· 6 years ago · Oct 11, 2019, 07:50 PM
1######################################################################################################################################
2======================================================================================================================================
3Hostname www.msb.gov.tr ISP Tellcom Iletisim Hizmetleri A.s.
4Continent Asia Flag
5TR
6Country Turkey Country Code TR
7Region Ankara Local time 11 Oct 2019 20:07 +03
8City Ankara Postal Code 06450
9IP Address 82.222.182.112 Latitude 39.923
10 Longitude 32.838
11======================================================================================================================================
12######################################################################################################################################
13> www.msb.gov.tr
14Server: 38.132.106.139
15Address: 38.132.106.139#53
16
17Non-authoritative answer:
18Name: www.msb.gov.tr
19Address: 82.222.182.112
20>
21######################################################################################################################################
22
23** Registrant:
24 Milli Savunma Bakanlığı
25 Milli Savunma Bakanlığı Maliye Dairesi Baş.Obi
26 Şubesi Bakanlıklar-Çankaya 06100
27 Ankara,
28 Türkiye
29 domreg@msb.gov.tr
30 + 90-312-4023695-
31 + 90-312-4254845
32
33
34** Administrative Contact:
35NIC Handle : msb23-metu
36Organization Name : Hidden upon user request
37Address : Hidden upon user request
38Phone : Hidden upon user request
39Fax : Hidden upon user request
40
41
42** Technical Contact:
43NIC Handle : msb23-metu
44Organization Name : Hidden upon user request
45Address : Hidden upon user request
46Phone : Hidden upon user request
47Fax : Hidden upon user request
48
49
50** Billing Contact:
51NIC Handle : msb23-metu
52Organization Name : Hidden upon user request
53Address : Hidden upon user request
54Phone : Hidden upon user request
55Fax : Hidden upon user request
56
57
58** Domain Servers:
59ns3.msb.gov.tr 82.222.182.100
60ns4.msb.gov.tr 82.222.182.111
61
62** Additional Info:
63Created on..............: 1997-Feb-05.
64Expires on..............: 2021-Feb-04.
65######################################################################################################################################
66[+] Target : www.msb.gov.tr
67
68[+] IP Address : 82.222.182.112
69
70[+] Headers :
71
72[+] Cache-Control : private
73[+] Content-Type : text/html; charset=utf-8
74[+] X-Frame-Options : SAMEORIGIN
75[+] Date : Fri, 11 Oct 2019 17:16:26 GMT
76[+] Content-Length : 16924
77[+] Set-Cookie : TS017c5e13=01061992c06327a53125b7ee59df2533ff1eee792ec40461832a21470db9e2c3cbfb18a37846326363daaeee984510b42474427ea8; Path=/; Domain=.www.msb.gov.tr
78[+] Vary : Accept-Encoding
79[+] Content-Encoding : gzip
80[+] Connection : Keep-Alive
81
82[+] SSL Certificate Information :
83
84[+] countryName : TR
85[+] stateOrProvinceName : ANKARA
86[+] localityName : BAKANLIKLAR
87[+] organizationName : MILLI SAVUNMA BAKANLIGI
88[+] commonName : *.msb.gov.tr
89[+] countryName : BE
90[+] organizationName : GlobalSign nv-sa
91[+] commonName : GlobalSign Organization Validation CA - SHA256 - G2
92[+] Version : 3
93[+] Serial Number : 4F9A642BFBC0FA512C7CCAC7
94[+] Not Before : Nov 21 17:24:07 2018 GMT
95[+] Not After : Nov 22 17:24:07 2019 GMT
96[+] OCSP : ('http://ocsp2.globalsign.com/gsorganizationvalsha2g2',)
97[+] subject Alt Name : (('DNS', '*.msb.gov.tr'), ('DNS', 'msb.gov.tr'))
98[+] CA Issuers : ('http://secure.globalsign.com/cacert/gsorganizationvalsha2g2r1.crt',)
99[+] CRL Distribution Points : ('http://crl.globalsign.com/gs/gsorganizationvalsha2g2.crl',)
100
101[+] Whois Lookup :
102
103[+] NIR : None
104[+] ASN Registry : ripencc
105[+] ASN : 34984
106[+] ASN CIDR : 82.222.182.0/24
107[+] ASN Country Code : TR
108[+] ASN Date : 2003-12-19
109[+] ASN Description : TELLCOM-AS, TR
110[+] cidr : 82.222.182.0/24
111[+] name : MILLI_SAVUNMA_BAKANLIGI
112[+] handle : EE1566-RIPE
113[+] range : 82.222.182.0 - 82.222.182.255
114[+] description : MILLI_SAVUNMA_BAKANLIGI
115[+] country : TR
116[+] state : None
117[+] city : None
118[+] address : Milli Savunma Bakanligi 06100 Bakanliklar
119ANKARA
120[+] postal_code : None
121[+] emails : None
122[+] created : 2013-06-25T07:27:15Z
123[+] updated : 2013-06-25T07:27:15Z
124
125[+] Crawling Target...
126
127[+] Looking for robots.txt........[ Found ]
128[+] Extracting robots Links.......[ 5 ]
129[+] Looking for sitemap.xml.......[ Found ]
130[+] Extracting sitemap Links......[ 500 ]
131[+] Extracting CSS Links..........[ 9 ]
132[+] Extracting Javascript Links...[ 14 ]
133[+] Extracting Internal Links.....[ 0 ]
134[+] Extracting External Links.....[ 22 ]
135[+] Extracting Images.............[ 38 ]
136
137[+] Total Links Extracted : 588
138
139[+] Dumping Links in /opt/FinalRecon/dumps/www.msb.gov.tr.dump
140[+] Completed!
141#######################################################################################################################################
142+] Starting At 2019-10-11 13:16:44.844080
143[+] Collecting Information On: https://www.msb.gov.tr/
144[#] Status: 200
145--------------------------------------------------
146- Cache-Control: private
147- Content-Type: text/html; charset=utf-8
148- X-Frame-Options: SAMEORIGIN
149- Date: Fri, 11 Oct 2019 17:16:46 GMT
150- Content-Length: 16921
151- Set-Cookie: TS017c5e13=01061992c0ffc4653482632b39e56c19be5b9c602c53089798aadf93f0d26e28e1cf2c9b4beeb792afebca3d6947a4055ce9b76f76; Path=/; Domain=.www.msb.gov.tr
152- Vary: Accept-Encoding
153- Content-Encoding: gzip
154- Connection: Keep-Alive
155--------------------------------------------------
156[#] Finding Location..!
157[#] as: AS34984 TELLCOM ILETISIM HIZMETLERI A.S.
