|
2008-03-24
|
|
Quick Classifieds 1.0 - 'locate.php3?DOCUMENT_ROOT' Remote File Inclusion
|
3 |
WEB
|
ZoRLu
|
|
2008-03-24
|
|
Efestech E-Kontor - 'id' SQL Injection
|
3 |
WEB
|
RMx
|
|
2008-03-24
|
|
Alkacon OpenCMS 7.0.3 - 'users_list.jsp' Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
nnposter
|
|
2008-03-22
|
|
cPanel 11.18.3/11.21 - 'manpage.html' Cross-Site Scripting
|
3 |
WEB
|
Linux_Drox
|
|
2008-03-22
|
|
TinyPortal 0.8.6/1.0.3 - 'index.php' Cross-Site Scripting
|
3 |
WEB
|
Y433r
|
|
2008-03-22
|
|
ooComments 1.0 - '/classes/class_comments.php?PathToComment' Remote File Inclusion
|
3 |
WEB
|
ZoRLu
|
|
2008-03-22
|
|
ooComments 1.0 - '/classes/class_admin.php?PathToComment' Remote File Inclusion
|
3 |
WEB
|
ZoRLu
|
|
2008-03-22
|
|
My Web Doc 2000 Administration Pages - Multiple Authentication Bypass Vulnerabilities
|
3 |
WEB
|
ZoRLu
|
|
2008-03-22
|
|
phpMyChat 0.14.5 - 'setup.php3' Cross-Site Scripting
|
3 |
WEB
|
ZoRLu
|
|
2008-03-21
|
|
Webutil 2.3/2.7 - 'webutil.pl' Multiple Remote Command Execution Vulnerabilities
|
3 |
WEB
|
Zero X
|
|
2008-03-20
|
|
Iatek Knowledge Base - 'content_by_cat.asp' SQL Injection
|
3 |
WEB
|
xcorpitx
|
|
2014-02-06
|
|
Joomla! 3.2.1 - SQL Injection
|
3 |
WEB
|
killall-9
|
|
2014-02-06
|
|
PHP Webcam Video Conference - Multiple Vulnerabilities
|
4 |
WEB
|
vinicius777
|
|
2008-03-20
|
|
W-Agora 4.0 - 'reorder_forums.php?bn_dir_default' Remote File Inclusion
|
3 |
WEB
|
ZoRLu
|
|
2008-03-20
|
|
W-Agora 4.0 - 'moderate_notes.php?bn_dir_default' Remote File Inclusion
|
2 |
WEB
|
ZoRLu
|
|
2008-03-20
|
|
W-Agora 4.0 - 'mail_users.php?bn_dir_default' Remote File Inclusion
|
3 |
WEB
|
ZoRLu
|
|
2008-03-20
|
|
W-Agora 4.0 - 'edit_forum.php?bn_dir_default' Remote File Inclusion
|
2 |
WEB
|
ZoRLu
|
|
2008-03-20
|
|
W-Agora 4.0 - 'delete_user.php?bn_dir_default' Remote File Inclusion
|
3 |
WEB
|
ZoRLu
|
|
2008-03-20
|
|
W-Agora 4.0 - 'delete_notes.php?bn_dir_default' Remote File Inclusion
|
2 |
WEB
|
ZoRLu
|
|
2008-03-20
|
|
W-Agora 4.0 - 'create_user.php?bn_dir_default' Remote File Inclusion
|
2 |
WEB
|
ZoRLu
|
|
2008-03-20
|
|
W-Agora 4.0 - 'create_forum.php?bn_dir_default' Remote File Inclusion
|
2 |
WEB
|
ZoRLu
|
|
2008-03-20
|
|
W-Agora 4.0 - 'add_user.php?bn_dir_default' Remote File Inclusion
|
2 |
WEB
|
ZoRLu
|
|
2008-03-20
|
|
Joomla! / Mambo Component Datsogallery 1.3.1 - 'id' SQL Injection
|
2 |
WEB
|
Cr@zy_King
|
|
2008-03-20
|
|
News-Template 0.5beta - 'print.php' Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
ZoRLu
|
|
2008-03-20
