|
2008-02-20
|
|
Joomla! / Mambo Component com_Joomlavvz - 'id' SQL Injection
|
26 |
WEB
|
S@BUN
|
|
2007-02-19
|
|
Spyce 2.1.3 - spyce/examples/automaton.spy Direct Request Error Message Information Disclosure
|
26 |
WEB
|
Richard Brain
|
|
2007-02-19
|
|
Spyce 2.1.3 - '/spyce/examples/formtag.spy' Multiple Cross-Site Scripting Vulnerabilities
|
24 |
WEB
|
Richard Brain
|
|
2007-02-19
|
|
Spyce 2.1.3 - 'spyce/examples/getpost.spy?Name' Cross-Site Scripting
|
24 |
WEB
|
Richard Brain
|
|
2007-02-19
|
|
Spyce 2.1.3 - 'spyce/examples/request.spy?name' Cross-Site Scripting
|
21 |
WEB
|
Richard Brain
|
|
2007-02-19
|
|
Spyce 2.1.3 - 'docs/examples/handlervalidate.spy?x' Cross-Site Scripting
|
26 |
WEB
|
Richard Brain
|
|
2007-02-19
|
|
Spyce 2.1.3 - '/docs/examples/redirect.spy' Multiple Cross-Site Scripting Vulnerabilities
|
26 |
WEB
|
Richard Brain
|
|
2014-01-29
|
|
pfSense 2.1 build 20130911-1816 - Directory Traversal
|
32 |
WEB
|
@u0x
|
|
2014-01-29
|
|
ManageEngine Support Center Plus 7916 - Directory Traversal
|
25 |
WEB
|
xistence
|
|
2014-01-29
|
|
A10 Networks Loadbalancer - Directory Traversal
|
24 |
WEB
|
xistence
|
|
2014-01-29
|
|
SimplyShare 1.4 iOS - Multiple Vulnerabilities
|
26 |
WEB
|
Vulnerability-Lab
|
|
2014-01-29
|
|
LinPHA 1.3.4 - Multiple Vulnerabilities
|
24 |
WEB
|
killall-9
|
|
2008-02-19
|
|
PHP-Nuke Web_Links Module - 'cid' SQL Injection
|
27 |
WEB
|
S@BUN
|
|
2008-02-19
|
|
XOOPS 'badliege' Module - 'id' SQL Injection
|
23 |
WEB
|
S@BUN
|
|
2008-02-19
|
|
XOOPS 'seminars' Module - 'id' SQL Injection
|
23 |
WEB
|
S@BUN
|
|
2008-02-19
|
|
XOOPS 'events' Module - 'id' SQL Injection
|
23 |
WEB
|
S@BUN
|
|
2008-02-19
|
|
XOOPS 'vacatures' Module - 'cid' SQL Injection
|
24 |
WEB
|
S@BUN
|
|
2008-02-19
|
|
Joomla! Component iJoomla! com_magazine - 'pageid' SQL Injection
|
25 |
WEB
|
S@BUN
|
|
2008-02-19
|
|
Joomla! / Mambo Component com_genealogy - 'id' SQL Injection
|
23 |
WEB
|
S@BUN
|
|
2008-02-19
|
|
Joomla! / Mambo Component com_formtool - 'catid' SQL Injection
|
25 |
WEB
|
S@BUN
|
|
2008-02-19
|
|
Joomla! / Mambo Component com_iigcatalog - 'cat' SQL Injection
|
26 |
WEB
|
S@BUN
|
|
2008-02-19
|
|
Joomla! / Mambo Component com_team - SQL Injection
|
25 |
WEB
|
S@BUN
|
|
2008-02-19
|
|
Facile Forms 1.x - 'catid' SQL Injection
|
23 |
WEB
|
S@BUN
|
|
2008-02-19
|
|
PHP-Nuke Sections Module - 'artid' SQL Injection
|
22 |
WEB
|
S@BUN
|
|
2008-02-19
|
|
SmarterTools SmarterMail 4.3 - 'Subject' HTML Injection
|
26 |
WEB
|
Juan Pablo Lopez Yacubian
|
|
2008-02-19
|
|
Google Hack Honeypot File Upload Manager 1.3 - 'delall' Unauthorized File Access
