|
2007-12-05
|
|
Joomla! Component Content 1.5 RC3 - 'view' SQL Injection
|
1 |
WEB
|
beenudel1986
|
|
2007-12-04
|
|
phpMyChat 0.14.5 - '/chat/users_popupL.php3' Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
beenudel1986
|
|
2007-12-04
|
|
phpMyChat 0.14.5 - 'chat/deluser.php3?LIMIT' Cross-Site Scripting
|
1 |
WEB
|
beenudel1986
|
|
2007-12-04
|
|
Absolute News Manager .NET 5.1 - 'getpath.aspx' Direct Request Error Message Information
|
1 |
WEB
|
Adrian Pastor
|
|
2007-12-04
|
|
Absolute News Manager .NET 5.1 - '/pages/default.aspx?template' Cross-Site Scripting
|
1 |
WEB
|
Adrian Pastor
|
|
2007-12-04
|
|
Absolute News Manager .NET 5.1 - 'xlaabsolutenm.aspx?rmore' Cross-Site Scripting
|
1 |
WEB
|
Adrian Pastor
|
|
2007-12-04
|
|
Absolute News Manager .NET 5.1 - 'xlaabsolutenm.aspx' Multiple SQL Injections
|
1 |
WEB
|
Adrian Pastor
|
|
2007-12-04
|
|
Absolute News Manager .NET 5.1 - '/pages/default.aspx?template' Remote File Access
|
1 |
WEB
|
Adrian Pastor
|
|
2007-11-30
|
|
bcoos 1.0.10 - 'ratefile.php' SQL Injection
|
1 |
WEB
|
Lostmon
|
|
2007-11-30
|
|
Ossigeno CMS 2.2_pre1 - '/ossigeno_modules/ossigeno-catalogo/xax/ossigeno/catalogo/common.php?ossige
|
1 |
WEB
|
ShAy6oOoN
|
|
2007-11-30
|
|
Ossigeno CMS 2.2_pre1 - '/upload/xax/ossigeno/admin/uninstall_module.php?level' Remote File Inclusio
|
1 |
WEB
|
ShAy6oOoN
|
|
2007-11-30
|
|
Ossigeno CMS 2.2_pre1 - '/upload/xax/ossigeno/admin/install_module.php?level' Remote File Inclusion
|
1 |
WEB
|
ShAy6oOoN
|
|
2007-11-30
|
|
Ossigeno CMS 2.2_pre1 - '/upload/xax/admin/patch/index.php?level' Remote File Inclusion
|
1 |
WEB
|
ShAy6oOoN
|
|
2007-11-30
|
|
Ossigeno CMS 2.2_pre1 - '/upload/xax/admin/modules/uninstall_module.php?level' Remote File Inclusion
|
1 |
WEB
|
ShAy6oOoN
|
|
2007-11-30
|
|
Ossigeno CMS 2.2_pre1 - '/upload/xax/admin/modules/install_module.php?level' Remote File Inclusion
|
1 |
WEB
|
ShAy6oOoN
|
|
2007-11-28
|
|
bcoos 1.0.10 - 'ratelink.php' SQL Injection
|
1 |
WEB
|
Lostmon
|
|
2007-11-28
|
|
bcoos 1.0.10 - 'ratephoto.php' SQL Injection
|
1 |
WEB
|
Lostmon
|
|
2007-11-28
|
|
BEA AquaLogic Interaction 6.0/6.1 Plumtree Portal - Multiple Information Disclosure Vulnerabilities
|
1 |
WEB
|
Adrian Pastor
|
|
2007-11-27
|
|
p.mapper 3.2 beta3 - '/plugins/export/mc_table.php?_SESSION[PM_INCPHP]' Remote File Inclusion
|
2 |
WEB
|
ShAy6oOoN
|
|
2007-11-27
|
|
p.mapper 3.2 beta3 - '/incPHP/globals.php?_SESSION[PM_INCPHP]' Remote File Inclusion
|
1 |
WEB
|
ShAy6oOoN
|
|
2007-11-27
|
|
ht://Dig 3.2 - Htsearch Cross-Site Scripting
|
1 |
WEB
|
Michael Skibbe
|
|
2007-11-27
|
|
Liferay Portal 4.3.1 - Forgot-Password Cross-Site Scripting
|
1 |
WEB
|
Joshua Morin
|
