|
2006-03-27
|
|
ConfTool 1.1 - 'index.php' Cross-Site Scripting
|
1 |
WEB
|
botan
|
|
2006-03-24
|
|
VihorDesign - 'index.php' Remote File Inclusion
|
1 |
WEB
|
botan
|
|
2006-03-24
|
|
VihorDesign - 'index.php' Cross-Site Scripting
|
1 |
WEB
|
botan
|
|
2006-03-24
|
|
Cholod MySQL Based Message Board - 'Mb.cgi' SQL Injection
|
1 |
WEB
|
kspecial
|
|
2006-03-23
|
|
IBM Tivoli Business Systems Manager 3.1 - APWC_Win_Main.jsp Cross-Site Scripting
|
1 |
WEB
|
anonymous
|
|
2003-03-23
|
|
AdMan 1.0.20051221 - 'ViewStatement.php' SQL Injection
|
1 |
WEB
|
r0t
|
|
2006-03-23
|
|
CoMoblog 1.0 - 'Img.php' Cross-Site Scripting
|
0 |
WEB
|
FarhadKey
|
|
2006-03-23
|
|
EasyMoblog 0.5 - 'Img.php' Cross-Site Scripting
|
1 |
WEB
|
FarhadKey
|
|
2006-03-22
|
|
1WebCalendar 4.0 - 'mainCal.cfm' SQL Injection
|
1 |
WEB
|
r0t3d3Vil
|
|
2006-03-22
|
|
1WebCalendar 4.0 - '/news/newsView.cfm?NewsID' SQL Injection
|
1 |
WEB
|
r0t3d3Vil
|
|
2006-03-22
|
|
1WebCalendar 4.0 - 'viewEvent.cfm?EventID' SQL Injection
|
1 |
WEB
|
r0t3d3Vil
|
|
2006-03-22
|
|
Motorola - BlueTooth Interface Dialog Spoofing
|
1 |
WEB
|
kspecial
|
|
2006-03-20
|
|
Verisign MPKI 6.0 - 'Haydn.exe' Cross-Site Scripting
|
0 |
WEB
|
Alberto Soli
|
|
2006-02-24
|
|
WinHKI 1.4/1.5/1.6 - Directory Traversal
|
1 |
WEB
|
raphael.huck@free.fr
|
|
2006-03-20
|
|
phpWebSite 0.8.2/0.8.3 - 'article.php?sid' SQL Injection
|
1 |
WEB
|
DaBDouB-MoSiKaR
|
|
2006-03-20
|
|
phpWebSite 0.8.2/0.8.3 - 'friend.php?sid' SQL Injection
|
1 |
WEB
|
DaBDouB-MoSiKaR
|
|
2006-03-18
|
|
MusicBox 2.3 - 'cart.php' Cross-Site Scripting
|
1 |
WEB
|
Linux_Drox
|
|
2006-03-18
|
|
MusicBox 2.3 - 'index.php' Cross-Site Scripting
|
1 |
WEB
|
Linux_Drox
|
|
2006-03-18
|
|
MusicBox 2.3 - 'index.php' SQL Injection
|
1 |
WEB
|
Linux_Drox
|
|
2006-03-18
|
|
Woltlab Burning Board 2.3.4 - 'Class_DB_MySQL.php' Cross-Site Scripting
|
1 |
WEB
|
r57shell
|
|
2006-03-18
|
|
Extcalendar 1.0 - Cross-Site Scripting
|
0 |
WEB
|
Soothackers
|
|
2006-03-17
|
|
Invision Power Services Invision Board 2.0.4 - Members Action Multiple Cross-Site Scripting Vulnerab
|
1 |
WEB
|
Mr.SNAKE
|
|
2006-03-17
|
|
Invision Power Board (IP.Board) 2.0.4 - Help Action 'HID' Cross-Site Scripting
|
1 |
WEB
|
Mr.SNAKE
|
|
2006-03-17
|
|
Invision Power Board (IP.Board) 2.0.4 - Mail Action 'MID' Cross-Site Scripting
|
1 |
WEB
|
Mr.SNAKE
|
|
2006-03-17
|
|
Invision Power Board (IP.Board) 2.0.4 - Print Action 't' Cross-Site Scripting
|
1 |
WEB
|
Mr.SNAKE
|
|
2006-03-17
|
|
Invision Power Board (IP.Board) 2.0.4 - Calendar Action Multiple Cross-Site Scripting Vulnerabilitie
