|
2007-03-20
|
|
W-Agora 4.2.1 - 'search.php?search_user' Cross-Site Scripting
|
1 |
WEB
|
laurent gaffie
|
|
2007-03-20
|
|
W-Agora 4.2.1 - 'profile.php?showuser' Cross-Site Scripting
|
1 |
WEB
|
laurent gaffie
|
|
2007-03-20
|
|
W-Agora 4.2.1 - Multiple Arbitrary File Upload Vulnerabilities
|
1 |
WEB
|
laurent gaffie
|
|
2007-03-20
|
|
Web Wiz Forums 8.05 - String Filtering SQL Injection
|
1 |
WEB
|
Ivan Fratric
|
|
2007-03-19
|
|
LedgerSMB1.0/1.1 / SQL-Ledger 2.6.x - 'Login' Local File Inclusion / Authentication Bypass
|
1 |
WEB
|
Chris Travers
|
|
2007-03-19
|
|
PHPX 3.5.15/3.5.16 - 'gallery.php' SQL Injection
|
1 |
WEB
|
laurent gaffie
|
|
2007-03-19
|
|
PHPX 3.5.15/3.5.16 - 'news.php' SQL Injection
|
1 |
WEB
|
laurent gaffie
|
|
2007-03-19
|
|
PHPX 3.5.15/3.5.16 - 'users.php' SQL Injection
|
1 |
WEB
|
laurent gaffie
|
|
2007-03-19
|
|
PHPX 3.5.15/3.5.16 - 'forums.php' SQL Injection
|
1 |
WEB
|
laurent gaffie
|
|
2007-03-19
|
|
PHPX 3.5.15/3.5.16 - 'print.php' SQL Injection
|
1 |
WEB
|
laurent gaffie
|
|
2007-03-19
|
|
Guesbara 1.2 - Administrator Password Change
|
1 |
WEB
|
Kacper
|
|
2007-03-19
|
|
WordPress Core < 2.1.2 - 'PHP_Self' Cross-Site Scripting
|
1 |
WEB
|
Alexander Concha
|
|
2007-03-17
|
|
phpStats 0.1.9 - 'PHP-Stats-options.php' Remote Code Execution
|
1 |
WEB
|
rgod
|
|
2007-03-16
|
|
phpStats 0.1.9 - Multiple SQL Injections
|
1 |
WEB
|
rgod
|
|
2007-03-16
|
|
Holtstraeter Rot 13 - 'Enkrypt.php' Directory Traversal
|
1 |
WEB
|
h4ck3r
|
|
2007-03-16
|
|
DirectAdmin 1.292 - 'CMD_USER_STATS' Cross-Site Scripting
|
1 |
WEB
|
Mandr4ke
|
|
2007-03-15
|
|
Horde Framework 3.1.3 - 'login.php' Cross-Site Scripting
|
1 |
WEB
|
Moritz Naumann
|
|
2007-03-15
|
|
Viper Web Portal 0.1 - 'index.php' Remote File Inclusion
|
1 |
WEB
|
Abdus Samad
|
|
2007-03-15
|
|
Horde IMP Webmail 4.0.4 Client - Multiple Input Validation Vulnerabilities
|
1 |
WEB
|
Immerda Project Group
|
|
2007-03-13
|
|
Weekly Drawing Contest 0.0.1 - 'Check_Vote.php' Local File Inclusion
|
1 |
WEB
|
h4ck3r
|
|
2007-03-12
|
|
ClipShare 1.5.3 - 'ADODB-Connection.Inc.php' Remote File Inclusion
|
1 |
WEB
|
RaeD Hasadya
|
|
2013-11-20
|
|
PHP-Nuke 8.2.4 - Multiple Vulnerabilities
|
1 |
WEB
|
Sojobo dev team
|
|
2007-03-10
|
|
SoftNews 4.1/5.5 - '/engine/Ajax/editnews.php?root_dir' Remote File Inclusion
|
1 |
WEB
|
Hasadya Raed
|
|
2007-03-10
|
|
SoftNews 4.1/5.5 - '/engine/init.php?root_dir' Remote File Inclusion
|
1 |
WEB
|
Hasadya Raed
|
|
2007-03-10
|
|
Premod SubDog 2 - '/includes/logger_engine.php?phpbb_root_path' Remote File Inclusion
|
1 |
WEB
|
Hasadya Raed
|
|
2007-03-10
|
|
Premod SubDog 2 - '/includes/themen_portal_mitte.php?phpbb_root_path' Remote File Inclusion
