|
2005-08-18
|
|
W-Agora 4.2 - 'Site' Directory Traversal
|
2 |
WEB
|
matrix_killer
|
|
2005-08-17
|
|
PHPTB Topic Board 2.0 - 'tech_o.php?absolutepath' Remote File Inclusion
|
2 |
WEB
|
Filip Groszynski
|
|
2005-08-17
|
|
PHPTB Topic Board 2.0 - 'file_o.php?absolutepath' Remote File Inclusion
|
2 |
WEB
|
Filip Groszynski
|
|
2005-08-17
|
|
PHPTB Topic Board 2.0 - 'dev_o.php?absolutepath' Remote File Inclusion
|
1 |
WEB
|
Filip Groszynski
|
|
2005-08-17
|
|
PHPTB Topic Board 2.0 - 'board_o.php?absolutepath' Remote File Inclusion
|
2 |
WEB
|
Filip Groszynski
|
|
2005-08-17
|
|
PHPTB Topic Board 2.0 - 'admin_o.php?absolutepath' Remote File Inclusion
|
2 |
WEB
|
Filip Groszynski
|
|
2005-08-17
|
|
PHPFreeNews 1.40 - 'searchresults.php' Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
h4cky
|
|
2005-08-17
|
|
PHPFreeNews 1.40 - 'NewsCategoryForm.php?NewsMode' Cross-Site Scripting
|
2 |
WEB
|
h4cky
|
|
2005-08-17
|
|
PHPFreeNews 1.40 - 'searchresults.php' Multiple SQL Injections
|
1 |
WEB
|
h4cky
|
|
2005-08-16
|
|
Soft4e ECW-Shop 6.0.2 - 'index.php' HTML Injection
|
1 |
WEB
|
John Cobb
|
|
2005-08-16
|
|
ECW Shop 6.0.2 - 'index.php' Cross-Site Scripting
|
2 |
WEB
|
John Cobb
|
|
2005-08-16
|
|
CPaint 1.3 - xmlhttp Request Input Validation
|
2 |
WEB
|
Thor Larholm
|
|
2005-08-16
|
|
Soft4e ECW-Shop 6.0.2 - 'index.php' SQL Injection
|
2 |
WEB
|
John Cobb
|
|
2005-08-16
|
|
PersianBlog - 'Userslist.asp' SQL Injection
|
2 |
WEB
|
trueend5
|
|
2005-08-16
|
|
My Image Gallery 1.4.1 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
anonymous
|
|
2005-08-12
|
|
MyBulletinBoard (MyBB) RC4 - 'action' SQL Injection
|
2 |
WEB
|
phuket
|
|
2005-08-12
|
|
MyBulletinBoard (MyBB) RC4 - 'polloptions' SQL Injection
|
2 |
WEB
|
phuket
|
|
2005-08-12
|
|
MyBulletinBoard (MyBB) RC4 - 'member.php' Multiple SQL Injections
|
2 |
WEB
|
phuket
|
|
2005-08-12
|
|
MyBulletinBoard (MyBB) RC4 - 'Username' SQL Injection
|
2 |
WEB
|
phuket
|
|
2005-08-10
|
|
VegaDNS 0.8.1/0.9.8/0.9.9 - 'index.php' Cross-Site Scripting
|
1 |
WEB
|
dyn0
|
|
2005-08-10
|
|
PHPTB Topic Board 2.0 - 'index.php?mid' SQL Injection
|
0 |
WEB
|
abducter_minds@yahoo.com
|
|
2005-08-10
|
|
ezUpload 2.2 - 'form.php?path' Remote File Inclusion
|
1 |
WEB
|
Johnnie Walker
|
|
2005-08-10
|
|
ezUpload 2.2 - 'customize.php?path' Remote File Inclusion
|
1 |
WEB
|
Johnnie Walker
|
|
2005-08-10
|
|
ezUpload 2.2 - 'initialize.php?path' Remote File Inclusion
|
1 |
WEB
|
Johnnie Walker
|
|
2005-08-10
|
|
ezUpload 2.2 - 'index.php?path' Remote File Inclusion
|
1 |
WEB
|
Johnnie Walker
|
|
2013-06-11
|
|
Simple PHP Agenda 2.2.8 - 'edit_event.php?eventid' SQL Injection
|
1 |
WEB
|
Anthony Dubuissez
|
|
2013-06-11
|
|
Fobuc Guestbook 0.9 - SQL Injection
|
2 |
WEB
|
CWH Underground
|
|
2013-06-11
|
|
Buffalo WZR-HP-G300NH2 - Cross-Site Request Forgery
|
2 |
WEB
|
Prayas Kulshrestha
|
|
2005-08-09
|
|
TriggerTG TClanPortal 3.0 - Multiple SQL Injections
|
2 |
WEB
|
admin@batznet.com
|
|
2013-06-11
|
|
NanoBB 0.7 - Multiple Vulnerabilities
|
2 |
WEB
|
CWH Underground
|
|
2013-06-11
|
|
Weathermap 0.97c - 'mapname' Local File Inclusion
|
2 |
WEB
|
Anthony Dubuissez
|
|
