Loading...
Creditee: MustLive
| Disc. Date | OSVDB ID | CVEID | Title |
|---|---|---|---|
| 2013-05-18 | 93493 | Moxiecode File Manager (MCFileManager) Multiple File Extension Upload Arbitrary Code Execution | |
| 2013-05-18 | 93494 | Moxiecode Image Manager (MCImageManager) Multiple File Extension Upload Arbitrary Code Execution | |
| 2013-05-11 | 93260 | Search and Share Plugin for WordPress SearchAndShare.php Direct Request Path Disclosure | |
| 2013-04-24 | 92840 | Studio Zen Theme for WordPress Multiple Script Direct Request Path Disclosure | |
| 2013-04-24 | 92836 | Photocrati Theme for WordPress Multiple Script Direct Request Path Disclosure | |
| 2013-04-24 | 92837 | Music Theme for WordPress Multiple Script Direct Request Path Disclosure | |
| 2013-04-24 | 92838 | Imperial Fairytale Theme for WordPress Multiple Script Direct Request Path Disclosure | |
| 2013-04-24 | 92839 | Feather12 Theme for WordPress Multiple Script Direct Request Path Disclosure | |
| 2013-04-21 | 92651 | jPlayer Jplayer.swf id Parameter XSS | |
| 2013-04-14 | 92327 | AI-Bolit Report Filename Enumeration Remote Information Disclosure | |
| 2013-04-14 | 92541 | AI-Bolit ai-bolit.php p Parameter Brute Force Password Enumeration Weakness | |
| 2013-04-13 | 92317 | FLV Player player_flv.swf URI XSS | |
| 2013-04-10 | 92257 | Microsoft IE CSS Import Handling Remote DoS | |
| 2013-03-28 | 93042 | VideoJS video-js.swf ExternalInterface.call() Method readyFunction Parameter XSS | |
| 2013-03-26 | 91838 | IBM Domino x.nsf Src Parameter XSS | |
| 2013-03-10 | 91134 | SWFUpload swfupload.swf buttonText Parameter XSS | |
| 2013-02-28 | 90818 | Question2Answer Multiple Function CSRF | |
| 2013-02-28 | 90819 | Question2Answer Multiple Page Brute Force Weakness | |
| 2013-02-19 | 90374 | 2013-1808 | ZeroClipboard zeroclipboard.swf id Parameter XSS |
| 2013-02-02 | 89892 | Flash News Theme for WordPress /wp-content/themes/flashnews/thumb.php src Parameter Remote DoS | |
| 2013-02-02 | 89891 | Flash News Theme for WordPress /wp-content/themes/flashnews/thumb.php src Parameter File Upload Arbitrary Code Execution | |
| 2013-02-02 | 89890 | Flash News Theme for WordPress /wp-content/themes/flashnews/includes/test.php Direct Request Information Disclosure | |
| 2013-02-02 | 89889 | Flash News Theme for WordPress /wp-content/themes/flashnews/includes/test.php a Parameter XSS | |
| 2013-02-02 | 89887 | Flash News Theme for WordPress /wp-content/themes/flashnews/thumb.php src Parameter XSS | |
| 2013-02-02 | 89888 | Flash News Theme for WordPress Multiple Script Path Disclosure | |
| 2013-01-29 | 89686 | WordPress Attack Scanner Plugin for WordPress Multiple File Direct Request Information Disclosure | |
| 2013-01-14 | 89301 | Dailyedition-mouss Theme for WordPress index.php Direct Request Path Disclosure | |
| 2013-01-14 | 89300 | Dailyedition-mouss Theme for WordPress thumb.php src Parameter XSS | |
| 2013-01-14 | 89299 | Dailyedition-mouss Theme for WordPress thumb.php src Parameter Malformed Input Path Disclosure | |