|
|
Elastic Path 4.1 - '/manager/FileManager.jsp?dir' Traversal Arbitrary Directory Listing
|
4 |
WEB
|
Daniel Martin Gomez
|
|
2008-03-20
|
|
Elastic Path 4.1 - '/manager/getImportFileRedirect.jsp?file' Traversal Arbitrary File Access
|
3 |
WEB
|
Daniel Martin Gomez
|
|
2008-03-19
|
|
CS-Cart 1.3.2 - 'index.php' Cross-Site Scripting
|
3 |
WEB
|
sasquatch
|
|
2008-03-19
|
|
Iatek PortalApp 4.0 - 'links.asp' SQL Injection
|
4 |
WEB
|
xcorpitx
|
|
2008-03-19
|
|
MyBlog 1.x - SQL Injection / Remote File Inclusion
|
3 |
WEB
|
Cod3rZ
|
|
2008-03-18
|
|
cPanel 11.18.3 - List Directories and Folders Information Disclosure
|
4 |
WEB
|
Linux_Drox
|
|
2008-03-19
|
|
IBM Rational ClearQuest 7.0 - Multiple Cross-Site Scripting Vulnerabilities
|
4 |
WEB
|
sasquatch
|
|
2014-02-05
|
|
Pandora Fms 5.0RC1 - Remote Command Injection
|
3 |
WEB
|
xistence
|
|
2014-02-05
|
|
Joomla! Component com_community 2.6 - Code Execution
|
4 |
WEB
|
Matias Fontanini
|
|
2014-02-05
|
|
ImpressCMS 1.3.5 - Multiple Vulnerabilities
|
3 |
WEB
|
Pedro Ribeiro
|
|
2014-02-05
|
|
Inteno DG301 - Command Injection
|
3 |
WEB
|
Juan J. Guelfo
|
|
2014-02-05
|
|
ownCloud 6.0.0a - Multiple Vulnerabilities
|
3 |
WEB
|
absane
|
|
2014-02-05
|
|
Plogger 1.0 (RC1) - Multiple Vulnerabilities
|
4 |
WEB
|
killall-9
|
|
2014-02-05
|
|
D-Link DIR-100 - Multiple Vulnerabilities
|
3 |
WEB
|
Felix Richter
|
|
2014-02-05
|
|
WordPress Theme Dandelion - Arbitrary File Upload
|
4 |
WEB
|
TheBlackMonster
|
|
2014-02-05
|
|
IBM Business Process Manager - User Account Reconfiguration
|
3 |
WEB
|
0in
|
|
2014-02-05
|
|
Booking Calendar - Multiple Vulnerabilities
|
3 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2014-02-05
|
|
Eventy Online Scheduler 1.8 - Multiple Vulnerabilities
|
3 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2014-02-05
|
|
TopicsViewer 3.0 Beta 1 - Multiple Vulnerabilities
|
3 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2014-02-05
|
|
Job Site 1.0 - Multiple Vulnerabilities
|
2 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2008-03-18
|
|
webSPELL 4.1.2 - 'index.php' Cross-Site Scripting
|
2 |
WEB
|
n3w7u
|
|
2008-03-18
|
|
eForum 0.4 - 'busca.php' Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
Omni
|
|
2008-03-18
|
|
phpStats 0.1_alpha - 'phpStats.php' Cross-Site Scripting
|
3 |
WEB
|
Hanno Boeck
|
|
2008-03-17
|
|
Imperva SecureSphere 5.0 - Cross-Site Scripting
|
3 |
WEB
|
Berezniski
|
|
2008-03-17
|
|
RSA WebID 5.3 - 'IISWebAgentIF.dll' Cross-Site Scripting
|
3 |
WEB
|
quentin.berdugo
|
|