2013-06-11
|
|
WordPress Plugin WP-SendSms 1.0 - Multiple Vulnerabilities
|
1 |
WEB
|
expl0i13r
|
|
2005-08-08
|
|
FunkBoard 0.66 - 'register.php' Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
rgod
|
|
2005-08-08
|
|
FunkBoard 0.66 - 'profile.php' Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
rgod
|
|
2005-08-08
|
|
FunkBoard 0.66 - 'reply.php' Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
rgod
|
|
2005-08-08
|
|
FunkBoard 0.66 - 'newtopic.php' Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
rgod
|
|
2005-08-08
|
|
FunkBoard 0.66 - 'prefs.php' Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
rgod
|
|
2005-08-08
|
|
FunkBoard 0.66 - 'editpost.php' Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
rgod
|
|
2005-08-08
|
|
Chipmunk CMS 1.3 - Fontcolor Cross-Site Scripting
|
0 |
WEB
|
rgod
|
|
2005-08-08
|
|
Calendar Express 2.2 - 'search.php' Cross-Site Scripting
|
0 |
WEB
|
almaster
|
|
2005-08-08
|
|
PHP Lite Calendar Express 2.2 - 'Subscribe.php?cid' SQL Injection
|
0 |
WEB
|
almaster
|
|
2005-08-08
|
|
PHP Lite Calendar Express 2.2 - 'auth.php?cid' SQL Injection
|
0 |
WEB
|
almaster
|
|
2005-08-08
|
|
PHP Lite Calendar Express 2.2 - 'login.php?cid' SQL Injection
|
0 |
WEB
|
almaster
|
|
2005-08-08
|
|
Gravity Board X 1.1 - CSS Template Unauthorized Access
|
0 |
WEB
|
rgod
|
|
2005-08-08
|
|
Dvbbs 7.1/8.2 - 'boardhelp.asp' Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
Lostmon
|
|
2005-08-08
|
|
Dvbbs 7.1/8.2 - 'dispuser.asp?name' Cross-Site Scripting
|
2 |
WEB
|
Lostmon
|
|
2005-08-08
|
|
Dvbbs 7.1/8.2 - 'dispbbs.asp?page' Cross-Site Scripting
|
2 |
WEB
|
Lostmon
|
|
2005-08-08
|
|
Gravity Board X 1.1 - Login SQL Injection
|
2 |
WEB
|
rgod
|
|
2005-08-08
|
|
E107 Website System 0.6 - Attached File Cross-Site Scripting
|
2 |
WEB
|
edward11
|
|
2005-08-08
|
|
Invision Power Board (IP.Board) 1.0.3 - Attached File Cross-Site Scripting
|
2 |
WEB
|
V[i]RuS
|
|
2005-08-08
|
|
SysCP 1.2.x - Multiple Script Execution Vulnerabilities
|
2 |
WEB
|
Christopher Kunz
|
|
2005-08-06
|
|
PHP-Fusion 4.0/5.0/6.0 - 'messages.php' SQL Injection
|
2 |
WEB
|
almaster
|
|
2005-08-05
|
|
FlatNuke 2.5.5 - 'footer.php' Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
rgod
|
|
2005-08-05
|
|
FlatNuke 2.5.5 - 'structure.php' Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
rgod
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - jnl_records User Database Disclosure
|
2 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - suggestions.csv User IP Disclosure
|
2 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 petitionbook Script - User IP Disclosure
|
2 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - ips2block Banned IP Disclosure
|
2 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - formmailer.log User Sent Mail Disclosure
|
2 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - logfile.csv User IP Disclosure
|
1 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - ips2block Banned IP List Disclosure
|
1 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - guestbook_ips2block Banned IP List Disclosure
|
1 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - Guestbook File Client IP Disclosure