| 2013-01-14 | 89298 | Dailyedition-mouss Theme for WordPress thumb.php src Parameter File Upload Arbitrary Code Execution | |
| 2013-01-14 | 89292 | Dailyedition-mouss Theme for WordPress fiche-disque.php Remote Information Disclosure | |
| 2013-01-14 | 89291 | Dailyedition-mouss Theme for WordPress fiche-disque.php id Parameter XSS | |
| 2013-01-11 | 89287 | Floating Tweets Plugin for WordPress skin.php Traversal Arbitrary File Access | |
| 2013-01-11 | 89288 | Floating Tweets Plugin for WordPress admin-ajax.php Multiple Parameter XSS | |
| 2013-01-11 | 89286 | Floating Tweets Plugin for WordPress Multiple Script Direct Request Path Disclosure | |
| 2013-01-11 | 89285 | Floating Tweets Plugin for WordPress skin.php Malformed Input Path Disclosure | |
| 2013-01-09 | 93178 | TinyBrowser Multiple Script Direct Request Path Disclosure | |
| 2013-01-09 | 93181 | TinyBrowser /tiny_mce/plugins/tinybrowser/edit.php type Parameter XSS | |
| 2013-01-09 | 93179 | TinyBrowser /tiny_mce/plugins/tinybrowser/upload.php type Parameter XSS | |
| 2013-01-09 | 93180 | TinyBrowser /tiny_mce/plugins/tinybrowser/tinybrowser.php type Parameter XSS | |
| 2013-01-09 | 93182 | TinyBrowser /tiny_mce/plugins/tinybrowser/tinybrowser.php Empty type Parameter Directory Listing | |
| 2013-01-09 | 93177 | TinyBrowser /tiny_mce/plugins/tinybrowser/edit.php Empty type Parameter Directory Listing | |
| 2012-12-31 | 90399 | 2012-6550 | ZeroClipboard Flash Object clipText XSS |
| 2012-12-29 | 90766 | RocketTheme Multiple Themes for WordPress jwplayer.swf aboutlink Parameter XSS | |
| 2012-12-29 | 90768 | RocketTheme Multiple Themes for WordPress index.php Direct Request Path Disclosure | |
| 2012-12-29 | 90767 | RocketTheme Multiple Themes for WordPress error_log Direct Request Information Disclosure | |
| 2012-12-29 | 90765 | RocketTheme Multiple Themes for WordPress jwplayer.swf Multiple Parameter Remote Flash Content Injection | |
| 2012-12-20 | 88886 | BuddyPress Plugin for WordPress player.swf / jwplayer.swf playerready Parameter XSS | |
| 2012-12-14 | 88608 | RokBox Plugin for WordPress /wp-content/plugins/wp_rokbox/jwplayer/jwplayer.swf abouttext Parameter XSS | |
| 2012-12-14 | 88604 | RokBox Plugin for WordPress /wp-content/plugins/wp_rokbox/thumb.php src Parameter Malformed Input Path Disclosure | |
| 2012-12-14 | 88609 | RokBox Plugin for WordPress /wp-content/plugins/wp_rokbox/thumb.php src Parameter Arbitrary File Upload | |
| 2012-12-14 | 88607 | RokBox Plugin for WordPress /wp-content/plugins/wp_rokbox/error_log Direct Request Error Log Information Disclosure | |
| 2012-12-14 | 88606 | RokBox Plugin for WordPress /wp-content/plugins/wp_rokbox/rokbox.php Direct Request Path Disclosure | |
| 2012-12-14 | 88605 | RokBox Plugin for WordPress /wp-content/plugins/wp_rokbox/thumb.php src Parameter XSS | |
| 2012-12-07 | 88280 | ExpressionEngine swfupload_f9.swf movieName Parameter XSS | |
| 2012-12-01 | 88170 | Microsoft IE Malformed Location Header 30x Redirect Handling DoS | |
| 2012-11-30 | 90291 | 2012-4844 | IBM Lotus Domino /names.nsf RedirectTo Parameter XSS |
