|
2004-04-30
|
|
Coppermine Photo Gallery 1.2.0 RC4 - 'startdir' Traversal Arbitrary File Access
|
1 |
WEB
|
Janek Vind
|
|
2004-04-30
|
|
Coppermine Photo Gallery 1.2.2b - 'menu.inc.php' Cross-Site Scripting
|
1 |
WEB
|
Janek Vind
|
|
2004-04-30
|
|
Moodle 1.1/1.2 - Cross-Site Scripting
|
1 |
WEB
|
Bartek Nowotarski
|
|
2004-04-30
|
|
SquirrelMail 1.4.x - Folder Name Cross-Site Scripting
|
1 |
WEB
|
Alvin Alex
|
|
2004-04-26
|
|
OpenBB 1.0.x - Private Message Disclosure
|
2 |
WEB
|
Manuel Lopez
|
|
2004-04-26
|
|
PHP-Nuke 7.2 Multiple Video Gallery Module - SQL Injection
|
2 |
WEB
|
k1LL3r B0y
|
|
2004-04-26
|
|
OpenBB 1.0.x - 'post.php' Multiple SQL Injections
|
2 |
WEB
|
JeiAr
|
|
2004-04-26
|
|
OpenBB 1.0.x - 'search.php?q' SQL Injection
|
1 |
WEB
|
JeiAr
|
|
2004-04-26
|
|
OpenBB 1.0.x - 'member.php' Multiple SQL Injections
|
2 |
WEB
|
JeiAr
|
|
2004-04-26
|
|
OpenBB 1.0.x - 'board.php?FID' SQL Injection
|
2 |
WEB
|
JeiAr
|
|
2004-04-26
|
|
OpenBB 1.0.x - 'index.php?redirect' Cross-Site Scripting
|
2 |
WEB
|
JeiAr
|
|
2004-04-26
|
|
OpenBB 1.0.x - 'post.php?TID' Cross-Site Scripting
|
2 |
WEB
|
JeiAr
|
|
2004-04-26
|
|
OpenBB 1.0.x - 'myhome.php?to' Cross-Site Scripting
|
2 |
WEB
|
JeiAr
|
|
2004-04-26
|
|
OpenBB 1.0.x - 'member.php?redirect' Cross-Site Scripting
|
2 |
WEB
|
JeiAr
|
|
2004-04-23
|
|
Advanced Guestbook 2.2 - 'Password' SQL Injection
|
2 |
WEB
|
JQ
|
|
2004-04-23
|
|
PW New Media Network Modular Site Management System 0.2.1 - 'Ver.asp' Information Disclosure
|
2 |
WEB
|
CyberTalon
|
|
2004-04-23
|
|
Protector System 1.15 - 'blocker_query.php' Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
waraxe
|
|
2004-04-23
|
|
Protector System 1.15 b1 - 'index.php' SQL Injection
|
2 |
WEB
|
waraxe
|
|
2004-04-23
|
|
Fusionphp Fusion News 3.6.1 - Cross-Site Scripting
|
2 |
WEB
|
DarkBicho
|
|
2013-01-11
|
|
PHPLiteAdmin 1.9.3 - Remote PHP Code Injection
|
2 |
WEB
|
L@usch
|
|
2004-04-22
|
|
NewsTraXor Website Management Script 2.9 Beta - Database Disclosure
|
1 |
WEB
|
CyberTal0n
|
|
2004-04-21
|
|
PostNuke Phoenix 0.726 - 'openwindow.php?hlpfile' Cross-Site Scripting
|
1 |
WEB
|
Janek Vind
|
|
2004-04-23
|
|
PHProfession 2.5 - 'modules.php?jcode' Cross-Site Scripting
|
1 |
WEB
|
Janek Vind
|
|
2004-04-23
|
|
PHProfession 2.5 - 'upload.php' Direct Request Full Path Disclosure
|
2 |
WEB
|
Janek Vind
|
|
2004-04-23
|
|
PHProfession 2.5 - 'modules.php?offset' SQL Injection
|
1 |
WEB
|
Janek Vind
|
|
2004-04-19
|
|
phpBB 2.0.x - 'album_portal.php' Remote File Inclusion
|
2 |
WEB
|
Officerrr
|
|
2004-04-19
|
|
Phorum 3.4.x - Phorum_URIAuth SQL Injection
