|
2005-07-20
|
|
PHPNews 1.2.x - 'auth.php' SQL Injection
|
1 |
WEB
|
GHC
|
|
2005-07-19
|
|
Form Sender 1.0 - 'Processform.php3?Failed' Cross-Site Scripting
|
1 |
WEB
|
rgod
|
|
2005-07-19
|
|
FForm Sender 1.0 - 'Processform.php3?Name' Cross-Site Scripting
|
1 |
WEB
|
rgod
|
|
2013-06-07
|
|
Novell ZENworks Mobile Device Managment 2.6.1/2.7.0 - Local File Inclusion (Metasploit)
|
1 |
WEB
|
Metasploit
|
|
2013-06-07
|
|
AfterLogic WebMail Lite PHP 7.0.1 - Cross-Site Request Forgery
|
1 |
WEB
|
Pablo Ribeiro
|
|
2013-06-07
|
|
PHP Ticket System Beta 1 - Cross-Site Request Forgery
|
1 |
WEB
|
Pablo Ribeiro
|
|
2005-07-15
|
|
Novell Groupwise 6.5 Webaccess - HTML Injection
|
2 |
WEB
|
Francisco Amato
|
|
2013-06-07
|
|
Asus RT56U 3.0.0.4.360 - Remote Command Injection
|
2 |
WEB
|
drone
|
|
2005-07-18
|
|
tForum b0.9 - 'member.php' Cross-Site Scripting
|
2 |
WEB
|
wannacut
|
|
2013-06-07
|
|
Ruubikcms 1.1.1 - Persistent Cross-Site Scripting
|
2 |
WEB
|
expl0i13r
|
|
2005-07-18
|
|
e107 Website System 0.6 - Nested BBCode URL Tag Script Injection
|
2 |
WEB
|
Nick Griffin
|
|
2005-07-18
|
|
osCommerce 2.2 - 'update.php' Information Disclosure
|
2 |
WEB
|
Andrew Hunter
|
|
2005-07-15
|
|
Clever Copy 2.0 - 'calendar.php' Cross-Site Scripting
|
1 |
WEB
|
Lostmon
|
|
2005-07-14
|
|
Simple Message Board 2.0 beta1 - 'Search.cfm' Cross-Site Scripting
|
0 |
WEB
|
rUnViRuS
|
|
2005-07-14
|
|
Simple Message Board 2.0 beta1 - 'Thread.cfm' Cross-Site Scripting
|
1 |
WEB
|
rUnViRuS
|
|
2005-07-14
|
|
Simple Message Board 2.0 beta1 - 'User.cfm' Cross-Site Scripting
|
1 |
WEB
|
rUnViRuS
|
|
2005-07-14
|
|
Simple Message Board 2.0 beta1 - 'Forum.cfm' Cross-Site Scripting
|
1 |
WEB
|
rUnViRuS
|
|
2005-07-13
|
|
Hosting Controller 6.1 - Multiple SQL Injections
|
1 |
WEB
|
Soroush Dalili
|
|
2013-06-05
|
|
Netgear DGN1000 / DGN2200 - Multiple Vulnerabilities
|
1 |
WEB
|
Roberto Paleari
|
|
2013-06-05
|
|
Imperva SecureSphere Operations Manager 9.0.0.5 - Multiple Vulnerabilities
|
1 |
WEB
|
Pedro Andujar
|
|
2013-06-05
|
|
DS3 Authentication Server - Multiple Vulnerabilities
|
1 |
WEB
|
Pedro Andujar
|
|
2013-06-05
|
|
Ruubikcms 1.1.1 - 'tinybrowser.php?folder' Directory Traversal
|
1 |
WEB
|
expl0i13r
|
|
2013-06-05
|
|
Cuppa CMS - '/alertConfigField.php' Local/Remote File Inclusion
|
1 |
WEB
|
CWH Underground
|
|
2013-06-05
|
|
Netgear WPN824v3 - Unauthorized Configuration Download
|
1 |
WEB
|
Jens Regel
|
|
2013-06-05
|
|
Seowonintech Routers fw: 2.3.9 - File Disclosure
|
1 |
WEB
|
Todor Donev
|
|
2005-07-12
|
|
DVBBS 7.1 - 'ShowErr.asp' Cross-Site Scripting
|
1 |
WEB
|
rUnViRuS
|
|
2005-07-11
|
|
PHPsFTPd 0.2/0.4 - 'Inc.login.php' Privilege Escalation