| 2012-11-30 | 90290 | 2012-4842 | IBM Lotus Domino /names.nsf RedirectTo Parameter Arbitrary Site Redirect |
| 2012-11-25 | 87971 | MODx /manager/processors/login.processor.php User Account Enumeration | |
| 2012-11-24 | 87972 | MODx /manager/ User Login CSRF | |
| 2012-11-24 | 87975 | MODx Authentication Enumeration Blocking Functionality Account Lockout DoS | |
| 2012-11-24 | 87973 | MODx /manager/index.php Password Recovery Mechanism Email Enumeration | |
| 2012-11-24 | 87974 | MODx /manager/processors/login.processor.php Infinite Loop DoS CSRF | |
| 2012-11-17 | 87803 | MODx Login Form Brute Force Weakness | |
| 2012-11-17 | 87804 | MODx Multiple Script Direct Request Path Disclosure | |
| 2012-10-28 | 86780 | CorePlayer core-player/build/core_player.swf callback Parameter XSS | |
| 2012-10-18 | 86557 | Wordfence Plugin for Wordpress wp-content/plugins/wordfence/lib/wordfenceClass.php email Parameter XSS | |
| 2012-10-01 | 86188 | 2012-5307 | IBM Lotus Notes Traveler servlet/traveler redirectURL Parameter XSS |
| 2012-10-01 | 86190 | 2012-5308 | IBM Lotus Notes Traveler servlet/traveler getReportProblem Upload Action CSRF |
| 2012-10-01 | 86189 | 2012-5309 | IBM Lotus Notes Traveler servlet/traveler Brute-force Attack Weakness |
| 2012-09-28 | 85954 | 2012-4825 | IBM Lotus Notes Traveler traveler/ILNT.mobileconfig Multiple Parameter XSS |
| 2012-09-28 | 85953 | 2012-4824 | IBM Lotus Notes Traveler servlet/traveler redirectURL Parameter Arbitrary Site Redirect |
| 2012-08-27 | 92870 | IBM Lotus Domino domcfg.nsf Direct Request Server Configuration Remote Disclosure | |
| 2012-07-14 | 93405 | Akismet Plugin for WordPress Multiple Admin Function CSRF | |
| 2012-06-29 | 93404 | Akismet Plugin for WordPress Multiple Script Referer Header XSS | |
| 2012-06-29 | 93403 | Akismet Plugin for WordPress Multiple Script Direct Request Path Disclosure | |
| 2012-06-28 | 83401 | LIOOSYS CMS index.php id Parameter SQL Injection | |
| 2012-06-15 | 83411 | Organizer Plugin for WordPress organizer/page/dir.php URI Parameter XSS | |
| 2012-06-15 | 83412 | Organizer Plugin for WordPress organizer/page/view.php Multiple Field Traversal Arbitrary File Manipulation | |
| 2012-06-07 | 82815 | 2012-3351 | JW Player jwplayer.swf Multiple Parameter XSS |
| 2012-05-29 | 85706 | iFOBS Multiple Script Login Functionality Brute Force Weakness | |
| 2012-05-29 | 85705 | iFOBS ifobsClient/regclientprint.jsp Multiple Parameter XSS | |
| 2012-05-22 | 82411 | 2012-2941 | Yandex.Server search/ text Parameter XSS |
| 2012-04-20 | 93225 | Organizer Plugin for WordPress organizer/page/view.php Path Disclosure | |
| 2012-04-20 | 93224 | Organizer Plugin for WordPress organizer/page/users.php Arbitrary User Setting Modification | |
| 2012-04-20 | 93223 | Organizer Plugin for WordPress organizer/page/dir.php Directory Manipulation CSRF | |
| 2012-04-15 | 81549 | Organizer Plugin for WordPress page/users.php Setting Manipulation CSRF | |
| 2012-04-15 | 81550 | Organizer Plugin for WordPress File Upload Remote PHP Code Execution | |