|
2 |
WEB
|
Janek Vind
|
|
2004-04-15
|
|
Gemitel 3.50 - '/affich.php' Remote File Inclusion / Command Injection
|
2 |
WEB
|
jaguar
|
|
2004-04-15
|
|
SCT Campus Pipeline 1.0/2.x/3.x - Email Attachment Script Injection
|
2 |
WEB
|
spiffomatic 64
|
|
2004-04-15
|
|
phpBugTracker 0.9 - 'user.php?bugid' Cross-Site Scripting
|
2 |
WEB
|
JeiAr
|
|
2004-04-15
|
|
phpBugTracker 0.9 - 'query.php' Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
JeiAr
|
|
2004-04-15
|
|
phpBugTracker 0.9 - 'bug.php' Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
JeiAr
|
|
2004-04-15
|
|
phpBugTracker 0.9 - 'bug.php' Multiple SQL Injections
|
2 |
WEB
|
JeiAr
|
|
2004-04-15
|
|
phpBugTracker 0.9 - 'query.php' Multiple SQL Injections
|
2 |
WEB
|
JeiAr
|
|
2004-04-14
|
|
Rhino Software Zaep AntiSpam 2.0 - Cross-Site Scripting
|
2 |
WEB
|
Noam Rathaus
|
|
2004-04-13
|
|
PHP-Nuke 6.x/7.x - Multiple SQL Injections
|
2 |
WEB
|
waraxe
|
|
2013-01-09
|
|
WeBid 1.0.6 - SQL Injection
|
2 |
WEB
|
Life Wasted
|
|
2013-01-09
|
|
Watson Management Console 4.11.2.G - Directory Traversal
|
2 |
WEB
|
Dhruv Shah
|
|
2013-01-09
|
|
Free Blog 1.0 - Multiple Vulnerabilities
|
1 |
WEB
|
cr4wl3r
|
|
2013-01-09
|
|
WebsiteBaker Addon Concert Calendar 2.1.4 - Multiple Vulnerabilities
|
1 |
WEB
|
Stefan Schurtz
|
|
2004-04-13
|
|
Tutos 1.1.20031017 - 'note_overview.php?id' SQL Injection
|
1 |
WEB
|
François SORIN
|
|
2004-04-13
|
|
PHP-Nuke 6.x/7.x - CookieDecode Cross-Site Scripting
|
2 |
WEB
|
waraxe
|
|
2004-04-12
|
|
Nuked-klaN 1.x - Multiple Vulnerabilities
|
2 |
WEB
|
frog
|
|
2004-04-12
|
|
BlackBoard Learning System 5.x/6.0 - Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
DarC KonQuest
|
|
2004-04-12
|
|
TikiWiki Project 1.8 - 'tiki-list_blogs.php?offset' SQL Injection
|
1 |
WEB
|
JeiAr
|
|
2004-04-12
|
|
TikiWiki Project 1.8 - 'tiki-list_trackers.php?offset' SQL Injection
|
1 |
WEB
|
JeiAr
|
|
2004-04-12
|
|
TikiWiki Project 1.8 - 'tiki-list_faqs.php?offset' SQL Injection
|
1 |
WEB
|
JeiAr
|
|
2004-04-12
|
|
TikiWiki Project 1.8 - 'tiki-usermenu.php?offset' SQL Injection
|
1 |
WEB
|
JeiAr
|
|
2004-04-12
|
|
TikiWiki Project 1.8 - 'tiki-list_blogs.php?sort_mode' SQL Injection
|
1 |
WEB
|
JeiAr
|
|
2004-04-12
|
|
TikiWiki Project 1.8 - 'tiki-list_trackers.php?sort_mode' SQL Injection
|
0 |
WEB
|
JeiAr
|
|
2004-04-12
|
|
TikiWiki Project 1.8 - 'tiki-list_faqs.php?sort_mode' SQL Injection
|
1 |
WEB
|
JeiAr
|
|
2004-04-12
|
|
TikiWiki Project 1.8 - 'tiki-file_galleries.php?sort_mode' SQL Injection
|
1 |
WEB
|
JeiAr
|
|
2004-04-12
|
|
