|
2005-12-26
|
|
MyBB 1.0.2 - Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
imei
|
|
2013-07-27
|
|
Symantec Web Gateway 5.1.0.x - Multiple Vulnerabilities
|
1 |
WEB
|
SEC Consult
|
|
2013-07-27
|
|
Broadkam PJ871 - Authentication Bypass
|
2 |
WEB
|
d3c0der
|
|
2013-07-27
|
|
Basic Forum by JM LLC - Multiple Vulnerabilities
|
2 |
WEB
|
Sp3ctrecore
|
|
2013-07-27
|
|
Easy Blog by JM LLC - Multiple Vulnerabilities
|
2 |
WEB
|
Sp3ctrecore
|
|
2013-07-27
|
|
Windu CMS 2.2 - Multiple Vulnerabilities
|
2 |
WEB
|
LiquidWorm
|
|
2006-01-25
|
|
PMachine ExpressionEngine 1.4.1 - HTTP Referrer HTML Injection
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-01-25
|
|
CheesyBlog 1.0 - Multiple HTML Injection Vulnerabilities
|
2 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-01-24
|
|
miniBloggie 1.0 - 'login.php' SQL Injection
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-01-24
|
|
SleeperChat 0.3f - 'index.php' Cross-Site Scripting
|
1 |
WEB
|
hackologie
|
|
2006-01-24
|
|
PixelPost 1.4.3 - User Comment HTML Injection
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-01-24
|
|
MyBB 1.0.1/1.0.2 Notepad - 'usercp.php' HTML Injection
|
1 |
WEB
|
Roozbeh Afrasiabi
|
|
2006-01-24
|
|
123 Flash Chat 5.0 - Remote Code Injection
|
1 |
WEB
|
Jesus Olmos Gonzalez
|
|
2006-01-23
|
|
AZ Bulletin Board 1.0.x/1.1 - 'post.php' HTML Injection
|
1 |
WEB
|
Roozbeh Afrasiabi
|
|
2006-01-23
|
|
e-moBLOG 1.3 - Multiple SQL Injections
|
0 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-01-20
|
|
RCBlog 1.0.3 - 'index.php' Directory Traversal
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-01-20
|
|
BlogPHP 1.2 - Multiple SQL Injections
|
1 |
WEB
|
imei
|
|
2006-01-23
|
|
NewsPHP - 'index.php' Multiple SQL Injections
|
1 |
WEB
|
SAUDI
|
|
2006-01-20
|
|
Rockliffe MailSite 5.3.4/6.1.22/7.0.3 - HTTP Mail Management Cross-Site Scripting
|
1 |
WEB
|
OS2A BTO
|
|
2006-01-19
|
|
WebspotBlogging 3.0 - 'login.php' SQL Injection
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-01-18
|
|
SaralBlog 1.0 - Multiple Input Validation Vulnerabilities
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-01-18
|
|
EggBlog 2.0 - 'message' Cross-Site Scripting
|
0 |
WEB
|
alex@evuln.com
|
|
2006-01-18
|
|
EggBlog 2.0 - 'id' SQL Injection
|
1 |
WEB
|
alex@evuln.com
|
|
2005-12-28
|
|
Phpclanwebsite 1.23.1 - BBCode IMG Tag Script Injection
|
1 |
WEB
|
kurdish hackers team
|
|
2006-01-16
|
|
PHPXplorer 0.9.33 - 'action.php' Directory Traversal
|
1 |
WEB
|
liz0
|
|
2006-01-17
|
|
aoblogger 2.3 - 'create.php' Entry Creation
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-01-17
|
|
aoblogger 2.3 - 'login.php?Username' SQL Injection
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-01-17
|
|
aoblogger 2.3 - URL BBcode Cross-Site Scripting
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-01-17
|
|
PowerPortal 1.1/1.3 - 'search.php' Cross-Site Scripting
|
1 |
WEB
|
night_warrior771
|
|
2006-01-17
|
|
PowerPortal 1.1/1.3 - 'index.php' Cross-Site Scripting
|
1 |
WEB
|
night_warrior771
|
|
2006-01-17
|
|
microBlog 2.0 - 'index.php' Multiple SQL Injections
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-01-16
|
|
BlogPHP 1.0 - 'index.php' SQL Injection
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-01-16
|
|
