|
2007-01-02
|
|
VCard Pro - 'gbrowse.php' Cross-Site Scripting
|
1 |
WEB
|
exexp
|
|
2007-01-02
|
|
Simplog 0.9.3 - 'archive.php' SQL Injection
|
2 |
WEB
|
Javor Ninov
|
|
2006-12-30
|
|
Spooky 2.7 - 'login/register.asp' SQL Injection
|
1 |
WEB
|
Doz
|
|
2006-12-29
|
|
Mobilelib Gold - Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
viP HaCKEr
|
|
2006-12-27
|
|
PHP iCalendar 1.1/2.x - 'preferences.php' Cross-Site Scripting
|
2 |
WEB
|
Lostmon
|
|
2006-12-27
|
|
PHP iCalendar 1.1/2.x - 'print.php' Cross-Site Scripting
|
1 |
WEB
|
Lostmon
|
|
2006-12-27
|
|
PHP iCalendar 1.1/2.x - 'getdate' Cross-Site Scripting
|
1 |
WEB
|
Lostmon
|
|
2006-12-27
|
|
PHP iCalendar 1.1/2.x - 'search.php' Cross-Site Scripting
|
1 |
WEB
|
Lostmon
|
|
2006-12-27
|
|
PHP iCalendar 1.1/2.x - 'week.php' Cross-Site Scripting
|
1 |
WEB
|
Lostmon
|
|
2006-12-27
|
|
PHP iCalendar 1.1/2.x - 'year.php' Cross-Site Scripting
|
1 |
WEB
|
Lostmon
|
|
2006-12-27
|
|
PHP iCalendar 1.1/2.x - 'month.php' Cross-Site Scripting
|
1 |
WEB
|
Lostmon
|
|
2006-12-27
|
|
PHP iCalendar 1.1/2.x - 'day.php' Cross-Site Scripting
|
1 |
WEB
|
Lostmon
|
|
2006-12-27
|
|
DMXReady Secure Login Manager 1.0 - '/applications/SecureLoginManager/inc_secureloginmanager.asp?sen
|
1 |
WEB
|
Doz
|
|
2006-12-27
|
|
DMXReady Secure Login Manager 1.0 - 'members.asp?sent' SQL Injection
|
1 |
WEB
|
Doz
|
|
2006-12-27
|
|
DMXReady Secure Login Manager 1.0 - 'content.asp?sent' SQL Injection
|
1 |
WEB
|
Doz
|
|
2006-12-27
|
|
DMXReady Secure Login Manager 1.0 - 'login.asp?sent' SQL Injection
|
1 |
WEB
|
Doz
|
|
2006-12-27
|
|
Hosting Controller 7C - 'FolderManager.aspx' Directory Traversal
|
1 |
WEB
|
KAPDA
|
|
2006-12-27
|
|
WordPress Core 1.x/2.0.x - 'template.php' HTML Injection
|
1 |
WEB
|
David Kierznowski
|
|
2013-11-01
|
|
pdirl PHP Directory Listing 1.0.4 - Cross-Site Scripting
|
1 |
WEB
|
Vulnerability-Lab
|
|
2006-12-26
|
|
phpCMS 1.1.7 - 'class.layout_PHPcms.php' Remote File Inclusion
|
1 |
WEB
|
Federico Fazzi
|
|
2006-12-26
|
|
phpCMS 1.1.7 - 'class.lib_indexer_universal_PHPcms.php' Remote File Inclusion
|
1 |
WEB
|
Federico Fazzi
|
|
2006-12-26
|
|
phpCMS 1.1.7 - 'class.search_PHPcms.php' Remote File Inclusion
|
1 |
WEB
|
Federico Fazzi
|
|
2006-12-26
|
|
phpCMS 1.1.7 - 'class.cache_PHPcms.php' Remote File Inclusion
|
1 |
WEB
|
Federico Fazzi
|
|
2006-12-26
|
|
phpCMS 1.1.7 - 'class.http_indexer_PHPcms.php' Remote File Inclusion
|
1 |
WEB
|
Federico Fazzi
|
|
2006-12-26
|
|
phpCMS 1.1.7 - 'class.edit_PHPcms.php' Remote File Inclusion
|
1 |
WEB
|
Federico Fazzi
|
|
2006-12-26
|
|
phpCMS 1.1.7 - 'class.session_PHPcms.php' Remote File Inclusion
