Vendor Dictionary: Web Wiz

Web Wiz

Short Name:	[None Entered]
Previous Names:	[None Entered]
URL:	[None Entered]
Email:	[None Entered]
Security URL:	[None Entered]
Security Email:	[None Entered]
Knowledge Base:	[None Entered]
Notes:	[No Notes]

Vulnerabilities by Vendor Product

Web Wiz

Web Wiz

Web Wiz Internet Search Engine: 3.2; OSVDB ID: 10353 Web Wiz Internet Search Engine common.inc Admin Password Disclosure

Internet Search Engine: 3.2; OSVDB ID: 10355 Web Wiz Internet Search Engine search_engine.mdb Admin Password Disclosure

Web Wiz NewsPad: 1.03; OSVDB ID: 69579 Web Wiz NewsPad database/NewsPad.mdb Direct Request Database Disclosure

Web Wiz Journal: 1.0; OSVDB ID: 10354 Web Wiz Journal journal.mdb Admin Password Disclosure

Web Wiz Forums: 6.34; OSVDB ID: 2768 Web Wiz Forums Unauthorized Message Access; 7.01; OSVDB ID: 2768 Web Wiz Forums Unauthorized Message Access; OSVDB ID: 2813 Web Wiz Forums XSS; OSVDB ID: 4599 Web Wiz Forums Multiple pm_buddy_list.asp XSS; OSVDB ID: 4598 Web Wiz Forums members.asp XSS; OSVDB ID: 2946 Web Wiz Forums forum_members.asp XSS; 7.5; OSVDB ID: 2768 Web Wiz Forums Unauthorized Message Access; 9.5; OSVDB ID: 47210 Web Wiz Forum admin_category_details.asp mode Parameter XSS; OSVDB ID: 47209 Web Wiz Forum admin_group_details.asp mode Parameter XSS; OSVDB ID: 47211 Web Wiz Forum log_off_user.asp CSRF; 9.65; OSVDB ID: 62996 Web Wiz Forums forum_posts.asp CSRF; OSVDB ID: 62995 Web Wiz Forums edit_post_form.asp CSRF; OSVDB ID: 62994 Web Wiz Forums new_topic_form.asp CSRF; OSVDB ID: 62993 Web Wiz Forums new_reply_form.asp CSRF; OSVDB ID: 62992 Web Wiz Forums new_poll_form.asp CSRF; OSVDB ID: 62991 Web Wiz Forums new_reply_form.asp CSRF; OSVDB ID: 62990 Web Wiz Forums edit_post.asp CSRF; OSVDB ID: 62989 Web Wiz Forums new_post.asp CSRF; OSVDB ID: 62988 Web Wiz Forums ajax_email_notify.asp CSRF; OSVDB ID: 62987 Web Wiz Forums email_notify.asp CSRF; OSVDB ID: 62986 Web Wiz Forums email_notify_remove.asp CSRF; OSVDB ID: 62985 Web Wiz Forums email_notify_subscriptions.asp CSRF; OSVDB ID: 62984 Web Wiz Forums file_upload.asp CSRF; OSVDB ID: 62983 Web Wiz Forums file_delete.asp CSRF; OSVDB ID: 62982 Web Wiz Forums file_manager.asp CSRF; OSVDB ID: 62981 Web Wiz Forums pm_new_message_form.asp CSRF; OSVDB ID: 62980 Web Wiz Forums pm_new_message.asp CSRF; OSVDB ID: 62979 Web Wiz Forums includes/message_form_inc.asp CSRF; OSVDB ID: 62978 Web Wiz Forums pm_inbox.asp CSRF; OSVDB ID: 62977 Web Wiz Forums pm_delete_message.asp CSRF; OSVDB ID: 62976 Web Wiz Forums pm_message.asp CSRF; OSVDB ID: 62975 Web Wiz Forums pm_delete_buddy.asp CSRF; OSVDB ID: 62974 Web Wiz Forums pm_buddy_list.asp CSRF; OSVDB ID: 62973 Web Wiz Forums pm_add_buddy.asp CSRF

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.