|
22 |
WEB
|
Mr-m07
|
|
2008-02-19
|
|
Jinzora 2.7.5 - 'popup.php' Multiple Cross-Site Scripting Vulnerabilities
|
22 |
WEB
|
Alexandr Polyakov
|
|
2008-02-19
|
|
Jinzora 2.7.5 - 'slim.php' Multiple Cross-Site Scripting Vulnerabilities
|
24 |
WEB
|
Alexandr Polyakov
|
|
2008-02-19
|
|
Jinzora 2.7.5 - 'ajax_request.php' Multiple Cross-Site Scripting Vulnerabilities
|
25 |
WEB
|
Alexandr Polyakov
|
|
2008-02-19
|
|
Jinzora 2.7.5 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
|
24 |
WEB
|
Alexandr Polyakov
|
|
2008-02-18
|
|
WebcamXP 3.72.440/4.05.280 Beta - '/show_gallery_pic?id' Arbitrary Memory Disclosure
|
23 |
WEB
|
Luigi Auriemma
|
|
2008-02-18
|
|
WebcamXP 3.72.440/4.05.280 Beta - '/pocketpc?camnum' Arbitrary Memory Disclosure
|
21 |
WEB
|
Luigi Auriemma
|
|
2008-02-18
|
|
WordPress Plugin wp-people 2.0 - 'wp-people-popup.php' SQL Injection
|
23 |
WEB
|
S@BUN
|
|
2008-02-18
|
|
ProjectPier 0.8 - Multiple HTML Injection / Cross-Site Scripting Vulnerabilities
|
22 |
WEB
|
L4teral
|
|
2008-02-18
|
|
WordPress Plugin Recipes Blog - 'id' SQL Injection
|
22 |
WEB
|
S@BUN
|
|
2008-02-18
|
|
Yellow Swordfish Simple Forum 1.x - 'sf-profile.php' SQL Injection
|
22 |
WEB
|
S@BUN
|
|
2008-02-18
|
|
Joomla! / Mambo Component com_detail - 'id' SQL Injection
|
24 |
WEB
|
S@BUN
|
|
2008-02-18
|
|
RunCMS 1.6.1 - 'admin.php' Cross-Site Scripting
|
25 |
WEB
|
NBBN
|
|
2008-02-19
|
|
Joomla! / Mambo Component com_profile - 'oid' SQL Injection
|
23 |
WEB
|
S@BUN
|
|
2014-01-27
|
|
Ability Mail Server 2013 -Persistent Cross-Site Scripting / Cross-Site Request Forgery (Password Res
|
28 |
WEB
|
David Um
|
|
2008-02-16
|
|
BanPro Dms 1.0 - 'index.php' Local File Inclusion
|
29 |
WEB
|
muuratsalo
|
|
2008-02-15
|
|
Joomla! / Mambo Component com_scheduling - 'id' SQL Injection
|
24 |
WEB
|
S@BUN
|
|
2008-02-16
|
|
Joomla! / Mambo Component Filebase - 'filecatid' SQL Injection
|
23 |
WEB
|
S@BUN
|
|
2008-02-16
|
|
Joomla! / Mambo Component com_lexikon - 'id' SQL Injection
|
25 |
WEB
|
S@BUN
|
|
2008-02-15
|
|
Joomla! / Mambo Component com_salesrep - 'rid' SQL Injection
|
26 |
WEB
|
S@BUN
|
|
2008-02-15
|
|
Yellow Swordfish Simple Forum 1.x - 'topic' SQL Injection
|
24 |
WEB
|
S@BUN
|
|
2008-02-15
|
|
Yellow Swordfish Simple Forum 1.7/1.9 - 'index.php' SQL Injection
|
25 |
WEB
|
S@BUN
|
|
2008-02-15
|
|
Yellow Swordfish Simple Forum 1.10/1.11 - 'topic' SQL Injection
|
23 |
WEB
|
S@BUN
|
|
2008-02-15
|
|
Joomla! / Mambo Component faq - 'catid' SQL Injection
|
26 |
WEB
|
S@BUN
|
|
2008-02-15
|
|
Joomla! / Mambo Component com_sg - 'pid' SQL Injection
|
24 |
WEB
|
S@BUN
|
|
2008-02-15