158[#] city: Ankara
159[#] country: Turkey
160[#] countryCode: TR
161[#] isp: MSB
162[#] lat: 39.923
163[#] lon: 32.8378
164[#] org:
165[#] query: 82.222.182.112
166[#] region: 06
167[#] regionName: Ankara
168[#] status: success
169[#] timezone: Europe/Istanbul
170[#] zip: 06450
171--------------------------------------------------
172[x] Didn't Detect WAF Presence on: https://www.msb.gov.tr/
173--------------------------------------------------
174[#] Starting Reverse DNS
175[!] Found 2 any Domain
176- msb.gov.tr
177- www.msb.gov.tr
178--------------------------------------------------
179[!] Scanning Open Port
180[#] 80/tcp open http
181[#] 443/tcp open https
182--------------------------------------------------
183[+] Collecting Information Disclosure!
184[#] Detecting sitemap.xml file
185[!] sitemap.xml File Found: https://www.msb.gov.tr//sitemap.xml
186[#] Detecting robots.txt file
187[!] robots.txt File Found: https://www.msb.gov.tr//robots.txt
188[#] Detecting GNU Mailman
189[-] GNU Mailman App Not Detected!?
190--------------------------------------------------
191[+] Crawling Url Parameter On: https://www.msb.gov.tr/
192--------------------------------------------------
193[#] Searching Html Form !
194[+] Html Form Discovered
195[#] action: /Anasayfa/Ara
196[#] class: None
197[#] id: None
198[#] method: POST
199--------------------------------------------------
200[!] Found 4 dom parameter
201[#] https://www.msb.gov.tr//#
202[#] https://www.msb.gov.tr//#
203[#] https://www.msb.gov.tr//#
204[#] https://www.msb.gov.tr//#
205--------------------------------------------------
206[!] 4 Internal Dynamic Parameter Discovered
207[+] https://www.msb.gov.tr///favicon.ico?v=5
208[+] https://www.msb.gov.tr///Content/css/index.css?v=5
209[+] https://www.msb.gov.tr///KararSorgu/KararAra?sayfa=fihrist
210[+] https://www.msb.gov.tr///Anasayfa/Gundem?lang=tr-TR
211--------------------------------------------------
212[!] 1 External Dynamic Parameter Discovered
213[#] https://twitter.com/tcsavunma?ref_src=twsrc%5Etfw
214--------------------------------------------------
215[!] 94 Internal links Discovered
216[+] https://www.msb.gov.tr///apple-touch-icon.png
217[+] https://www.msb.gov.tr///apple-touch-icon.png
218[+] https://www.msb.gov.tr///safari-pinned-tab.svg
219[+] https://www.msb.gov.tr///favicon-32x32.png
220[+] https://www.msb.gov.tr///favicon-16x16.png
221[+] https://www.msb.gov.tr///site.webmanifest
222[+] https://www.msb.gov.tr///Content/css/font-awesome.min.css
223[+] https://www.msb.gov.tr///Content/css/bootstrap.min.css
224[+] https://www.msb.gov.tr///Content/css/camera.css
225[+] https://www.msb.gov.tr///Content/css/bootstrap-light.css
226[+] https://www.msb.gov.tr///Content/PagedList.css
227[+] https://www.msb.gov.tr///Content/css/component.css
228[+] https://www.msb.gov.tr///Content/css/gallery.css
229[+] https://eposta.msb.gov.tr/owa/
230[+] https://www.msb.gov.tr///en-US
231[+] https://www.msb.gov.tr///Anasayfa/Index
232[+] https://www.msb.gov.tr///Anasayfa/Index
233[+] https://www.msb.gov.tr///Anasayfa/Index
234[+] https://www.msb.gov.tr///Bakanlik/Bakan
235[+] https://www.msb.gov.tr///Genel/icerik/bakan-yardimcilari
236[+] https://www.msb.gov.tr///Bakanlar
237[+] https://www.msb.gov.tr///Bakanlik/BakanlikBirimleri
238[+] https://www.msb.gov.tr///Bakanlik/Misyon
239[+] https://www.msb.gov.tr///Bakanlik/Vizyon
240[+] https://www.msb.gov.tr///Anasayfa/TumYayin
241[+] https://www.msb.gov.tr///Basin/icerik/kurumsal-kimlik
242[+] https://personeltemin.msb.gov.tr/
243[+] https://asal.msb.gov.tr/
244[+] https://mafam.msb.gov.tr/
245[+] https://www.msb.gov.tr///Genel/icerik/ihale-ilanlari
246[+] https://www.msb.gov.tr///Maliye/icerik/butce-ve-mali-hizmetler-genel-mudurlugu
247[+] https://www.msb.gov.tr///Genel/icerik/askeri-yargi-kararlari-ve-dava-sorgulama
248[+] https://www.msb.gov.tr///Karar/List
249[+] https://sorgula.msb.gov.tr/MsbKurumsal/public/ayim_sorgula/ayimSorgulaGeneric.xhtml
250[+] https://www.msb.gov.tr///Personel/icerik/memur-islemleri
251[+] https://www.msb.gov.tr///Destek/icerik/devlet-mezarligi-mudurlugu
252[+] https://www.msb.gov.tr///Arsiv/icerik/yonetim-hizmetleri-genel-mudurlugu-arsiv-hizmetleri-sube-mudurlugu
253[+] https://www.msb.gov.tr///SATEM/icerik/egitimler
254[+] https://www.msb.gov.tr///Tedarik/icerik/tedarik-hizmetleri-genel-mudurlugu-faaliyetleri
255[+] https://www.msb.gov.tr///FiyatMaliyet/icerik/milli-savunma-bakanligi-2019-yili-insaat-birim-fiyatlari-ile-insaat-genel-fiyat-analizleri
256[+] https://www.msb.gov.tr///TeknikHizmetler/icerik/teknik-hizmetler-dairesi-baskanligi