|
1 |
WEB
|
Mr.SNAKE
|
|
2006-03-17
|
|
Invision Power Board (IP.Board) 2.0.4 - 'index.php?st' Cross-Site Scripting
|
1 |
WEB
|
Mr.SNAKE
|
|
2006-03-17
|
|
Invision Power Board (IP.Board) 2.0.4 - Search Action Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Mr.SNAKE
|
|
2006-03-16
|
|
phpMyAdmin 2.8.1 - Set_Theme Cross-Site Scripting
|
2 |
WEB
|
Ali Asad
|
|
2006-03-16
|
|
Oxynews - 'index.php' SQL Injection
|
1 |
WEB
|
R00T3RR0R
|
|
2013-08-08
|
|
BigTree CMS 4.0 RC2 - Multiple Vulnerabilities
|
1 |
WEB
|
High-Tech Bridge SA
|
|
2013-08-08
|
|
PHPFox 3.6.0 (build3) - Multiple SQL Injections
|
1 |
WEB
|
Matias Fontanini
|
|
2006-03-16
|
|
Contrexx CMS 1.0.x - 'index.php' Cross-Site Scripting
|
1 |
WEB
|
Soot
|
|
2006-03-15
|
|
DSDownload 1.0 - Multiple SQL Injections
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-03-14
|
|
DSCounter 1.2 - 'index.php' SQL Injection
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-03-14
|
|
CyBoards PHP Lite 1.21/1.25 - 'post.php' SQL Injection
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-03-13
|
|
Vegas Forum 1.0 - 'Forumlib.php' SQL Injection
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-03-10
|
|
WMNews - 'wmcomments.php?ArtID' Cross-Site Scripting
|
1 |
WEB
|
R00T3RR0R
|
|
2006-03-10
|
|
WMNews - 'footer.php?ctrrowcol' Cross-Site Scripting
|
1 |
WEB
|
R00T3RR0R
|
|
2006-03-10
|
|
WMNews - 'wmview.php?ArtCat' Cross-Site Scripting
|
1 |
WEB
|
R00T3RR0R
|
|
2006-03-11
|
|
vCard 2.8/2.9 - 'create.php' Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Linux_Drox
|
|
2006-03-10
|
|
Core News 2.0.1 - 'index.php' Remote Code Execution
|
1 |
WEB
|
botan
|
|
2006-03-10
|
|
QwikiWiki 1.4/1.5 - 'recentchanges.php?help' Cross-Site Scripting
|
1 |
WEB
|
Kiki
|
|
2006-03-10
|
|
QwikiWiki 1.4/1.5 - 'pageindex.php?help' Cross-Site Scripting
|
1 |
WEB
|
Kiki
|
|
2006-03-10
|
|
QwikiWiki 1.4/1.5 - 'login.php' Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Kiki
|
|
2006-03-10
|
|
QwikiWiki 1.4/1.5 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
|
0 |
WEB
|
Kiki
|
|
2006-03-09
|
|
txtForum 1.0.3/1.0.4 - Remote PHP Script Code Injection
|
1 |
WEB
|
enji@infosys.tuwien.ac.at
|
|
2013-08-07
|
|
McAfee SuperScan 4.0 - Cross-Site Scripting
|
1 |
WEB
|
Trustwave's SpiderLabs
|
|
2013-08-07
|
|
Joomla! Component com_sectionex 2.5.96 - SQL Injection
|
1 |
WEB
|
Matias Fontanini
|
|
2013-08-07
|
|
WordPress Plugin Usernoise 3.7.8 - Persistent Cross-Site Scripting
|
1 |
WEB
|
RogueCoder
|
|
2013-08-07
|
|
Hikvision IP Cameras 4.1.0 b130111 - Multiple Vulnerabilities