2008-03-17
|
|
Joomla! / Mambo Component com_guide - 'category' SQL Injection
|
3 |
WEB
|
The-0utl4w
|
|
2008-03-17
|
|
Cfnetgs 0.24 - 'index.php' Cross-Site Scripting
|
3 |
WEB
|
ZoRLu
|
|
2008-03-17
|
|
SNewsCMS 2.x - 'search.php' Cross-Site Scripting
|
3 |
WEB
|
medprostuda.ru
|
|
2008-03-13
|
|
Virtual Support Office XP 2 - 'MyIssuesView.asp' SQL Injection
|
3 |
WEB
|
The-0utl4w
|
|
2008-03-12
|
|
eWeather - 'chart' Cross-Site Scripting
|
3 |
WEB
|
NetJackal
|
|
2008-03-12
|
|
Acyhost - 'index.php' Remote File Inclusion
|
3 |
WEB
|
U238
|
|
2008-03-12
|
|
XOOPS MyTutorials Module 2.1 - 'printpage.php' SQL Injection
|
3 |
WEB
|
S@BUN
|
|
2008-03-12
|
|
Jeebles Directory 2.9.60 - Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
ZoRLu
|
|
2008-03-12
|
|
MAXdev My eGallery Module 3.04 - For Xoops 'gid' SQL Injection
|
3 |
WEB
|
S@BUN
|
|
2008-03-12
|
|
Chris LaPointe Download Center 1.2 - 'search' Cross-Site Scripting
|
3 |
WEB
|
ZoRLu
|
|
2008-03-12
|
|
Chris LaPointe Download Center 1.2 - 'category' Cross-Site Scripting
|
3 |
WEB
|
ZoRLu
|
|
2008-03-12
|
|
Chris LaPointe Download Center 1.2 - login Action Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
ZoRLu
|
|
2008-03-12
|
|
Travelsized CMS 0.4.1 - 'index.php' Multiple Local File Inclusions
|
3 |
WEB
|
muuratsalo
|
|
2008-03-12
|
|
Uberghey CMS 0.3.1 - 'index.php' Multiple Local File Inclusions
|
2 |
WEB
|
muuratsalo
|
|
2008-03-11
|
|
PHP-Nuke zClassifieds Module - 'cat' SQL Injection
|
3 |
WEB
|
Lovebug
|
|
2008-03-11
|
|
PHP-Nuke NukeC30 3.0 Module - 'id_catg' SQL Injection
|
3 |
WEB
|
Houssamix
|
|
2008-03-11
|
|
Joomla! / Mambo Component ensenanzas - 'id' SQL Injection
|
3 |
WEB
|
The-0utl4w
|
|
2008-03-10
|
|
EncapsGallery 1.11.2 - 'catalog_watermark.php?file' Cross-Site Scripting
|
3 |
WEB
|
ZoRLu
|
|
2008-03-10
|
|
EncapsGallery 1.11.2 - 'watermark.php?File' Cross-Site Scripting
|
3 |
WEB
|
ZoRLu
|
|
2008-03-10
|
|
PHP-Nuke Hadith Module - 'cat' SQL Injection
|
3 |
WEB
|
Lovebug
|
|
2008-03-10
|
|
Drake CMS 0.4.11 RC8 - 'd_root' Local File Inclusion
|
3 |
WEB
|
THE_MILLER
|
|
2008-03-12
|
|
EasyImageCatalogue 1.31 - 'addcomment.php?d' Cross-Site Scripting
|
3 |
WEB
|
ZoRLu
|
|
2008-03-12
|
|
EasyImageCatalogue 1.31 - 'describe.php?d' Cross-Site Scripting
|
3 |
WEB
|
ZoRLu
|
|
2008-03-12
|
|
EasyImageCatalogue 1.31 - 'thumber.php?dir' Cross-Site Scripting
|
3 |
WEB
|
ZoRLu
|
|
2008-03-12
|
|
EasyImageCatalogue 1.31 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
ZoRLu
|
|
2008-03-10
|
|