257[+] https://www.msb.gov.tr///AFGM/icerik/afgm
258[+] https://www.msb.gov.tr///AFGM/icerik/stratejik-is-birligi-faaliyetleri
259[+] https://www.msb.gov.tr///AFGM/icerik/askeri-fabrikalar-genel-mudurlugu-kalite-hizmetleri
260[+] https://www.msb.gov.tr///AFGM/icerik/askeri-fabrikalar-onayli-tedarikci-basvurulari
261[+] https://www.msb.gov.tr///IlacFabrikasi/icerik/tarihce
262[+] https://www.msb.gov.tr///TGM/icerik/tersaneler-genel-mudurlugu
263[+] https://www.msb.gov.tr///TGM/icerik/tersaneler-genel-mudurlugu-onayli-tedarikci-basvurulari
264[+] https://www.msb.gov.tr///TGM/icerik/stratejik-is-birligi-faaliyetleri
265[+] https://www.msb.gov.tr///TGM/icerik/kalite-guvence-laboratuvarlari
266[+] https://www.msb.gov.tr///TGM/icerik/fiyat-maliyet-analiz
267[+] https://www.msb.gov.tr///Content/css/slider-pro.min.css
268[+] https://www.msb.gov.tr///SlaytHaber/11102019-14873
269[+] https://www.msb.gov.tr///SlaytHaber/11102019-14873
270[+] https://www.msb.gov.tr///SlaytHaber/11102019-54555
271[+] https://www.msb.gov.tr///SlaytHaber/11102019-54555
272[+] https://www.msb.gov.tr///SlaytHaber/10102019-63047
273[+] https://www.msb.gov.tr///SlaytHaber/10102019-63047
274[+] https://www.msb.gov.tr///SlaytHaber/10102019-12560
275[+] https://www.msb.gov.tr///SlaytHaber/10102019-12560
276[+] https://www.msb.gov.tr///SlaytHaber/10102019-00766
277[+] https://www.msb.gov.tr///SlaytHaber/10102019-00766
278[+] https://www.msb.gov.tr///SlaytHaber/10102019-13610
279[+] https://www.msb.gov.tr///SlaytHaber/10102019-13610
280[+] https://www.msb.gov.tr///SlaytHaber/10102019-62380
281[+] https://www.msb.gov.tr///SlaytHaber/10102019-62380
282[+] https://www.msb.gov.tr///SlaytHaber/9102019-57233
283[+] https://www.msb.gov.tr///SlaytHaber/9102019-57233
284[+] https://www.msb.gov.tr///SlaytHaber/9102019-02880
285[+] https://www.msb.gov.tr///SlaytHaber/9102019-02880
286[+] https://www.msb.gov.tr///SlaytHaber/9102019-53737
287[+] https://www.msb.gov.tr///SlaytHaber/9102019-53737
288[+] https://www.msb.gov.tr///Bakanlik/Bakan
289[+] https://www.msb.gov.tr///Bakanlik/Bakan
290[+] https://www.msb.gov.tr///Basin/Mesaj
291[+] https://www.msb.gov.tr///BasinveYayin/KonusmaListesi
292[+] https://www.msb.gov.tr///Genel/icerik/ihale-ilanlari
293[+] https://www.msb.gov.tr///Genel/icerik/ihale-ilanlari
294[+] https://www.msb.gov.tr///SehitGazi/icerik/sehit-yakinlari-ile-malul-ve-gazilere-iliskin-bilgiler
295[+] https://www.msb.gov.tr///SehitGazi/icerik/sehit-yakinlari-ile-malul-ve-gazilere-iliskin-bilgiler
296[+] https://www.msb.gov.tr///Aqap/AqapListe
297[+] https://www.msb.gov.tr///Aqap/AqapListe
298[+] https://www.msb.gov.tr///Tum-Haberler
299[+] https://www.msb.gov.tr///Tum-Haberler
300[+] https://www.msb.gov.tr///SehitVefat/Sehitlerimiz
301[+] https://www.msb.gov.tr///SehitVefat/Sehitlerimiz
302[+] https://www.msb.gov.tr///SehitVefat/Vefatlarimiz
303[+] https://www.msb.gov.tr///SehitVefat/Vefatlarimiz
304[+] https://www.msb.gov.tr///SehitGazi/icerik/sehit-yakinlari-ile-malul-ve-gazilere-iliskin-bilgiler
305[+] https://www.msb.gov.tr///SehitGazi/icerik/sehit-yakinlari-ile-malul-ve-gazilere-iliskin-bilgiler
306[+] https://www.msb.gov.tr///Anasayfa/Galeri
307[+] https://www.msb.gov.tr///Anasayfa/VideoGaleri
308[+] https://www.msb.gov.tr///Genel/icerik/bilgi-edinme
309[+] https://www.msb.gov.tr///Teftis/icerik/alo-ihbar-ve-sikayet-hatti
310--------------------------------------------------
311[!] 29 External links Discovered
312[#] https://www.facebook.com/tcsavunma/
313[#] https://twitter.com/tcsavunma
314[#] https://instagram.com/savunmabakanligi
315[#] https://www.youtube.com/channel/UCXBZBxOu3ZIb0fjHqPuU9tQ
316[#] https://www.facebook.com/tcsavunma/
317[#] http://www.ata.tsk.tr/
318[#] http://www.ata.tsk.tr/
319[#] https://www.msu.edu.tr/
320[#] http://www.mkek.gov.tr/
321[#] https://www.harita.gov.tr/
322[#] http://www.ant.gov.tr/
323[#] http://www.ata.tsk.tr/
324[#] https://www.youtube.com/channel/UCXBZBxOu3ZIb0fjHqPuU9tQ
325[#] https://instagram.com/savunmabakanligi
326[#] https://www.facebook.com/tcsavunma/
327[#] https://twitter.com/tcsavunma
328[#] https://twitter.com/tcsavunma
329[#] https://www.tccb.gov.tr/
330[#] https://www.tbmm.gov.tr
331[#] https://www.turkiye.gov.tr/
332[#] http://www.tsk.tr/
333[#] http://www.kkk.tsk.tr/
334[#] http://www.dzkk.tsk.tr/
335[#] https://www.hvkk.tsk.tr/
336[#] https://www.msu.edu.tr/
337[#] https://twitter.com/tcsavunma
338[#] https://www.facebook.com/tcsavunma/
339[#] https://instagram.com/savunmabakanligi
340[#] https://www.youtube.com/channel/UCXBZBxOu3ZIb0fjHqPuU9tQ
341--------------------------------------------------
342[#] Mapping Subdomain..