|
1 |
WEB
|
Hasadya Raed
|
|
2007-03-10
|
|
Premod SubDog 2 - '/includes/functions_kb.php?phpbb_root_path' Remote File Inclusion
|
1 |
WEB
|
Hasadya Raed
|
|
2007-03-09
|
|
Duyuru Scripti - 'Goster.asp' SQL Injection
|
1 |
WEB
|
Cr@zy_King
|
|
2007-03-09
|
|
JCCorp URLShrink Free 1.3.1 - 'CreateURL.php' Remote File Inclusion
|
1 |
WEB
|
Hasadya Raed
|
|
2007-03-05
|
|
EPortfolio 1.0 - Client-Side Input Validation
|
1 |
WEB
|
Stefan Friedli
|
|
2013-11-19
|
|
Ruckus Wireless Zoneflex 2942 Wireless Access Point - Authentication Bypass
|
2 |
WEB
|
myexploit
|
|
2007-02-26
|
|
Tyger Bug Tracking System 1.1.3 - 'register.php?PATH_INFO' Cross-Site Scripting
|
1 |
WEB
|
CorryL
|
|
2007-02-26
|
|
Tyger Bug Tracking System 1.1.3 - 'login.php?PATH_INFO' Cross-Site Scripting
|
1 |
WEB
|
CorryL
|
|
2007-02-26
|
|
Tyger Bug Tracking System 1.1.3 - 'ViewBugs.php?s' SQL Injection
|
1 |
WEB
|
CorryL
|
|
2007-03-02
|
|
WordPress Core 2.1.1 - '/wp-includes/theme.php?iz' Arbitrary Command Execution
|
1 |
WEB
|
Ivan Fratric
|
|
2007-03-02
|
|
WordPress Core 2.1.1 - Arbitrary Command Execution
|
1 |
WEB
|
Ivan Fratric
|
|
2007-03-02
|
|
Woltlab Burning Board 2.3.6 - Multiple HTML Injection Vulnerabilities
|
1 |
WEB
|
Samenspender
|
|
2007-03-01
|
|
Built2go News Manager 1.0 Blog - 'rating.php?nid' Cross-Site Scripting
|
1 |
WEB
|
the_Edit0r
|
|
2007-03-01
|
|
Built2go News Manager 1.0 Blog - 'news.php' Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
the_Edit0r
|
|
2007-03-01
|
|
aWebNews 1.1 - 'listing.php?path_to_news' Remote File Inclusion
|
1 |
WEB
|
mostafa_ragab
|
|
2007-03-01
|
|
S9Y Serendipity 1.1.1 - 'index.php' SQL Injection
|
1 |
WEB
|
Samenspender
|
|
2007-02-27
|
|
WordPress Core 2.1.1 - Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Stefan Friedli
|
|
2007-02-26
|
|
WordPress Core 2.1.1 - 'post.php' Cross-Site Scripting
|
1 |
WEB
|
Samenspender
|
|
2007-02-26
|
|
Pagesetter 6.2/6.3.0 - 'index.php' Local File Inclusion
|
0 |
WEB
|
D. Matscheko
|
|
2007-02-26
|
|
SQLiteManager 1.2 - 'main.php' Multiple HTML Injection Vulnerabilities
|
0 |
WEB
|
Simon Bonnard
|
|
2007-02-26
|
|
PHPBB2 - 'Admin_Ug_Auth.php' Administrative Bypass
|
1 |
WEB
|
Hasadya Raed
|
|
2007-02-26
|
|
Audins Audiens 3.3 - '/system/index.php?Cookie PHPSESSID' SQL Injection
|
1 |
WEB
|
r00t
|
|
2007-02-26
|
|
Audins Audiens 3.3 - 'setup.php?PATH_INFO' Cross-Site Scripting
|
1 |
WEB
|
r00t
|
|
2007-02-26
|
|
Audins Audiens 3.3 - 'unistall.php' Authentication Bypass
|
0 |
WEB
|
r00t
|
|
2013-11-18
|
|
Kaseya < 6.3.0.2 - Arbitrary File Upload
|
1 |
WEB
|
Security-Assessment.com
|
|
2013-11-18
|
|