|
1 |
WEB
|
Federico Fazzi
|
|
2006-12-26
|
|
phpCMS 1.1.7 - 'class.parser_PHPcms.php' Remote File Inclusion
|
1 |
WEB
|
Federico Fazzi
|
|
2006-12-26
|
|
phpCMS 1.1.7 - 'parser.php' Remote File Inclusion
|
1 |
WEB
|
Federico Fazzi
|
|
2006-12-26
|
|
phpCMS 1.1.7 - 'counter.php' Remote File Inclusion
|
1 |
WEB
|
Federico Fazzi
|
|
2006-12-26
|
|
Luckybot 3 - 'DIR' Multiple Remote File Inclusions
|
1 |
WEB
|
Red_Casper
|
|
2006-12-25
|
|
vBulletin 3.5.x/3.6.x - SWF Script Injection
|
0 |
WEB
|
Ashraf Morad
|
|
2006-12-24
|
|
TimberWolf 1.2.2 - 'shownews.php' Cross-Site Scripting
|
1 |
WEB
|
CorryL
|
|
2006-12-24
|
|
Chatwm 1.0 - 'SelGruFra.asp' SQL Injection
|
0 |
WEB
|
ShaFuq31
|
|
2006-12-23
|
|
Future Internet - 'index.cfm?categoryId' Cross-Site Scripting
|
1 |
WEB
|
Linux_Drox
|
|
2006-12-23
|
|
Future Internet - 'index.cfm' Multiple SQL Injections
|
1 |
WEB
|
Linux_Drox
|
|
2006-12-22
|
|
Efkan Forum 1.0 - 'Grup' SQL Injection
|
1 |
WEB
|
ShaFuq31
|
|
2013-11-01
|
|
WordPress Theme Think Responsive 1.0 - Arbitrary File Upload
|
1 |
WEB
|
Byakuya Kouta
|
|
2013-11-01
|
|
ImpressPages CMS 3.6 - 'manage()' Remote Code Execution
|
1 |
WEB
|
LiquidWorm
|
|
2013-11-01
|
|
WordPress Theme Switchblade 1.3 - Arbitrary File Upload
|
1 |
WEB
|
Byakuya Kouta
|
|
2013-11-01
|
|
ImpressPages CMS 3.6 - Arbitrary File Deletion
|
1 |
WEB
|
LiquidWorm
|
|
2013-10-31
|
|
Opsview pre 4.4.1 - Blind SQL Injection
|
1 |
WEB
|
J. Oquendo
|
|
2013-10-31
|
|
ImpressPages CMS 3.6 - Multiple Cross-Site Scripting / SQL Injection Vulnerabilities
|
1 |
WEB
|
LiquidWorm
|
|
2006-12-22
|
|
Xt-News 0.1 - 'show_news.php?id_news' SQL Injection
|
1 |
WEB
|
Mr_KaLiMaN
|
|
2006-12-22
|
|
Xt-News 0.1 - 'show_news.php?id_news' Cross-Site Scripting
|
1 |
WEB
|
Mr_KaLiMaN
|
|
2013-10-30
|
|
Unicorn Router WB-3300NR - Cross-Site Request Forgery (Factory Reset/DNS Change)
|
2 |
WEB
|
absane
|
|
2006-12-22
|
|
Xt-News 0.1 - 'add_comment.php?id_news' Cross-Site Scripting
|
1 |
WEB
|
Mr_KaLiMaN
|
|
2006-12-22
|
|
Oracle Portal 9i/10g - Container_Tabs.jsp Cross-Site Scripting
|
2 |
WEB
|
putosoft softputo
|
|
2006-12-22
|
|
A-Blog 1.0 - Cross-Site Scripting
|
1 |
WEB
|
Fukumori
|
|
2006-12-20
|
|
Calacode @Mail Webmail 4.51 - Filtering Engine HTML Injection
|
1 |
WEB
|
Philippe C. Caturegli
|
|
2006-11-08
|
|
PHPBuilder 0.0.2 - 'HTM2PHP.php' Directory Traversal
|
0 |
WEB
|
the master
|
|
2006-12-20
|
|
Oracle Portal 9.0.2 - Calendar.jsp Multiple HTTP Response Splitting Vulnerabilities
|
1 |
WEB
|
putosoft softputo
|
|
2006-12-20
|
|
Typo3 3.7/3.8/4.0 - 'Class.TX_RTEHTMLArea_PI1.php' Multiple Remote Command Execution Vulnerabilities