RedKernel Referrer Tracker 1.1.0-3 - 'Rkrt_stats.php' Cross-Site Scripting
|
1 |
WEB
|
Preddy
|
|
2006-01-16
|
|
PHPXplorer 0.9.33 - 'Workspaces.php' Directory Traversal
|
1 |
WEB
|
Oriol Torrent Santiago
|
|
2006-01-16
|
|
EZDatabase 2.1.1 - 'index.php' Cross-Site Scripting
|
1 |
WEB
|
Josh Zlatin-Amishav
|
|
2006-01-16
|
|
GTP iCommerce - Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Preddy
|
|
2006-01-16
|
|
Ultimate Auction 3.67 - ItemList.pl Cross-Site Scripting
|
1 |
WEB
|
querkopf
|
|
2006-01-16
|
|
Faq-O-Matic 2.711 - Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Preddy
|
|
2005-01-16
|
|
GeoBlog 1.0 - 'viewcat.php' SQL Injection
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-01-16
|
|
White Album 2.5 - 'Pictures.php' SQL Injection
|
1 |
WEB
|
liz0
|
|
2006-01-16
|
|
Bit 5 Blog 8.1 - 'addcomment.php' HTML Injection
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-01-16
|
|
Bit 5 Blog 8.1 - 'index.php' SQL Injection
|
0 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-01-16
|
|
SimpleBlog 2.1 - Multiple Input Validation Vulnerabilities
|
1 |
WEB
|
Zinho
|
|
2006-01-14
|
|
Ultimate Auction 3.67 - Item.pl Cross-Site Scripting
|
1 |
WEB
|
querkopf
|
|
2006-01-14
|
|
EZDatabaseRemote 2.0 - PHP Script Code Execution
|
1 |
WEB
|
r0t3d3Vil
|
|
2006-01-13
|
|
Web Host Automation Ltd. Helm 3.2.8 - 'ForgotPassword.asp' Cross-Site Scripting
|
1 |
WEB
|
M.Neset KABAKLI
|
|
2006-01-13
|
|
Alstrasoft Template Seller Pro 3.25 - 'Fullview.php' Cross-Site Scripting
|
1 |
WEB
|
night_warrior771
|
|
2006-01-13
|
|
DCP Portal 5.3/6.0/6.1 - Multiple Input Validation Vulnerabilities
|
0 |
WEB
|
night_warrior771
|
|
2013-07-24
|
|
FOSCAM IP-Cameras - Improper Access Restrictions
|
1 |
WEB
|
Core Security
|
|
2006-01-12
|
|
TankLogger 2.4 General Functions Script - SQL Injection
|
0 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-01-12
|
|
Fog Creek Software FogBugz 4.0 29 - 'default.asp' Cross-Site Scripting
|
1 |
WEB
|
M.Neset KABAKLI
|
|
2006-01-12
|
|
Interspire TrackPoint NX - 'index.php' Cross-Site Scripting
|
1 |
WEB
|
M.Neset KABAKLI
|
|
2006-01-11
|
|
MyPHPim - Login Page pass Field SQL Injection
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-01-11
|
|
MyPHPim - 'calendar.php3?cal_id' SQL Injection
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-01-10
|
|
Orjinweb - 'index.php' Remote File Inclusion
|
1 |
WEB
|
serxwebun
|
|
2006-01-10
|
|
WebWiz Forums - 'Search_form.asp' Cross-Site Scripting
|
1 |
WEB
|
nukedx
|
|
2006-01-10
|
|
Hummingbird Collaboration - Application Cookie Internal Network Information Disclosure
|
1 |
WEB
|
Luca Carettoni
|
|
2006-01-10
|
|
Hummingbird Collaboration - Crafted URL File Property Obscuration Download
|
1 |
WEB
|
Luca Carettoni
|
|
2006-01-09
|
|
PHP-Nuke News Submission Story - Text Field Cross-Site Scripting
|
1 |
WEB
|
night_warrior771
|
|
2006-01-09
|
|
Xoops Pool Module - IMG Tag HTML Injection
|
0 |
WEB
|
night_warrior771
|
|
2006-01-09
|
|
PHP-Nuke 7.7 EV Search Module - SQL Injection
|
1 |
WEB
|
Lostmon
|
|
2006-01-09
|
|
427BB 2.2 - Authentication Bypass
|
0 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-01-09
|
|
Venom Board - 'Post.php3' Multiple SQL Injections
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-01-09
|
|
427BB 2.2 - 'showthread.php' SQL Injection