|
1 |
WEB
|
Stefan Lochbihler
|
|
2005-07-12
|
|
Dragonfly Commerce 1.0 - Multiple SQL Injections
|
1 |
WEB
|
Diabolic Crab
|
|
2005-07-10
|
|
PPA 0.5.6 - 'ppa_root_path' File Inclusion
|
1 |
WEB
|
skdaemon porra
|
|
2005-07-11
|
|
Spid 1.3 - 'lang_path' File Inclusion
|
1 |
WEB
|
skdaemon porra
|
|
2005-07-10
|
|
ID Team ID Board 1.1.3 - 'SQL.CLS.php' SQL Injection
|
1 |
WEB
|
Defa
|
|
2005-07-08
|
|
PunBB 1.x - 'profile.php' User Profile Edit Module SQL Injection
|
1 |
WEB
|
Stefan Esser
|
|
2005-07-07
|
|
Comersus Open Technologies Comersus Cart 6.0.41 - Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Diabolic Crab
|
|
2005-07-07
|
|
PhotoGal 1.0/1.5 - News_File Remote File Inclusion
|
1 |
WEB
|
skdaemon porra
|
|
2005-07-07
|
|
phpAuction 2.5 - Multiple Vulnerabilities
|
1 |
WEB
|
Dcrab
|
|
2005-07-07
|
|
Comersus Open Technologies Comersus Cart 6.0.41 - Multiple SQL Injections
|
1 |
WEB
|
Diabolic Crab
|
|
2005-07-07
|
|
Pngren 2.0.1 - 'Kaiseki.cgi' Remote Command Execution
|
1 |
WEB
|
blahplok
|
|
2005-07-07
|
|
Elemental Software CartWIZ 1.20 - Multiple SQL Injections
|
1 |
WEB
|
Diabolic Crab
|
|
2005-07-06
|
|
eRoom 6.0 PlugIn - Insecure File Download Handling
|
1 |
WEB
|
c0ntex
|
|
2005-07-06
|
|
McAfee IntruShield Security Management System - Multiple Vulnerabilities
|
2 |
WEB
|
c0ntex
|
|
2005-07-06
|
|
phpWebSite 0.7.3/0.8.x/0.9.x - 'index.php' Directory Traversal
|
2 |
WEB
|
Diabolic Crab
|
|
2005-07-06
|
|
Jaws 0.x - Remote File Inclusion
|
2 |
WEB
|
Stefan Esser
|
|
2005-07-05
|
|
MyGuestbook 0.6.1 - 'Form.Inc.php3' Remote File Inclusion
|
2 |
WEB
|
SoulBlack Group
|
|
2005-07-05
|
|
AutoIndex PHP Script 1.5.2 - 'index.php' Cross-Site Scripting
|
2 |
WEB
|
mozako
|
|
2005-07-05
|
|
GlobalNoteScript 4.20 - 'Read.cgi' Remote Command Execution
|
2 |
WEB
|
AcidCrash
|
|
2005-07-05
|
|
phpPgAdmin 3.x - Login Form Directory Traversal
|
1 |
WEB
|
rznvynqqe@hushmail.com
|
|
2005-07-04
|
|
Plague News System 0.7 - 'delete.php' Access Restriction Bypass
|
2 |
WEB
|
Easyex
|
|
2005-07-04
|
|
Plague News System 0.7 - 'CID' Cross-Site Scripting
|
2 |
WEB
|
Easyex
|
|
2005-07-04
|
|
Plague News System 0.7 - 'CID' SQL Injection
|
2 |
WEB
|
Easyex
|
|
2005-07-04
|
|
EasyPHPCalendar 6.1.5/6.2.x - 'setupSQL.php?serverPath' Remote File Inclusion
|
2 |
WEB
|
Albania Security Clan
|
|
2005-07-04
|
|
EasyPHPCalendar 6.1.5/6.2.x - 'datePicker.php?serverPath' Remote File Inclusion
|
2 |
WEB
|
Albania Security Clan
|
|
2005-07-04
|
|
EasyPHPCalendar 6.1.5/6.2.x - 'header.inc.php?serverPath' Remote File Inclusion
|
2 |
WEB
|
Albania Security Clan
|
|
2005-07-04
|
|
