|
2004-09-07
|
|
SAFE TEAM Regulus 2.2 - 'Custchoice.php' Update Your Password Action Information Disclosure
|
1 |
WEB
|
masud_libra
|
|
2004-09-07
|
|
UtilMind Solutions Site News 1.1 - Authentication Bypass
|
1 |
WEB
|
anonymous
|
|
2004-09-05
|
|
PSNews 1.1 - 'No' Cross-Site Scripting
|
2 |
WEB
|
Michal Blaszczak
|
|
2004-09-07
|
|
Webmin 1.x - HTML Email Command Execution
|
2 |
WEB
|
Keigo Yamazaki
|
|
2004-09-04
|
|
Keene Digital Media Server 1.0.2 - Cross-Site Scripting
|
2 |
WEB
|
dr_insane
|
|
2004-09-02
|
|
CuteNews 0.88/1.3.x - 'index.php' Cross-Site Scripting
|
1 |
WEB
|
Exoduks
|
|
2004-09-02
|
|
SiteCubed MailWorks Professional - Authentication Bypass
|
1 |
WEB
|
Paul Craig
|
|
2013-03-04
|
|
Nconf 1.3 - Multiple SQL Injections
|
1 |
WEB
|
Saadi Siddiqui
|
|
2013-03-04
|
|
D-Link DSL-2740B ADSL Router - Authentication Bypass
|
1 |
WEB
|
Ivano Binetti
|
|
2013-03-01
|
|
PHP-Fusion 7.02.05 - Multiple Vulnerabilities
|
2 |
WEB
|
waraxe
|
|
2013-03-01
|
|
Piwigo 2.4.6 - Multiple Vulnerabilities
|
1 |
WEB
|
High-Tech Bridge SA
|
|
2013-03-01
|
|
doorGets CMS - Cross-Site Request Forgery
|
0 |
WEB
|
n0pe
|
|
2013-02-27
|
|
WordPress Plugin Comment Rating 2.9.32 - Multiple Vulnerabilities
|
2 |
WEB
|
ebanyu
|
|
2013-02-27
|
|
Joomla! 3.0.2 - 'highlight.php' PHP Object Injection
|
2 |
WEB
|
EgiX
|
|
2013-02-26
|
|
WiFilet 1.2 iPad iPhone - Multiple Vulnerabilities
|
2 |
WEB
|
Vulnerability-Lab
|
|
2013-02-26
|
|
MTP Poll 1.0 - Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
LiquidWorm
|
|
2013-02-26
|
|
MTP Guestbook 1.0 - Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
LiquidWorm
|
|
2013-02-26
|
|
MTP Image Gallery 1.0 - 'edit_photos.php?title' Cross-Site Scripting
|
1 |
WEB
|
LiquidWorm
|
|
2013-02-26
|
|
iOS IPMap 2.5 - Arbitrary File Upload
|
0 |
WEB
|
Vulnerability-Lab
|
|
2013-02-26
|
|
Rix4Web Portal - Blind SQL Injection
|
1 |
WEB
|
L0n3ly-H34rT
|
|
2013-02-26
|
|
Brewthology 0.1 - SQL Injection
|
1 |
WEB
|
cr4wl3r
|
|
2013-02-21
|
|
PHPMyRecipes 1.2.2 - 'viewrecipe.php?r_id' SQL Injection
|
1 |
WEB
|
cr4wl3r
|
|
2013-02-21
|
|
glFusion 1.2.2 - Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
High-Tech Bridge SA
|
|
2013-02-21
|
|
Alt-N MDaemon WorldClient 13.0.3 - Multiple Vulnerabilities
|
1 |
WEB
|
QSecure & Demetris Papapetrou
|
|
2013-02-21
|
|
Alt-N MDaemon 12.5.6/13.0.3 - Email Body HTML/JS Injection
|
1 |
WEB
|
QSecure & Demetris Papapetrou
|
|
2013-02-21
|
|
RTTucson Quotations Database Script - Authentication Bypass
