|
2005-09-06
|
|
Land Down Under 601/602/700/701/800/801 - 'events.php' HTML Injection
|
3 |
WEB
|
conor.e.buckley
|
|
2005-08-31
|
|
CMS Made Simple 0.10 - 'Lang.php' Remote File Inclusion
|
3 |
WEB
|
groszynskif
|
|
2005-08-31
|
|
FlatNuke 2.5.6 - 'USR' Cross-Site Scripting
|
3 |
WEB
|
rgod
|
|
2013-06-14
|
|
LibrettoCMS 2.2.2 - Arbitrary File Upload
|
3 |
WEB
|
CWH Underground
|
|
2005-08-31
|
|
FlatNuke 2.5.6 - 'ID' Directory Traversal
|
2 |
WEB
|
rgod
|
|
2005-08-30
|
|
phpLDAPadmin 0.9.6/0.9.7 - 'welcome.php' Arbitrary File Inclusion
|
3 |
WEB
|
rgod
|
|
2005-08-29
|
|
PHP-Fusion 4.0/5.0/6.0 - BBCode URL Tag Script Injection
|
3 |
WEB
|
slacker4ever_1
|
|
2005-08-29
|
|
Autolinks 2.1 Pro - 'Al_initialize.php' Remote File Inclusion
|
3 |
WEB
|
4Degrees
|
|
2005-08-29
|
|
Land Down Under 700/701/800/801 - 'list.php' Multiple SQL Injections
|
3 |
WEB
|
matrix_killer
|
|
2005-08-29
|
|
Land Down Under 700/701/800/801 - 'events.php?c' SQL Injection
|
3 |
WEB
|
matrix_killer
|
|
2005-08-29
|
|
Land Down Under 700/701/800/801 - 'index.php?c' SQL Injection
|
3 |
WEB
|
matrix_killer
|
|
2005-08-29
|
|
MyBB - 'member.php' SQL Injection
|
3 |
WEB
|
W7ED
|
|
2005-08-27
|
|
Looking Glass 20040427 - Remote Command Execution
|
3 |
WEB
|
rgod
|
|
2005-08-27
|
|
Looking Glass - Cross-Site Scripting
|
3 |
WEB
|
rgod
|
|
2005-08-29
|
|
PHPWebNotes 2.0 - 'Api.php' Remote File Inclusion
|
3 |
WEB
|
nf2@scheinwelt.at
|
|
2005-08-29
|
|
SqWebMail 5.0.4 - HTML Email IMG Tag Script Injection
|
3 |
WEB
|
Jakob Balle
|
|
2005-08-28
|
|
phpMyAdmin 2.x - 'error.php' Cross-Site Scripting
|
3 |
WEB
|
Michal Cihar
|
|
2005-08-24
|
|
Foojan PHPWeblog - Html Injection
|
3 |
WEB
|
ali202
|
|
2005-08-23
|
|
SaveWebPortal 3.4 - Multiple Directory Traversal Vulnerabilities
|
3 |
WEB
|
rgod
|
|
2005-08-23
|
|
SaveWebPortal 3.4 - Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
rgod
|
|
2005-08-23
|
|
SaveWebPortal 3.4 - Multiple Remote File Inclusions
|
3 |
WEB
|
rgod
|
|
2005-08-23
|
|
SaveWebPortal 3.4 - Unauthorized Access
|
2 |
WEB
|
rgod
|
|
2005-08-22
|
|
PostNuke 0.75/0.76 DL - 'viewdownload.php' SQL Injection
|
3 |
WEB
|
Maksymilian Arciemowicz
|
|
2005-08-22
|
|
PostNuke 0.76 RC4b - 'user.php?htmltext' Cross-Site Scripting
|
3 |
WEB
|
Maksymilian Arciemowicz
|
|
2005-08-22
|
|
PostNuke 0.76 RC4b Comments Module - 'moderate' Cross-Site Scripting
|
3 |
WEB
|
Maksymilian Arciemowicz
|
|
2005-08-22
|
|
RunCMS 1.1/1.2 Module Newbb_plus/Messages - SQL Injection
|
3 |
WEB
|
GulfTech Security
|
|
2005-08-22
|
|
PHPKit 1.6.1 - 'member.php' SQL Injection
|
4 |
WEB
|
phuket
|
|
2005-08-22
|
|
NEPHP 3.0.4 - 'browse.php' Cross-Site Scripting
|
3 |
WEB
|
bl2k
|
|
2005-08-20
|
|
Land Down Under 800 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
bl2k
|
|
2005-08-20
|
|
Land Down Under 800 - 'journal.php?w' Cross-Site Scripting
|
3 |
WEB
|
bl2k
|
|
2005-08-20
|
|
Land Down Under 800/801 - 'forums.php' Multiple SQL Injections
|
3 |
WEB
|
bl2k
|
|
2005-08-20
|
|
Land Down Under 800/801 - 'list.php' Multiple SQL Injections
|
3 |
WEB
|
bl2k
|
|
2005-08-20
|
|
Land Down Under 800/801 - 'journal.php?m' SQL Injection