TikiWiki Project 1.8 - 'tiki-directory_search.php?sort_mode' SQL Injection
|
1 |
WEB
|
JeiAr
|
|
2004-04-12
|
|
TikiWiki Project 1.8 - 'tiki-user_tasks.php?offset & sort_mode' SQL Injections
|
1 |
WEB
|
JeiAr
|
|
2004-04-12
|
|
TikiWiki Project 1.8 - 'tiki-index.php?comments_offset & offset' SQL Injections
|
1 |
WEB
|
JeiAr
|
|
2013-01-08
|
|
WordPress Plugin Google Document Embedder - Arbitrary File Disclosure (Metasploit)
|
1 |
WEB
|
Metasploit
|
|
2013-01-08
|
|
WordPress Plugin Google Document Embedder - Arbitrary File Disclosure (Metasploit)
|
0 |
WEB
|
Metasploit
|
|
2013-01-08
|
|
Advantech Webaccess HMI/SCADA Software - Persistence Cross-Site Scripting
|
1 |
WEB
|
SecPod Research
|
|
2013-01-08
|
|
E Sms Script - Multiple SQL Injections
|
1 |
WEB
|
cr4wl3r
|
|
2004-04-12
|
|
TikiWiki Project 1.8 - 'tiki-browse_categories.php?sort_mode' SQL Injection
|
1 |
WEB
|
JeiAr
|
|
2004-04-12
|
|
TikiWiki Project 1.8 - 'tiki-directory_ranking.php?sort_mode' SQL Injection
|
1 |
WEB
|
JeiAr
|
|
2004-04-12
|
|
TikiWiki Project 1.8 - 'tiki-list_file_gallery.php?sort_mode' SQL Injection
|
0 |
WEB
|
JeiAr
|
|
2004-04-12
|
|
TikiWiki Project 1.8 - 'tiki-usermenu.php?sort_mode' SQL Injection
|
1 |
WEB
|
JeiAr
|
|
2004-04-12
|
|
TikiWiki Project 1.8 - 'tiki-view_chart.php?chartId' Cross-Site Scripting
|
1 |
WEB
|
JeiAr
|
|
2004-04-12
|
|
TikiWiki Project 1.8 - 'tiki-view_faq.php?faqId' Cross-Site Scripting
|
1 |
WEB
|
JeiAr
|
|
2004-04-12
|
|
TikiWiki Project 1.8 - 'tiki-upload_file.php?galleryID' Cross-Site Scripting
|
1 |
WEB
|
JeiAr
|
|
2004-04-12
|
|
TikiWiki Project 1.8 - 'tiki-list_file_gallery.php?galleryID' Cross-Site Scripting
|
1 |
WEB
|
JeiAr
|
|
2004-04-12
|
|
TikiWiki Project 1.8 - 'tiki-print_article.php?articleId' Cross-Site Scripting
|
1 |
WEB
|
JeiAr
|
|
2004-04-12
|
|
TikiWiki Project 1.8 - 'tiki-index.php?comments_threshold' Cross-Site Scripting
|
1 |
WEB
|
JeiAr
|
|
2004-04-12
|
|
TikiWiki Project 1.8 - 'tiki-browse_categories.php?parentId' Cross-Site Scripting
|
1 |
WEB
|
JeiAr
|
|
2004-04-12
|
|
TikiWiki Project 1.8 - 'tiki-read_article.php?articleId' Cross-Site Scripting
|
1 |
WEB
|
JeiAr
|
|
2004-04-12
|
|
TikiWiki Project 1.8 - 'messu-read.php' Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
JeiAr
|
|
2004-04-12
|
|
TikiWiki Project 1.8 - 'messu-mailbox.php' Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
JeiAr
|
|
2004-04-12
|
|
TikiWiki Project 1.8 - 'categorize.php' Direct Request Full Path Disclosure
|
1 |
WEB
|
JeiAr
|
|
2004-04-12
|
|
TikiWiki Project 1.8 - Add Site Multiple Options Remote Code Injections
|
1 |
WEB
|
JeiAr
|
|
2004-04-12
|
|