|
1 |
WEB
|
cr4wl3r
|
|
2013-02-21
|
|
Web Cookbook - Multiple Vulnerabilities
|
1 |
WEB
|
cr4wl3r
|
|
2013-02-20
|
|
CKEditor 4.0.1 - Multiple Vulnerabilities
|
0 |
WEB
|
AkaStep
|
|
2013-02-20
|
|
RTTucson Quotations Database - Multiple Vulnerabilities
|
1 |
WEB
|
3spi0n
|
|
2013-02-19
|
|
Piwigo 2.4.6 - '/install.php' Arbitrary File Read/Delete
|
1 |
WEB
|
LiquidWorm
|
|
2013-02-18
|
|
USB Sharp 1.3.4 iPad iPhone - Multiple Vulnerabilities
|
2 |
WEB
|
Vulnerability-Lab
|
|
2013-02-18
|
|
Scripts Genie Hot Scripts Clone - 'showcategory.php?cid' SQL Injection
|
1 |
WEB
|
Easy Laster
|
|
2013-02-18
|
|
Cometchat Application - Multiple Vulnerabilities
|
1 |
WEB
|
z3r0sPlOiT
|
|
2013-02-18
|
|
Scripts Genie Pet Rate Pro - Multiple Vulnerabilities
|
1 |
WEB
|
TheMirkin
|
|
2013-02-18
|
|
Netgear DGN2200B - Multiple Vulnerabilities
|
1 |
WEB
|
m-1-k-3
|
|
2013-02-17
|
|
Scripts Genie Top Sites - 'out.php?id' SQL Injection
|
1 |
WEB
|
3spi0n
|
|
2013-02-17
|
|
Scripts Genie Domain Trader - 'catalog.php?id' SQL Injection
|
1 |
WEB
|
3spi0n
|
|
2013-02-17
|
|
Scripts Genie Games Site Script - 'index.php?id' SQL Injection
|
1 |
WEB
|
3spi0n
|
|
2013-02-17
|
|
Scripts Genie Gallery Personals - 'gallery.php?L' SQL Injection
|
1 |
WEB
|
3spi0n
|
|
2013-02-15
|
|
ChillyCMS 1.3.0 - Multiple Vulnerabilities
|
1 |
WEB
|
Abhi M Balakrishnan
|
|
2013-02-15
|
|
Cometchat - Multiple Vulnerabilities
|
2 |
WEB
|
B127Y
|
|
2013-02-15
|
|
TP-Link TL-WA701N / TL-WA701ND - Multiple Vulnerabilities
|
2 |
WEB
|
m-1-k-3
|
|
2013-02-15
|
|
Edimax EW-7206-APg and EW-7209APg - Multiple Vulnerabilities
|
2 |
WEB
|
m-1-k-3
|
|
2013-02-14
|
|
Ultra Light Forum - Persistent Cross-Site Scripting
|
2 |
WEB
|
cr4wl3r
|
|
2013-02-14
|
|
SonicWALL OEM Scrutinizer 9.5.2 - Multiple Vulnerabilities
|
1 |
WEB
|
Vulnerability-Lab
|
|
2013-02-14
|
|
Raidsonic IB-NAS5220 and IB-NAS4220-B - Multiple Vulnerabilities
|
2 |
WEB
|
m-1-k-3
|
|
2013-02-14
|
|
OpenPLI 3.0 Beta (OpenPLi-beta-dm7000-20130127-272) - Multiple Vulnerabilities
|
2 |
WEB
|
m-1-k-3
|
|
2013-02-14
|
|
Transferable Remote 1.1 iPad iPhone - Multiple Vulnerabilities
|
2 |
WEB
|
Vulnerability-Lab
|
|
2013-02-14
|
|
SonicWALL Scrutinizer 9.5.2 - SQL Injection
|
2 |
WEB
|
Vulnerability-Lab
|
|
2013-02-13
|
|
OpenEMR 4.1.1 - 'ofc_upload_image.php' Arbitrary File Upload
|
1 |
WEB
|
LiquidWorm
|
|
2013-02-11
|
|
Air Disk Wireless 1.9 iPad iPhone - Multiple Vulnerabilities
|
2 |
WEB
|
Vulnerability-Lab
|
|
2013-02-11
|
|