|
3 |
WEB
|
bl2k
|
|
2005-08-20
|
|
Land Down Under 800/801 - 'links.php?w' SQL Injection
|
3 |
WEB
|
bl2k
|
|
2005-08-20
|
|
Woltlab Burning Board 2.x - 'ModCP.php' SQL Injection
|
3 |
WEB
|
[R]
|
|
2013-06-13
|
|
Airlive IP Cameras - Multiple Vulnerabilities
|
3 |
WEB
|
Sánchez_ Lopez_ Castillo
|
|
2005-08-19
|
|
Mantis Bug Tracker 0.x/1.0 - Multiple Input Validation Vulnerabilities
|
3 |
WEB
|
anonymous
|
|
2005-08-18
|
|
PHPOutsourcing Zorum 3.5 - 'Prod.php' Arbitrary Command Execution
|
3 |
WEB
|
rgod
|
|
2005-08-18
|
|
ATutor 1.5.1 - 'login.php?course' Cross-Site Scripting
|
3 |
WEB
|
matrix_killer
|
|
2005-08-18
|
|
W-Agora 4.2 - 'Site' Directory Traversal
|
3 |
WEB
|
matrix_killer
|
|
2005-08-17
|
|
PHPTB Topic Board 2.0 - 'tech_o.php?absolutepath' Remote File Inclusion
|
3 |
WEB
|
Filip Groszynski
|
|
2005-08-17
|
|
PHPTB Topic Board 2.0 - 'file_o.php?absolutepath' Remote File Inclusion
|
3 |
WEB
|
Filip Groszynski
|
|
2005-08-17
|
|
PHPTB Topic Board 2.0 - 'dev_o.php?absolutepath' Remote File Inclusion
|
4 |
WEB
|
Filip Groszynski
|
|
2005-08-17
|
|
PHPTB Topic Board 2.0 - 'board_o.php?absolutepath' Remote File Inclusion
|
3 |
WEB
|
Filip Groszynski
|
|
2005-08-17
|
|
PHPTB Topic Board 2.0 - 'admin_o.php?absolutepath' Remote File Inclusion
|
3 |
WEB
|
Filip Groszynski
|
|
2005-08-17
|
|
PHPFreeNews 1.40 - 'searchresults.php' Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
h4cky
|
|
2005-08-17
|
|
PHPFreeNews 1.40 - 'NewsCategoryForm.php?NewsMode' Cross-Site Scripting
|
3 |
WEB
|
h4cky
|
|
2005-08-17
|
|
PHPFreeNews 1.40 - 'searchresults.php' Multiple SQL Injections
|
2 |
WEB
|
h4cky
|
|
2005-08-16
|
|
Soft4e ECW-Shop 6.0.2 - 'index.php' HTML Injection
|
2 |
WEB
|
John Cobb
|
|
2005-08-16
|
|
ECW Shop 6.0.2 - 'index.php' Cross-Site Scripting
|
3 |
WEB
|
John Cobb
|
|
2005-08-16
|
|
CPaint 1.3 - xmlhttp Request Input Validation
|
3 |
WEB
|
Thor Larholm
|
|
2005-08-16
|
|
Soft4e ECW-Shop 6.0.2 - 'index.php' SQL Injection
|
3 |
WEB
|
John Cobb
|
|
2005-08-16
|
|
PersianBlog - 'Userslist.asp' SQL Injection
|
3 |
WEB
|
trueend5
|
|
2005-08-16
|
|
My Image Gallery 1.4.1 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
anonymous
|
|
2005-08-12
|
|
MyBulletinBoard (MyBB) RC4 - 'action' SQL Injection
|
3 |
WEB
|
phuket
|
|
2005-08-12
|
|
MyBulletinBoard (MyBB) RC4 - 'polloptions' SQL Injection
|
3 |
WEB
|
phuket
|
|
2005-08-12
|
|
MyBulletinBoard (MyBB) RC4 - 'member.php' Multiple SQL Injections
|
3 |
WEB
|
phuket
|
|
2005-08-12
|
|
MyBulletinBoard (MyBB) RC4 - 'Username' SQL Injection
|
3 |
WEB
|
phuket
|
|
2005-08-10
|
|
VegaDNS 0.8.1/0.9.8/0.9.9 - 'index.php' Cross-Site Scripting
|
2 |
WEB
|
dyn0
|
|
2005-08-10
|
|
PHPTB Topic Board 2.0 - 'index.php?mid' SQL Injection
|
2 |
WEB
|
abducter_minds@yahoo.com
|
|
2005-08-10
|
|
ezUpload 2.2 - 'form.php?path' Remote File Inclusion
|
3 |
WEB
|
Johnnie Walker
|
|
2005-08-10
|
|
ezUpload 2.2 - 'customize.php?path' Remote File Inclusion
|
3 |
WEB
|
Johnnie Walker
|
|
2005-08-10
|
|
ezUpload 2.2 - 'initialize.php?path' Remote File Inclusion
|
3 |
WEB
|
Johnnie Walker
|
|
2005-08-10
|
|
ezUpload 2.2 - 'index.php?path' Remote File Inclusion