ManageEngine Desktop Central 8.0.0 build < 80293 - Arbitrary File Upload
|
1 |
WEB
|
Security-Assessment.com
|
|
2013-11-18
|
|
Dahua DVR 2.608.0000.0/2.608.GV00.0 - Authentication Bypass (Metasploit)
|
1 |
WEB
|
Jake Reynolds
|
|
2013-11-18
|
|
LiveZilla 5.0.1.4 - Remote Code Execution
|
1 |
WEB
|
Curesec Research Team
|
|
2013-11-18
|
|
WordPress Theme Make A Statement (MaS) - Cross-Site Request Forgery
|
1 |
WEB
|
DevilScreaM
|
|
2013-11-18
|
|
WordPress Theme Amplus - Cross-Site Request Forgery
|
1 |
WEB
|
DevilScreaM
|
|
2013-11-18
|
|
WordPress Theme Dimension - Cross-Site Request Forgery
|
2 |
WEB
|
DevilScreaM
|
|
2013-11-18
|
|
WordPress Theme Euclid 1.x - Cross-Site Request Forgery
|
1 |
WEB
|
DevilScreaM
|
|
2007-02-26
|
|
SQLiteManager 1.2 - Local File Inclusion
|
1 |
WEB
|
Simon Bonnard
|
|
2007-02-26
|
|
SolarPay - 'index.php' Local File Inclusion
|
1 |
WEB
|
Hasadya Raed
|
|
2007-02-24
|
|
Docebo CMS 3.0.x - '/modules/htmlframechat/index.php' Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
r00t
|
|
2007-02-24
|
|
Docebo CMS 3.0.x - 'index.php?searchkey' Cross-Site Scripting
|
1 |
WEB
|
r00t
|
|
2007-02-24
|
|
PhotoStand 1.2 - 'index.php' Cross-Site Scripting
|
1 |
WEB
|
Simon Bonnard
|
|
2007-02-24
|
|
Active Calendar 1.2 - '/data/mysqlevents.php?css' Cross-Site Scripting
|
1 |
WEB
|
Simon Bonnard
|
|
2007-02-24
|
|
Active Calendar 1.2 - '/data/y_3.php?css' Cross-Site Scripting
|
1 |
WEB
|
Simon Bonnard
|
|
2007-02-24
|
|
Active Calendar 1.2 - '/data/y_2.php?css' Cross-Site Scripting
|
1 |
WEB
|
Simon Bonnard
|
|
2007-02-24
|
|
Active Calendar 1.2 - '/data/m_4.php?css' Cross-Site Scripting
|
0 |
WEB
|
Simon Bonnard
|
|
2007-02-24
|
|
Active Calendar 1.2 - '/data/m_3.php?css' Cross-Site Scripting
|
1 |
WEB
|
Simon Bonnard
|
|
2007-02-24
|
|
Active Calendar 1.2 - '/data/m_2.php?css' Cross-Site Scripting
|
0 |
WEB
|
Simon Bonnard
|
|
2007-02-24
|
|
Active Calendar 1.2 - '/data/js.php?css' Cross-Site Scripting
|
0 |
WEB
|
Simon Bonnard
|
|
2007-02-24
|
|
Active Calendar 1.2 - '/data/flatevents.php?css' Cross-Site Scripting
|
0 |
WEB
|
Simon Bonnard
|
|
2007-02-24
|
|
Active Calendar 1.2 - 'showcode.php' Local File Inclusion
|
0 |
WEB
|
Simon Bonnard
|
|
2007-02-24
|
|
Pickle 0.3 - 'download.php' Local File Inclusion
|
0 |
WEB
|
laurent gaffie
|
|
2007-02-23
|
|
Simple one-file Gallery - 'gallery.php?f' Cross-Site Scripting
|
0 |
WEB
|
laurent gaffie
|
|
2007-02-23
|
|
Simple one-file Gallery - 'gallery.php?f' Traversal Arbitrary File Access
|
0 |
WEB
|
laurent gaffie
|
|
2007-02-23
|
|
XT:Commerce 3.04 - 'index.php' Local File Inclusion
|
0 |
WEB
|
laurent gaffie
|
|
2007-02-23
|
|
Shop Kit Plus - 'StyleCSS.php' Local File Inclusion