|
1 |
WEB
|
D. Fabian
|
|
2006-12-19
|
|
Mini Web Shop 2.1.c - 'view.php?Viewcategory.php' Cross-Site Scripting
|
1 |
WEB
|
Linux_Drox
|
|
2006-12-19
|
|
osTicket 1.2/1.3 Support Cards - 'view.php' Cross-Site Scripting
|
2 |
WEB
|
Hacker CooL
|
|
2006-12-18
|
|
Knusperleicht Shoutbox 2.6 - 'Shout.php' HTML Injection
|
1 |
WEB
|
IMHOT3B
|
|
2006-12-16
|
|
Contra Haber Sistemi 1.0 - 'Haber.asp' SQL Injection
|
1 |
WEB
|
ShaFuck31
|
|
2013-10-29
|
|
XAMPP for Windows 1.8.2 - Blind SQL Injection
|
1 |
WEB
|
Sebastián Magof
|
|
2006-12-16
|
|
eXtreme-fusion 4.02 - 'Fusion_Forum_View.php' Local File Inclusion
|
1 |
WEB
|
Kacper
|
|
2006-12-16
|
|
Omniture SiteCatalyst - Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Hackers Center Security
|
|
2006-12-14
|
|
Moodle 1.5/1.6 - '/mod/forum/discuss.php?navtail' Cross-Site Scripting
|
1 |
WEB
|
Jose Miguel Yanez Venegas
|
|
2006-12-14
|
|
GenesisTrader 1.0 - 'form.php' Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Mr_KaLiMaN
|
|
2006-12-14
|
|
GenesisTrader 1.0 - 'form.php' Arbitrary File Source Disclosure
|
1 |
WEB
|
Mr_KaLiMaN
|
|
2013-10-29
|
|
GTX CMS 2013 Optima - SQL Injection
|
1 |
WEB
|
Vulnerability-Lab
|
|
2013-10-29
|
|
Olat CMS 7.8.0.1 - Persistent Cross-Site Scripting
|
1 |
WEB
|
Vulnerability-Lab
|
|
2006-12-13
|
|
Work System eCommerce 3.0.3/3.0.4 - 'forum.php' Remote File Inclusion
|
1 |
WEB
|
the_Edit0r
|
|
2006-12-11
|
|
Lotfian Request For Travel 1.0 - 'ProductDetails.asp' SQL Injection
|
2 |
WEB
|
ajann
|
|
2006-12-11
|
|
Netwin SurgeFTP 2.3a1 - 'SurgeFTPMGR.cgi' Multiple Input Validation Vulnerabilities
|
1 |
WEB
|
Umesh Wanve
|
|
2013-10-29
|
|
Horde Groupware Web Mail Edition 5.1.2 - Cross-Site Request Forgery (1)
|
1 |
WEB
|
Marcela Benetrix
|
|
2006-12-11
|
|
CMS Made Simple 1.0.2 - 'SearchInput' Cross-Site Scripting
|
1 |
WEB
|
Nicokiller
|
|
2006-12-09
|
|
AppIntellect SpotLight CRM - 'login.asp' SQL Injection
|
1 |
WEB
|
ajann
|
|
2006-12-09
|
|
MXBB Profile Control Panel 0.91c - Module Remote File Inclusion
|
1 |
WEB
|
bd0rk
|
|
2006-12-09
|
|
ProNews 1.5 - 'lire-avis.php?aa' Cross-Site Scripting
|
1 |
WEB
|
Mr_KaLiMaN
|
|
2006-12-09
|
|
ProNews 1.5 - 'lire-avis.php?aa' SQL Injection
|
1 |
WEB
|
Mr_KaLiMaN
|
|
2006-12-09
|
|
ProNews 1.5 - '/admin/change.php' Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Mr_KaLiMaN
|
|
2013-10-29
|
|
Stem Innovation - 'IZON' Hard-Coded Credentials
|
1 |
WEB
|
Mark Stanislav
|
|
2013-10-29
|
|
ILIAS eLearning CMS 4.3.4 < 4.4 - Persistent Cross-Site Scripting
|
1 |
WEB
|
Vulnerability-Lab
|
|
2013-10-28
|
|