|
3 |
WEB
|
Johnnie Walker
|
|
2013-06-11
|
|
Simple PHP Agenda 2.2.8 - 'edit_event.php?eventid' SQL Injection
|
3 |
WEB
|
Anthony Dubuissez
|
|
2013-06-11
|
|
Fobuc Guestbook 0.9 - SQL Injection
|
3 |
WEB
|
CWH Underground
|
|
2013-06-11
|
|
Buffalo WZR-HP-G300NH2 - Cross-Site Request Forgery
|
3 |
WEB
|
Prayas Kulshrestha
|
|
2005-08-09
|
|
TriggerTG TClanPortal 3.0 - Multiple SQL Injections
|
3 |
WEB
|
admin@batznet.com
|
|
2013-06-11
|
|
NanoBB 0.7 - Multiple Vulnerabilities
|
3 |
WEB
|
CWH Underground
|
|
2013-06-11
|
|
Weathermap 0.97c - 'mapname' Local File Inclusion
|
3 |
WEB
|
Anthony Dubuissez
|
|
2013-06-11
|
|
WordPress Plugin WP-SendSms 1.0 - Multiple Vulnerabilities
|
2 |
WEB
|
expl0i13r
|
|
2005-08-08
|
|
FunkBoard 0.66 - 'register.php' Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
rgod
|
|
2005-08-08
|
|
FunkBoard 0.66 - 'profile.php' Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
rgod
|
|
2005-08-08
|
|
FunkBoard 0.66 - 'reply.php' Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
rgod
|
|
2005-08-08
|
|
FunkBoard 0.66 - 'newtopic.php' Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
rgod
|
|
2005-08-08
|
|
FunkBoard 0.66 - 'prefs.php' Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
rgod
|
|
2005-08-08
|
|
FunkBoard 0.66 - 'editpost.php' Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
rgod
|
|
2005-08-08
|
|
Chipmunk CMS 1.3 - Fontcolor Cross-Site Scripting
|
2 |
WEB
|
rgod
|
|
2005-08-08
|
|
Calendar Express 2.2 - 'search.php' Cross-Site Scripting
|
3 |
WEB
|
almaster
|
|
2005-08-08
|
|
PHP Lite Calendar Express 2.2 - 'Subscribe.php?cid' SQL Injection
|
3 |
WEB
|
almaster
|
|
2005-08-08
|
|
PHP Lite Calendar Express 2.2 - 'auth.php?cid' SQL Injection
|
3 |
WEB
|
almaster
|
|
2005-08-08
|
|
PHP Lite Calendar Express 2.2 - 'login.php?cid' SQL Injection
|
3 |
WEB
|
almaster
|
|
2005-08-08
|
|
Gravity Board X 1.1 - CSS Template Unauthorized Access
|
2 |
WEB
|
rgod
|
|
2005-08-08
|
|
Dvbbs 7.1/8.2 - 'boardhelp.asp' Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
Lostmon
|
|
2005-08-08
|
|
Dvbbs 7.1/8.2 - 'dispuser.asp?name' Cross-Site Scripting
|
3 |
WEB
|
Lostmon
|
|
2005-08-08
|
|
Dvbbs 7.1/8.2 - 'dispbbs.asp?page' Cross-Site Scripting
|
3 |
WEB
|
Lostmon
|
|
2005-08-08
|
|
Gravity Board X 1.1 - Login SQL Injection
|
3 |
WEB
|
rgod
|
|
2005-08-08
|
|
E107 Website System 0.6 - Attached File Cross-Site Scripting
|
3 |
WEB
|
edward11
|
|
2005-08-08
|
|
Invision Power Board (IP.Board) 1.0.3 - Attached File Cross-Site Scripting
|
3 |
WEB
|
V[i]RuS
|
|
2005-08-08
|
|
SysCP 1.2.x - Multiple Script Execution Vulnerabilities
|
3 |
WEB
|
Christopher Kunz
|
|
2005-08-06
|
|
PHP-Fusion 4.0/5.0/6.0 - 'messages.php' SQL Injection
|
3 |
WEB
|
almaster
|
|
2005-08-05
|
|
FlatNuke 2.5.5 - 'footer.php' Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
rgod
|
|
2005-08-05
|
|
FlatNuke 2.5.5 - 'structure.php' Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
rgod
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - jnl_records User Database Disclosure
|
3 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - suggestions.csv User IP Disclosure
