08-04
|
|
Meeting Room Booking System (MRBS) 1.2.6 - 'help.php' Cross-Site Scripting
|
16 |
WEB
|
sl4xUz
|
|
2008-08-04
|
|
Meeting Room Booking System (MRBS) 1.2.6 - 'report.php' Cross-Site Scripting
|
17 |
WEB
|
sl4xUz
|
|
2008-08-04
|
|
Meeting Room Booking System (MRBS) 1.2.6 - 'search.php' Cross-Site Scripting
|
17 |
WEB
|
sl4xUz
|
|
2008-08-04
|
|
Meeting Room Booking System (MRBS) 1.2.6 - 'month.php' Cross-Site Scripting
|
14 |
WEB
|
sl4xUz
|
|
2008-08-04
|
|
Meeting Room Booking System (MRBS) 1.2.6 - 'week.php' Cross-Site Scripting
|
19 |
WEB
|
sl4xUz
|
|
2008-08-04
|
|
Meeting Room Booking System (MRBS) 1.2.6 - 'day.php' Cross-Site Scripting
|
16 |
WEB
|
sl4xUz
|
|
2008-08-04
|
|
Keld PHP-MySQL News Script 0.7.1 - 'login.php' SQL Injection
|
15 |
WEB
|
crimsoN_Loyd9
|
|
2008-08-02
|
|
Pligg CMS 9.9.5 - 'CAPTCHA' Registration Automation Security Bypass
|
14 |
WEB
|
Micheal Brooks
|
|
2008-08-04
|
|
Homes 4 Sale - 'results.php' Cross-Site Scripting
|
17 |
WEB
|
Ghost Hacker
|
|
2008-08-01
|
|
PHP-Nuke Book Catalog Module 1.0 - 'catid' SQL Injection
|
17 |
WEB
|
H4ckCity Security Team
|
|
2008-08-01
|
|
freeForum 1.7 - 'acuparam' Cross-Site Scripting
|
17 |
WEB
|
ahmadbady
|
|
2008-07-31
|
|
common Solutions csphonebook 1.02 - 'index.php' Cross-Site Scripting
|
14 |
WEB
|
Ghost Hacker
|
|
2008-07-31
|
|
H0tturk Panel - 'gizli.php' Remote File Inclusion
|
16 |
WEB
|
U238
|
|
2014-03-09
|
|
ClipSharePro 4.1 - Local File Inclusion
|
15 |
WEB
|
Saadi Siddiqui
|
|
2008-07-30
|
|
DEV Web Management System 1.5 - Multiple Input Validation Vulnerabilities
|
16 |
WEB
|
Dr.Crash
|
|
2008-07-30
|
|
MJGUEST 6.8 - 'Guestbook.js.php' Cross-Site Scripting
|
13 |
WEB
|
DSecRG
|
|
2008-05-11
|
|
ScrewTurn Software ScrewTurn Wiki 2.0.x - 'System Log' Page HTML Injection
|
12 |
WEB
|
Portcullis
|
|
2008-07-29
|
|
MiniBB RSS 2.0 Plugin - Multiple Remote File Inclusions
|
12 |
WEB
|
Ghost Hacker
|
|
2008-07-28
|
|
Owl Intranet Engine 0.95 - 'register.php' Cross-Site Scripting
|
14 |
WEB
|
Fabian Fingerle
|
|
2008-07-28
|
|
Jamroom 3.3.8 - Cookie Authentication Bypass
|
16 |
WEB
|
GulfTech Security
|
|
2008-07-28
|
|
Web Wiz Forum 9.5 - 'admin_category_details.asp?mode' Cross-Site Scripting
|
16 |
WEB
|
CSDT
|
|
2008-07-28
|
|
Web Wiz Forum 9.5 - 'admin_group_details.asp?mode' Cross-Site Scripting
|
14 |
WEB
|
CSDT
|
|
2008-07-27
|
|
Greatclone GC Auction Platinum - 'category.php' SQL Injection
|
13 |
WEB
|
Hussin X
|
|
2008-07-26
|
|
Willoughby TriO 2.1 - SQL Injection
|
13 |
WEB
|
dun
|
|
2008-07-25
|
|
EZContents - 'minicalendar.php' Remote File Inclusion
|
13 |
WEB
|
HACKERS PAL
|
|
2014-03-07
|
|
Ajax File Manager - Directory Traversal
|
13 |
WEB
|
Eduardo Alves
|