| 2012-04-14 | 81529 | 2012-6512 | Organizer Plugin for WordPress Multiple Script Direct Request Path Disclosure |
| 2012-04-14 | 81528 | 2012-6511 | Organizer Plugin for WordPress organizer/page/users.php Multiple Parameter XSS |
| 2012-03-27 | 93222 | Register Plus Redux Plugin for WordPress wp-login.php Multiple Parameter XSS | |
| 2012-02-26 | 79648 | 2012-1787 | WebGlimpse wgarcmin.cgi Multiple Parameter XSS |
| 2012-02-09 | 80037 | EJBCA ejbca/publicweb/webdist/certdist issuer Parameter XSS | |
| 2012-01-31 | 79222 | D-Link DAP-1150 Multiple Function CSRF | |
| 2012-01-26 | 93221 | Register Plus Plugin for WordPress wp-login.php Multiple Parameter XSS | |
| 2012-01-26 | 93220 | Register Plus Plugin for WordPress Custom Logo Field Multiple File Extension Upload Arbitrary Code Execution | |
| 2011-12-29 | 93219 | Register Plus Redux Plugin for WordPress Dashboard Show Invitation Code Tracking Field SQL Injection | |
| 2011-12-29 | 93218 | Register Plus Redux Plugin for WordPress register-plus-redux.php Direct Request Path Disclosure | |
| 2011-12-29 | 93217 | Register Plus Redux Plugin for WordPress wp-login.php Multiple Parameter XSS | |
| 2011-12-29 | 93216 | Register Plus Redux Plugin for WordPress Dashboard Multiple Field XSS | |
| 2011-11-23 | 93215 | flvPlayer flv_player.swf Multiple Parameter Remote Content Injection | |
| 2011-11-23 | 93214 | flvPlayer flv_player.swf Multiple Function XSS | |
| 2011-11-23 | 93213 | Moxieplayer moxieplayer.swf url Parameter Remote Content Injection | |
| 2011-10-15 | 93212 | TinyMCE Multiple Script Direct Request Path Disclosure | |
| 2011-08-24 | 92309 | FLV Player player_flv_multi.swf URI XSS | |
| 2011-08-24 | 92308 | FLV Player player_flv_mini.swf flv Parameter Remote Content Injection Spoofing Weakness | |
| 2011-08-24 | 92307 | FLV Player player_flv_maxi.swf URI XSS | |
| 2011-08-24 | 92306 | FLV Player player_flv.swf Multiple Parameter Remote Content Injection Spoofing Weakness | |
| 2011-08-05 | 93399 | Register Plus Redux Plugin for WordPress register-plus-redux.php Multiple Field XSS | |
| 2011-08-03 | 93398 | Register Plus Plugin for Wordpress options-general.php Multiple Field XSS | |
| 2011-07-14 | 93173 | TinyBrowser File Download Arbitrary Code Execution | |
| 2011-05-21 | 93211 | Easy Contact Plugin for WordPress Multiple Script Direct Request Path Disclosure | |
| 2011-05-21 | 93210 | Easy Contact Plugin for WordPress easy-contact/econtact-menu.php Multiple Field XSS | |
| 2011-05-20 | 93209 | Easy Contact Plugin for WordPress /contact_form/ Carbon Copy Feature Arbitrary Mail Relay | |
| 2011-05-20 | 93208 | Easy Contact Plugin for WordPress /contact_form/ Multiple Parameter XSS | |
| 2011-05-11 | 72311 | MT-Cumulus Plugin for Movable Type mt-static/plugins/Cumulus/tagcloud.swf tagcloud Parameter XSS | |
| 2011-04-30 | 72151 | Magazeen Theme for WordPress timthumb.php Multiple Parameter XSS | |
| 2011-04-30 | 72152 | Magazeen Theme for WordPress Remote Image Data Handling DoS | |