343[!] Found 33 Subdomain
344- eposta.msb.gov.tr
345- hgk.msb.gov.tr
346- www.hgk.msb.gov.tr
347- webapp.hgk.msb.gov.tr
348- hgkatlas.hgk.msb.gov.tr
349- hgkgeoportal.hgk.msb.gov.tr
350- mahkeme.hgk.msb.gov.tr
351- oem.hgk.msb.gov.tr
352- trgrav.hgk.msb.gov.tr
353- tudes.hgk.msb.gov.tr
354- hgkegitim.hgk.msb.gov.tr
355- topovt.hgk.msb.gov.tr
356- mdm.hgk.msb.gov.tr
357- asal.msb.gov.tr
358- www.asal.msb.gov.tr
359- personeltemin.msb.gov.tr
360- msbwetiks.msb.gov.tr
361- msb.gov.tr
362- www.msb.gov.tr
363- pertemin.msb.gov.tr
364- ynt.msb.gov.tr
365- sorgula.msb.gov.tr
366- kurumsal.msb.gov.tr
367- stbs.tekbim.msb.gov.tr
368- tekbim.msb.gov.tr
369- www.tekbim.msb.gov.tr
370- mafam.msb.gov.tr
371- mail.hgk.msb.gov.tr
372- mx1.msb.gov.tr
373- mx3.msb.gov.tr
374- ns3.msb.gov.tr
375- ns4.msb.gov.tr
376- dovizle.msb.gov.tr
377--------------------------------------------------
378[!] Done At 2019-10-11 13:17:15.683191
379#######################################################################################################################################
380[i] Scanning Site: https://www.msb.gov.tr
381
382
383
384B A S I C I N F O
385====================
386
387
388[+] Site Title:
389[+] IP address: 82.222.182.112
390[+] Web Server: Could Not Detect
391[+] CMS: Could Not Detect
392[+] Cloudflare: Not Detected
393[+] Robots File: Found
394
395-------------[ contents ]----------------
396User-agent: *
397Disallow: /Account
398Disallow: /MSBAdmin
399Disallow: /Error
400Disallow: /Kullanici
401Allow: /Anasayfa/TumYayin
402-----------[end of contents]-------------
403
404
405
406W H O I S L O O K U P
407========================
408
409 ** Domain Name: msb.gov.tr
410
411** Registrant:
412 Milli Savunma Bakanlığı
413 Milli Savunma Bakanlığı Maliye Dairesi Baş.Obi
414 Şubesi Bakanlıklar-Çankaya 06100
415 Ankara,
416 Türkiye
417 domreg@msb.gov.tr
418 + 90-312-4023695-
419 + 90-312-4254845
420
421
422** Administrative Contact:
423NIC Handle : msb23-metu
424Organization Name : Hidden upon user request
425Address : Hidden upon user request
426Phone : Hidden upon user request
427Fax : Hidden upon user request
428
429
430** Technical Contact:
431NIC Handle : msb23-metu
432Organization Name : Hidden upon user request
433Address : Hidden upon user request
434Phone : Hidden upon user request
435Fax : Hidden upon user request
436
437
438** Billing Contact:
439NIC Handle : msb23-metu
440Organization Name : Hidden upon user request
441Address : Hidden upon user request
442Phone : Hidden upon user request
443Fax : Hidden upon user request
444
445
446** Domain Servers:
447ns3.msb.gov.tr 82.222.182.100
448ns4.msb.gov.tr 82.222.182.111
449
450** Additional Info:
451Created on..............: 1997-Feb-05.
452Expires on..............: 2021-Feb-04.
453
454
455
456
457G E O I P L O O K U P
458=========================
459
460[i] IP Address: 82.222.182.112
461[i] Country: Turkey
462[i] State:
463[i] City:
464[i] Latitude: 41.0214
465[i] Longitude: 28.9948
466
467
468
469
470H T T P H E A D E R S
471=======================
472
473
474[i] HTTP/1.1 302 Found
475[i] Cache-Control: private
476[i] Content-Type: text/html; charset=utf-8
477[i] Location: /
478[i] X-Frame-Options: SAMEORIGIN
479[i] Date: Fri, 11 Oct 2019 17:18:56 GMT
480[i] Connection: close
481[i] Set-Cookie: TS017c5e13=01061992c00a6eb31c94d3c0c51a2c581fad560ad87f29954dbcfa4b902869cd6f718901847595cefad0d3c6e2319756d93d8dfe4f; Path=/; Domain=.www.msb.gov.tr
482[i] HTTP/1.1 302 Found
483[i] Cache-Control: private
484[i] Content-Type: text/html; charset=utf-8
485[i] Location: /
486[i] X-Frame-Options: SAMEORIGIN
487[i] Date: Fri, 11 Oct 2019 17:18:58 GMT
488[i] Connection: close
489[i] Set-Cookie: TS017c5e13=01061992c0ecabfc289ee7673358b891be218c6eafcd310bdbed41b8058bd3eb93395cd4d533d8069b6c3fca7a50924a13695a557d; Path=/; Domain=.www.msb.gov.tr
490[i] HTTP/1.1 302 Found
491[i] Cache-Control: private
492[i] Content-Type: text/html; charset=utf-8
493[i] Location: /
494[i] X-Frame-Options: SAMEORIGIN
495[i] Date: Fri, 11 Oct 2019 17:18:59 GMT
496[i] Connection: close
497[i] Set-Cookie: TS017c5e13=01061992c08794c16ec7da67f719f29fa5a785e6e0b9c9cf46a3f7afb2e43e7381e96b253e35b70b6a50680a6a4ec8a82ffdd77b9d; Path=/; Domain=.www.msb.gov.tr
498[i] HTTP/1.1 302 Found
499[i] Cache-Control: private
500[i] Content-Type: text/html; charset=utf-8
501[i] Location: /
502[i] X-Frame-Options: SAMEORIGIN
503[i] Date: Fri, 11 Oct 2019 17:19:00 GMT
504[i] Connection: close
505[i] Set-Cookie: TS017c5e13=01061992c043a6b4218719ffba2e2bd4c7c6f646c56af346b8e423da36a8d4a362fc16ee30010e9ec99eaacf6cb4aedb4011dd24cb; Path=/; Domain=.www.msb.gov.tr
506[i] HTTP/1.1 302 Found
507[i] Cache-Control: private
508[i] Content-Type: text/html; charset=utf-8
509[i] Location: /
510[i] X-Frame-Options: SAMEORIGIN
511[i] Date: Fri, 11 Oct 2019 17:19:02 GMT
512[i] Connection: close
513[i] Set-Cookie: TS017c5e13=01061992c0e5a8452738a86ffbe3a48f6da19b812efb1118d20611b7af640fb5379c7539d13e23bb78bdd3e1d6a1b638e880ba7e86; Path=/; Domain=.www.msb.gov.tr
514[i] HTTP/1.1 302 Found
515[i] Cache-Control: private
516[i] Content-Type: text/html; charset=utf-8
517[i] Location: /
518[i] X-Frame-Options: SAMEORIGIN
519[i] Date: Fri, 11 Oct 2019 17:19:03 GMT
520[i] Connection: close
521[i] Set-Cookie: TS017c5e13=01061992c002ebcd09052e09d12cd245cdd47351e486e4b3893160a2296a896993a0550eef5431a799888b6b41e56b8cf1239d115a; Path=/; Domain=.www.msb.gov.tr
522[i] HTTP/1.1 302 Found
523[i] Cache-Control: private
524[i] Content-Type: text/html; charset=utf-8
525[i] Location: /