|
|
Joomla! / Mambo Component com_activities - 'id' SQL Injection
|
26 |
WEB
|
S@BUN
|
|
2008-02-15
|
|
Joomla! / Mambo Component com_smslist - 'listid' SQL Injection
|
23 |
WEB
|
S@BUN
|
|
2008-02-14
|
|
PlutoStatus Locator 1.0pre alpha - 'index.php' Local File Inclusion
|
23 |
WEB
|
muuratsalo
|
|
2008-02-14
|
|
artmedic webdesign weblog - Multiple Local File Inclusions
|
23 |
WEB
|
muuratsalo
|
|
2008-02-15
|
|
Dokeos 1.8.4 - '/main/create_course/add_course.php?tutor_name' SQL Injection
|
25 |
WEB
|
Alexandr Polyakov
|
|
2008-02-15
|
|
Dokeos 1.8.4 - '/main/mySpace/index.php?tracking_list_coaches_column' SQL Injection
|
25 |
WEB
|
Alexandr Polyakov
|
|
2008-02-15
|
|
Dokeos 1.8.4 - '/main/admin/session_list.php?cmessage' Cross-Site Scripting
|
24 |
WEB
|
Alexandr Polyakov
|
|
2008-02-15
|
|
Dokeos 1.8.4 - '/main/admin/course_category.php?category' Cross-Site Scripting
|
23 |
WEB
|
Alexandr Polyakov
|
|
2008-02-15
|
|
Dokeos 1.8.4 - '/main/calendar/myagenda.php?courseCode' Cross-Site Scripting
|
24 |
WEB
|
Alexandr Polyakov
|
|
2008-02-15
|
|
Dokeos 1.8.4 - 'main/inc/lib/events.lib.inc.php' Referer HTTP Header SQL Injection
|
23 |
WEB
|
Alexandr Polyakov
|
|
2008-02-15
|
|
Dokeos 1.8.4 - 'whoisonline.php?id' SQL Injection
|
23 |
WEB
|
Alexandr Polyakov
|
|
2008-02-13
|
|
Joomla! / Mambo Component com_omnirealestate - 'objid' SQL Injection
|
25 |
WEB
|
S@BUN
|
|
2008-02-13
|
|
Joomla! / Mambo Component com_model - 'objid' SQL Injection
|
26 |
WEB
|
S@BUN
|
|
2008-02-13
|
|
Site2Nite Real Estate Web - 'agentlist.asp' Multiple SQL Injections
|
24 |
WEB
|
S@BUN
|
|
2008-02-13
|
|
Cisco Unified Communications Manager 6.1 - 'key' SQL Injection
|
22 |
WEB
|
Nico Leidecker
|
|
2014-01-24
|
|
Skybluecanvas CMS 1.1 r248-03 - Remote Command Execution
|
25 |
WEB
|
Scott Parish
|
|
2014-01-24
|
|
Franklin Fueling TS-550 evo 2.0.0.6833 - Multiple Vulnerabilities
|
24 |
WEB
|
Trustwave's SpiderLabs
|
|
2014-01-24
|
|
Joomla! Component JV Comment 3.0.2 - 'id' SQL Injection
|
24 |
WEB
|
High-Tech Bridge SA
|
|
2014-01-24
|
|
Joomla! Component Komento 1.7.2 - Persistent Cross-Site Scripting
|
24 |
WEB
|
High-Tech Bridge SA
|
|
2014-01-24
|
|
pChart 2.1.3 - Multiple Vulnerabilities
|
21 |
WEB
|
Balazs Makany
|
|
2008-02-12
|
|
Prince Clan Chess Club 0.8 com_pcchess Component - 'user_id' SQL Injection
|
23 |
WEB
|
S@BUN
|
|
2008-02-12
|
|
okul siteleri 'com_mezun' Component - SQL Injection
|
30 |
WEB
|
S@BUN
|
|
2008-02-12
|
|
Cacti 0.8.7 - '/index.php/sql.php?Login Action login_username' SQL Injection
|
26 |
WEB
|
aScii
|
|
2008-02-12
|
|
Cacti 0.8.7 - 'graph_xport.php?local_graph_id' SQL Injection