| 2011-04-30 | 72153 | Magazeen Theme for WordPress Image Dimensions Resizing DoS | |
| 2011-04-26 | 72173 | WordPress Arbitrary File Upload | |
| 2011-04-14 | 72146 | Mimbo Pro Theme for WordPress timthumb.php Multiple Parameter XSS | |
| 2011-04-14 | 72147 | Mimbo Pro Theme for WordPress Remote Image Data Handling DoS | |
| 2011-04-14 | 72149 | Mimbo Pro Theme for WordPress Image Dimensions Resizing DoS | |
| 2011-03-29 | 93207 | MaxSite Anti Spam Image for WordPress 4e2342ffffc8 Parameter Replay CAPTCHA Bypass | |
| 2011-03-26 | 71422 | Cetera eCommerce Non-Existent Page URI XSS | |
| 2011-03-26 | 71423 | Cetera eCommerce catalog URI SQL Injection | |
| 2011-03-26 | 71424 | Cetera eCommerce catalog/cart URI SQL Injection | |
| 2011-02-24 | 71184 | Cumulus Module for Drupal modules/cumulus/cumulus.swf tagcloud Parameter XSS | |
| 2011-02-15 | 72855 | Drupal Multiple Page Malformed op Parameter Request Path Disclosure | |
| 2011-02-10 | 70943 | Firebook index.html NAME Parameter XSS | |
| 2011-02-08 | 70855 | 2010-4745 | PHPXref nav.html URI XSS |
| 2011-01-29 | 73281 | CMS WebManager-Pro Multiple Page Text Field Arbitrary PHP Code Execution | |
| 2011-01-29 | 73282 | CMS WebManager-Pro edit_content.php Arbitrary Page Edit CSRF | |
| 2011-01-28 | 72968 | Adobe ColdFusion page.cfm Multiple Parameter XSS | |
| 2011-01-28 | 72967 | Adobe ColdFusion page.cfm Malformed id Parameter SQL Database Structure Disclosure | |
| 2011-01-27 | 70777 | 2011-0733 | Adobe ColdFusion CFM File id=- Query User-Agent HTTP Header XSS |
| 2011-01-27 | 70778 | 2011-0734 | Adobe ColdFusion BODY Element JavaScript onLoad Event Handler id Parameter XSS |
| 2011-01-27 | 70779 | 2011-0735 | Adobe ColdFusion Unspecified Tag Script XSS |
| 2011-01-27 | 70780 | 2011-0736 | Adobe ColdFusion DBMS CFM File id=- Query Database Structure Disclosure |
| 2011-01-27 | 70781 | 2011-0737 | Adobe ColdFusion CFM File id=- Query Error Message Path Disclosure |
| 2011-01-22 | 72383 | MC Content Manager article.php root Parameter SQL Injection | |
| 2011-01-19 | 72243 | Xajax MC Content Manager URI XSS | |
| 2011-01-19 | 72251 | xAjax / xajax_jquery_plugin Multiple Script Direct Request Path Disclosure | |
| 2011-01-19 | 72254 | xajax_jquery_plugin Multiple Script Direct Request Path Disclosure | |
| 2011-01-15 | 72070 | MC Content Manager Multiple Script Direct Request Path Disclosure | |
| 2011-01-11 | 72121 | 2011-1481 | PHP-Nuke Search modules.php search Field XSS |
| 2011-01-08 | 72005 | Joostina index.php com_search Component ordering Parameter XSS | |
| 2010-12-22 | 75133 | Martinweb CMS sitesearch XSS | |
| 2010-12-22 | 75134 | Martinweb CMS index.php Multiple Parameter XSS | |
| 2010-12-22 | 75135 | Martinweb CMS index.php pages Parameter SQL DB Structure Disclosure | |
| 2010-12-02 | 74375 | Register Plus Redux Plugin for WordPress wp-login.php Multiple Parameter XSS | |
| 2010-11-24 | 69491 | 2010-4402 | Register Plus Plugin for WordPress wp-login.php Multiple Parameter XSS |
| 2010-11-24 | 69633 | 2010-4403 | Register Plus Plugin for Wordpress Multiple Script Direct Request Path Disclosure |