EasyPHPCalendar 6.1.5/6.2.x - 'popup.php?serverPath' Remote File Inclusion
|
2 |
WEB
|
Albania Security Clan
|
|
2005-07-04
|
|
EasyPHPCalendar 6.1.5/6.2.x - 'calendar.php?serverPath' Remote File Inclusion
|
2 |
WEB
|
Albania Security Clan
|
|
2005-07-01
|
|
RaXnet Cacti 0.5/0.6.x/0.8.x - 'Graph_Image.php' Remote Command Execution Variant
|
2 |
WEB
|
Alberto Trivero
|
|
2005-06-30
|
|
osTicket 1.2/1.3 - 'view.php?inc' Arbitrary Local File Inclusion
|
2 |
WEB
|
edisan & foster
|
|
2005-06-30
|
|
CyberStrong EShop 4.2 - '10browse.asp' SQL Injection
|
1 |
WEB
|
aresu@bosen.net
|
|
2005-06-30
|
|
fsboard 2.0 - Directory Traversal
|
2 |
WEB
|
ActualMInd
|
|
2005-06-30
|
|
CyberStrong eShop 4.2 - '10expand.asp' SQL Injection
|
3 |
WEB
|
aresu@bosen.net
|
|
2005-06-30
|
|
CyberStrong EShop 4.2 - '20review.asp' SQL Injection
|
2 |
WEB
|
aresu@bosen.net
|
|
2005-06-29
|
|
Community Link Pro - 'login.cgi?File' Remote Command Execution
|
2 |
WEB
|
spher3
|
|
2004-10-24
|
|
Phorum 5.0.11 - 'Read.php' SQL Injection
|
2 |
WEB
|
Positive Technologies
|
|
2005-06-29
|
|
CGI-Club imTRBBS 1.0 - Remote Command Execution
|
2 |
WEB
|
blahplok
|
|
2013-06-03
|
|
PHD Help Desk 2.12 - SQL Injection
|
2 |
WEB
|
drone
|
|
2005-06-28
|
|
Dynamic Biz Website Builder (QuickWeb) 1.0 - 'login.asp' SQL Injection
|
2 |
WEB
|
basher13
|
|
2005-06-28
|
|
Hosting Controller 6.1 - 'error.asp' Cross-Site Scripting
|
2 |
WEB
|
Ashiyane Digital Security Team
|
|
2005-06-28
|
|
Community Server Forums - 'SearchResults.aspx' Cross-Site Scripting
|
0 |
WEB
|
abducter_minds@yahoo.com
|
|
2005-06-27
|
|
Mensajeitor 1.8.9 - 'IP' HTML Injection
|
0 |
WEB
|
Megabyte
|
|
2005-06-27
|
|
ASPPlayGround.NET 3.2 SR1 - Arbitrary File Upload
|
0 |
WEB
|
Psycho
|
|
2005-06-27
|
|
ASPNuke 0.80 - 'Language_Select.asp' HTTP Response Splitting
|
0 |
WEB
|
Alberto Trivero
|
|
2005-06-27
|
|
ASPNuke 0.80 - 'register.asp' Multiple Cross-Site Scripting Vulnerabilities
|
0 |
WEB
|
Alberto Trivero
|
|
2005-06-27
|
|
ASPNuke 0.80 - 'forgot_password.asp?email' Cross-Site Scripting
|
0 |
WEB
|
Alberto Trivero
|
|
2005-06-24
|
|
K-COLLECT CSV_DB.CGI 1.0/i_DB.CGI 1.0 - Remote Command Execution
|
0 |
WEB
|
blahplok
|
|
2005-06-24
|
|
UBBCentral UBB.Threads 5.5.1/6.x - 'grabnext.php?posted' SQL Injection
|
0 |
WEB
|
GulfTech Security
|
|
2005-06-24
|
|
UBBCentral UBB.Threads 5.5.1/6.x - 'notifymod.php?Number' SQL Injection
|
0 |
WEB
|
GulfTech Security
|
|
2005-06-24
|
|
UBBCentral UBB.Threads 5.5.1/6.x - 'addfav.php?main' SQL Injection
|
0 |
WEB
|
GulfTech Security
|
|
2005-06-24
|
|
UBBCentral UBB.Threads 5.5.1/6.x - 'viewmessage.php?message' SQL Injection
|
0 |
WEB
|
GulfTech Security
|
|
2005-06-24