|
0 |
WEB
|
Core Security
|
|
2013-08-07
|
|
WordPress Plugin Booking Calendar 4.1.4 - Cross-Site Request Forgery
|
1 |
WEB
|
Dylan Irzi
|
|
2013-08-07
|
|
Pluck CMS 4.7 - HTML Code Injection
|
1 |
WEB
|
Yashar shahinzadeh
|
|
2006-03-09
|
|
txtForum 1.0.3/1.0.4 - Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Nenad Jovanovic
|
|
2006-03-09
|
|
DCP-Portal 3.7/4.x/5.x/6.x - 'mycontents.php' Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Nenad Jovanovic
|
|
2006-03-09
|
|
DCP-Portal 3.7/4.x/5.x/6.x - 'lostpassword.php' Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Nenad Jovanovic
|
|
2006-03-09
|
|
DCP-Portal 3.7/4.x/5.x/6.x - 'inbox.php' Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Nenad Jovanovic
|
|
2006-03-09
|
|
DCP-Portal 3.7/4.x/5.x/6.x - 'forums.php' Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Nenad Jovanovic
|
|
2006-03-09
|
|
DCP-Portal 3.7/4.x/5.x/6.x - 'calendar.php' Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Nenad Jovanovic
|
|
2006-03-09
|
|
DCP-Portal 3.7/4.x/5.x/6.x - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
|
0 |
WEB
|
Nenad Jovanovic
|
|
2006-03-09
|
|
MyBloggie 2.1.2/2.1.3 - 'del.php' Cross-Site Scripting
|
1 |
WEB
|
enji@infosys.tuwien.ac.at
|
|
2006-03-09
|
|
MyBloggie 2.1.2/2.1.3 - 'delcat.php' Cross-Site Scripting
|
1 |
WEB
|
enji@infosys.tuwien.ac.at
|
|
2006-03-09
|
|
MyBloggie 2.1.2/2.1.3 - 'trackback_url' Cross-Site Scripting
|
1 |
WEB
|
enji@infosys.tuwien.ac.at
|
|
2006-03-09
|
|
MyBloggie 2.1.2/2.1.3 - 'editcat.php' Cross-Site Scripting
|
1 |
WEB
|
enji@infosys.tuwien.ac.at
|
|
2006-03-09
|
|
MyBloggie 2.1.2/2.1.3 - 'adduser.php' Cross-Site Scripting
|
1 |
WEB
|
enji@infosys.tuwien.ac.at
|
|
2006-03-09
|
|
MyBloggie 2.1.2/2.1.3 - 'edituser.php' Cross-Site Scripting
|
1 |
WEB
|
enji@infosys.tuwien.ac.at
|
|
2006-03-09
|
|
MyBloggie 2.1.2/2.1.3 - 'addcat.php' Cross-Site Scripting
|
1 |
WEB
|
enji@infosys.tuwien.ac.at
|
|
2006-03-09
|
|
MyBloggie 2.1.2/2.1.3 - 'deluser.php' Cross-Site Scripting
|
1 |
WEB
|
enji@infosys.tuwien.ac.at
|
|
2006-03-09
|
|
MyBloggie 2.1.2/2.1.3 - 'delcomment.php' Cross-Site Scripting
|
1 |
WEB
|
enji@infosys.tuwien.ac.at
|
|
2006-03-09
|
|
MyBloggie 2.1.2/2.1.3 - 'upload.php' Cross-Site Scripting
|
1 |
WEB
|
enji@infosys.tuwien.ac.at
|
|
2006-03-09
|
|
ADP Forum 2.0.x - 'Subject' HTML Injection
|
1 |
WEB
|
liz0
|
|
2013-08-07
|
|
FTP OnConnect 1.4.11 iOS - Multiple Vulnerabilities
|
0 |
WEB
|
Vulnerability-Lab
|
|
2006-03-09
|
|
sBlog 0.7.2 - 'comments_do.php' Multiple POST Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Kiki