|
2007-11-26
|
|
Tilde 4.0 - 'Aarstal' Cross-Site Scripting
|
1 |
WEB
|
KiNgOfThEwOrLd
|
|
2007-11-26
|
|
FMDeluxe 2.1 - 'index.php' Cross-Site Scripting
|
1 |
WEB
|
JosS
|
|
2007-11-26
|
|
SimpleGallery 0.1.3 - 'index.php' Cross-Site Scripting
|
1 |
WEB
|
JosS
|
|
2007-11-26
|
|
Proverbs Web Calendar 1.1 - 'Password' SQL Injection
|
1 |
WEB
|
JosS
|
|
2007-11-26
|
|
GWExtranet 3.0 - 'Scp.dll' Multiple HTML Injection Vulnerabilities
|
1 |
WEB
|
Doz
|
|
2007-11-26
|
|
GOUAE DWD Realty - 'Password' SQL Injection
|
1 |
WEB
|
Aria-Security Team
|
|
2007-11-26
|
|
PHPSlideShow 0.9.9 - 'Directory' Cross-Site Scripting
|
1 |
WEB
|
Jose Luis Gongora Fernandez
|
|
2007-11-24
|
|
VBTube 1.1 - Search Cross-Site Scripting
|
1 |
WEB
|
Crackers_Child
|
|
2007-11-24
|
|
CoolShot E-Lite POS 1.0 - Login SQL Injection
|
2 |
WEB
|
Aria-Security Team
|
|
2007-11-23
|
|
Bandersnatch 0.4 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
Tim Brown
|
|
2007-11-23
|
|
FooSun - 'Api_Response.asp' SQL Injection
|
1 |
WEB
|
flyh4t
|
|
2007-11-22
|
|
MySpace Scripts Poll Creator - 'index.php' HTML Injection
|
2 |
WEB
|
Doz
|
|
2007-11-21
|
|
E-vanced Solutions E-vents 5.0 - Multiple Input Validation Vulnerabilities
|
1 |
WEB
|
joseph.giron13
|
|
2007-11-21
|
|
GWExtranet - Multiple Directory Traversal Vulnerabilities
|
1 |
WEB
|
joseph.giron13
|
|
2007-11-21
|
|
VUNET Case Manager 3.4 - 'default.asp' SQL Injection
|
2 |
WEB
|
The-0utl4w
|
|
2007-11-21
|
|
VUNET Mass Mailer - 'default.asp' SQL Injection
|
1 |
WEB
|
Aria-Security Team
|
|
2007-11-21
|
|
Underground CMS 1.x - 'Search.Cache.Inc.php' Backdoor Access
|
0 |
WEB
|
D4m14n
|
|
2014-01-07
|
|
Cubic CMS - Multiple Vulnerabilities
|
2 |
WEB
|
Eugenio Delfa
|
|
2014-01-07
|
|
Middle School Homework Page 1.3 Beta 1 - Multiple Vulnerabilities
|
1 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2007-11-19
|
|
Click&BaneX - 'Details.asp' SQL Injection
|
1 |
WEB
|
Aria-Security Team
|
|
2007-11-19
|
|
Citrix Netscaler 8.0 build 47.8 - Generic_API_Call.pl Cross-Site Scripting
|
1 |
WEB
|
nnposter
|
|
2007-11-17
|
|
JiRo's Banner System 2.0 - 'login.asp' Multiple SQL Injections
|
1 |
WEB
|
Aria-Security Team
|
|
2007-11-16
|
|
Liferay Portal 4.1 Login Script - Cross-Site Scripting
|
1 |
WEB
|
Adrian Pastor
|
|
2007-11-14
|
|
AIDA Web - Frame.HTML Multiple Unauthorized Access Vulnerabilities
|
1 |
WEB
|
MC Iglo
|
|
2007-11-14
|
|
CONTENTCustomizer 3.1 - 'Dialog.php' Unauthorized Access
|
1 |
WEB
|
d3hydr8
|
|
2007-11-13
|
|
WordPress Plugin WP-SlimStat 0.9.2 - Cross-Site Scripting
|
1 |
WEB
|
Fracesco Vaj
|
|
2007-11-13
|
|
VTLS Web Gateway 48.1 - 'Searchtype' Cross-Site Scripting
|
1 |
WEB
|