|
|
UBBCentral UBB.Threads 5.5.1/6.x - 'modifypost.php?Number' SQL Injection
|
0 |
WEB
|
GulfTech Security
|
|
2005-06-24
|
|
UBBCentral UBB.Threads 5.5.1/6.x - 'calendar.php' Multiple SQL Injections
|
0 |
WEB
|
GulfTech Security
|
|
2005-06-24
|
|
UBBCentral UBB.Threads 5.5.1/6.x - 'download.php?Number' SQL Injection
|
1 |
WEB
|
GulfTech Security
|
|
2005-06-23
|
|
CarLine Forum Russian Board 4.2 - 'enter.php' Multiple SQL Injections
|
1 |
WEB
|
1dt.w0lf
|
|
2005-06-23
|
|
CarLine Forum Russian Board 4.2 - 'in.php' Multiple SQL Injections
|
0 |
WEB
|
1dt.w0lf
|
|
2005-06-23
|
|
CarLine Forum Russian Board 4.2 - 'line.php' Multiple SQL Injections
|
1 |
WEB
|
1dt.w0lf
|
|
2005-06-23
|
|
CarLine Forum Russian Board 4.2 - 'memory.php' Multiple SQL Injections
|
1 |
WEB
|
1dt.w0lf
|
|
2005-06-23
|
|
CarLine Forum Russian Board 4.2 - 'edit_msg.php?name_ig_array1[1]' SQL Injection
|
0 |
WEB
|
1dt.w0lf
|
|
2005-06-23
|
|
CarLine Forum Russian Board 4.2 - 'new.php?name_ig_array1[1]' SQL Injection
|
1 |
WEB
|
1dt.w0lf
|
|
2005-06-23
|
|
CarLine Forum Russian Board 4.2 - 'reply.php?name_ig_array1[1]' SQL Injection
|
1 |
WEB
|
1dt.w0lf
|
|
2005-06-23
|
|
CarLine Forum Russian Board 4.2 - 'reply_in.php' Multiple SQL Injections
|
1 |
WEB
|
1dt.w0lf
|
|
2005-06-23
|
|
CarLine Forum Russian Board 4.2 - 'set.php?name_ig_array[1]' SQL Injection
|
1 |
WEB
|
1dt.w0lf
|
|
2005-06-23
|
|
CarLine Forum Russian Board 4.2 - 'menu_header.php?table_sql' SQL Injection
|
1 |
WEB
|
1dt.w0lf
|
|
2005-06-23
|
|
CarLine Forum Russian Board 4.2 - 'edit_msg.php' Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
1dt.w0lf
|
|
2005-06-23
|
|
CarLine Forum Russian Board 4.2 - 'new.php' Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
1dt.w0lf
|
|
2005-06-23
|
|
CarLine Forum Russian Board 4.2 - 'reply.php' Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
1dt.w0lf
|
|
2005-06-23
|
|
CarLine Forum Russian Board 4.2 - 'set.php?name_ig_array[]' Cross-Site Scripting
|
1 |
WEB
|
1dt.w0lf
|
|
2005-06-23
|
|
CarLine Forum Russian Board 4.2 - 'search.php?text_poisk' Cross-Site Scripting
|
1 |
WEB
|
1dt.w0lf
|
|
2005-06-23
|
|
CarLine Forum Russian Board 4.2 - 'menu_tema.php' Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
1dt.w0lf
|
|
2005-06-23
|
|
CarLine Forum Russian Board 4.2 - 'menu_header.php' Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
1dt.w0lf
|
|
2005-06-23
|
|
CarLine Forum Russian Board 4.2 - IMG Tag Cross-Site Scripting
|
2 |
WEB
|
1dt.w0lf
|
|
2005-06-23
|
|
CarLine Forum Russian Board 4.2 - 'menu_footer.php' Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
1dt.w0lf
|
|
2005-06-23
|
|