Onpub CMS 1.4/1.5 - Multiple SQL Injections
|
1 |
WEB
|
Vulnerability-Lab
|
|
2013-10-28
|
|
Pirelli Discus DRG A125g - Password Disclosure
|
1 |
WEB
|
Sebastián Magof
|
|
2013-10-28
|
|
PHP RSS Reader 2010 - SQL Injection
|
0 |
WEB
|
mishal abdullah
|
|
2006-12-09
|
|
KDPics 1.11/1.16 - 'galeries.inc.php3?categories' Cross-Site Scripting
|
0 |
WEB
|
Mr_KaLiMaN
|
|
2006-12-09
|
|
KDPics 1.11/1.16 - 'index.php3?categories' Cross-Site Scripting
|
0 |
WEB
|
Mr_KaLiMaN
|
|
2006-12-09
|
|
AnnonceScriptHP 2.0 - 'voirannonce.php?no' SQL Injection
|
0 |
WEB
|
Mr_KaLiMaN
|
|
2006-12-09
|
|
AnnonceScriptHP 2.0 - 'email.php?id' SQL Injection
|
0 |
WEB
|
Mr_KaLiMaN
|
|
2006-12-09
|
|
AnnonceScriptHP 2.0 - '/admin/admin_config/Aide.php?email' Cross-Site Scripting
|
0 |
WEB
|
Mr_KaLiMaN
|
|
2006-12-09
|
|
AnnonceScriptHP 2.0 - 'membre.dwt.php?email' Cross-Site Scripting
|
0 |
WEB
|
Mr_KaLiMaN
|
|
2006-12-09
|
|
AnnonceScriptHP 2.0 - '/Templates/commun.dwt.php?email' Cross-Site Scripting
|
0 |
WEB
|
Mr_KaLiMaN
|
|
2006-12-09
|
|
AnnonceScriptHP 2.0 - '/Templates/admin.dwt.php?email' Cross-Site Scripting
|
0 |
WEB
|
Mr_KaLiMaN
|
|
2006-12-09
|
|
AnnonceScriptHP 2.0 - 'erreurinscription.php?email' Cross-Site Scripting
|
0 |
WEB
|
Mr_KaLiMaN
|
|
2006-12-09
|
|
AnnonceScriptHP 2.0 - '/admin/admin_membre/fiche_membre.php?idmembre' SQL Injection
|
0 |
WEB
|
Mr_KaLiMaN
|
|
2006-12-09
|
|
Messageriescripthp 2.0 - '/Contact/contact.php' Multiple Cross-Site Scripting Vulnerabilities
|
0 |
WEB
|
Mr_KaLiMaN
|
|
2006-12-09
|
|
Messageriescripthp 2.0 - 'existeemail.php?email' Cross-Site Scripting
|
1 |
WEB
|
Mr_KaLiMaN
|
|
2006-12-09
|
|
Messageriescripthp 2.0 - 'existepseudo.php?pseudo' Cross-Site Scripting
|
1 |
WEB
|
Mr_KaLiMaN
|
|
2006-12-09
|
|
Messageriescripthp 2.0 - 'lire-avis.php?aa' SQL Injection
|
1 |
WEB
|
Mr_KaLiMaN
|
|
2006-12-09
|
|
MaviPortal - 'Arama.asp' Cross-Site Scripting
|
0 |
WEB
|
St@rExT
|
|
2006-12-08
|
|
Cilem Haber Free Edition - 'hata.asp?hata' Cross-Site Scripting
|
1 |
WEB
|
ShaFuck31
|
|
2006-12-08
|
|
cPanel Web Hosting Manager 3.1 - Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Aria-Security Team
|
|
2006-12-08
|
|
cPanel 11 BoxTrapper - Manage.HTML Cross-Site Scripting
|
1 |
WEB
|
Aria-Security Team
|
|
2006-11-18
|
|
Link CMS - 'prikazInformacije.php?IDStranicaPodaci' SQL Injection
|
1 |
WEB
|
Ivan Markovic
|
|
2006-11-18
|
|
Link CMS - 'navigacija.php?IDMeniGlavni' SQL Injection
|
1 |
WEB
|
Ivan Markovic
|
|
2006-12-06
|
|
Dol Storye - 'Dettaglio.asp' Multiple SQL Injections
|
1 |
WEB
|
WarGame
|
|
2006-12-04
|
|
Vt-Forum Lite 1.3 - 'vf_newtopic.asp' IFRAME Element Cross-Site Scripting