Jesus Olmos Gonzalez
|
|
2007-11-12
|
|
X7 Chat 2.0.4 - 'upgradev1.php' Cross-Site Scripting
|
1 |
WEB
|
ShAy6oOoN
|
|
2007-11-12
|
|
X7 Chat 2.0.4 - 'frame.php' Cross-Site Scripting
|
1 |
WEB
|
ShAy6oOoN
|
|
2007-08-27
|
|
AutoIndex PHP Script 2.2.2 - 'PHP_SELF index.php' Cross-Site Scripting
|
1 |
WEB
|
L4teral
|
|
2007-11-12
|
|
Miro Broadcast Machine 0.9.9 - 'login.php' Cross-Site Scripting
|
1 |
WEB
|
Hanno Boeck
|
|
2007-11-12
|
|
PHP-Nuke Advertising Module 0.9 - 'modules.php' SQL Injection
|
2 |
WEB
|
0x90
|
|
2007-11-09
|
|
XOOPS 2.0.17.1 Mylinks Module - 'Brokenlink.php' SQL Injection
|
1 |
WEB
|
root@hanicker.it
|
|
2007-11-08
|
|
Rapid Classified - 'AgencyCatResult.asp' SQL Injection
|
1 |
WEB
|
The-0utl4w
|
|
2007-11-07
|
|
Computer Associates SiteMinder - Web Agent Smpwservices.FCC Cross-Site Scripting
|
1 |
WEB
|
Giuseppe Gottardi
|
|
2007-11-06
|
|
Weblord.it MS-TopSites - Unauthorized Access / HTML Injection
|
1 |
WEB
|
0x90
|
|
2007-11-05
|
|
i-Gallery 3.4 - 'igallery.asp' Remote Information Disclosure
|
1 |
WEB
|
hackerbinhphuoc
|
|
2007-11-05
|
|
easyGB 2.1.1 - 'index.php' Local File Inclusion
|
1 |
WEB
|
h4ck3r
|
|
2007-11-05
|
|
JLMForo System - 'Buscado.php' Cross-Site Scripting
|
1 |
WEB
|
Jose Luis Gongora Fernandez
|
|
2007-11-05
|
|
E-Vendejo 0.2 - 'Articles.php' SQL Injection
|
1 |
WEB
|
r00t
|
|
2007-11-05
|
|
Galmeta Post 0.2 - 'Upload_Config.php' Remote File Inclusion
|
1 |
WEB
|
arfis project
|
|
2007-11-03
|
|
PHP Helpdesk 0.6.16 - 'index.php' Local File Inclusion
|
1 |
WEB
|
joseph.giron13
|
|
2007-11-02
|
|
Helios Calendar 1.1/1.2 - 'admin/index.php' Cross-Site Scripting
|
1 |
WEB
|
Ivan Sanchez
|
|
2007-10-17
|
|
phpMyAdmin 2.11.1 - 'Server_Status.php' Cross-Site Scripting
|
0 |
WEB
|
Omer Singer
|
|
2007-11-01
|
|
CONTENTCustomizer 3.1 - 'Dialog.php' Information Disclosure
|
1 |
WEB
|
d3hydr8
|
|
2007-11-01
|
|
Synergiser 1.2 - 'index.php' Local File Inclusion
|
1 |
WEB
|
KiNgOfThEwOrLd
|
|
2014-01-06
|
|
Seagate BlackArmor NAS sg2000-2000.1331 - Multiple Persistent Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Jeroen - IT Nerdbox
|
|
2014-01-06
|
|
Seagate BlackArmor NAS sg2000-2000.1331 - Cross-Site Request Forgery
|
1 |
WEB
|
Jeroen - IT Nerdbox
|
|
2014-01-06
|
|
Seagate BlackArmor NAS sg2000-2000.1331 - Remote Command Execution
|
1 |
WEB
|
Jeroen - IT Nerdbox
|
|
2014-01-06
|
|
Seagate BlackArmor NAS - Privilege Escalation
|
1 |
WEB
|
Jeroen - IT Nerdbox
|
|
2007-10-29
|
|
Saxon 5.4 - 'Example.php' SQL Injection
|
1 |
WEB
|
netVigilance
|
|
2007-10-29
|
|
Saxon 5.4 - 'Menu.php' Cross-Site Scripting
|
1 |
WEB
|
netVigilance
|
|
2007-10-29
|
|
Omnistar Live - 'KB.php' Cross-Site Scripting