Whois.Cart 2.2.x - 'profile.php' Cross-Site Scripting
|
3 |
WEB
|
Elzar Stuffenbach
|
|
2005-06-22
|
|
Ipswitch WhatsUp Professional 2005 SP1 - 'login.asp' SQL Injection
|
2 |
WEB
|
anonymous
|
|
2005-06-01
|
|
DUware DUclassmate 1.x - 'edit.asp?iPro' SQL Injection
|
2 |
WEB
|
Dedi Dwianto
|
|
2005-06-01
|
|
DUware DUclassmate 1.x - 'default.asp?iState' SQL Injection
|
2 |
WEB
|
Dedi Dwianto
|
|
2005-06-22
|
|
DUware DUforum 3.0/3.1 - 'userEdit.asp?id' SQL Injection
|
2 |
WEB
|
Dedi Dwianto
|
|
2005-06-22
|
|
DUware DUforum 3.0/3.1 - 'forums.asp?iFor' SQL Injection
|
2 |
WEB
|
Dedi Dwianto
|
|
2005-06-22
|
|
DUware DUforum 3.0/3.1 - 'post.asp?iFor' SQL Injection
|
1 |
WEB
|
Dedi Dwianto
|
|
2005-06-22
|
|
DUware DUforum 3.0/3.1 - 'messages.asp?iMsg' SQL Injection
|
2 |
WEB
|
Dedi Dwianto
|
|
2005-06-22
|
|
DUware DUpaypal 3.0/3.1 - 'sub.asp?iSub' SQL Injection
|
2 |
WEB
|
Dedi Dwianto
|
|
2005-06-22
|
|
DUware DUpaypal 3.0/3.1 - 'detail.asp?iPro' SQL Injection
|
2 |
WEB
|
Dedi Dwianto
|
|
2005-06-22
|
|
DUware DUamazon Pro 3.0/3.1 - 'detail.asp?iSub' SQL Injection
|
2 |
WEB
|
Dedi Dwianto
|
|
2005-06-22
|
|
DUware DUamazon Pro 3.0/3.1 - 'review.asp?iPro' SQL Injection
|
2 |
WEB
|
Dedi Dwianto
|
|
2005-06-22
|
|
DUware DUamazon Pro 3.0/3.1 - 'catDelete.asp?iCat' SQL Injection
|
2 |
WEB
|
Dedi Dwianto
|
|
2005-06-22
|
|
DUware DUamazon Pro 3.0/3.1 - 'productEdit.asp?iCat' SQL Injection
|
1 |
WEB
|
Dedi Dwianto
|
|
2005-06-22
|
|
DUware DUamazon Pro 3.0/3.1 - 'productDelete.asp?iCat' SQL Injection
|
2 |
WEB
|
Dedi Dwianto
|
|
2005-06-22
|
|
DUware DUamazon Pro 3.0/3.1 - 'type.asp?iType' SQL Injection
|
2 |
WEB
|
Dedi Dwianto
|
|
2005-06-20
|
|
RaXnet Cacti 0.5/0.6/0.8 - 'Top_Graph_Header.php' Remote File Inclusion
|
2 |
WEB
|
Maciej Piotr Falkiewicz
|
|
2005-06-22
|
|
DUware DUportal 3.4.3 Pro - Multiple SQL Injections
|
2 |
WEB
|
Dedi Dwianto
|
|
2005-06-20
|
|
RaXnet Cacti 0.5/0.6/0.8 - 'Config_Settings.php' Remote File Inclusion
|
1 |
WEB
|
Maciej Piotr Falkiewicz
|
|
2005-06-20
|
|
PAFaq - Administrator 'Username' SQL Injection
|
1 |
WEB
|
GulfTech Security
|
|
2005-06-20
|
|
I-Gallery - Folder Argument Cross-Site Scripting
|
1 |
WEB
|
Seyed Hamid Kashfi
|
|
2005-06-20
|
|
PAFaq - Question Cross-Site Scripting
|
1 |
WEB
|
GulfTech Security
|
|
2005-06-20
|
|
I-Gallery - Folder Argument Directory Traversal
|
1 |
WEB
|
Seyed Hamid Kashfi
|
|
2013-05-31
|
|
PhpTax 0.8 - File Manipulation 'newvalue' / Remote Code Execution
|
1 |
WEB
|
CWH Underground
|
|
2005-06-20
|
|
PAFaq beta4 - Database Unauthorized Access
|
1 |
WEB
|
james
|
|
2003-12-07
|
|
LaGarde StoreFront 5.0 Shopping Cart - 'login.asp' SQL Injection
|
1 |
WEB
|
G00db0y
|