|
3 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 petitionbook Script - User IP Disclosure
|
3 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - ips2block Banned IP Disclosure
|
3 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - formmailer.log User Sent Mail Disclosure
|
3 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - logfile.csv User IP Disclosure
|
2 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - ips2block Banned IP List Disclosure
|
2 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - guestbook_ips2block Banned IP List Disclosure
|
3 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - Guestbook File Client IP Disclosure
|
2 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - 'shrimp_petition.php' Multiple Cross-Site Scripting Vulnerabili
|
2 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - 'jax_calendar.php' Multiple Cross-Site Scripting Vulnerabilitie
|
2 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - 'jax_linklists.php' Multiple Cross-Site Scripting Vulnerabiliti
|
2 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - 'jax_guestbook.php' Multiple Cross-Site Scripting Vulnerabiliti
|
2 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - 'archive.php?language' Cross-Site Scripting
|
2 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - 'sign_in.php?language' Cross-Site Scripting
|
2 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - 'jax_newsletter.php?language' Cross-Site Scripting
|
2 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Jax PHP Scripts 1.0/1.34/2.14/3.31 - 'dwt_editor.php' Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
Lostmon
|
|
2005-08-05
|
|
Comdev eCommerce 3.0 - 'WCE.download.php' Directory Traversal
|
2 |
WEB
|
anonymous
|
|
2005-08-05
|
|
Comdev eCommerce 3.0 - 'config.php' Remote File Inclusion
|
2 |
WEB
|
anonymous
|
|
2013-06-10
|
|
Concrete5 CMS 5.6.1.2 - Multiple Vulnerabilities
|
2 |
WEB
|
expl0i13r
|
|
2013-06-10
|
|
Resin Application Server 4.0.36 - Source Code Disclosure
|
3 |
WEB
|
LiquidWorm
|
|
2005-08-04
|
|
PortailPHP 2.4 - 'index.php' SQL Injection
|
3 |
WEB
|
abducter_minds@yahoo.com
|
|
2005-08-03
|
|
Naxtor E-directory 1.0 - 'default.asp' SQL Injection
|
3 |
WEB
|
basher13
|
|
2005-08-03
|
|
Naxtor E-directory 1.0 - 'Message.asp' Cross-Site Scripting
|
2 |
WEB
|
basher13
|
|
2005-08-03
|
|
Web Content Management - 'list.php?strTable' Cross-Site Scripting
|
2 |
WEB
|
rgod
|
|
2005-08-03
|
|
Web Content Management - 'validsession.php?strRootpath' Cross-Site Scripting
|
2 |
WEB
|
rgod
|
|
2005-07-31
|
|
Karrigell 1.x/2.0/2.1 - '.KS' File Arbitrary Python Command Execution
|
2 |
WEB
|
Radovan GarabÃk
|
|
2005-08-03
|
|
Fusebox 4.1 - 'index.cfm' Cross-Site Scripting
|
2 |
WEB
|
N.N.P
|
|
2005-08-02
|
|
Naxtor Shopping Cart 1.0 - 'Shop_Display_Products.php' SQL Injection
|
2 |
WEB
|
John Cobb
|
|
2005-08-02
|
|
Naxtor Shopping Cart 1.0 - 'Lost_password.php' Cross-Site Scripting
|
2 |
WEB
|
John Cobb
|
|
2005-08-01
|
|
OpenBook 1.2.2 - 'admin.php' SQL Injection
|
2 |
WEB
|
SVT
|
|
2005-08-01
|
|
PHPFreeNews 1.x - Admin Login SQL Injection
|
2 |
WEB
|
rgod
|