Gallarific - Multiple Script Direct Request Authentication Bypass
|
3 |
WEB
|
ZoRLu
|
|
2008-03-10
|
|
Gallarific - 'search.php?query' Cross-Site Scripting
|
3 |
WEB
|
ZoRLu
|
|
2008-03-10
|
|
PHP-Nuke 4nAlbum Module 0.92 - 'pid' SQL Injection
|
3 |
WEB
|
meloulisi
|
|
2008-03-09
|
|
Batchelor Media BM Classifieds - Multiple SQL Injections
|
3 |
WEB
|
xcorpitx
|
|
2008-03-08
|
|
Alkacon OpenCMS 7.0.3 - 'logfileViewSettings.jsp?filePath.0' Arbitrary File Access
|
3 |
WEB
|
nnposter
|
|
2008-03-08
|
|
Alkacon OpenCMS 7.0.3 - 'logfileViewSettings.jsp?filePath' Cross-Site Scripting
|
3 |
WEB
|
nnposter
|
|
2008-03-07
|
|
Specimen Image Database - 'taxonservice.php?dir' Remote File Inclusion
|
3 |
WEB
|
ZoRLu
|
|
2008-03-07
|
|
WordPress Core 2.3.2 - '/wp-admin/invites.php?to' Cross-Site Scripting
|
3 |
WEB
|
Doz
|
|
2008-03-07
|
|
WordPress Core 2.3.2 - '/wp-admin/users.php?inviteemail' Cross-Site Scripting
|
3 |
WEB
|
Doz
|
|
2008-03-07
|
|
ImageVue 1.7 - 'dirxml.php?path' Cross-Site Scripting
|
3 |
WEB
|
ZoRLu
|
|
2008-03-07
|
|
ImageVue 1.7 - 'upload.php?path' Cross-Site Scripting
|
3 |
WEB
|
ZoRLu
|
|
2008-03-07
|
|
ImageVue 1.7 - 'dir2.php?path' Cross-Site Scripting
|
3 |
WEB
|
ZoRLu
|
|
2008-03-07
|
|
ImageVue 1.7 - 'popup.php?path' Cross-Site Scripting
|
3 |
WEB
|
ZoRLu
|
|
2008-03-06
|
|
PHP-Nuke 4nChat Module 0.91 - 'roomid' SQL Injection
|
2 |
WEB
|
meloulisi
|
|
2014-02-03
|
|
CiMe Citas Médicas - Multiple Vulnerabilities
|
3 |
WEB
|
vinicius777
|
|
2008-03-06
|
|
PHP-Nuke KutubiSitte Module - 'kid' SQL Injection
|
3 |
WEB
|
r080cy90r
|
|
2008-03-06
|
|
Yap Blog 1.1 - 'index.php' Remote File Inclusion
|
3 |
WEB
|
THE_MILLER
|
|
2008-03-05
|
|
PHP-Nuke Yellow_Pages Module - 'cid' SQL Injection
|
2 |
WEB
|
ZoRLu
|
|
2007-06-25
|
|
WebCT 4.1.5 - Email and Discussion Board Messages HTML Injection
|
3 |
WEB
|
Lupton
|
|
2008-03-04
|
|
MG2 - 'list' Cross-Site Scripting
|
3 |
WEB
|
Jose Carlos Norte
|
|
2008-03-04
|
|
PHP-Nuke 'Seminars' Module - 'Filename' Local File Inclusion
|
3 |
WEB
|
The-0utl4w
|
|
2008-03-04
|
|
PHP-Nuke eGallery 3.0 Module - 'pid' SQL Injection
|
3 |
WEB
|
Aria-Security Team
|
|
2014-02-01
|
|
MediaWiki 1.22.1 PdfHandler - Remote Code Execution
|
3 |
WEB
|
@u0x
|
|
2008-03-03
|
|
TorrentTrader 1.08 - 'msg' HTML Injection
|
3 |
WEB
|
Dominus
|
|
2008-03-03
|
|
Flyspray 0.9.9 - Information Disclosure/HTML Injection / Cross-Site Scripting
|
3 |
WEB
|
Digital Security Research Group
|
|
2008-03-03
|
|
KC Wiki 1.0 - '/simplest/wiki.php?page' Remote File Inclusion
|
3 |
WEB
|
muuratsalo
|
|