|
1 |
WEB
|
Doz
|
|
2007-10-29
|
|
Smart-Shop - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Doz
|
|
2007-10-29
|
|
WordPress Core 2.3 - 'Edit-Post-Rows.php' Cross-Site Scripting
|
1 |
WEB
|
waraxe
|
|
2007-10-25
|
|
Multi-Forums - 'Directory.php' Multiple SQL Injections
|
1 |
WEB
|
KiNgOfThEwOrLd
|
|
2007-10-25
|
|
Aleris Web Publishing Server 3.0 - 'Page.asp' SQL Injection
|
1 |
WEB
|
joseph.giron13
|
|
2007-10-24
|
|
PHPbasic basicFramework 1.0 - 'Includes.php' Remote File Inclusion
|
1 |
WEB
|
Alucar
|
|
2007-10-24
|
|
CodeWidgets Web Based Alpha Tabbed Address Book - 'index.asp' SQL Injection
|
1 |
WEB
|
Aria-Security Team
|
|
2007-10-23
|
|
Korean GHBoard - 'Component/upload.jsp' Arbitrary File Upload
|
1 |
WEB
|
Xcross87
|
|
2007-10-23
|
|
Korean GHBoard FlashUpload Component - 'download.jsp?name' Arbitrary File Access
|
1 |
WEB
|
Xcross87
|
|
2007-10-23
|
|
Japanese PHP Gallery Hosting - Arbitrary File Upload
|
1 |
WEB
|
Pete Houston
|
|
2007-10-22
|
|
Jeebles Technology Jeebles Directory 2.9.60 - 'download.php' Local File Inclusion
|
0 |
WEB
|
hack2prison
|
|
2007-10-22
|
|
deeemm CMS (dmcms) 0.7 - 'index.php' SQL Injection
|
1 |
WEB
|
Aria-Security Team
|
|
2007-10-22
|
|
Hackish 1.1 - 'Blocco.php' Cross-Site Scripting
|
1 |
WEB
|
Matrix86
|
|
2007-10-22
|
|
Flatnuke3 File Manager Module - Unauthorized Access
|
1 |
WEB
|
KiNgOfThEwOrLd
|
|
2007-10-20
|
|
ReloadCMS 1.2.5 - 'index.php' Local File Inclusion
|
1 |
WEB
|
sekuru
|
|
2007-10-20
|
|
SearchSimon Lite 1.0 - 'Filename.asp' Cross-Site Scripting
|
2 |
WEB
|
Aria-Security Team
|
|
2007-10-19
|
|
rNote 0.9.7 - 'rnote.php' Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
RoMaNcYxHaCkEr
|
|
2007-10-19
|
|
Socketmail 2.2.1 - 'lostpwd.php' Cross-Site Scripting
|
1 |
WEB
|
Ivan Sanchez
|
|
2007-10-19
|
|
SocketKB 1.1.5 - Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Ivan Sanchez
|
|
2007-10-18
|
|
Alcatel Lucent Omnivista 4760 - Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Miguel Angel
|
|
2014-01-04
|
|
Taboada Macronews 1.0 - SQL Injection
|
1 |
WEB
|
Jefrey
|
|
2007-10-18
|
|
SiteBar 3.3.8 - 'command.php?Modify User Action uid' Cross-Site Scripting
|
1 |
WEB
|
Robert Buchholz
|
|
2007-10-18
|
|
SiteBar 3.3.8 - 'index.php?target' Cross-Site Scripting
|
1 |
WEB
|
Robert Buchholz
|
|
2007-10-18
|
|
SiteBar 3.3.8 - 'integrator.php?lang' Cross-Site Scripting
|
1 |
WEB
|
Robert Buchholz
|
|
2007-10-18
|
|
SiteBar 3.3.8 - '/translator.php?upd/cmd/Action/edit' Arbitrary PHP Code Execution
|
1 |
WEB
|
Robert Buchholz
|
|
2007-10-18
|
|
SiteBar 3.3.8 - 'translator.php?dir' Traversal Arbitrary File Access
|
2 |
WEB
|
Robert Buchholz
|
|
