Browse Database

Browsing Most Viewed Vulnerabilities since December 2007 (OSVDB 2.0 launch)

<< Back to Browse
BlogsOSVDB IDDisclosure DateTitle
Views: 3285 4048 2004-02-24 XMB forumdisplay.php Multiple Parameter SQL Injection
Views: 3282 56910 2009-08-11 Microsoft Visual Studio Active Template Library (ATL) Header Mismatch Remote Code Execution
Views: 3280 53182 2009-04-03 Microsoft Office PowerPoint PPT File Handling Unspecified Code Execution
Views: 3279 3337 2002-04-18 ColdFusion on IIS cfm/dbm Diagnostic Error Path Disclosure
Views: 3270 33481 2007-02-23 SupportSoft SmartIssue (tgctlsi.dll) ActiveX Overflow
Views: 3238 16074 2005-05-03 Apple Mac OS X Bluetooth File and Object Exchange Directory Traversal
Views: 3227 26652 2006-06-19 Cisco CallManager Web Interface ccmuser/logon.asp XSS
Views: 3226 1986 2001-11-14 Cisco 12000 Series Router deny ip any any ACL Bypass
Views: 3215 24120 2006-03-25 ssCMS search.aspx keywords Parameter XSS
Views: 3209 49230 2008-10-15 Microsoft Outlook Web Access (OWA) exchweb/bin/redir.asp URL Variable Arbitrary Site Redirect
Views: 3199 60521 2009-11-26 Ingate Firewall/SIParator SSL / TLS Renegotiation Handshakes MiTM Plaintext Data Injection
Views: 3196 53626 2009-04-14 Microsoft IE EMBED Element Handling Memory Corruption Arbitrary Code Execution
Views: 3160 5647 1994-01-01 Multiple Web Server Dangerous HTTP Method MOVE
Views: 3146 77241 2003-01-17 Siemens SIMATIC ProTool Default Admin Password
Views: 3129 3323 2001-05-01 Microsoft IIS ISAPI .printer Extension Host Header Overflow
Views: 3122 95 1995-01-01 Multiple Vendor ICMP netmask Request Information Disclosure
Views: 3106 3399 2000-06-07 ColdFusion Administrator Login Page Remote DoS
Views: 3096 1294 2000-04-20 ZoneAlarm Personal Firewall UDP Source Port 67 Bypass
Views: 3074 56982 2008-11-22 Crossday Discuz! Board member.php Arbitrary User Credential Reset
Views: 3050 14578 2005-03-05 Microsoft Windows Malformed TCP SYN Loopback Packet Remote DoS (land)
Views: 3049 2117 1994-01-01 Multiple Web Server Default Welcome Page Fingerprinting Weakness
Views: 3043 65141 2010-06-04 Adobe Multiple Products AVM2 'newfunction' Instruction Handling Arbitrary Code Execution
Views: 3038 49736 2000-08-15 Microsoft Windows SMB NTLM Authentication Credential Replay Remote Code Execution
Views: 3038 18011 2003-07-07 VP-ASP Shopping Cart shopdisplaycategories.asp id Variable Unspecified Input Validation Issue
Views: 3015 26882 2006-06-28 Cisco Wireless Control System (WCS) Default root Account Password
Views: 3006 54797 2009-05-28 Microsoft DirectX DirectShow quartz.dll QuickTime NULL Byte Overwrite Arbitrary Code Execution
Views: 2993 38669 2007-11-12 Boinc Forum forum_text_search_action.php search_string Parameter XSS
Views: 2993 34846 2007-03-14 Apple Mac OS X diskimages-helper Compressed Disk Image Handling Memory Corruption
Views: 2991 40070 2008-01-08 Microsoft Windows TCP/IP IGMPv3 / MLDv2 Packet Handling Remote Code Execution
Views: 2979 8398 2004-08-09 AOL Instant Messenger (AIM) aim:goaway URI Handler goaway Function Away Message Handling Remote Overflow
Views: 2965 23597 2006-03-02 Gallery Session Handling Class (GallerySession.class) Cookie Traversal Arbitrary File Manipulation
Views: 2963 41073 2008-02-03 Facebook Photo Uploader TheFacebook.FacebookPhotoUploader ActiveX (ImageUploader4.1.ocx) Overflow
Views: 2959 55555 2009-07-02 Rentventory index.php product Parameter SQL Injection
Views: 2912 1210 2000-01-27 Microsoft IIS WebHits.dll ISAPI Filter Traversal Arbitrary File Access
Views: 2900 41495 2008-02-08 Adobe Reader / Acrobat Collab.collectEmailInfo() Method Overflow
Views: 2900 25837 2006-05-31 Snort HTTP Inspect Pre-Processor Uricontent Bypass
Views: 2896 66441 2008-04-12 Siemens SIMATIC WinCC SQL Database Default Password
Views: 2890 14047 2005-02-22 vBulletin misc.php template Parameter PHP Code Injection
Views: 2888 32701 2007-01-15 Apple Mac OS X Keychain Access.app/Contents/Resources/kcproxy Permission Weakness diskutil Privilege Escalation
Views: 2887 22418 2006-01-04 Linux Kernel dm-crypt crypt_config Structure Cryptographic Key Local Disclosure

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

© Copyright 2002 - 2013 Open Source Vulnerability Database (OSVDB), All Rights Reserved.
Privacy Statement - Terms of Use