|
24 |
WEB
|
aScii
|
|
2008-02-12
|
|
Cacti 0.8.7 - 'tree.php' Multiple SQL Injections
|
25 |
WEB
|
aScii
|
|
2008-02-12
|
|
Cacti 0.8.7 - 'graph_view.php?filter' Cross-Site Scripting
|
24 |
WEB
|
aScii
|
|
2008-02-12
|
|
Cacti 0.8.7 - 'graph.php?view_type' Cross-Site Scripting
|
25 |
WEB
|
aScii
|
|
2008-02-12
|
|
Cacti 0.8.7 - 'graph_view.php?graph_list' SQL Injection
|
21 |
WEB
|
aScii
|
|
2008-02-12
|
|
Joomla! / Mambo Component com_iomezun - 'id' SQL Injection
|
23 |
WEB
|
S@BUN
|
|
2008-02-12
|
|
Counter Strike Portals - 'download' SQL Injection
|
24 |
WEB
|
S@BUN
|
|
2014-01-23
|
|
Adult WebMaster PHP - Password Disclosure
|
24 |
WEB
|
vinicius777
|
|
2014-01-23
|
|
Cells Blog 3.3 - Reflected Cross-Site Scripting / Blind SQLite Injection
|
25 |
WEB
|
vinicius777
|
|
2014-01-23
|
|
Easy POS System - 'login.php' SQL Injection
|
22 |
WEB
|
vinicius777
|
|
2014-01-23
|
|
mySeatXT 0.2134 - SQL Injection
|
23 |
WEB
|
vinicius777
|
|
2014-01-23
|
|
PizzaInn_Project - SQL Injection
|
25 |
WEB
|
vinicius777
|
|
2014-01-23
|
|
Simple E-document 1.31 - Authentication Bypass
|
24 |
WEB
|
vinicius777
|
|
2014-01-23
|
|
godontologico 5 - SQL Injection
|
25 |
WEB
|
vinicius777
|
|
2014-01-23
|
|
iTechClassifieds 3.03.057 - SQL Injection
|
26 |
WEB
|
vinicius777
|
|
2008-02-11
|
|
Joomla! / Mambo Component com_comments 0.5.8.5g - 'id' SQL Injection
|
25 |
WEB
|
CheebaHawk215
|
|
2008-02-11
|
|
Rapid-Source Rapid-Recipe Component - Multiple SQL Injections
|
24 |
WEB
|
breaker_unit
|
|
2008-02-11
|
|
VWar 1.5 - 'calendar.php' SQL Injection
|
21 |
WEB
|
Pouya_Server
|
|
2008-02-09
|
|
PK-Designs PKs Movie Database 3.0.3 - '/index.php' SQL Injection / Cross-Site Scripting
|
23 |
WEB
|
Houssamix
|
|
2008-02-08
|
|
Managed Workplace Service Center 4.x/5.x/6.x - Installation Information Disclosure
|
27 |
WEB
|
Brook Powers
|
|
2008-02-08
|
|
S9Y Serendipity Freetag-plugin 2.95 - 'style' Cross-Site Scripting
|
25 |
WEB
|
Alexander Brachmann
|
|
2008-02-08
|
|
Joovili 2.1 - 'members_help.php' Remote File Inclusion
|
24 |
WEB
|
Cr@zy_King
|
|
2008-02-08
|
|
Calimero.CMS 3.3 - 'id' Cross-Site Scripting
|
22 |
WEB
|
Psiczn
|
|
2008-02-07
|
|
Joomla! / Mambo Component com_sermon 0.2 - 'gid' SQL Injection
|
23 |
WEB
|
S@BUN
|
|
2008-02-07
|
|
MODx 0.9.6 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
|
26 |
WEB
|
Alexandr Polyakov
|
|
2008-02-06
|
|
Ipswitch WS_FTP Server 6 - '/WSFTPSVR/FTPLogServer/LogViewer.asp' Authentication Bypass
|
25 |
WEB
|
Luigi Auriemma
|
|
2008-02-06
|
|
Pagetool 1.07 - 'search_term' Cross-Site Scripting
|
25 |
WEB
|
Phanter-Root
|
|