|
|
2006-03-09
|
|
sBlog 0.7.2 - 'search.php?keyword' POST Method Cross-Site Scripting
|
1 |
WEB
|
Kiki
|
|
2006-03-08
|
|
TextFileBB 1.0 - Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Retard
|
|
2006-03-06
|
|
HitHost 1.0 - 'viewuser.php?hits' Cross-Site Scripting
|
1 |
WEB
|
Retard
|
|
2006-03-06
|
|
HitHost 1.0 - 'deleteuser.php?user' Cross-Site Scripting
|
1 |
WEB
|
Retard
|
|
2006-03-07
|
|
LoudBlog 0.41 - 'backend_settings.php' Traversal Arbitrary File Access
|
1 |
WEB
|
tzitaroth
|
|
2006-03-07
|
|
LoudBlog 0.41 - 'index.php?template' Traversal Arbitrary File Access
|
1 |
WEB
|
tzitaroth
|
|
2006-03-07
|
|
LoudBlog 0.41 - 'podcast.php' SQL Injection
|
0 |
WEB
|
tzitaroth
|
|
2006-03-07
|
|
Link Bank - 'Iframe.php' Cross-Site Scripting
|
1 |
WEB
|
Retard
|
|
2006-03-06
|
|
Game-Panel 2.6 - 'login.php' Cross-Site Scripting
|
1 |
WEB
|
Retard
|
|
2006-03-06
|
|
PHORUM 3.x/5.x - 'Common.php' Remote File Inclusion
|
1 |
WEB
|
ERNE
|
|
2006-03-06
|
|
Bitweaver 1.1/1.2 - 'Title' HTML Injection
|
1 |
WEB
|
Kiki
|
|
2006-03-06
|
|
Invision Power Board 2.1.5 - showtopic SQL Injection
|
0 |
WEB
|
Mr.SNAKE
|
|
2006-03-06
|
|
RunCMS 1.x - 'Bigshow.php' Cross-Site Scripting
|
0 |
WEB
|
Roozbeh Afrasiabi
|
|
2006-03-06
|
|
DVGuestbook 1.0/1.2.2 - 'dv_gbook.php?f' Cross-Site Scripting
|
0 |
WEB
|
Liz0ziM
|
|
2006-03-06
|
|
DVGuestbook 1.0/1.2.2 - 'index.php?page' Cross-Site Scripting
|
0 |
WEB
|
Liz0ziM
|
|
2006-03-04
|
|
Simplog 1.0.2 - Information Disclosure
|
0 |
WEB
|
Retard
|
|
2006-03-04
|
|
CutePHP CuteNews 1.4.1 - 'index.php' Cross-Site Scripting
|
0 |
WEB
|
Roozbeh Afrasiabi
|
|
2006-03-04
|
|
Woltlab Burning Board 2.3.4 - 'misc.php' Cross-Site Scripting
|
0 |
WEB
|
r57shell
|
|
2006-03-04
|
|
Easy Forum 2.5 - New User Image File HTML Injection
|
0 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-03-04
|
|
VBZooM Forum 1.11 - 'contact.php?UserID' Cross-Site Scripting
|
0 |
WEB
|
Mr.SNAKE
|
|
2006-03-04
|
|
VBZooM Forum 1.11 - 'comment.php?UserID' Cross-Site Scripting
|
1 |
WEB
|
Mr.SNAKE
|
|
2006-03-04
|
|
VBZoom Forum 1.11 - 'show.php' MainID SQL Injection
|
1 |
WEB
|
Mr.SNAKE
|
|
2006-03-02
|
|
LogIT 1.3/1.4 - Remote File Inclusion
|
0 |
WEB
|
botan
|
|
2006-03-02
|
|
NZ eCommerce System - 'index.php' Multiple SQL Injections
|
1 |
WEB
|
r0t
|
|
2006-03-02
|
|
vBulletin 3.0/3.5 - 'profile.php?Email' HTML Injection
|
1 |
WEB
|
imei
|
|
2006-03-02
|
|
PluggedOut Nexus 0.1 - 'forgotten_password.php' SQL Injection
|
1 |
WEB
|
Hamid Ebadi
|
|
2006-03-02
|
|