TP-Link - Admin Panel Multiple Cross-Site Request Forgery Vulnerabilities
|
2 |
WEB
|
CYBSEC Labs
|
|
2013-02-11
|
|
IP.Gallery 4.2.x/5.0.x - Persistent Cross-Site Scripting
|
2 |
WEB
|
Mohamed Ramadan
|
|
2013-02-11
|
|
IRIS Citations Management Tool - (Authenticated) Remote Command Execution
|
2 |
WEB
|
aeon
|
|
2013-02-11
|
|
Linksys WRT160N - Multiple Vulnerabilities
|
2 |
WEB
|
m-1-k-3
|
|
2013-02-11
|
|
D-Link DIR-615 Rev H - Multiple Vulnerabilities
|
2 |
WEB
|
m-1-k-3
|
|
2013-02-11
|
|
Linksys WAG200G - Multiple Vulnerabilities
|
2 |
WEB
|
m-1-k-3
|
|
2013-02-11
|
|
Linksys E1500/E2500 - Multiple Vulnerabilities
|
2 |
WEB
|
m-1-k-3
|
|
2013-02-10
|
|
Easy Live Shop System - SQL Injection
|
2 |
WEB
|
Ramdan Yantu
|
|
2013-02-07
|
|
WirelessFiles 1.1 iPad iPhone - Multiple Vulnerabilities
|
2 |
WEB
|
Vulnerability-Lab
|
|
2013-02-07
|
|
CubeCart 5.2.0 - 'cubecart.class.php' PHP Object Injection
|
2 |
WEB
|
EgiX
|
|
2013-02-07
|
|
Netgear DGN1000B - Multiple Vulnerabilities
|
2 |
WEB
|
m-1-k-3
|
|
2013-02-06
|
|
Hiverr 2.2 - Multiple Vulnerabilities
|
1 |
WEB
|
xStarCode
|
|
2013-02-05
|
|
Glossword 1.8.3 - SQL Injection
|
2 |
WEB
|
AkaStep
|
|
2013-02-05
|
|
glossword 1.8.12 - Multiple Vulnerabilities
|
1 |
WEB
|
AkaStep
|
|
2013-02-05
|
|
Free Monthly Websites 2.0 - Multiple Vulnerabilities
|
1 |
WEB
|
X-Cisadane
|
|
2013-02-05
|
|
D-Link DIR-600 / DIR-300 (Rev B) - Multiple Vulnerabilities
|
1 |
WEB
|
m-1-k-3
|
|
2013-02-05
|
|
AdaptCMS 2.0.4 - 'config.php?question' SQL Injection
|
1 |
WEB
|
kallimero
|
|
2013-02-05
|
|
ArrowChat 1.5.61 - Multiple Vulnerabilities
|
1 |
WEB
|
kallimero
|
|
2013-02-05
|
|
Cisco Unity Express - Multiple Vulnerabilities
|
1 |
WEB
|
Jacob Holcomb
|
|
2013-02-04
|
|
Simple Machine Forum 2.0.x < 2.0.4 - File Disclosure / Directory Traversal
|
2 |
WEB
|
NightlyDev
|
|
2013-01-31
|
|
Buffalo TeraStation TS-Series - Multiple Vulnerabilities
|
2 |
WEB
|
Andrea Fabrizi
|
|
2013-01-31
|
|
D-Link DCS Cameras - Multiple Vulnerabilities
|
2 |
WEB
|
Roberto Paleari
|
|
2013-01-31
|
|
Netgear SPH200D - Multiple Vulnerabilities
|
2 |
WEB
|
m-1-k-3
|
|
2013-01-29
|
|
pfSense UTM Platform 2.0.1 - Cross-Site Scripting
|
2 |
WEB
|
Dimitris Strevinas
|
|
2013-01-28
|
|
DataLife Engine 9.7 - 'preview.php' PHP Code Injection
|
2 |
WEB
|
EgiX
|
|
2013-01-29
|
|
Kohana Framework 2.3.3 - Directory Traversal
|
2 |
WEB
|
Vulnerability-Lab
|
|
2013-01-29
|
|
Fortinet FortiMail 400 IBE - Multiple Vulnerabilities
|
2 |
WEB
|
Vulnerability-Lab