526[i] X-Frame-Options: SAMEORIGIN
527[i] Date: Fri, 11 Oct 2019 17:19:05 GMT
528[i] Connection: close
529[i] Set-Cookie: TS017c5e13=01061992c03d40d839ea8e5695fdd7e58513a466021490cab729e028ca1294137bd7e1b7ec6721a8ff63415b29d264b7d3477a756f; Path=/; Domain=.www.msb.gov.tr
530[i] HTTP/1.1 302 Found
531[i] Cache-Control: private
532[i] Content-Type: text/html; charset=utf-8
533[i] Location: /
534[i] X-Frame-Options: SAMEORIGIN
535[i] Date: Fri, 11 Oct 2019 17:19:07 GMT
536[i] Connection: close
537[i] Set-Cookie: TS017c5e13=01061992c0012c3ebef38f1eeb6500ce32d5e699b728454bdde577ef0fbe7a5024b78d90973b12563389f38abe423632532f487cf7; Path=/; Domain=.www.msb.gov.tr
538[i] HTTP/1.1 302 Found
539[i] Cache-Control: private
540[i] Content-Type: text/html; charset=utf-8
541[i] Location: /
542[i] X-Frame-Options: SAMEORIGIN
543[i] Date: Fri, 11 Oct 2019 17:19:08 GMT
544[i] Connection: close
545[i] Set-Cookie: TS017c5e13=01061992c096d6f19f3cd881d35b65eb9a34fd8c66df748c1db747a9c883c78cb027f4107c687be55eb0fa007896bb494fb6d0bb55; Path=/; Domain=.www.msb.gov.tr
546[i] HTTP/1.1 302 Found
547[i] Cache-Control: private
548[i] Content-Type: text/html; charset=utf-8
549[i] Location: /
550[i] X-Frame-Options: SAMEORIGIN
551[i] Date: Fri, 11 Oct 2019 17:19:11 GMT
552[i] Connection: close
553[i] Set-Cookie: TS017c5e13=01061992c0b54300bbe369465f8fc87b462bd948dbd2b6ef26d8bd240dcc52ab2e37f740dea1174b02c5131402c07fc9139d0892c0; Path=/; Domain=.www.msb.gov.tr
554[i] HTTP/1.1 302 Found
555[i] Cache-Control: private
556[i] Content-Type: text/html; charset=utf-8
557[i] Location: /
558[i] X-Frame-Options: SAMEORIGIN
559[i] Date: Fri, 11 Oct 2019 17:19:13 GMT
560[i] Connection: close
561[i] Set-Cookie: TS017c5e13=01061992c04e4c404562203fbec097bba54204f95fb3b41446663a252e2d24d89bb3fc5bc0f29293b39f45a2bbac014111cf237e0b; Path=/; Domain=.www.msb.gov.tr
562[i] HTTP/1.1 302 Found
563[i] Cache-Control: private
564[i] Content-Type: text/html; charset=utf-8
565[i] Location: /
566[i] X-Frame-Options: SAMEORIGIN
567[i] Date: Fri, 11 Oct 2019 17:19:14 GMT
568[i] Connection: close
569[i] Set-Cookie: TS017c5e13=01061992c0afc73a8cc00330bbb893c1fb4df2c9a1c4cce35e6be09b4d0d7ac02a8ed027562c4344d0ef97e001dabe7f0fe58c0ff4; Path=/; Domain=.www.msb.gov.tr
570[i] HTTP/1.1 302 Found
571[i] Cache-Control: private
572[i] Content-Type: text/html; charset=utf-8
573[i] Location: /
574[i] X-Frame-Options: SAMEORIGIN
575[i] Date: Fri, 11 Oct 2019 17:19:16 GMT
576[i] Connection: close
577[i] Set-Cookie: TS017c5e13=01061992c06b629b481be17375291150b74cea6e42c276b02109a3bbcfa5f27905415d9f997cfbc77e841d8139de3bb1365e50d887; Path=/; Domain=.www.msb.gov.tr
578[i] HTTP/1.1 302 Found
579[i] Cache-Control: private
580[i] Content-Type: text/html; charset=utf-8
581[i] Location: /
582[i] X-Frame-Options: SAMEORIGIN
583[i] Date: Fri, 11 Oct 2019 17:19:18 GMT
584[i] Connection: close
585[i] Set-Cookie: TS017c5e13=01061992c009682047622299e64fa2797995b9a66318839d47e62005c61e8328a1176be65bec5e7a696d825f2ff9e602306deeb951; Path=/; Domain=.www.msb.gov.tr
586[i] HTTP/1.1 302 Found
587[i] Cache-Control: private
588[i] Content-Type: text/html; charset=utf-8
589[i] Location: /
590[i] X-Frame-Options: SAMEORIGIN
591[i] Date: Fri, 11 Oct 2019 17:19:19 GMT
592[i] Connection: close
593[i] Set-Cookie: TS017c5e13=01061992c0a082052d4d63553a776cde142c732ce453da120bdb87e43e4df72b377ac6befdfae959477c9fbc2c37ee16b8406bdff8; Path=/; Domain=.www.msb.gov.tr
594[i] HTTP/1.1 302 Found
595[i] Cache-Control: private
596[i] Content-Type: text/html; charset=utf-8
597[i] Location: /
598[i] X-Frame-Options: SAMEORIGIN
599[i] Date: Fri, 11 Oct 2019 17:19:21 GMT
600[i] Connection: close
601[i] Set-Cookie: TS017c5e13=01061992c0e67c7340e9fbbf13ba3f93736f9f8b28d512f75af6f3cc8feee35aa264e2c4f1550a0fe479864f7a1447ff155f144979; Path=/; Domain=.www.msb.gov.tr
602[i] HTTP/1.1 302 Found
603[i] Cache-Control: private
604[i] Content-Type: text/html; charset=utf-8
605[i] Location: /
606[i] X-Frame-Options: SAMEORIGIN
607[i] Date: Fri, 11 Oct 2019 17:19:23 GMT
608[i] Connection: close
609[i] Set-Cookie: TS017c5e13=01061992c082733a3c46dc5592d0a2ac1f82619181aa5bea6c8958cae0478861f28e205a5eab8979140eadb0fb220a19f45b07d2c7; Path=/; Domain=.www.msb.gov.tr
610[i] HTTP/1.1 302 Found
611[i] Cache-Control: private
612[i] Content-Type: text/html; charset=utf-8
613[i] Location: /
614[i] X-Frame-Options: SAMEORIGIN
615[i] Date: Fri, 11 Oct 2019 17:19:24 GMT
616[i] Connection: close
617[i] Set-Cookie: TS017c5e13=01061992c0f6d961cc40be6f39df4b2ad650dd7b36c301b7a2369a913c1e634d42f2155556886d93dac75152723dd40094fbb8866d; Path=/; Domain=.www.msb.gov.tr
618[i] HTTP/1.1 302 Found
619[i] Cache-Control: private
620[i] Content-Type: text/html; charset=utf-8
621[i] Location: /
622[i] X-Frame-Options: SAMEORIGIN
623[i] Date: Fri, 11 Oct 2019 17:19:26 GMT
624[i] Connection: close
625[i] Set-Cookie: TS017c5e13=01061992c035c7cd7441bc647d93c1694320ba36687de9ab93d04f18526cfec780ab3b1b57c2aa8eeb623eb127b6072cdfb99c41de; Path=/; Domain=.www.msb.gov.tr
626[i] HTTP/1.1 302 Found
627[i] Cache-Control: private
628[i] Content-Type: text/html; charset=utf-8
629[i] Location: /
630[i] X-Frame-Options: SAMEORIGIN
631[i] Date: Fri, 11 Oct 2019 17:19:27 GMT
632[i] Connection: close
633[i] Set-Cookie: TS017c5e13=01061992c0710d6145960171e7b668f0ca72cad46f96cbe774a8bd5de6450bc9dae6edb7a82dd034cbfaa230e71497cb195927565e; Path=/; Domain=.www.msb.gov.tr
634
635
636
637
638D N S L O O K U P
639===================
640
641msb.gov.tr. 3599 IN A 82.222.182.112
642msb.gov.tr. 3599 IN NS ns3.msb.gov.tr.