|
0 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - 'shrimp_petition.php' Multiple Cross-Site Scripting Vulnerabili
|
0 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - 'jax_calendar.php' Multiple Cross-Site Scripting Vulnerabilitie
|
0 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - 'jax_linklists.php' Multiple Cross-Site Scripting Vulnerabiliti
|
0 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - 'jax_guestbook.php' Multiple Cross-Site Scripting Vulnerabiliti
|
0 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - 'archive.php?language' Cross-Site Scripting
|
0 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - 'sign_in.php?language' Cross-Site Scripting
|
0 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - 'jax_newsletter.php?language' Cross-Site Scripting
|
1 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - 'dwt_editor.php' Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Comdev eCommerce 3.0 - 'WCE.download.php' Directory Traversal
|
1 |
WEB
|
anonymous
|
|
2005-08-05
|
|
Comdev eCommerce 3.0 - 'config.php' Remote File Inclusion
|
1 |
WEB
|
anonymous
|
|
2013-06-10
|
|
Concrete5 CMS 5.6.1.2 - Multiple Vulnerabilities
|
1 |
WEB
|
expl0i13r
|
|
2013-06-10
|
|
Resin Application Server 4.0.36 - Source Code Disclosure
|
1 |
WEB
|
LiquidWorm
|
|
2005-08-04
|
|
PortailPHP 2.4 - 'index.php' SQL Injection
|
1 |
WEB
|
abducter_minds@yahoo.com
|
|
2005-08-03
|
|
Naxtor E-directory 1.0 - 'default.asp' SQL Injection
|
1 |
WEB
|
basher13
|
|
2005-08-03
|
|
Naxtor E-directory 1.0 - 'Message.asp' Cross-Site Scripting
|
1 |
WEB
|
basher13
|
|
2005-08-03
|
|
Web Content Management - 'list.php?strTable' Cross-Site Scripting
|
1 |
WEB
|
rgod
|
|
2005-08-03
|
|
Web Content Management - 'validsession.php?strRootpath' Cross-Site Scripting
|
1 |
WEB
|
rgod
|
|
2005-07-31
|
|
Karrigell 1.x/2.0/2.1 - '.KS' File Arbitrary Python Command Execution
|
1 |
WEB
|
Radovan GarabÃk
|
|
2005-08-03
|
|
Fusebox 4.1 - 'index.cfm' Cross-Site Scripting
|
1 |
WEB
|
N.N.P
|
|
2005-08-02
|
|
Naxtor Shopping Cart 1.0 - 'Shop_Display_Products.php' SQL Injection
|
1 |
WEB
|
John Cobb
|
|
2005-08-02
|
|
Naxtor Shopping Cart 1.0 - 'Lost_password.php' Cross-Site Scripting
|
1 |
WEB
|
John Cobb
|
|
2005-08-01
|
|
OpenBook 1.2.2 - 'admin.php' SQL Injection
|
0 |
WEB
|
SVT
|
|
2005-08-01
|
|
PHPFreeNews 1.x - Admin Login SQL Injection
|
1 |
WEB
|
rgod
|
|
2005-08-01
|
|
AderSoftware CFBB 1.1 - 'index.cfm' Cross-Site Scripting
|
1 |
WEB
|
rUnViRuS
|
|
2005-08-01
|
|
PHPFreeNews 1.x - Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
rgod
|
|
2005-08-01
|
|
MySQL AB Eventum 1.x - 'get_jsrs_data.php?F' Cross-Site Scripting
|
1 |
WEB
|
GulfTech Security
|
|
2005-08-01
|
|
MySQL AB Eventum 1.x - 'list.php?release' Cross-Site Scripting
|
0 |
WEB
|
GulfTech Security
|
|
2005-08-01
|
|
MySQL AB Eventum 1.x - 'view.php?id' Cross-Site Scripting
|
1 |
WEB
|
GulfTech Security
|
|
2005-07-30
|
|
Ragnarok Online Control Panel 4.3.4 a - Authentication Bypass
|
0 |
WEB
|
VaLiuS
|
|
2005-09-30
|
|
PluggedOut CMS 0.4.8 - 'admin.php' Cross-Site Scripting
|
1 |
WEB
|
FalconDeOro