DCI-Designs Dawaween 1.03 - 'Poems.php' SQL Injection
|
1 |
WEB
|
sherba
|
|
2006-03-01
|
|
SMBlog 1.2 - Arbitrary PHP Command Execution
|
1 |
WEB
|
botan
|
|
2006-02-28
|
|
PEHEPE Membership Management System 3.0 - Remote PHP Script Code Injection
|
1 |
WEB
|
Yunus Emre Yilmaz
|
|
2006-02-26
|
|
PEHEPE Membership Management System 3.0 - 'Sol_menu.php' Cross-Site Scripting
|
1 |
WEB
|
Yunus Emre Yilmaz
|
|
2006-02-28
|
|
Mozilla Thunderbird 1.5 - Multiple Remote Information Disclosure Vulnerabilities
|
1 |
WEB
|
Crashfr
|
|
2006-02-28
|
|
EJ3 TOPo 2.2.178 - 'Inc_header.php' Cross-Site Scripting
|
1 |
WEB
|
Yunus Emre Yilmaz
|
|
2006-02-28
|
|
QwikiWiki 1.4 - 'index.php' Cross-Site Scripting
|
1 |
WEB
|
Dr^Death
|
|
2006-02-27
|
|
n8cms 1.1/1.2 - 'mailto.php?userid' Cross-Site Scripting
|
0 |
WEB
|
Liz0ziM
|
|
2006-02-27
|
|
n8cms 1.1/1.2 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Liz0ziM
|
|
2006-02-27
|
|
n8cms 1.1/1.2 - 'index.php' Multiple SQL Injections
|
1 |
WEB
|
Liz0ziM
|
|
2006-02-25
|
|
D3Jeeb Pro 3 - 'catogary.php?catid' SQL Injection
|
1 |
WEB
|
SAUDI
|
|
2006-02-25
|
|
D3Jeeb Pro 3 - 'fastlinks.php?catid' SQL Injection
|
1 |
WEB
|
SAUDI
|
|
2006-02-27
|
|
Archangel Weblog 0.90.2 - Authentication Bypass
|
1 |
WEB
|
KingOfSka
|
|
2006-02-27
|
|
Woltlab Burning Board 1.1.1/2.x - 'galerie_onfly.php' Cross-Site Scripting
|
1 |
WEB
|
botan
|
|
2006-02-27
|
|
Woltlab Burning Board 1.1.1/2.x - 'galerie_index.php?Username' Cross-Site Scripting
|
1 |
WEB
|
botan
|
|
2006-02-27
|
|
Fantastic News 2.1.1 - SQL Injection
|
1 |
WEB
|
SAUDI
|
|
2006-02-25
|
|
Thomson SpeedTouch 500 Series - LocalNetwork Page 'name' Cross-Site Scripting
|
1 |
WEB
|
Preben Nylokken
|
|
2006-02-25
|
|
PHP-Nuke 7.8 - 'Mainfile.php' SQL Injection
|
1 |
WEB
|
waraxe
|
|
2013-08-03
|
|
RiteCMS 1.0.0 - Multiple Vulnerabilities
|
1 |
WEB
|
Yashar shahinzadeh
|
|
2006-02-25
|
|
DCI-Taskeen 1.03 - 'cat.php' Multiple SQL Injections
|
1 |
WEB
|
Linux_Drox
|
|
2006-02-25
|
|
DCI-Taskeen 1.03 - 'basket.php' Multiple SQL Injections
|
1 |
WEB
|
Linux_Drox
|
|
2006-02-25
|
|
FreeHostShop Website Generator 3.3 - Arbitrary File Upload
|
1 |
WEB
|
NSA Group
|
|
2006-02-25
|
|
SPiD 1.3.1 - 'Scan_Lang_Insert.php' Local File Inclusion
|
1 |
WEB
|
NSA Group
|
|
2006-02-25
|
|
Battleaxe Software BttlxeForum 2.0 - 'Failure.asp' Cross-Site Scripting
|
1 |
WEB
|
rUnViRuS
|
|
2006-02-22
|
|
myPHPNuke 1.8.8 - 'download.php' Cross-Site Scripting
|
1 |
WEB
|
Mustafa Can Bjorn
|
|
2006-02-22
|
|
myPHPNuke 1.8.8 - 'reviews.php' Cross-Site Scripting
|
1 |
WEB
|
Mustafa Can Bjorn
|
