|
2006-03-28
|
|
OneOrZero 1.6.3 Helpdesk - 'index.php' SQL Injection
|
3 |
WEB
|
Preddy
|
|
2006-03-28
|
|
AL-Caricatier 2.5 - Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
Linux_Drox
|
|
2006-03-28
|
|
Connect Daily 3.2.8/3.2.9 - 'ViewWeek.html?week' Cross-Site Scripting
|
3 |
WEB
|
r0t
|
|
2006-03-28
|
|
Connect Daily 3.2.8/3.2.9 - 'ViewCal.html?item_type_id' Cross-Site Scripting
|
3 |
WEB
|
r0t
|
|
2006-03-28
|
|
Connect Daily 3.2.8/3.2.9 - 'ViewYear.html' Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
r0t
|
|
2006-03-28
|
|
Connect Daily 3.2.8/3.2.9 - 'ViewSearch.html' Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
r0t
|
|
2006-03-28
|
|
Connect Daily 3.2.8/3.2.9 - 'ViewDay.html' Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
r0t
|
|
2006-03-28
|
|
Arab Portal 2.0 - 'download.php' Cross-Site Scripting
|
3 |
WEB
|
o.y.6
|
|
2006-03-28
|
|
Arab Portal 2.0 - 'online.php' Cross-Site Scripting
|
3 |
WEB
|
o.y.6
|
|
2006-03-28
|
|
CONTROLzx Hms 3.3.4 - 'server_management.php?plan_id' Cross-Site Scripting
|
3 |
WEB
|
r0t
|
|
2006-03-28
|
|
CONTROLzx Hms 3.3.4 - 'dedicated_order.php?dedicatedPlanID' Cross-Site Scripting
|
3 |
WEB
|
r0t
|
|
2006-03-28
|
|
CONTROLzx Hms 3.3.4 - 'shared_order.php?sharedPlanID' Cross-Site Scripting
|
3 |
WEB
|
r0t
|
|
2006-03-28
|
|
PHPCOIN 1.2 - 'mod.php?fs' Cross-Site Scripting
|
3 |
WEB
|
r0t
|
|
2006-03-28
|
|
PHPCOIN 1.2 - 'mod_print.php?fs' Cross-Site Scripting
|
3 |
WEB
|
r0t
|
|
2006-03-28
|
|
phpMyFamily 1.4.1 - 'Track.php' Cross-Site Scripting
|
3 |
WEB
|
matrix_killer
|
|
2006-03-28
|
|
RealestateZONE 4.2 - Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
r0t
|
|
2006-03-27
|
|
ActiveCampaign SupportTrio 2.50.2 - Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
r0t
|
|
2006-03-27
|
|
FusionZONE CouponZONE 4.2 - Multiple SQL Injections
|
3 |
WEB
|
r0t
|
|
2006-03-28
|
|
ClassifiedZONE 1.2 - 'Accountlogon.cfm' Cross-Site Scripting
|
2 |
WEB
|
r0t
|
|
2006-03-28
|
|
FusionZONE CouponZONE 4.2 - Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
r0t
|
|
2006-03-27
|
|
BlankOL 1.0 - 'Bol.cgi' Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
r0t
|
|
2006-03-27
|
|
Web Host Automation Ltd. Helm 3.2.10 Beta - 'default.asp' Multiple Cross-Site Scripting Vulnerabilit
|
2 |
WEB
|
r0t
|
|
2006-03-27
|
|
Web Host Automation Ltd. Helm 3.2.10 Beta - 'domains.asp?txtDomainName' Cross-Site Scripting
|
2 |
WEB
|
r0t
|
|
2006-03-27
|
|
DSLogin 1.0 - 'index.php' Multiple SQL Injections
|
3 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-03-27
|
|
Pixel Motion - 'index.php?date' SQL Injection
|
2 |
WEB
|