643msb.gov.tr. 3599 IN NS ns4.msb.gov.tr.
644msb.gov.tr. 21599 IN SOA ns3.msb.gov.tr. hostmaster.msb.gov.tr. 5366 1200 600 1209600 3600
645msb.gov.tr. 3599 IN MX 5 mx1.msb.gov.tr.
646msb.gov.tr. 3599 IN TXT "v=spf1 mx:msb.gov.tr ip4:82.222.182.105 -all"
647
648
649
650
651S U B N E T C A L C U L A T I O N
652====================================
653
654Address = 82.222.182.112
655Network = 82.222.182.112 / 32
656Netmask = 255.255.255.255
657Broadcast = not needed on Point-to-Point links
658Wildcard Mask = 0.0.0.0
659Hosts Bits = 0
660Max. Hosts = 1 (2^0 - 0)
661Host Range = { 82.222.182.112 - 82.222.182.112 }
662
663
664
665N M A P P O R T S C A N
666============================
667
668Starting Nmap 7.70 ( https://nmap.org ) at 2019-10-11 17:19 UTC
669Nmap scan report for msb.gov.tr (82.222.182.112)
670Host is up (0.13s latency).
671rDNS record for 82.222.182.112: host-82-222-182-112.reverse.superonline.net
672
673PORT STATE SERVICE
67421/tcp filtered ftp
67522/tcp filtered ssh
67623/tcp filtered telnet
67780/tcp open http
678110/tcp filtered pop3
679143/tcp filtered imap
680443/tcp open https
6813389/tcp filtered ms-wbt-server
682
683Nmap done: 1 IP address (1 host up) scanned in 2.65 seconds
684
685
686
687S U B - D O M A I N F I N D E R
688==================================
689
690
691[i] Total Subdomains Found : 32
692
693[+] Subdomain: mx1.msb.gov.tr
694[-] IP: 82.222.182.105
695
696[+] Subdomain: ns3.msb.gov.tr
697[-] IP: 82.222.182.100
698
699[+] Subdomain: mx3.msb.gov.tr
700[-] IP: 82.222.182.106
701
702[+] Subdomain: ns4.msb.gov.tr
703[-] IP: 82.222.182.111
704
705[+] Subdomain: sorgula.msb.gov.tr
706[-] IP: 82.222.182.126
707
708[+] Subdomain: eposta.msb.gov.tr
709[-] IP: 82.222.182.8
710
711[+] Subdomain: dovizle.msb.gov.tr
712[-] IP: 144.122.201.174
713
714[+] Subdomain: hgk.msb.gov.tr
715[-] IP: 213.74.130.12
716
717[+] Subdomain: mahkeme.hgk.msb.gov.tr
718[-] IP: 213.74.130.17
719
720[+] Subdomain: hgkgeoportal.hgk.msb.gov.tr
721[-] IP: 213.74.130.15
722
723[+] Subdomain: mail.hgk.msb.gov.tr
724[-] IP: 213.74.130.10
725
726[+] Subdomain: mdm.hgk.msb.gov.tr
727[-] IP: 213.74.130.62
728
729[+] Subdomain: oem.hgk.msb.gov.tr
730[-] IP: 213.74.130.29
731
732[+] Subdomain: hgkegitim.hgk.msb.gov.tr
733[-] IP: 213.74.130.60
734
735[+] Subdomain: webapp.hgk.msb.gov.tr
736[-] IP: 213.74.130.13
737
738[+] Subdomain: hgkatlas.hgk.msb.gov.tr
739[-] IP: 213.74.130.14
740
741[+] Subdomain: tudes.hgk.msb.gov.tr
742[-] IP: 213.74.130.52
743
744[+] Subdomain: topovt.hgk.msb.gov.tr
745[-] IP: 213.74.130.61
746
747[+] Subdomain: trgrav.hgk.msb.gov.tr
748[-] IP: 213.74.130.50
749
750[+] Subdomain: www.hgk.msb.gov.tr
751[-] IP: 213.74.130.12
752
753[+] Subdomain: asal.msb.gov.tr
754[-] IP: 82.222.182.103
755
756[+] Subdomain: www.asal.msb.gov.tr
757[-] IP: 82.222.182.103
758
759[+] Subdomain: kurumsal.msb.gov.tr
760[-] IP: 82.222.182.126
761
762[+] Subdomain: mafam.msb.gov.tr
763[-] IP: 82.222.182.99
764
765[+] Subdomain: tekbim.msb.gov.tr
766[-] IP: 82.222.182.98
767
768[+] Subdomain: stbs.tekbim.msb.gov.tr
769[-] IP: 82.222.182.41
770
771[+] Subdomain: www.tekbim.msb.gov.tr
772[-] IP: 82.222.182.98
773
774[+] Subdomain: personeltemin.msb.gov.tr
775[-] IP: 82.222.182.104
776
777[+] Subdomain: pertemin.msb.gov.tr
778[-] IP: 82.222.182.115
779
780[+] Subdomain: msbwetiks.msb.gov.tr
781[-] IP: 82.222.182.110
782
783[+] Subdomain: ynt.msb.gov.tr
784[-] IP: 82.222.182.117
785
786[+] Subdomain: www.msb.gov.tr
787[-] IP: 82.222.182.112
788######################################################################################################################################
789[INFO] ------TARGET info------
790[*] TARGET: https://www.msb.gov.tr/
791[*] TARGET IP: 82.222.182.112
792[INFO] NO load balancer detected for www.msb.gov.tr...
793[*] DNS servers: ns3.msb.gov.tr.