2008-03-03
|
|
KC Wiki 1.0 - '/minimal/wiki.php?page' Remote File Inclusion
|
3 |
WEB
|
muuratsalo
|
|
2008-03-01
|
|
PHP-Nuke Johannes Hass 'Gaestebuch 2.2 Module - 'id' SQL Injection
|
3 |
WEB
|
TurkishWarriorr
|
|
2008-03-01
|
|
Heathco Software h2desk - Multiple Information Disclosure Vulnerabilities
|
3 |
WEB
|
joseph.giron13
|
|
2008-02-29
|
|
PHPMyTourney 2 - '/tourney/index.php' Remote File Inclusion
|
3 |
WEB
|
HACKERS PAL
|
|
2008-02-29
|
|
Simple PHP Scripts Gallery 0.x - 'index.php' Cross-Site Scripting
|
3 |
WEB
|
ZoRLu
|
|
2008-02-29
|
|
Centreon 1.4.2.3 - 'index.php' Local File Inclusion
|
3 |
WEB
|
JosS
|
|
2008-02-29
|
|
NetOffice Dwins 1.3 - Authentication Bypass / Arbitrary File Upload
|
3 |
WEB
|
RawSecurity.org
|
|
2008-02-28
|
|
XRms 1.99.2 - CRM 'msg' Cross-Site Scripting
|
3 |
WEB
|
vijayv
|
|
2008-02-28
|
|
Flicks Software AuthentiX 6.3b1 - 'Username' Multiple Cross-Site Scripting Vulnerabilities
|
3 |
WEB
|
William Hicks
|
|
2008-02-28
|
|
Juniper Networks Secure Access 2000 Web - Root Full Path Disclosure
|
3 |
WEB
|
Richard Brain
|
|
2008-02-21
|
|
Plume CMS 1.2.2 - '/manager/xmedia.php' Cross-Site Scripting
|
3 |
WEB
|
Omer Singer
|
|
2008-02-25
|
|
Joomla! / Mambo Component com_inter - 'id' SQL Injection
|
3 |
WEB
|
The-0utl4w
|
|
2008-02-25
|
|
Alkacon OpenCMS 7.0.3 - 'tree_files.jsp' Cross-Site Scripting
|
4 |
WEB
|
nnposter
|
|
2008-02-25
|
|
PHP-Nuke Sell Module - 'cid' SQL Injection
|
3 |
WEB
|
Aria-Security Team
|
|
2008-02-25
|
|
Galore Simple Shop 3.1 - 'section' SQL Injection
|
3 |
WEB
|
S@BUN
|
|
2008-02-25
|
|
Joomla! / Mambo Component com_wines 1.0 - 'id' SQL Injection
|
3 |
WEB
|
S@BUN
|
|
2008-02-25
|
|
Softbiz Jokes and Funny Pictures Script - 'sbcat_id' SQL Injection
|
3 |
WEB
|
-=Mizo=-
|
|
2008-02-25
|
|
Gary's Cookbook 3.0 - 'id' SQL Injection
|
3 |
WEB
|
S@BUN
|
|
2008-02-25
|
|
Joomla! / Mambo Component com_blog - 'pid' SQL Injection
|
3 |
WEB
|
Aria-Security Team
|
|
2008-02-25
|
|
Joomla! / Mambo Component com_publication - 'pid' SQL Injection
|
3 |
WEB
|
Aria-Security Team
|
|
2008-02-23
|
|
AuraCMS 2.2 - 'lihatberita' Module SQL Injection
|
3 |
WEB
|
S@BUN
|
|
2008-02-23
|
|
PHP-Nuke Gallery 1.3 Module - 'artid' SQL Injection
|
3 |
WEB
|
S@BUN
|
|
2008-02-23
|
|
Joomla! / Mambo Component com_hello_world - 'id' SQL Injection
|
3 |
WEB
|
S@BUN
|
|
2008-02-23
|
|
PHP-Nuke Recipe Module 1.3 - 'recipeid' SQL Injection
|
3 |
WEB
|
S@BUN
|
|
2008-02-22
|
|
Citrix Metaframe Web Manager - 'login.asp' Cross-Site Scripting
|
3 |
WEB
|
Handrix
|