|
1 |
WEB
|
St@rExT
|
|
2006-12-04
|
|
Vt-Forum Lite 1.3 - 'vf_info.asp?StrMes' Cross-Site Scripting
|
1 |
WEB
|
St@rExT
|
|
2006-12-04
|
|
ac4p Mobile - 'polls.php' Multiple Cross-Site Scripting Vulnerabilities (2)
|
1 |
WEB
|
SwEET-DeViL
|
|
2006-12-04
|
|
ac4p Mobile - 'up.php?Taaa' Cross-Site Scripting
|
1 |
WEB
|
SwEET-DeViL
|
|
2006-12-04
|
|
UApplication Uguestbook 1.0 - 'index.asp' SQL Injection
|
1 |
WEB
|
Aria-Security Team
|
|
2006-12-04
|
|
Inside Systems Mail 2.0 - 'error.php' Cross-Site Scripting
|
1 |
WEB
|
Vicente Aguilera Diaz
|
|
2006-12-04
|
|
Cerberus Helpdesk 2.x - 'Spellwin.php' Cross-Site Scripting
|
0 |
WEB
|
En Douli
|
|
2006-12-04
|
|
BlueSocket BSC 2100 5.0/5.1 - Admin.pl Cross-Site Scripting
|
0 |
WEB
|
Jesus Olmos Gonzalez
|
|
2006-12-04
|
|
Metyus Okul Yonetim 1.0 - 'Sistemi Uye_giris_islem.asp' SQL Injection
|
0 |
WEB
|
ShaFuck31
|
|
2006-12-02
|
|
DUdownload 1.0/1.1 - 'detail.asp' Multiple SQL Injections
|
0 |
WEB
|
Aria-Security Team
|
|
2006-12-02
|
|
PHPNews 1.3 - 'Link_Temp.php' Cross-Site Scripting
|
1 |
WEB
|
Detefix
|
|
2006-12-02
|
|
CuteNews 1.3.6 - 'result' Cross-Site Scripting
|
1 |
WEB
|
Detefix
|
|
2006-12-01
|
|
Aspee Ziyaretci Defteri - 'giris.asp' Multiple Field SQL Injections
|
1 |
WEB
|
ShaFuq31
|
|
2006-12-27
|
|
FreeQBoard 1.0/1.1 - 'QB_Path' Multiple Remote File Inclusions
|
1 |
WEB
|
Shell
|
|
2013-10-26
|
|
WordPress Theme Curvo - Cross-Site Request Forgery / Arbitrary File Upload
|
1 |
WEB
|
Byakuya Kouta
|
|
2006-12-01
|
|
DZCP (deV!L_z Clanportal) 1.3.6 - 'Show' SQL Injection
|
1 |
WEB
|
Tim Weber
|
|
2006-12-01
|
|
Invision Gallery 2.0.7 - 'index.php?IMG' SQL Injection
|
1 |
WEB
|
infection
|
|
2006-11-30
|
|
Woltlab Burning Board 2.3.x - 'register.php' Cross-Site Scripting
|
1 |
WEB
|
blueshisha
|
|
2006-11-30
|
|
Seditio1.10 / Land Down 8.0 Under - 'polls.php' SQL Injection
|
1 |
WEB
|
ajann
|
|
2006-11-16
|
|
b2evolution 1.8.2/1.9 - '_referer_spam.page.php' Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
lotto fischer
|
|
2006-11-16
|
|
b2evolution 1.8.2/1.9 - '_410_stats_gone.page.php?app_name' Cross-Site Scripting
|
1 |
WEB
|
lotto fischer
|
|
2006-11-16
|
|
b2evolution 1.8.2/1.9 - '_404_not_found.page.php' Multiple Cross-Site Scripting Vulnerabilities
|
0 |
WEB
|
lotto fischer
|
|
2006-11-27
|
|
Evolve Shopping Cart - 'products.asp' SQL Injection
|
0 |
WEB
|
Aria-Security Team
|
|
2006-11-27
|
|
uPhotoGallery 1.1 - 'thumbnails.asp?ci' SQL Injection
|
0 |
WEB
|
Aria-Security Team
|
|
2006-11-27
|
|
uPhotoGallery 1.1 - 'Slideshow.asp?ci' SQL Injection
|
0 |
WEB
|
Aria-Security Team
|