DaBDouB-MoSiKaR
|
|
2006-03-27
|
|
Pixel Motion - '/admin/index.php' Multiple SQL Injections
|
2 |
WEB
|
DaBDouB-MoSiKaR
|
|
2006-03-27
|
|
Caloris Planitia Technologies School Management System 1.0 - Cross-Site Scripting
|
3 |
WEB
|
r0t
|
|
2006-03-27
|
|
Online Quiz System - 'student.asp?msg' Cross-Site Scripting
|
3 |
WEB
|
r0t
|
|
2006-03-27
|
|
Online Quiz System - 'prequiz.asp?exam' Cross-Site Scripting
|
3 |
WEB
|
r0t
|
|
2006-03-27
|
|
Toast Forums 1.6 - 'Toast.asp' Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
r0t
|
|
2006-03-27
|
|
Maian Weblog 2.0 - 'mail.php' SQL Injection
|
3 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-03-27
|
|
Maian Weblog 2.0 - 'print.php' SQL Injection
|
3 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-03-27
|
|
SaPHPLesson 2.0 - 'print.php' SQL Injection
|
3 |
WEB
|
Linux_Drox
|
|
2006-03-27
|
|
EZHomePagePro 1.5 - 'users_mgallery.asp?usid' Cross-Site Scripting
|
3 |
WEB
|
r0t
|
|
2006-03-27
|
|
EZHomePagePro 1.5 - 'users_profiles.asp' Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
r0t
|
|
2006-03-27
|
|
EZHomePagePro 1.5 - 'users_calendar.asp?page' Cross-Site Scripting
|
3 |
WEB
|
r0t
|
|
2006-03-27
|
|
EZHomePagePro 1.5 - 'users_search.asp' Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
r0t
|
|
2006-03-27
|
|
EZHomePagePro 1.5 - 'email.asp' Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
r0t
|
|
2006-03-27
|
|
Nuked-klaN 1.x - 'index.php' SQL Injection
|
3 |
WEB
|
DaBDouB-MoSiKaR
|
|
2006-03-27
|
|
ConfTool 1.1 - 'index.php' Cross-Site Scripting
|
3 |
WEB
|
botan
|
|
2006-03-24
|
|
VihorDesign - 'index.php' Remote File Inclusion
|
3 |
WEB
|
botan
|
|
2006-03-24
|
|
VihorDesign - 'index.php' Cross-Site Scripting
|
3 |
WEB
|
botan
|
|
2006-03-24
|
|
Cholod MySQL Based Message Board - 'Mb.cgi' SQL Injection
|
3 |
WEB
|
kspecial
|
|
2006-03-23
|
|
IBM Tivoli Business Systems Manager 3.1 - APWC_Win_Main.jsp Cross-Site Scripting
|
3 |
WEB
|
anonymous
|
|
2003-03-23
|
|
AdMan 1.0.20051221 - 'ViewStatement.php' SQL Injection
|
3 |
WEB
|
r0t
|
|
2006-03-23
|
|
CoMoblog 1.0 - 'Img.php' Cross-Site Scripting
|
3 |
WEB
|
FarhadKey
|
|
2006-03-23
|
|
EasyMoblog 0.5 - 'Img.php' Cross-Site Scripting
|
3 |
WEB
|
FarhadKey
|
|
2006-03-22
|
|
1WebCalendar 4.0 - 'mainCal.cfm' SQL Injection
|
3 |
WEB
|
r0t3d3Vil
|
|
2006-03-22
|
|
1WebCalendar 4.0 - '/news/newsView.cfm?NewsID' SQL Injection
|
3 |
WEB
|
r0t3d3Vil
|
|
2006-03-22
|
|
1WebCalendar 4.0 - 'viewEvent.cfm?EventID' SQL Injection
|
3 |
WEB
|
r0t3d3Vil
|
|
2006-03-22
|
|
Motorola - BlueTooth Interface Dialog Spoofing
|
3 |
WEB
|
kspecial
|
|
2006-03-20