|
0 |
WEB
|
laurent gaffie
|
|
2007-02-22
|
|
LoveCMS 1.4 - 'id' Cross-Site Scripting
|
0 |
WEB
|
laurent gaffie
|
|
2007-02-22
|
|
LoveCMS 1.4 - 'load' Traversal Arbitrary File Access
|
0 |
WEB
|
laurent gaffie
|
|
2007-02-22
|
|
LoveCMS 1.4 - 'step' Traversal Arbitrary File Access
|
0 |
WEB
|
laurent gaffie
|
|
2007-02-22
|
|
LoveCMS 1.4 - 'step' Remote File Inclusion
|
0 |
WEB
|
laurent gaffie
|
|
2007-02-22
|
|
Pheap 1.x/2.0 - 'edit.php' Directory Traversal
|
0 |
WEB
|
laurent gaffie
|
|
2007-02-22
|
|
Plantilla - 'list_main_pages.php?nfolder' Traversal Arbitrary File Access
|
0 |
WEB
|
laurent gaffie
|
|
2013-11-16
|
|
Google Gmail IOS Mobile Application - Persistent Cross-Site Scripting
|
0 |
WEB
|
Ali Raza
|
|
2007-02-22
|
|
Pyrophobia 2.1.3.1 - Traversal Arbitrary File Access
|
0 |
WEB
|
laurent gaffie
|
|
2007-02-22
|
|
Pyrophobia 2.1.3.1 - Cross-Site Scripting
|
0 |
WEB
|
laurent gaffie
|
|
2007-02-21
|
|
Magic News Plus 1.0.2 - 'n_layouts.php?link_parameters' Cross-Site Scripting
|
1 |
WEB
|
HACKERS PAL
|
|
2007-02-21
|
|
Magic News Plus 1.0.2 - 'news.php?&link_parameters' Cross-Site Scripting
|
1 |
WEB
|
HACKERS PAL
|
|
2007-02-21
|
|
Magic News Plus 1.0.2 - 'preview.php?PHP_script_path' Remote File Inclusion
|
1 |
WEB
|
HACKERS PAL
|
|
2007-02-21
|
|
phpTrafficA 1.4.1 - 'banref.php?lang' Traversal Local File Inclusion
|
1 |
WEB
|
Hamid Ebadi
|
|
2007-02-21
|
|
phpTrafficA 1.4.1 - 'plotStat.php?File' Traversal Local File Inclusion
|
1 |
WEB
|
Hamid Ebadi
|
|
2007-02-21
|
|
CedStat 1.31 - 'index.php' Cross-Site Scripting
|
1 |
WEB
|
sn0oPy
|
|
2007-02-21
|
|
Google Desktop - Cross-Site Scripting
|
1 |
WEB
|
Yair Amit
|
|
2007-02-20
|
|
Design4Online - 'Userpages2 Page.asp' SQL Injection
|
1 |
WEB
|
xoron
|
|
2007-02-20
|
|
AbleDesign MyCalendar 2.20.3 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
sn0oPy
|
|
2007-02-19
|
|
Powerschool 4.3.6/5.1.2 - JavaScript File Request Information Disclosure
|
1 |
WEB
|
gheetotank
|
|
2013-11-15
|
|
WBR-3406 Wireless Broadband NAT Router - Web-Console Password Change Bypass / Cross-Site Request For
|
1 |
WEB
|
Yakir Wizman
|
|
2007-02-16
|
|
Turuncu Portal 1.0 - 'H_Goster.asp' SQL Injection
|
1 |
WEB
|
chernobiLe
|
|
2007-02-16
|
|
Ezboo Webstats 3.03 - Administrative Authentication Bypass
|
1 |
WEB
|
sn0oPy
|
|
2007-02-16
|
|
Meganoide's News 1.1.1 - 'Include.php' Remote File Inclusion
|
1 |
WEB
|
KaRTaL
|
|
2007-02-16
|
|
CedStat 1.31 - 'index.php?hier' Cross-Site Scripting
|
1 |
WEB
|
sn0oPy
|
|
2007-02-15
|
|
Calendar Express - 'search.php' Cross-Site Scripting
|
1 |
WEB
|
BL4CK
|
|
2007-02-15
|
|
Deskpro 1.1 - 'faq.php' Cross-Site Scripting