| 2010-11-06 | 69101 | 2010-4836 | PHPShop register.html name_new Parameter XSS |
| 2010-11-01 | 86467 | Google Custom Search Engine AJAX Search API search.php URI XSS | |
| 2010-10-30 | 73283 | CMS WebManager-Pro index.php word Parameter XSS | |
| 2010-10-30 | 73284 | CMS WebManager-Pro /admin Login Field SQL Injection | |
| 2010-10-08 | 70124 | AltConstructor index search Parameter XSS | |
| 2010-10-02 | 70125 | CMS WebManager-Pro /admin/files.php Arbitrary File Upload | |
| 2010-09-25 | 70169 | CMS MYsite portal/modules.php name Parameter Installation Path Disclosure | |
| 2010-09-25 | 70170 | CMS MYsite portal/modules.php query Parameter XSS | |
| 2010-09-25 | 70171 | CMS MYsite print.php pid Parameter SQL Injection | |
| 2010-08-06 | 70293 | Xataface admin.php -search Parameter XSS | |
| 2010-08-06 | 70292 | Xataface DATAFACE_PATH Parameter Injection Path Disclosure | |
| 2010-07-30 | 93206 | WP-DB Backup Plugin for WordPress /wp-admin/edit.php Path Disclosure | |
| 2010-06-24 | 93159 | Cimy Counter Plugin for WordPress wp-content/plugins/cimy-counter/cc_redirect.php Malformed fn Parameter Remote Path Disclosure | |
| 2010-06-24 | 93160 | Cimy Counter Plugin for WordPress wp-content/plugins/cimy-counter/cc_redirect.php fn Parameter XSS | |
| 2010-05-27 | 65112 | 2010-2120 | Google Chrome Invalid news URI IFRAME Element Handling Remote DoS |
| 2010-05-27 | 65109 | 2010-2117 | Mozilla Firefox Invalid news / nntp URI IFRAME Element Handling Remote DoS |
| 2010-05-27 | 65110 | 2010-2118 2010-2119 |
Microsoft IE Invalid news / nntp URI IFRAME Element Handling Remote DoS |
| 2010-05-27 | 65111 | 2010-2121 | Opera Invalid news / nntp URI IFRAME Element Handling Remote DoS |
| 2010-05-17 | 64784 | 2010-1993 | Opera mailto: URL Multiple IFRAME Element Handling DoS |
| 2010-05-17 | 64785 | 2010-1992 | Google Chrome mailto: URL Multiple IFRAME Element Handling DoS |
| 2010-05-17 | 64786 | 2010-1991 | Microsoft IE mailto: URL Multiple IFRAME Element Handling DoS |
| 2010-05-17 | 64787 | 2010-1990 | Mozilla Multiple Browsers mailto: URL Multiple IFRAME Element Handling DoS |
| 2010-05-17 | 64788 | 2010-1989 | Opera mailto: URL IMG Element SRC Attribute Multiple Image Redirect DoS |
| 2010-04-23 | 64077 | DataLife Engine HTTP Referer Header XSS | |
| 2009-11-08 | 60198 | 2009-3943 | Microsoft IE DHTML Property setHomePage Method JavaScript Loop Remote DoS |
| 2009-09-09 | 89137 | TinyBrowser tinybrowser.php File Upload Arbitrary Code Execution | |
| 2009-08-26 | 58397 | 2009-3267 | Microsoft IE Auto Form Submission KEYGEN Element Remote DoS |
| 2009-08-19 | 57506 | 2009-2954 | Microsoft IE location.hash Javascript Handling Remote DoS |
| 2009-08-08 | 82351 | XAMPP cds-fpdf.php Multiple Parameter SQL Injection | |
| 2009-08-08 | 82349 | XAMPP Multiple Script Direct Request Path Disclosure | |
| 2009-08-06 | 93205 | Subscribe to Comments Plugin for WordPress Unspecified HTTP Response Splitting | |
| 2009-08-06 | 93204 | Subscribe to Comments Plugin for WordPress Unspecified CSRF | |