|
|
Verisign MPKI 6.0 - 'Haydn.exe' Cross-Site Scripting
|
2 |
WEB
|
Alberto Soli
|
|
2006-02-24
|
|
WinHKI 1.4/1.5/1.6 - Directory Traversal
|
3 |
WEB
|
raphael.huck@free.fr
|
|
2006-03-20
|
|
phpWebSite 0.8.2/0.8.3 - 'article.php?sid' SQL Injection
|
3 |
WEB
|
DaBDouB-MoSiKaR
|
|
2006-03-20
|
|
phpWebSite 0.8.2/0.8.3 - 'friend.php?sid' SQL Injection
|
3 |
WEB
|
DaBDouB-MoSiKaR
|
|
2006-03-18
|
|
MusicBox 2.3 - 'cart.php' Cross-Site Scripting
|
3 |
WEB
|
Linux_Drox
|
|
2006-03-18
|
|
MusicBox 2.3 - 'index.php' Cross-Site Scripting
|
3 |
WEB
|
Linux_Drox
|
|
2006-03-18
|
|
MusicBox 2.3 - 'index.php' SQL Injection
|
3 |
WEB
|
Linux_Drox
|
|
2006-03-18
|
|
Woltlab Burning Board 2.3.4 - 'Class_DB_MySQL.php' Cross-Site Scripting
|
3 |
WEB
|
r57shell
|
|
2006-03-18
|
|
Extcalendar 1.0 - Cross-Site Scripting
|
2 |
WEB
|
Soothackers
|
|
2006-03-17
|
|
Invision Power Services Invision Board 2.0.4 - Members Action Multiple Cross-Site Scripting Vulnerab
|
3 |
WEB
|
Mr.SNAKE
|
|
2006-03-17
|
|
Invision Power Board (IP.Board) 2.0.4 - Help Action 'HID' Cross-Site Scripting
|
3 |
WEB
|
Mr.SNAKE
|
|
2006-03-17
|
|
Invision Power Board (IP.Board) 2.0.4 - Mail Action 'MID' Cross-Site Scripting
|
3 |
WEB
|
Mr.SNAKE
|
|
2006-03-17
|
|
Invision Power Board (IP.Board) 2.0.4 - Print Action 't' Cross-Site Scripting
|
3 |
WEB
|
Mr.SNAKE
|
|
2006-03-17
|
|
Invision Power Board (IP.Board) 2.0.4 - Calendar Action Multiple Cross-Site Scripting Vulnerabilitie
|
3 |
WEB
|
Mr.SNAKE
|
|
2006-03-17
|
|
Invision Power Board (IP.Board) 2.0.4 - 'index.php?st' Cross-Site Scripting
|
3 |
WEB
|
Mr.SNAKE
|
|
2006-03-17
|
|
Invision Power Board (IP.Board) 2.0.4 - Search Action Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
Mr.SNAKE
|
|
2006-03-16
|
|
phpMyAdmin 2.8.1 - Set_Theme Cross-Site Scripting
|
4 |
WEB
|
Ali Asad
|
|
2006-03-16
|
|
Oxynews - 'index.php' SQL Injection
|
3 |
WEB
|
R00T3RR0R
|
|
2013-08-08
|
|
BigTree CMS 4.0 RC2 - Multiple Vulnerabilities
|
3 |
WEB
|
High-Tech Bridge SA
|
|
2013-08-08
|
|
PHPFox 3.6.0 (build3) - Multiple SQL Injections
|
3 |
WEB
|
Matias Fontanini
|
|
2006-03-16
|
|
Contrexx CMS 1.0.x - 'index.php' Cross-Site Scripting
|
3 |
WEB
|
Soot
|
|
2006-03-15
|
|
DSDownload 1.0 - Multiple SQL Injections
|
3 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-03-14
|
|
DSCounter 1.2 - 'index.php' SQL Injection
|
3 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-03-14
|
|
CyBoards PHP Lite 1.21/1.25 - 'post.php' SQL Injection
|
3 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-03-13
|
|
Vegas Forum 1.0 - 'Forumlib.php' SQL Injection
|