|
|
2013-01-28
|
|
PHP weby directory software 1.2 - Multiple Vulnerabilities
|
2 |
WEB
|
AkaStep
|
|
2013-01-28
|
|
Microsoft Internet Explorer 8/9 - Steal Any Cookie
|
1 |
WEB
|
Christian Haider
|
|
2004-09-01
|
|
phpWebSite 0.7.3/0.8.x/0.9.x Comment Module - 'CM_pid' Cross-Site Scripting
|
2 |
WEB
|
GulfTech Security
|
|
2004-09-01
|
|
Newtelligence DasBlog 1.x - Request Log HTML Injection
|
2 |
WEB
|
Dominick Baier
|
|
2004-09-01
|
|
Comersus Cart 5.0 - HTTP Response Splitting
|
2 |
WEB
|
Maestro De-Seguridad
|
|
2004-08-31
|
|
Web Animations Password Protect - Multiple Input Validation Vulnerabilities
|
2 |
WEB
|
Criolabs
|
|
2004-08-28
|
|
Nagl XOOPS Dictionary Module 1.0 - Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
CyruxNET
|
|
2004-08-24
|
|
PHP Code Snippet Library 0.8 - Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Nikyt0x Argentina
|
|
2004-08-24
|
|
Web-APP.Org WebAPP 0.8/0.9.x - Directory Traversal
|
2 |
WEB
|
Jerome Athias
|
|
2004-08-24
|
|
SWsoft Plesk Reloaded 7.1 - 'Login_name' Cross-Site Scripting
|
2 |
WEB
|
sourvivor
|
|
2004-08-23
|
|
eGroupWare 1.0 Calendar Module - 'date' Cross-Site Scripting
|
1 |
WEB
|
Joxean Koret
|
|
2004-08-23
|
|
Axis Network Camera 2.x And Video Server 1-3 - HTTP Authentication Bypass
|
2 |
WEB
|
bashis
|
|
2004-08-23
|
|
Axis Network Camera 2.x And Video Server 1-3 - Directory Traversal
|
2 |
WEB
|
bashis
|
|
2004-08-23
|
|
Axis Network Camera 2.x And Video Server 1-3 - 'virtualinput.cgi' Arbitrary Command Execution
|
2 |
WEB
|
bashis
|
|
2004-08-23
|
|
PhotoADay - 'Pad_selected' Cross-Site Scripting
|
2 |
WEB
|
King Of Love
|
|
2004-08-23
|
|
Compulsive Media CNU5 - 'News.mdb' Database Disclosure
|
3 |
WEB
|
Security .Net Information
|
|
2004-08-21
|
|
MyDms 1.4 - SQL Injection / Directory Traversal
|
2 |
WEB
|
Jose Antonio
|
|
2004-08-21
|
|
Mantis Bug Tracker 0.x - New Account Signup Mass Emailing
|
2 |
WEB
|
Jose Antonio
|
|
2004-08-21
|
|
Mantis Bug Tracker 0.x - Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
Jose Antonio
|
|
2004-08-21
|
|
Mantis Bug Tracker 0.19 - Remote Server-Side Script Execution
|
0 |
WEB
|
Jose Antonio
|
|
2004-08-21
|
|
Sympa 4.x - New List HTML Injection
|
2 |
WEB
|
Jose Antonio
|
|
2004-07-19
|
|
Zixforum - ZixForum.mdb Database Disclosure
|
2 |
WEB
|
Security .Net Information
|
|
2004-07-18
|
|
PHP-Fusion Database Backup - Information Disclosure
|
2 |
WEB
|
Ahmad Muammar
|
|
2004-07-17
|
|
Gallery 1.4.4 - Remote Server-Side Script Execution
|