| 2009-08-06 | 93203 | Subscribe to Comments Plugin for WordPress Unspecified XSS | |
| 2009-08-01 | 82348 | XAMPP phonebook.php Multiple Parameter SQL Injection | |
| 2009-08-01 | 82347 | XAMPP phonebook.php Multiple Parameter XSS | |
| 2009-07-25 | 56852 | 2009-2668 | Microsoft IE XML Document start-tags Handling CPU Consumption DoS |
| 2009-07-25 | 82344 | XAMPP cds.php Multiple Parameter SQL Injection | |
| 2009-07-21 | 82343 | XAMPP adodb.php Selected table Field SQL Injection | |
| 2009-07-18 | 56323 | 2009-2576 | Microsoft IE Write Method Unicode String Argument Handling Remote DoS |
| 2009-07-16 | 82342 | XAMPP showcode.php file Parameter Traversal Arbitrary File Access | |
| 2009-07-16 | 82341 | XAMPP showcode.php TEXT[global-showcode] Parameter XSS | |
| 2009-07-02 | 56480 | 2009-2350 | Microsoft IE HTTP Response Refresh Header javascript: URI XSS |
| 2009-06-10 | 82340 | XAMPP xamppsecurity.php _SERVER[REMOTE_ADDR] Parameter XSS | |
| 2009-04-27 | 80330 | 2009-5112 | WebGlimpse wgarcmin.cgi Crafted Request Path Disclosure |
| 2009-04-27 | 80331 | 2009-5113 | WebGlimpse wgarcmin.cgi DOC Parameter XSS |
| 2009-04-27 | 80332 | 2009-5114 | WebGlimpse wgarcmin.cgi DOC Parameter Traversal Arbitrary File Access |
| 2009-04-27 | 80333 | WebGlimpse Calculated Cookie Admin Authentication Weakness | |
| 2009-01-26 | 93202 | WP-Upload Manager Plugin for WordPress wp-upload-manager.php file Parameter Arbitrary File Deletion | |
| 2009-01-26 | 93201 | WP-Upload Manager Plugin for WordPress wp-upload-manager.php mnuFiles Parameter XSS | |
| 2009-01-26 | 93200 | WP-Upload Manager Plugin for WordPress wp-upload-manager.php mnuFiles Parameter SQL Injection | |
| 2008-12-13 | 93199 | CapCC Plugin for WordPress capcc-config.php CAPCC_MAX_ATTEMPTS Parameter SQL Injection | |
| 2008-12-13 | 93198 | CapCC Plugin for WordPress Image/Code Pre-generation CAPTCHA Bypass | |
| 2008-12-13 | 93197 | CapCC Plugin for WordPress capcc-config.php CAPTCHA Bypass CSRF | |
| 2008-12-12 | 93196 | CapCC Plugin for WordPress /capcc/capcc.php Malformed CAPCC_MAX_ATTEMPTS Parameter Path Disclosure | |
| 2008-12-12 | 93195 | CapCC Plugin for WordPress capcc-config.php Multiple Parameter XSS | |
| 2008-08-26 | 93194 | FeedSmith FeedBurner for WordPress FeedBurner_FeedSmith_Plugin.php Direct Request Path Disclosure | |
| 2008-08-26 | 93193 | FeedSmith FeedBurner for WordPress FeedBurner_FeedSmith_Plugin.php Multiple Parameter XSS | |
| 2008-08-09 | 93192 | WP-ContactForm Plugin for WordPress /contact/ Arbitrary Mail Relay | |
| 2008-08-08 | 92777 | Contact Form ][ Plugin for WordPress options-contactform.php Multiple Function CSRF | |
| 2008-08-08 | 92778 | Contact Form ][ Plugin for WordPress options-contactform.php Multiple Parameter XSS | |
| 2008-08-07 | 92775 | Contact Form ][ Plugin for WordPress Send a Copy to Yourself Feature Arbitrary Mail Relay | |
| 2008-08-07 | 92776 | Contact Form ][ Plugin for WordPress /contact/ Multiple Field XSS | |