3 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-03-10
|
|
WMNews - 'wmcomments.php?ArtID' Cross-Site Scripting
|
3 |
WEB
|
R00T3RR0R
|
|
2006-03-10
|
|
WMNews - 'footer.php?ctrrowcol' Cross-Site Scripting
|
3 |
WEB
|
R00T3RR0R
|
|
2006-03-10
|
|
WMNews - 'wmview.php?ArtCat' Cross-Site Scripting
|
3 |
WEB
|
R00T3RR0R
|
|
2006-03-11
|
|
vCard 2.8/2.9 - 'create.php' Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
Linux_Drox
|
|
2006-03-10
|
|
Core News 2.0.1 - 'index.php' Remote Code Execution
|
3 |
WEB
|
botan
|
|
2006-03-10
|
|
QwikiWiki 1.4/1.5 - 'recentchanges.php?help' Cross-Site Scripting
|
3 |
WEB
|
Kiki
|
|
2006-03-10
|
|
QwikiWiki 1.4/1.5 - 'pageindex.php?help' Cross-Site Scripting
|
3 |
WEB
|
Kiki
|
|
2006-03-10
|
|
QwikiWiki 1.4/1.5 - 'login.php' Multiple Cross-Site Scripting Vulnerabilities
|
4 |
WEB
|
Kiki
|
|
2006-03-10
|
|
QwikiWiki 1.4/1.5 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
Kiki
|
|
2006-03-09
|
|
txtForum 1.0.3/1.0.4 - Remote PHP Script Code Injection
|
3 |
WEB
|
enji@infosys.tuwien.ac.at
|
|
2013-08-07
|
|
McAfee SuperScan 4.0 - Cross-Site Scripting
|
3 |
WEB
|
Trustwave's SpiderLabs
|
|
2013-08-07
|
|
Joomla! Component com_sectionex 2.5.96 - SQL Injection
|
3 |
WEB
|
Matias Fontanini
|
|
2013-08-07
|
|
WordPress Plugin Usernoise 3.7.8 - Persistent Cross-Site Scripting
|
3 |
WEB
|
RogueCoder
|
|
2013-08-07
|
|
Hikvision IP Cameras 4.1.0 b130111 - Multiple Vulnerabilities
|
3 |
WEB
|
Core Security
|
|
2013-08-07
|
|
WordPress Plugin Booking Calendar 4.1.4 - Cross-Site Request Forgery
|
3 |
WEB
|
Dylan Irzi
|
|
2013-08-07
|
|
Pluck CMS 4.7 - HTML Code Injection
|
3 |
WEB
|
Yashar shahinzadeh
|
|
2006-03-09
|
|
txtForum 1.0.3/1.0.4 - Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
Nenad Jovanovic
|
|
2006-03-09
|
|
DCP-Portal 3.7/4.x/5.x/6.x - 'mycontents.php' Multiple Cross-Site Scripting Vulnerabilities
|
4 |
WEB
|
Nenad Jovanovic
|
|
2006-03-09
|
|
DCP-Portal 3.7/4.x/5.x/6.x - 'lostpassword.php' Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
Nenad Jovanovic
|
|
2006-03-09
|
|
DCP-Portal 3.7/4.x/5.x/6.x - 'inbox.php' Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
Nenad Jovanovic
|
|
2006-03-09
|
|
DCP-Portal 3.7/4.x/5.x/6.x - 'forums.php' Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
Nenad Jovanovic
|
|
2006-03-09
|
|
DCP-Portal 3.7/4.x/5.x/6.x - 'calendar.php' Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
Nenad Jovanovic
|
|
2006-03-09
|
|
DCP-Portal 3.7/4.x/5.x/6.x - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Nenad Jovanovic
|
|
2006-03-09
|
|
MyBloggie 2.1.2/2.1.3 - 'del.php' Cross-Site Scripting
|