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-01-09
|
|
AppServ Open Project 2.4.5 - Remote File Inclusion
|
0 |
WEB
|
Xez
|
|
2013-07-23
|
|
Photo Server 2.0 iOS - Multiple Vulnerabilities
|
1 |
WEB
|
Vulnerability-Lab
|
|
2013-07-23
|
|
Dell Kace 1000 SMA 5.4.742 - SQL Injection
|
1 |
WEB
|
Vulnerability-Lab
|
|
2006-01-06
|
|
TinyPHPForum 3.6 - Multiple Directory Traversal Vulnerabilities
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-01-06
|
|
TheWebForum 1.2.1 - Multiple Input Validation Vulnerabilities
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-01-06
|
|
OnePlug CMS - '/products/details.asp?Product_ID' SQL Injection
|
1 |
WEB
|
Preddy
|
|
2006-01-06
|
|
OnePlug CMS - '/services/details.asp?Service_ID' SQL Injection
|
1 |
WEB
|
Preddy
|
|
2006-01-06
|
|
OnePlug CMS - '/press/details.asp?Press_Release_ID' SQL Injection
|
1 |
WEB
|
Preddy
|
|
2006-01-06
|
|
Foro Domus 2.10 - Multiple Input Validation Vulnerabilities
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2005-12-25
|
|
CS-Cart - Multiple SQL Injections
|
1 |
WEB
|
r0t3d3Vil
|
|
2005-12-25
|
|
EZ Invoice Inc. EZI 2.0 - 'Invoices.php' SQL Injection
|
1 |
WEB
|
r0t3d3Vil
|
|
2005-12-25
|
|
LogicBill 1.0 - Multiple SQL Injections
|
1 |
WEB
|
r0t3d3Vil
|
|
2005-12-26
|
|
Jax Calendar 1.34 - 'jax_calendar.php' SQL Injection
|
1 |
WEB
|
r0t3d3Vil
|
|
2006-01-03
|
|
Primo Place Primo Cart 1.0 - Multiple SQL Injections
|
1 |
WEB
|
r0t
|
|
2006-01-03
|
|
INCOGEN Bugport 1.x - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
r0t
|
|
2006-01-03
|
|
INCOGEN Bugport 1.x - Multiple SQL Injections
|
1 |
WEB
|
r0t
|
|
2006-01-02
|
|
DiscusWare Discus 3.10 - Error Message Cross-Site Scripting
|
1 |
WEB
|
$um$id
|
|
2006-01-01
|
|
Drupal 4.x - URL-Encoded Input HTML Injection
|
1 |
WEB
|
liz0
|
|
2006-02-01
|
|
vBulletin 3.5.2 - Event Title HTML Injection
|
1 |
WEB
|
trueend5
|
|
2006-01-02
|
|
ScozNet ScozBook 1.1 - 'AdminName' SQL Injection
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-01-01
|
|
Chimera Web Portal 0.2 - 'linkcategory.php?id' SQL Injection
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-01-01
|
|
Chimera Web Portal 0.2 - 'modules.php' Multiple Cross-Site Scripting Vulnerabilities
|
0 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2005-12-29
|
|
Chipmunk Guestbook 1.4 - Homepage HTML Injection
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2013-07-22
|
|
Sybase EAServer 6.3.1 - Multiple Vulnerabilities
|
1 |
WEB
|
SEC Consult
|
|
2013-07-22
|
|
MLM (Multi Level Marketing) Script - Multiple Vulnerabilities
|
1 |
WEB
|
3spi0n
|
|
2013-07-22
|
|
Barracuda CudaTel 2.6.02.040 - SQL Injection
|
1 |
WEB
|
Vulnerability-Lab
|
|
2013-07-22
|
|
Barracuda LB / SVF / WAF / WEF - Multiple Vulnerabilities
|
1 |
WEB
|
Vulnerability-Lab
|
|
2006-01-01
|
|
PHPJournaler 1.0 - 'Readold' SQL Injection
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2006-01-01
|
|
InTouch 0.5.1 Alpha - User Variable SQL Injection
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2005-12-29
|
|
Jevontech PHPenpals - PersonalID SQL Injection
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2005-12-29
|
|
VEGO Links Builder 2.0 Login Script - SQL Injection
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2005-12-28
|
|