| 2008-07-25 | 92726 | FireStats Plugin for WordPress ajax-handler.php recalculateDBCache Resource Exhaustion Remote DoS | |
| 2008-07-25 | 92728 | FireStats Plugin for WordPress ajax-handler.php action Parameter XSS | |
| 2008-07-25 | 92727 | FireStats Plugin for WordPress Unauthenticated Setting Manipulation | |
| 2008-07-24 | 92725 | FireStats Plugin for WordPress Multiple Script Direct Request Path Disclosure | |
| 2008-07-24 | 92724 | FireStats Plugin for WordPress UA Statistics Page UserAgent Rendering XSS | |
| 2008-04-15 | 92723 | Trashbin Plugin for WordPress mtb_trashbin/trashbin.php mtb_undelete Parameter XSS | |
| 2007-11-30 | 82806 | ESP-PIX Tag / Word Replay CAPTCHA Bypass | |
| 2007-11-29 | 82763 | WP-ContactForm Plugin for WordPress wpcf_response Parameter Replay CAPTCHA Bypass | |
| 2007-11-28 | 82807 | IP.Board Image/Code Pre-generation CAPTCHA Bypass | |
| 2007-11-26 | 82801 | Captcha! Plugin for WordPress Null String CAPTCHA Bypass | |
| 2007-11-26 | 82802 | Captcha! Plugin for WordPress captcha.php CAPTCHA Bypass CSRF | |
| 2007-11-25 | 82762 | Anti Spam Image Plugin for WordPress securitycode Parameter Replay CAPTCHA Bypass | |
| 2007-11-23 | 82761 | Math Comment Spam Protection Plugin for Wordpress mcspvalue / mcspinfo Parameter Replay CAPTCHA Bypass | |
| 2007-11-21 | 82521 | Auto-Input Protection (AIP) ctl00$Main$aip$input Parameter Replay CAPTCHA Bypass | |
| 2007-11-20 | 82364 | Nucleus Image/Code Pre-generation CAPTCHA Bypass | |
| 2007-11-20 | 82366 | Nucleus myid Parameter SQL Injection CAPTCHA Bypass | |
| 2007-11-19 | 82365 | HBH-Fusion user_code Replay CAPTCHA Bypass | |
| 2007-11-18 | 82363 | PHP-Fusion user_code Replay CAPTCHA Bypass | |
| 2007-11-16 | 82361 | Cryptographp Plugin for WordPress Security Code Re-use CAPTCHA Bypass | |
| 2007-11-13 | 82360 | Peter's Random Anti-Spam Image Plugin for WordPress Code Pair Pre-generation CAPTCHA Bypass | |
| 2007-11-10 | 82253 | PHP-Nuke Null String CAPTCHA Bypass | |
| 2007-11-07 | 82358 | mt-scode CAPTCHA Plugin for Movable Type/Drupal Check Pair Replay Bypass | |
| 2007-11-05 | 92722 | Blogger Image/Code Pre-generation CAPTCHA Bypass | |
| 2007-11-04 | 82805 | reCAPTCHA Plugin for Drupal captcha_token Crafted Response CAPTCHA Bypass | |
| 2007-11-03 | 82362 | Peter's Custom Anti-Spam Image Plugin for WordPress antiselect Prediction CAPTCHA Bypass | |
| 2007-11-03 | 82359 | Peter's Custom Anti-Spam Image Plugin for WordPress Check Pair Replay CAPTCHA Bypass | |
| 2007-05-27 | 92721 | WordPress /wp-admin/plugins.php page Parameter Traversal Local File Inclusion | |
| 2007-05-25 | 92720 | WP-ContactForm Plugin for WordPress /contact/ Multiple Field XSS | |
| 2006-10-29 | 92774 | WP PHPList Plugin for WordPress wp-phplist.php unsubscribeemail Parameter XSS | |
| 2006-09-16 | 92773 | Subscribe to Comments Plugin for WordPress subscribe-to-comments.php Multiple Parameter XSS | |
| 2006-09-16 | 92772 | Subscribe to Comments Plugin for WordPress wp-subscription-manager.php Multiple Parameter XSS | |
| 2005-12-05 | 21481 | 2005-4053 | coWiki index.php q Parameter XSS |