|
2 |
WEB
|
BLacK ZeRo
|
|
2007-02-15
|
|
ibProArcade 2.5.9+ - 'Arcade.php' SQL Injection
|
1 |
WEB
|
sp00k
|
|
2007-02-14
|
|
WebTester 5.0.20060927 - 'typeID' SQL Injection
|
1 |
WEB
|
Moran Zavdi
|
|
2007-02-13
|
|
Fullaspsite ASP Hosting Site - 'listmain.asp?cat' SQL Injection
|
1 |
WEB
|
ShaFuck31
|
|
2007-02-13
|
|
Fullaspsite ASP Hosting Site - 'listmain.asp?cat' Cross-Site Scripting
|
0 |
WEB
|
ShaFuck31
|
|
2007-02-13
|
|
TaskFreak! 0.5.5 - 'error.php' Cross-Site Scripting
|
1 |
WEB
|
Spiked
|
|
2007-02-12
|
|
WordPress Core 1.x/2.0.x - 'Templates.php' Cross-Site Scripting
|
1 |
WEB
|
PsychoGun
|
|
2007-02-12
|
|
Community Server - 'SearchResults.aspx' Cross-Site Scripting
|
2 |
WEB
|
BL4CK
|
|
2007-02-12
|
|
EWay 4 - Default.APSX Cross-Site Scripting
|
1 |
WEB
|
BLacK ZeRo
|
|
2007-02-12
|
|
Tagit! Tagit2b 2.1.B Build 2 - '/tagmin/wordfilter.php?Admin' Remote File Inclusion
|
1 |
WEB
|
K-159
|
|
2007-02-12
|
|
Tagit! Tagit2b 2.1.B Build 2 - '/tagmin/updatefilter.php?Admin' Remote File Inclusion
|
1 |
WEB
|
K-159
|
|
2007-02-12
|
|
Tagit! Tagit2b 2.1.B Build 2 - '/tagmin/updateconf.php?Admin' Remote File Inclusion
|
1 |
WEB
|
K-159
|
|
2007-02-12
|
|
Tagit! Tagit2b 2.1.B Build 2 - '/tagmin/readconf.php?Admin' Remote File Inclusion
|
1 |
WEB
|
K-159
|
|
2007-02-12
|
|
Tagit! Tagit2b 2.1.B Build 2 - '/tagmin/index.php?adminpath' Remote File Inclusion
|
1 |
WEB
|
K-159
|
|
2007-02-12
|
|
Tagit! Tagit2b 2.1.B Build 2 - '/tagmin/verify.php?configpath' Remote File Inclusion
|
1 |
WEB
|
K-159
|
|
2007-02-12
|
|
Tagit! Tagit2b 2.1.B Build 2 - '/tagmin/manageTagmins.php?configpath' Remote File Inclusion
|
1 |
WEB
|
K-159
|
|
2007-02-12
|
|
Tagit! Tagit2b 2.1.B Build 2 - '/tagmin/editTag.php?configpath' Remote File Inclusion
|
1 |
WEB
|
K-159
|
|
2007-02-12
|
|
Tagit! Tagit2b 2.1.B Build 2 - '/tagmin/editTagmin.php?configpath' Remote File Inclusion
|
0 |
WEB
|
K-159
|
|
2007-02-12
|
|
Tagit! Tagit2b 2.1.B Build 2 - '/tagmin/delTag.php?configpath' Remote File Inclusion
|
1 |
WEB
|
K-159
|
|
2007-02-12
|
|
Tagit! Tagit2b 2.1.B Build 2 - '/tagmin/delTagmin.php?configpath' Remote File Inclusion
|
1 |
WEB
|
K-159
|
|
2007-02-12
|
|
Tagit! Tagit2b 2.1.B Build 2 - '/tagmin/ban_watch.php?configpath' Remote File Inclusion
|
1 |
WEB
|
K-159
|
|
2007-02-12
|
|
Tagit! Tagit2b 2.1.B Build 2 - '/tagmin/addTagmin.php?configpath' Remote File Inclusion
|
1 |
WEB
|
K-159
|
|
2007-02-12
|
|
Tagit! Tagit2b 2.1.B Build 2 - '/CONFIG/errmsg.inc.php?configpath' Remote File Inclusion
|
1 |
WEB
|
K-159
|
|
2007-02-12
|
|
Tagit! Tagit2b 2.1.B Build 2 - 'tag_process.php' Multiple Remote File Inclusions
|
1 |
WEB
|
K-159
|