VEGO Web Forum 1.x - Theme_ID SQL Injection
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2005-12-29
|
|
PHPBook 1.x - Mail Field PHP Code Injection
|
1 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2005-12-29
|
|
OABoard 1.0 Forum - Remote File Inclusion
|
0 |
WEB
|
Aliaksandr Hartsuyeu
|
|
2005-12-30
|
|
phpDocumentor 1.2/1.3 - Forum Lib Variable Cross-Site Scripting
|
1 |
WEB
|
zeus olimpusklan
|
|
2005-12-30
|
|
Kayako SupportSuite 3.0 0.26 - Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
r0t3d3Vil
|
|
2005-12-30
|
|
OOApp Guestbook 2.1 Home Script - Cross-Site Scripting
|
1 |
WEB
|
r0t3d3Vil
|
|
2005-12-30
|
|
Ades Design AdesGuestbook 2.0 Read Script - Cross-Site Scripting
|
1 |
WEB
|
r0t3d3Vil
|
|
2005-12-30
|
|
Web Wiz (Multiple Products) - SQL Injection
|
1 |
WEB
|
DevilBox
|
|
2005-12-29
|
|
MyBB 1.0 - 'Globa.php' Cookie Data SQL Injection
|
1 |
WEB
|
imei
|
|
2005-12-29
|
|
GMailSite 1.0.x - Cross-Site Scripting
|
1 |
WEB
|
Lostmon
|
|
2005-12-28
|
|
Dream4 Koobi 5.0 - BBCode URL Tag Script Injection
|
1 |
WEB
|
kurdish hackers team
|
|
2005-12-27
|
|
FatWire UpdateEngine 6.2 - Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
r0t3d3Vil
|
|
2005-12-23
|
|
PaperThin CommonSpot Content Server 4.5 - Cross-Site Scripting
|
1 |
WEB
|
r0t3d3Vil
|
|
2005-12-27
|
|
IceWarp Universal WebMail - '/mail/include.html' Crafted HTTP_USER_AGENT Arbitrary File Access
|
2 |
WEB
|
Tan Chew Keong
|
|
2005-12-27
|
|
IceWarp Universal WebMail - '/mail/index.html?lang_settings' Remote File Inclusion
|
1 |
WEB
|
Tan Chew Keong
|
|
2005-12-27
|
|
IceWarp Universal WebMail - '/mail/settings.html?Language' Local File Inclusion
|
0 |
WEB
|
Tan Chew Keong
|
|
2005-12-27
|
|
IceWarp Universal WebMail - '/dir/include.html?lang' Local File Inclusion
|
1 |
WEB
|
Tan Chew Keong
|
|
2005-12-27
|
|
IceWarp Universal WebMail - '/admin/inc/include.php' Multiple Remote File Inclusions
|
1 |
WEB
|
Tan Chew Keong
|
|
2005-12-27
|
|
IceWarp Universal WebMail - '/accounts/inc/include.php' Multiple Remote File Inclusions
|
1 |
WEB
|
Tan Chew Keong
|
|
2005-12-27
|
|
Dev Web Management System 1.5 - 'add.php' Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
retrogod@aliceposta.it
|
|
2005-12-27
|
|
Dev Web Management System 1.5 - 'download_now.php?target' SQL Injection
|
1 |
WEB
|
retrogod@aliceposta.it
|
|
2005-12-27
|
|
Dev Web Management System 1.5 - 'getfile.php?cat' SQL Injection
|
1 |
WEB
|
retrogod@aliceposta.it
|
|
2005-12-27
|
|
Cerberus Helpdesk 2.649 - 'display_ticket_thread.php?ticket' SQL Injection
|
1 |
WEB
|
A. Ramos
|
|
2005-12-27
|
|
Cerberus Helpdesk 2.649 - 'addresses_export.php?queues' SQL Injection
|
1 |
WEB
|
A. Ramos
|
|
2005-12-27
|
|
Cerberus Helpdesk 2.649 - 'cer_KnowledgebaseHandler.class.php?_load_article_details' SQL Injection
|
1 |
WEB
|
A. Ramos
|
|
2005-12-23
|
|
oracle Application server discussion forum portlet - Multiple Vulnerabilities
|
1 |
WEB
|
Johannes Greil
|
|
2005-12-22
|
|
Tangora Portal CMS 4.0 - 'Action' Cross-Site Scripting
|
1 |
WEB
|
r0t3d3Vil
|
|
2005-12-21
|
|
SyntaxCMS - Search Query Cross-Site Scripting
|
0 |
WEB
|
r0t3d3Vil
|
|
2005-12-22
|
|
MusicBox 2.3 - 'type' SQL Injection
|
1 |
WEB
|
Medo HaCKer
|
|
2005-12-21
|
|
Quantum Art QP7.Enterprise - 'news.asp?p_news_id' SQL Injection
|
1 |
WEB
|
r0t3d3Vil
|