2007-10-15
|
|
InnovaPortal - 'msg.jsp?msg' Cross-Site Scripting
|
3 |
WEB
|
JosS
|
|
2007-10-15
|
|
InnovaPortal - 'tc/contents/home001.jsp?contentid' Cross-Site Scripting
|
2 |
WEB
|
JosS
|
|
2007-10-15
|
|
Stringbeans Portal 3.2 Projects Script - Cross-Site Scripting
|
2 |
WEB
|
JosS
|
|
2014-01-03
|
|
DirectControlTM 3.1.7.0 - Multiple Vulnerabilities
|
2 |
WEB
|
mohamad ch
|
|
2014-01-03
|
|
Technicolor TC7200 - Multiple Cross-Site Scripting Vulnerabilities
|
2 |
WEB
|
Jeroen - IT Nerdbox
|
|
2014-01-03
|
|
Technicolor TC7200 - Multiple Cross-Site Request Forgery Vulnerabilities
|
2 |
WEB
|
Jeroen - IT Nerdbox
|
|
2014-01-03
|
|
Nisuta NS-WIR150NE / NS-WIR300N Wireless Routers - Remote Management Web Interface Authentication By
|
1 |
WEB
|
Amplia Security Advisories
|
|
2007-10-11
|
|
Scott Manktelow Design Stride 1.0 - 'Merchant shop.php' SQL Injection
|
2 |
WEB
|
durito
|
|
2007-10-11
|
|
Linkliste 1.2 - 'index.php' Multiple Remote File Inclusions
|
1 |
WEB
|
iNs
|
|
2007-10-11
|
|
Scott Manktelow Design Stride 1.0 - 'Content Management System main.php' SQL Injection
|
2 |
WEB
|
durito
|
|
2007-10-11
|
|
Google Urchin 5.7.3 - 'Report.cgi' Authentication Bypass
|
2 |
WEB
|
MustLive
|
|
2007-10-11
|
|
Scott Manktelow Design Stride 1.0 Courses - 'detail.php' Multiple SQL Injections
|
1 |
WEB
|
durito
|
|
2007-10-11
|
|
Nucleus CMS 3.0.1 - 'index.php' Cross-Site Scripting
|
2 |
WEB
|
MustLive
|
|
2007-10-11
|
|
CRS Manager - Multiple Remote File Inclusions
|
2 |
WEB
|
iNs
|
|
2007-10-11
|
|
UMI CMS - 'index.php' Cross-Site Scripting
|
1 |
WEB
|
anonymous
|
|
2007-10-11
|
|
BoastMachine 2.8 - 'index.php' Local File Inclusion
|
1 |
WEB
|
iNs
|
|
2007-10-11
|
|
Joomla! Component Search 1.0.13 - SearchWord Cross-Site Scripting
|
0 |
WEB
|
MustLive
|
|
2007-10-11
|
|
ActiveKB NX 2.6 - 'index.php' Cross-Site Scripting
|
1 |
WEB
|
durito
|
|
2007-10-09
|
|
phpMyAdmin 2.11.1 - 'setup.php' Cross-Site Scripting
|
1 |
WEB
|
Omer Singer
|
|
2007-10-10
|
|
Joomla! Component WebMaster-Tips.net Joomla! RSS Feed Reader 1.0 - Remote File Inclusion
|
1 |
WEB
|
Cyber-Crime
|
|
2007-10-09
|
|
NetWin DNews - 'Dnewsweb.exe' Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Doz
|
|
2007-10-08
|
|
SNewsCMS 2.1 - 'News_page.php' Cross-Site Scripting
|
1 |
WEB
|
medconsultation.ru
|
|
2007-10-05
|
|
AfterLogic MailBee WebMail Pro 3.x - 'default.asp?mode2' Cross-Site Scripting
|
1 |
WEB
|
Ivan Sanchez
|
|
2007-10-05
|
|
AfterLogic MailBee WebMail Pro 3.x - 'login.php?mode' Cross-Site Scripting
|
1 |
WEB
|
Ivan Sanchez
|
|
2007-10-04
|
|
Stuffed Guys Stuffed Tracker - Multiple Cross-Site Scripting Vulnerabilities
|
1 |
WEB
|
Aria-Security Team
|
