SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |   


View Topics  >  Reported By  >  Mathematica

Apr 12 2004   NuKed-KlaN Input Validation Bugs Disclose Files to Remote Users and Let Remote Users Include Local Files
Oct 27 2003   Advanced Poll Include File Error Lets Remote Users Execute Arbitrary PHP Code and Operating System Commands
Oct 12 2003   myPHPCalendar Include File Flaw Lets Remote Users Execute Arbitrary Commands
Oct 5 2003   PHP-Nuke 'mailattach.php' Input Validation Flaw Lets Remote Users Upload Arbitrary Files and Execute Them
Oct 5 2003   EternalMart Guestbook Include File Validation Flaw Lets Remote Users Execute Arbitrary Code
Oct 5 2003   EternalMart Mailing List Manager Include File Validation Flaw Lets Remote Users Execute Arbitrary Code
Sep 13 2003   vbPortal 'auth.inc.php' Input Validation Flaw Lets Remote Users Inject
Sep 11 2003   myPHPNuke 'displayCategory.php' Include File Flaw Lets Remote Users Execute Arbitrary Code
Aug 26 2003   PY-Membres Input Validation Flaw in 'pass_done.php' Permits SQL Injection
Aug 13 2003   XOOPS Input Filtering Flaw in BBcode Tags Permits Remote Cross-Site Scripting Attacks
Jun 15 2003   pMachine Include File Bug in 'lib.inc.php' Lets Remote Users Execute Arbitrary OS Commands on the Target Server
May 10 2003   miniPortail Provides Administrative Access to Remote Users
Apr 29 2003   PHP-Nuke HTML Tag Style Input Validation Flaws Allow Cross Site Scripting Attacks
Apr 25 2003   TrueGalerie Authentication Flaw Lets Remote Users Gain Administrator Access to the Application
Feb 28 2003   Invision Power Board Include File Error Lets Remote Users Execute Arbitrary Commands on the Server
Feb 17 2003   D-forum Include File Error Lets Remote Users Execute Arbitrary Commands on the Target Server
Feb 17 2003   'Kietu?' Web Site Statistics Software Include File Error Lets Remote Users Execute Arbitrary Commands
Feb 17 2003   php-Board Forum Discloses Passwords to Remote Users
Feb 3 2003   PhpMyShop SQL Injection Flaw Allows Remote Users to Gain Access to the System
Feb 3 2003   myphpPagetool Include File Error Lets Remote Users Execute Arbitrary Code
Jan 20 2003   PhpPass Input Validation Flaw Lets Remote Users Inject SQL Commands to Gain Access to the System
Jan 2 2003   N/X Content Management System Include File Error Lets Remote Users Execute Arbitrary Commands on the Server
Dec 31 2002   PEEL Include File Error Lets Remote Users Execute Arbitrary Commands on the Server
Dec 16 2002   MyPHPLinks Input Validation Flaw Lets Remote Users Inject SQL Characters to Gain Administrative Access on the Application
Dec 2 2002   Thatphpware Has More Input Validation Flaws That Let Remote Users Execute Arbitrary Code
Nov 26 2002   News Evolution Forum Software Include File Bug Lets Remote Users Execute Arbitrary Commands on the System
Nov 26 2002   Freenews Forum Software Include File Bug Lets Remote Users Execute Arbitrary Commands on the System
Nov 26 2002   Web Server Creator Include File Error Enables Remote Users to Execute Arbitrary Commands
Oct 28 2002   Forum Du Dobermann Web Forum Include File Error Lets Remote Users Execute Arbitrary Commands
Oct 8 2002   SS Guest Book Input Validation Flaw in Image Tags Allows Cross-Site Scripting Attacks
Oct 8 2002   Killer Protection PHP Script Discloses Usersnames and Passwords to Remote Users
Oct 8 2002   phpSecurePages Include Error In 'checklogin.php' Lets Remote Users Access The System
Jun 9 2002   Lokwa BB Bulletin Board Bugs Let Remote Authenticated Users Read Private Messages and Also Execute SQL Commands on the Database
Jun 9 2002   W-Agora Web Forum Software Lets Remote Users Execute Arbitrary PHP Code on the Server
Jun 4 2002   TeeKai's Tracking Online PHP Script for Tracking Web Site Users Contains Cross-Site Scripting Flaws, Allowing Remote Users to Steal Another User's Authentication Cookies
Jun 4 2002   TeeKai's Forum Software Discloses Visitor IP Addresses to Remote Users and Allows Remote Authenticated Users to Gain Administrative Privileges
May 24 2002   Pharao Web Portal Software Has Multiple Flaws That Allow Remote Users to Access the System as Any User and to Read Files on the Server
May 21 2002   mcNews Forum Software Has Several Bugs That Disclose Files to Remote Users and Allow Remote Users to Conduct Cross-Site Scripting Attacks Against mcNews Users
May 17 2002   XMB Group Magic Lantern Forum Software Discloses Log Files and Server Installation Path Information to Remote Users
May 9 2002   Ecometry's SGDynamo Web Application Engine Allows Remote Users to Conduct Cross-Site Scripting Attacks
Apr 24 2002   WoltLab Burning Board PHP-based Forum Software Has Input Filtering Flaws That Allow Cross-Site Scripting Attacks
Apr 18 2002   Linker Search Engine Software Has Input Validation Flaw That Lets Remote Users View Files on the System and Gain Administrative Access to the Search Engine
Apr 17 2002   IcrediBB Bulletin Board Allows Cross-Site Scripting Attacks to Steal User and Administrator Authentication Cookies
Mar 15 2002   X-news PHP News Management System Lets Remote Users Access the Administrator Menu
Mar 15 2002   X-stat Log File Analysis Tool Has Multiple Vulnerabilities That Allow Remote Users to Obtain Information About the System and Conduct Cross-Site Scripting Attacks Against x-stat Administrators
Mar 5 2002   Thttpd Web Server Filtering Flaw Lets Remote Users Steal Cookies Via Cross-Site Scripting Attacks
Feb 15 2002   phpMyNewsletter Mailing List Management Script Static Cookie Hole Gives Remote Users Administrative Privileges on the Application
Feb 14 2002   ForumPerso PHP-based Web Forum Lets Remote Users Gain Administrator Access to the Application
Feb 10 2002   Actinic Catalog E-commerce Software Allows Cross-Site Scripting Attacks, Letting Remote Users Steal User Cookies
Feb 10 2002   '2037 Gestion Liens' Web Portal Software Lets Remote Users Gain Administrative Access to the Application
Feb 6 2002   WWWeBBB Web-based Bulletin Board Discloses Files on the System to Remote Users
Feb 4 2002   Portix-PHP Web Portal Software Discloses Files to Remote Users and Lets Remote Users Gain Administrator Access on the Portal Application
Jan 21 2002   CGI Online Worldweb Shopping (COWS) E-Commerce System Discloses User Information and Order Data to Remote Users and Also Permits Cross-site Scripting Attacks
Dec 24 2001   PHP-Nuke 'friend.php' Module Allows Cross-Site Scripting Attacks
Dec 24 2001   DMOZGateway Add-on for PHP-Nuke Allows Cross-Site Scripting Attacks
Dec 24 2001   PHP IMessenger Module Allows Cross Site-Scripting Attacks and May Disclose Cookies to Remote Users







Home   |    View Topics   |    Search   |    Contact Us

Copyright 2012, SecurityGlobal.net LLC