2 |
WEB
|
enji@infosys.tuwien.ac.at
|
|
2006-03-09
|
|
MyBloggie 2.1.2/2.1.3 - 'delcat.php' Cross-Site Scripting
|
2 |
WEB
|
enji@infosys.tuwien.ac.at
|
|
2006-03-09
|
|
MyBloggie 2.1.2/2.1.3 - 'trackback_url' Cross-Site Scripting
|
2 |
WEB
|
enji@infosys.tuwien.ac.at
|
|
2006-03-09
|
|
MyBloggie 2.1.2/2.1.3 - 'editcat.php' Cross-Site Scripting
|
2 |
WEB
|
enji@infosys.tuwien.ac.at
|
|
2006-03-09
|
|
MyBloggie 2.1.2/2.1.3 - 'adduser.php' Cross-Site Scripting
|
2 |
WEB
|
enji@infosys.tuwien.ac.at
|
|
2006-03-09
|
|
MyBloggie 2.1.2/2.1.3 - 'edituser.php' Cross-Site Scripting
|
2 |
WEB
|
enji@infosys.tuwien.ac.at
|
|
2006-03-09
|
|
MyBloggie 2.1.2/2.1.3 - 'addcat.php' Cross-Site Scripting
|
2 |
WEB
|
enji@infosys.tuwien.ac.at
|
|
2006-03-09
|
|
MyBloggie 2.1.2/2.1.3 - 'deluser.php' Cross-Site Scripting
|
2 |
WEB
|
enji@infosys.tuwien.ac.at
|
|
2006-03-09
|
|
MyBloggie 2.1.2/2.1.3 - 'delcomment.php' Cross-Site Scripting
|
2 |
WEB
|
enji@infosys.tuwien.ac.at
|
|
2006-03-09
|
|
MyBloggie 2.1.2/2.1.3 - 'upload.php' Cross-Site Scripting
|
2 |
WEB
|
enji@infosys.tuwien.ac.at
|
|
2006-03-09
|
|
ADP Forum 2.0.x - 'Subject' HTML Injection
|
3 |
WEB
|
liz0
|
|
2013-08-07
|
|
FTP OnConnect 1.4.11 iOS - Multiple Vulnerabilities
|
2 |
WEB
|
Vulnerability-Lab
|
|
2006-03-09
|
|
sBlog 0.7.2 - 'comments_do.php' Multiple POST Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
Kiki
|
|
2006-03-09
|
|
sBlog 0.7.2 - 'search.php?keyword' POST Method Cross-Site Scripting
|
3 |
WEB
|
Kiki
|
|
2006-03-08
|
|
TextFileBB 1.0 - Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
Retard
|
|
2006-03-06
|
|
HitHost 1.0 - 'viewuser.php?hits' Cross-Site Scripting
|
3 |
WEB
|
Retard
|
|
2006-03-06
|
|
HitHost 1.0 - 'deleteuser.php?user' Cross-Site Scripting
|
3 |
WEB
|
Retard
|
|
2006-03-07
|
|
LoudBlog 0.41 - 'backend_settings.php' Traversal Arbitrary File Access
|
2 |
WEB
|
tzitaroth
|
|
2006-03-07
|
|
LoudBlog 0.41 - 'index.php?template' Traversal Arbitrary File Access
|
3 |
WEB
|
tzitaroth
|
|
2006-03-07
|
|
LoudBlog 0.41 - 'podcast.php' SQL Injection
|
2 |
WEB
|
tzitaroth
|
|
2006-03-07
|
|
Link Bank - 'Iframe.php' Cross-Site Scripting
|
3 |
WEB
|
Retard
|
|
2006-03-06
|
|
Game-Panel 2.6 - 'login.php' Cross-Site Scripting
|
3 |
WEB
|
Retard
|
|
2006-03-06
|
|
PHORUM 3.x/5.x - 'Common.php' Remote File Inclusion
|
3 |
WEB
|
ERNE
|
|
2006-03-06
|
|
Bitweaver 1.1/1.2 - 'Title' HTML Injection
|
3 |
WEB
|
Kiki
|
|
2006-03-06
|
|
Invision Power Board 2.1.5 - showtopic SQL Injection
|
3 |
WEB
|
Mr.SNAKE
|
|
2006-03-06
|
|
RunCMS 1.x - 'Bigshow.php' Cross-Site Scripting
|
2 |
WEB
|
Roozbeh Afrasiabi
|