|
|
2005-09-30
|
|
PluggedOut CMS 0.4.8 - 'contenttypeid' SQL Injection
|
1 |
WEB
|
FalconDeOro
|
|
2005-07-30
|
|
Kayako Live Response 2.0 - 'index.php' Calendar Feature Multiple SQL Injections
|
1 |
WEB
|
GulfTech Security
|
|
2005-07-30
|
|
Kayako Live Response 2.0 - 'index.php?Username' Cross-Site Scripting
|
1 |
WEB
|
GulfTech Security
|
|
2005-07-29
|
|
VBZoom 1.0/1.11 - 'login.php?UserID' Cross-Site Scripting
|
1 |
WEB
|
almaster
|
|
2005-07-29
|
|
VBZoom 1.0/1.11 - 'profile.php?Username' Cross-Site Scripting
|
1 |
WEB
|
almaster
|
|
2005-07-29
|
|
Easypx41 - Multiple Variable Injection Vulnerabilities
|
1 |
WEB
|
FalconDeOro
|
|
2005-07-29
|
|
Easypx41 - Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
FalconDeOro
|
|
2005-07-28
|
|
@Mail 4.0/4.13 - Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Lostmon
|
|
2005-07-28
|
|
phpList 2.8.12 - Admin Page SQL Injection
|
1 |
WEB
|
tgo
|
|
2005-07-27
|
|
Clever Copy 2.0 - Private Message Unauthorized Access
|
1 |
WEB
|
Lostmon
|
|
2005-07-27
|
|
BMForum 3.0 - 'announcesys.php' Cross-Site Scripting
|
1 |
WEB
|
Lostmon
|
|
2005-07-27
|
|
BMForum 3.0 - 'post.php' Cross-Site Scripting
|
1 |
WEB
|
Lostmon
|
|
2005-07-27
|
|
BMForum 3.0 - 'forums.php' Cross-Site Scripting
|
1 |
WEB
|
Lostmon
|
|
2005-07-27
|
|
BMForum 3.0 - 'topic.php' Cross-Site Scripting
|
1 |
WEB
|
Lostmon
|
|
2005-07-27
|
|
Clever Copy 2.0 - 'categorysearch.php' Cross-Site Scripting
|
1 |
WEB
|
Lostmon
|
|
2005-07-27
|
|
Clever Copy 2.0 - 'results.php' Cross-Site Scripting
|
1 |
WEB
|
Lostmon
|
|
2005-07-26
|
|
PNG Counter 1.0 - 'Demo.php' Cross-Site Scripting
|
1 |
WEB
|
ArCaX-ATH
|
|
2005-07-26
|
|
NETonE PHPBook 1.4.6 - 'Guestbook.php' Cross-Site Scripting
|
1 |
WEB
|
rgod
|
|
2005-07-26
|
|
CartWIZ 1.10/1.20 - 'viewcart.asp' Cross-Site Scripting
|
1 |
WEB
|
Zinho
|
|
2005-07-26
|
|
VBZoom Forum 1.11 - 'show.php' SQL Injection
|
1 |
WEB
|
abducter_minds@yahoo.com
|
|
2005-07-25
|
|
Netquery 3.1 - 'portlist.php?portnum' Cross-Site Scripting
|
1 |
WEB
|
rgod
|
|
2005-07-25
|
|
Netquery 3.1 - 'nqports2.php' Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
rgod
|
|
2005-07-25
|
|
Netquery 3.1 - 'nqports.php?step' Cross-Site Scripting
|
1 |
WEB
|
rgod
|
|
2005-07-25
|
|
Netquery 3.1 - 'nqgeoip.php?step' Cross-Site Scripting
|
1 |
WEB
|
rgod
|
|
2005-07-25
|
|
Netquery 3.1 - 'nqgeoip2.php' Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
rgod
|
|
2005-07-25
|
|
Netquery 3.1 - 'submit.php?portnum' Cross-Site Scripting
|
1 |
WEB
|
rgod
|
|
2005-07-25
|
|
Atomic Photo Album 0.x/1.0 - 'Apa_PHPInclude.INC.php' Remote File Inclusion
|
1 |
WEB
|
lwdz
|
|
2005-07-22
|
|
Asn Guestbook 1.5 - 'footer.php?version' Cross-Site Scripting
|
1 |
WEB
|
rgod
|
|
2005-07-22
|
|
Asn Guestbook 1.5 - 'header.php?version' Cross-Site Scripting
|
1 |
WEB
|
rgod
|
|
2005-07-22
|
|
Contrexx 1.0.4 - Multiple Input Validation Vulnerabilities
|
1 |
WEB
|
Christopher Kunz
|
|
2005-07-21
|
|
Pyrox Search 1.0.5 - 'Newsearch.php' Whatdoreplace Cross-Site Scripting
|
1 |
WEB
|
rgod
|
|
2005-07-20
|
|
Greasemonkey 0.3.3 - Multiple Remote Information Disclosure Vulnerabilities
|
1 |
WEB
|
Mark Pilgrim
|