TikiWiki Project 1.8 - User Profile Multiple Option Remote Code Injections
|
1 |
WEB
|
JeiAr
|
|
2004-04-12
|
|
TikiWiki Project 1.8 - 'tiki-map.phtml' Traversal Arbitrary File / Directory Enumeration
|
1 |
WEB
|
JeiAr
|
|
2004-04-12
|
|
TikiWiki Project 1.8 - 'img/wiki_up' Arbitrary File Upload
|
1 |
WEB
|
JeiAr
|
|
2004-04-12
|
|
TikiWiki Project 1.8 - 'tiki-switch_theme.php?theme' Cross-Site Scripting
|
1 |
WEB
|
JeiAr
|
|
2004-04-08
|
|
1st Class Mail Server 4.0 1 - list.tagz Cross-Site Scripting
|
1 |
WEB
|
dr_insane
|
|
2004-04-08
|
|
1st Class Mail Server 4.0 1 - advanced.tagz Cross-Site Scripting
|
1 |
WEB
|
dr_insane
|
|
2004-04-08
|
|
1st Class Mail Server 4.0 1 - general.tagz Cross-Site Scripting
|
1 |
WEB
|
dr_insane
|
|
2004-04-08
|
|
1st Class Mail Server 4.0 1 - members.tagz Cross-Site Scripting
|
1 |
WEB
|
dr_insane
|
|
2004-04-08
|
|
1st Class Mail Server 4.0 1 - Index Cross-Site Scripting
|
0 |
WEB
|
dr_insane
|
|
2004-04-08
|
|
1st Class Mail Server 4.0 1 - viewmail.tagz Cross-Site Scripting
|
0 |
WEB
|
dr_insane
|
|
2004-04-07
|
|
AzDGDatingLite 2.1.1 - 'view.php?id' Cross-Site Scripting
|
1 |
WEB
|
Janek Vind
|
|
2004-04-07
|
|
AzDGDatingLite 2.1.1 - 'index.php?language' Cross-Site Scripting
|
1 |
WEB
|
Janek Vind
|
|
2004-04-08
|
|
NukeCalendar 1.1.a - 'eid' SQL Injection
|
0 |
WEB
|
Janek Vind
|
|
2004-04-08
|
|
NukeCalendar 1.1.a - 'eid' Cross-Site Scripting
|
1 |
WEB
|
Janek Vind
|
|
2004-04-08
|
|
NukeCalendar 1.1.a - 'block-Calendar_center.php' Full Path Disclosure
|
1 |
WEB
|
Janek Vind
|
|
2004-04-08
|
|
NukeCalendar 1.1.a - 'block-Calendar1.php' Full Path Disclosure
|
1 |
WEB
|
Janek Vind
|
|
2004-04-08
|
|
NukeCalendar 1.1.a - 'block-calendar.php' Full Path Disclosure
|
1 |
WEB
|
Janek Vind
|
|
2004-04-08
|
|
NukeCalendar 1.1.a - 'modules.php' Full Path Disclosure
|
1 |
WEB
|
Janek Vind
|
|
2013-01-06
|
|
Nexpose Security Console - Cross-Site Request Forgery
|
1 |
WEB
|
Robert Gilbert
|
|
2004-04-06
|
|
FloosieTek FTGate Mail Server 1.2 - Full Path Disclosure
|
1 |
WEB
|
dr_insane
|
|
2004-04-06
|
|
FloosieTek FTGate Mail Server 1.2 - 'index.fts?folder' Cross-Site Scripting
|
1 |
WEB
|
dr_insane
|
|
2004-04-05
|
|
OpenBB 1.0.6 - 'myhome.php' SQL Injection
|
2 |
WEB
|
Mark Tesn
|
|
2004-04-03
|
|
Aborior Encore Web Forum - Arbitrary Command Execution
|
2 |
WEB
|
K-159
|
|
2013-01-05
|
|
pfSense 2.0.1 - Cross-Site Scripting / Cross-Site Request Forgery / Remote Command Execution
|
2 |
WEB
|
Yann CAM
|
|
2004-03-31
|
|
CactuSoft CactuShop 5.0/5.1 - Cross-Site Scripting
|
2 |
WEB
|
Nick Gudov
|
|
2004-03-31
|
|
Cactusoft CactuShop 5.0/5.1 - SQL Injection