2 |
WEB
|
aCiDBiTS
|
|
2004-07-17
|
|
Merak Mail Server 7.4.5 - 'calendar.html?schedule' SQL Injection
|
2 |
WEB
|
Criolabs
|
|
2004-07-17
|
|
Merak Mail Server 7.4.5 - address.html Full Path Disclosure
|
2 |
WEB
|
Criolabs
|
|
2004-07-17
|
|
Merak Mail Server 7.4.5 - HTML Message Body Cross-Site Scripting
|
2 |
WEB
|
Criolabs
|
|
2004-07-17
|
|
Merak Mail Server 7.4.5 - 'attachment.html?attachmentpage_text_error' Cross-Site Scripting
|
2 |
WEB
|
Criolabs
|
|
2004-07-17
|
|
Merak Mail Server 7.4.5 - 'settings.html' Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
Criolabs
|
|
2004-07-17
|
|
Merak Mail Server 7.4.5 - 'address.html' Multiple Cross-Site Scripting Vulnerabilities
|
0 |
WEB
|
Criolabs
|
|
2004-07-16
|
|
RaXnet Cacti 0.6.x/0.8.x - 'Auth_Login.php' SQL Injection
|
2 |
WEB
|
Fernando Quintero
|
|
2004-07-16
|
|
PScript PForum 1.24/1.25 - User Profile HTML Injection
|
2 |
WEB
|
Christoph Jeschke
|
|
2004-07-16
|
|
CuteNews 1.3.1 - 'show_archives.php' Cross-Site Scripting
|
2 |
WEB
|
Debasis Mohanty
|
|
2004-07-15
|
|
MapInfo Discovery 1.0/1.1 - Administrative Authentication Bypass
|
2 |
WEB
|
anonymous
|
|
2004-07-15
|
|
MapInfo Discovery 1.0/1.1 - Cleartext Transmission Credential Disclosure
|
2 |
WEB
|
anonymous
|
|
2004-07-15
|
|
MapInfo Discovery 1.0/1.1 - 'MapFrame.asp?mapname' Cross-Site Scripting
|
2 |
WEB
|
anonymous
|
|
2004-07-15
|
|
MapInfo Discovery 1.0/1.1 - Remote Log File Access Information Disclosure
|
2 |
WEB
|
anonymous
|
|
2004-08-11
|
|
IceWarp Web Mail 3.3.2/5.2.7 - Multiple Remote Input Validation Vulnerabilities
|
2 |
WEB
|
ShineShadow
|
|
2013-01-25
|
|
ImageCMS 4.0.0b - Multiple Vulnerabilities
|
2 |
WEB
|
High-Tech Bridge SA
|
|
2013-01-25
|
|
WordPress Plugin SolveMedia 1.1.0 - Cross-Site Request Forgery
|
2 |
WEB
|
Junaid Hussain
|
|
2004-07-07
|
|
YaPiG 0.92 - Remote Server-Side Script Execution
|
2 |
WEB
|
aCiDBiTS
|
|
2004-08-07
|
|
PluggedOut Blog 1.51/1.60 - 'Blog_Exec.php' Cross-Site Scripting
|
1 |
WEB
|
befcake beefy
|
|
2004-08-16
|
|
Moodle 1.x - 'post.php' Cross-Site Scripting
|
1 |
WEB
|
Javier Ubilla
|
|
2004-08-04
|
|
PHP-Nuke 0-7 - Delete God Admin Access Control Bypass
|
2 |
WEB
|
Ahmad Muammar
|
|
2004-08-04
|
|
eNdonesia 8.3 - Search Form Cross-Site Scripting
|
2 |
WEB
|
Ahmad Muammar
|
|
2004-08-04
|
|
Pete Stein GoScript 2.0 - Remote Command Execution
|
1 |
WEB
|
Francisco Alisson
|
|
2004-07-30
|
|
Fusionphp Fusion News 3.3/3.6 - Administrator Command Execution
|
1 |
WEB
|
Joseph Moniz
|