2008-02-06
|
|
MyNews 1.6.x - 'hash' Cross-Site Scripting
|
28 |
WEB
|
SkyOut
|
|
2008-02-04
|
|
DevTracker Module For bcoos 1.1.11 and E-xoops 1.0.8 - Multiple Cross-Site Scripting Vulnerabilities
|
22 |
WEB
|
Lostmon
|
|
2008-02-05
|
|
Download Management 1.00 for PHP-Fusion - Multiple Local File Inclusions
|
24 |
WEB
|
Psiczn
|
|
2008-02-04
|
|
Portail Web PHP 2.5.1 - 'login.php' Remote File Inclusion
|
25 |
WEB
|
Psiczn
|
|
2008-02-04
|
|
Portail Web PHP 2.5.1 - 'conf_modules.php' Remote File Inclusion
|
26 |
WEB
|
Psiczn
|
|
2008-02-04
|
|
Portail Web PHP 2.5.1 - 'item.php' Remote File Inclusion
|
25 |
WEB
|
Psiczn
|
|
2008-02-04
|
|
Portail Web PHP 2.5.1 - 'conf-activation.php' Remote File Inclusion
|
26 |
WEB
|
Psiczn
|
|
2008-02-04
|
|
AstroSoft HelpDesk - '/operator/article/article_attachment.asp?Attach_Id' Cross-Site Scripting
|
27 |
WEB
|
Alexandr Polyakov
|
|
2008-02-04
|
|
AstroSoft HelpDesk - '/operator/article/article_search_results.asp?txtSearch' Cross-Site Scripting
|
25 |
WEB
|
Alexandr Polyakov
|
|
2008-02-04
|
|
HispaH YouTube Clone - 'load_message.php' Cross-Site Scripting
|
27 |
WEB
|
Smasher
|
|
2008-02-04
|
|
Codice CMS - 'login.php' SQL Injection
|
25 |
WEB
|
Psiczn
|
|
2008-02-04
|
|
Simple OS CMS 0.1c_beta - 'login.php' SQL Injection
|
26 |
WEB
|
Psiczn
|
|
2008-02-04
|
|
CruxCMS 3.0 - 'search.php' Cross-Site Scripting
|
24 |
WEB
|
Psiczn
|
|
2008-02-03
|
|
WordPress Plugin ShiftThis NewsLetter - SQL Injection
|
26 |
WEB
|
S@BUN
|
|
2008-02-02
|
|
ITechClassifieds - 'viewcat.php?CatID' Cross-Site Scripting
|
27 |
WEB
|
Crackers_Child
|
|
2008-02-02
|
|
ITechClassifieds - 'viewcat.php?CatID' SQL Injection
|
27 |
WEB
|
Crackers_Child
|
|
2008-02-02
|
|
WordPress Plugin WP-Footnotes 2.2 - Multiple Remote Vulnerabilities
|
26 |
WEB
|
NBBN
|
|
2008-02-02
|
|
Domain Trader 2.0 - 'catalog.php' Cross-Site Scripting
|
24 |
WEB
|
Crackers_Child
|
|
2014-01-20
|
|
BLUE COM Router 5360/52018 - Password Reset
|
26 |
WEB
|
KAI
|
|
2014-01-20
|
|
Teracom Modem T2-B-Gawv1.4U10Y-BI - Persistent Cross-Site Scripting
|
25 |
WEB
|
Rakesh S
|
|
2014-01-20
|
|
AfterLogic Pro and Lite 7.1.1.1 - Persistent Cross-Site Scripting
|
27 |
WEB
|
Saeed reza Zamanian
|
|
2014-01-20
|
|
Doodle4Gift - Multiple Vulnerabilities
|
27 |
WEB
|
Dr.NaNo
|
|
2008-02-01
|
|
Archimede Net 2000 - 'E-Guest_show.php' SQL Injection
|
26 |
WEB
|
Sw33t h4cK3r
|
|
2008-01-31
|
|
Nilson's Blogger 0.11 - 'comments.php' Local File Inclusion
|
23 |
WEB
|
muuratsalo
|
|
2008-01-31
|
|
Liferay Enterprise Portal 4.3.6 - User-Agent HTTP Header Cross-Site Scripting
|
24 |
WEB
|
Tomasz Kuczynski
|