|
2 |
WEB
|
Nick Gudov
|
|
2004-03-30
|
|
LinBit Technologies LINBOX Officeserver - Remote Authentication Bypass
|
2 |
WEB
|
Martin Eiszner
|
|
2004-03-30
|
|
Interchange 4.8.x/5.0 - Remote Information Disclosure
|
1 |
WEB
|
anonymous
|
|
2004-03-29
|
|
Cloisterblog 1.2.2 - Journal.pl Directory Traversal
|
2 |
WEB
|
Dotho
|
|
2004-03-29
|
|
Alan Ward A-CART 2.0 - 'category.asp?catcode' SQL Injection (2)
|
2 |
WEB
|
Manuel Lopez
|
|
2004-03-29
|
|
Fresh Guest Book 1.0/2.x - HTML Injection
|
2 |
WEB
|
koi8-r Shelz
|
|
2013-01-04
|
|
MyBB Profile Wii Friend Code - Multiple Vulnerabilities
|
2 |
WEB
|
Ichi
|
|
2013-01-04
|
|
Simple Web Server 2.3-rc1 - Directory Traversal
|
2 |
WEB
|
CwG GeNiuS
|
|
2004-03-29
|
|
PhotoPost PHP Pro 3.x/4.x - 'showgallery.php' Multiple SQL Injections
|
1 |
WEB
|
JeiAr
|
|
2004-03-24
|
|
Trend Micro Interscan VirusWall localweb - Directory Traversal
|
2 |
WEB
|
Tri Huynh
|
|
2004-03-22
|
|
reget deluxe 3.0 build 121 - Directory Traversal
|
1 |
WEB
|
snifer
|
|
2004-03-22
|
|
PHP-Nuke MS-Analysis Module - HTTP Referrer Field SQL Injection
|
1 |
WEB
|
Janek Vind
|
|
2004-03-22
|
|
PHP-Nuke MS-Analysis Module - Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Janek Vind
|
|
2004-03-22
|
|
Invision Power Top Site List 1.0/1.1 - 'id' SQL Injection
|
1 |
WEB
|
JeiAr
|
|
2004-03-23
|
|
Invision Power Services Invision Gallery 1.0.1 - Multiple SQL Injections
|
1 |
WEB
|
JeiAr
|
|
2004-03-22
|
|
phpBB 1.x/2.0.x - Multiple Input Validation Vulnerabilities
|
1 |
WEB
|
JeiAr
|
|
2004-03-22
|
|
vBulletin 2.x - 'private.php' Cross-Site Scripting
|
1 |
WEB
|
JeiAr
|
|
2004-03-20
|
|
Expinion.net News Manager Lite 2.5 - 'NEWS_LOGIN?admin' Cookie Authentication Bypass
|
1 |
WEB
|
Manuel Lopez
|
|
2004-03-20
|
|
Expinion.net News Manager Lite 2.5 - 'news_sort.asp?filter' SQL Injection
|
1 |
WEB
|
Manuel Lopez
|
|
2004-03-20
|
|
Expinion.net News Manager Lite 2.5 - 'category_news.asp?ID' SQL Injection
|
1 |
WEB
|
Manuel Lopez
|
|
2004-03-20
|
|
Expinion.net News Manager Lite 2.5 - 'more.asp?ID' SQL Injection
|
1 |
WEB
|
Manuel Lopez
|
|
2004-03-20
|
|
Expinion.net News Manager Lite 2.5 - 'category_news_headline.asp' Cross-Site Scripting
|
0 |
WEB
|
Manuel Lopez
|
|
2004-03-20
|
|
Expinion.net News Manager Lite 2.5 - 'search.asp' Cross-Site Scripting
|
1 |
WEB
|
Manuel Lopez
|
|
2004-03-20
|
|
Expinion.net News Manager Lite 2.5 - 'comment_add.asp' Cross-Site Scripting
|
1 |
WEB
|
Manuel Lopez
|
|
2004-03-20
|
|
Expinion.net Member Management System 2.1 - 'register.asp?err' Cross-Site Scripting
|
1 |
WEB
|
Manuel Lopez
|