794[*] TARGET server: BigIP
795[*] CC: TR
796[*] Country: Turkey
797[*] RegionCode: 06
798[*] RegionName: Ankara
799[*] City: Ankara
800[*] ASN: AS34984
801[*] BGP_PREFIX: 82.222.182.0/24
802[*] ISP: TELLCOM-AS TELLCOM ILETISIM HIZMETLERI A.S., TR
803[INFO] SSL/HTTPS certificate detected
804[*] Issuer: issuer=C = BE, O = GlobalSign nv-sa, CN = GlobalSign Organization Validation CA - SHA256 - G2
805[*] Subject: subject=C = TR, ST = ANKARA, L = BAKANLIKLAR, O = MILLI SAVUNMA BAKANLIGI, CN = *.msb.gov.tr
806[INFO] DNS enumeration:
807[*] mx3.msb.gov.tr 82.222.182.106
808[*] ns3.msb.gov.tr 82.222.182.100
809[INFO] Possible abuse mails are:
810[*] abuse@msb.gov.tr
811[*] abuse@superonline.com
812[*] abuse@www.msb.gov.tr
813[INFO] NO PAC (Proxy Auto Configuration) file FOUND
814[ALERT] robots.txt file FOUND in http://www.msb.gov.tr/robots.txt
815[INFO] Checking for HTTP status codes recursively from http://www.msb.gov.tr/robots.txt
816[INFO] Status code Folders
817[*] 200 http://www.msb.gov.tr/Anasayfa/TumYayin
818[INFO] Starting FUZZing in http://www.msb.gov.tr/FUzZzZzZzZz...
819[INFO] Status code Folders
820[*] 200 http://www.msb.gov.tr/index
821[*] 200 http://www.msb.gov.tr/images
822[*] 200 http://www.msb.gov.tr/download
823[*] 200 http://www.msb.gov.tr/2006
824[*] 200 http://www.msb.gov.tr/news
825[*] 200 http://www.msb.gov.tr/crack
826[*] 200 http://www.msb.gov.tr/serial
827[*] 200 http://www.msb.gov.tr/warez
828[*] 200 http://www.msb.gov.tr/full
829[*] 200 http://www.msb.gov.tr/12
830[ALERT] Look in the source code. It may contain passwords
831
832Recherche 82.222.182.112
833Connexion HTTP à 82.222.182.112
834Envoi de la requête HTTP.
835Requête HTTP envoyée. Attente de réponse.
836HTTP/1.0 302 Moved Temporarily
837Transfert de données terminé
838HTTP/1.0 302 Moved Temporarily
839Utilisation de https://82.222.182.112/
840Recherche 82.222.182.112
841Connexion HTTPS à 82.222.182.112
842
843lynx : accès impossible au fichier de départ http://82.222.182.112/
844[INFO] Links found from https://www.msb.gov.tr/ http://82.222.182.112/:
845[INFO] GOOGLE has 42,500,000 results (0.23 seconds) about http://www.msb.gov.tr/
846[INFO] BING shows 82.222.182.112 is shared with 19 hosts/vhosts
847[INFO] Shodan detected the following opened ports on 82.222.182.112:
848[*] 443
849[*] 80
850[INFO] ------VirusTotal SECTION------
851[INFO] VirusTotal passive DNS only stores address records. The following domains resolved to the given IP address:
852[INFO] Latest URLs hosted in this IP address detected by at least one URL scanner or malicious URL dataset:
853[INFO] Latest files that are not detected by any antivirus solution and were downloaded by VirusTotal from the IP address provided:
854[INFO] ------Alexa Rank SECTION------
855[INFO] Percent of Visitors Rank in Country:
856[INFO] Percent of Search Traffic:
857[INFO] Percent of Unique Visits:
858[INFO] Total Sites Linking In:
859[*] Total Sites
860[INFO] Useful links related to www.msb.gov.tr - 82.222.182.112:
861[*] https://www.virustotal.com/pt/ip-address/82.222.182.112/information/
862[*] https://www.hybrid-analysis.com/search?host=82.222.182.112
863[*] https://www.shodan.io/host/82.222.182.112
864[*] https://www.senderbase.org/lookup/?search_string=82.222.182.112
865[*] https://www.alienvault.com/open-threat-exchange/ip/82.222.182.112
866[*] http://pastebin.com/search?q=82.222.182.112
867[*] http://urlquery.net/search.php?q=82.222.182.112
868[*] http://www.alexa.com/siteinfo/www.msb.gov.tr
869[*] http://www.google.com/safebrowsing/diagnostic?site=www.msb.gov.tr
870[*] https://censys.io/ipv4/82.222.182.112
871[*] https://www.abuseipdb.com/check/82.222.182.112
872[*] https://urlscan.io/search/#82.222.182.112
873[*] https://github.com/search?q=82.222.182.112&type=Code
874[INFO] Useful links related to AS34984 - 82.222.182.0/24:
875[*] http://www.google.com/safebrowsing/diagnostic?site=AS:34984
876[*] https://www.senderbase.org/lookup/?search_string=82.222.182.0/24
877[*] http://bgp.he.net/AS34984
878[*] https://stat.ripe.net/AS34984
879[INFO] Date: 11/10/19 | Time: 13:18:23
880[INFO] Total time: 1 minute(s) and 30 second(s)
881#######################################################################################################################################
882Parsero scan report for www.msb.gov.tr
883http://www.msb.gov.tr/MSBAdmin 302 Moved Temporarily
884http://www.msb.gov.tr/Kullanici 302 Moved Temporarily
885http://www.msb.gov.tr/Account 302 Moved Temporarily
886http://www.msb.gov.tr/Error 302 Moved Temporarily
887#######################################################################################################################################
888
889
890
891 AVAILABLE PLUGINS
892 -----------------
893
894 SessionRenegotiationPlugin
895 EarlyDataPlugin
896 CertificateInfoPlugin
897 OpenSslCipherSuitesPlugin
898 HeartbleedPlugin
899 RobotPlugin
900 HttpHeadersPlugin
901 SessionResumptionPlugin
902 OpenSslCcsInjectionPlugin
903 CompressionPlugin
904 FallbackScsvPlugin
905
906
907
908 CHECKING HOST(S) AVAILABILITY
909 -----------------------------
910
911 82.222.182.112:443 => 82.222.182.112
912
913
914
915
916 SCAN RESULTS FOR 82.222.182.112:443 - 82.222.182.112
917 ----------------------------------------------------
918
919 * Downgrade Attacks:
920Unhandled exception while running --fallback:
921timeout - timed out
922
923 * SSLV2 Cipher Suites:
924 Server rejected all cipher suites.
925 Undefined - An unexpected error happened:
926 SSL_CK_RC4_128_WITH_MD5 timeout - timed out
927 SSL_CK_RC4_128_EXPORT40_WITH_MD5 timeout - timed out
928 SSL_CK_RC2_128_CBC_WITH_MD5 timeout - timed out
929 SSL_CK_RC2_128_CBC_EXPORT40_WITH_MD5 timeout - timed out
930 SSL_CK_IDEA_128_CBC_WITH_MD5 timeout - timed out
931 SSL_CK_DES_64_CBC_WITH_MD5 timeout - timed out
932 SSL_CK_DES_192_EDE3_CBC_WITH_MD5 timeout - timed out
933
934 * Deflate Compression:
935Unhandled exception while running --compression:
936timeout - timed out
937
938 * Session Renegotiation:
939Unhandled exception while running --reneg:
940timeout - timed out
941
942 * ROBOT Attack:
943Unhandled exception while running --robot:
944timeout - timed out
945
946 * TLSV1_3 Cipher Suites:
947 Server rejected all cipher suites.
948 Undefined - An unexpected error happened:
949 TLS_CHACHA20_POLY1305_SHA256 timeout - timed out
950 TLS_AES_256_GCM_SHA384 timeout - timed out
951 TLS_AES_128_GCM_SHA256 timeout - timed out
952 TLS_AES_128_CCM_SHA256 timeout - timed out
953 TLS_AES_128_CCM_8_SHA256 timeout - timed out
954
955 * TLS 1.2 Session Resumption Support:
956 With Session IDs: ERROR (0 successful, 0 failed, 5 errors, 5 total attempts).
957 ERROR #0: timeout - timed out
958 ERROR #1: timeout - timed out
959 ERROR #2: timeout - timed out
960 ERROR #3: timeout - timed out
961 ERROR #4: timeout - timed out
962 With TLS Tickets: ERROR: timeout - timed out
963
964 * OpenSSL Heartbleed:
965 OK - Not vulnerable to Heartbleed
966
967 * TLSV1_1 Cipher Suites:
968 Server rejected all cipher suites.
969 Undefined - An unexpected error happened:
970 TLS_RSA_WITH_SEED_CBC_SHA timeout - timed out
971 TLS_RSA_WITH_RC4_128_SHA timeout - timed out
972 TLS_RSA_WITH_RC4_128_MD5 timeout - timed out
973 TLS_RSA_WITH_NULL_SHA256 timeout - timed out
974 TLS_RSA_WITH_NULL_SHA timeout - timed out
975 TLS_RSA_WITH_NULL_MD5 timeout - timed out
976 TLS_RSA_WITH_IDEA_CBC_SHA timeout - timed out
977 TLS_RSA_WITH_DES_CBC_SHA timeout - timed out
978 TLS_RSA_WITH_CAMELLIA_256_CBC_SHA timeout - timed out
979 TLS_RSA_WITH_CAMELLIA_128_CBC_SHA timeout - timed out
980 TLS_RSA_WITH_AES_256_CBC_SHA timeout - timed out
981 TLS_RSA_WITH_AES_128_GCM_SHA256 timeout - timed out
982 TLS_RSA_WITH_AES_128_CBC_SHA256 timeout - timed out
983 TLS_RSA_WITH_AES_128_CBC_SHA timeout - timed out
984 TLS_RSA_WITH_3DES_EDE_CBC_SHA timeout - timed out
985 TLS_RSA_EXPORT_WITH_RC4_40_MD5 timeout - timed out
986 TLS_RSA_EXPORT_WITH_RC2_CBC_40_MD5 timeout - timed out
987 TLS_RSA_EXPORT_WITH_DES40_CBC_SHA timeout - timed out
988 TLS_ECDH_anon_WITH_RC4_128_SHA timeout - timed out
989 TLS_ECDH_anon_WITH_NULL_SHA timeout - timed out
990 TLS_ECDH_anon_WITH_AES_256_CBC_SHA timeout - timed out
991 TLS_ECDH_anon_WITH_AES_128_CBC_SHA timeout - timed out
992 TLS_ECDH_anon_WITH_3DES_EDE_CBC_SHA timeout - timed out
993 TLS_ECDH_RSA_WITH_RC4_128_SHA timeout - timed out
994 TLS_ECDH_RSA_WITH_NULL_SHA timeout - timed out
995 TLS_ECDH_RSA_WITH_AES_256_CBC_SHA timeout - timed out
996 TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256 timeout - timed out
997 TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256 timeout - timed out
998 TLS_ECDH_RSA_WITH_AES_128_CBC_SHA timeout - timed out
999 TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA timeout - timed out
1000 TLS_ECDH_ECDSA_WITH_RC4_128_SHA timeout - timed out
1001 TLS_ECDH_ECDSA_WITH_NULL_SHA timeout - timed out
1002 TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA timeout - timed out
1003 TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256 timeout - timed out
1004 TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256 timeout - timed out
1005 TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA timeout - timed out
1006 TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA timeout - timed out
1007 TLS_ECDHE_RSA_WITH_RC4_128_SHA timeout - timed out
1008 TLS_ECDHE_RSA_WITH_NULL_SHA timeout - timed out
1009 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 timeout - timed out
1010 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 timeout - timed out
1011 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA timeout - timed out
1012 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 timeout - timed out
1013 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 timeout - timed out
1014 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA timeout - timed out
1015 TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA timeout - timed out
1016 TLS_ECDHE_ECDSA_WITH_RC4_128_SHA timeout - timed out
1017 TLS_ECDHE_ECDSA_WITH_NULL_SHA timeout - timed out
1018 TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 timeout - timed out
1019 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 timeout - timed out
1020 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA timeout - timed out
1021 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 timeout - timed out
1022 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 timeout - timed out
1023 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA timeout - timed out
1024 TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA timeout - timed out
1025 TLS_DH_anon_WITH_SEED_CBC_SHA timeout - timed out
1026 TLS_DH_anon_WITH_RC4_128_MD5 timeout - timed out
1027 TLS_DH_anon_WITH_DES_CBC_SHA timeout - timed out
1028 TLS_DH_anon_WITH_CAMELLIA_128_CBC_SHA timeout - timed out
1029 TLS_DH_anon_WITH_AES_256_CBC_SHA timeout - timed out
1030 TLS_DH_anon_WITH_AES_128_GCM_SHA256 timeout - timed out
1031 TLS_DH_anon_WITH_AES_128_CBC_SHA256 timeout - timed out
1032 TLS_DH_anon_WITH_AES_128_CBC_SHA timeout - timed out
1033 TLS_DH_anon_WITH_3DES_EDE_CBC_SHA timeout - timed out
1034 TLS_DH_anon_EXPORT_WITH_RC4_40_MD5 timeout - timed out
1035 TLS_DH_anon_EXPORT_WITH_DES40_CBC_SHA timeout - timed out
1036 TLS_DH_RSA_WITH_SEED_CBC_SHA timeout - timed out
1037 TLS_DH_RSA_WITH_DES_CBC_SHA timeout - timed out
1038 TLS_DH_RSA_WITH_CAMELLIA_256_CBC_SHA timeout - timed out
1039 TLS_DH_RSA_WITH_CAMELLIA_128_CBC_SHA timeout - timed out
1040 TLS_DH_RSA_WITH_AES_256_GCM_SHA384 timeout - timed out
1041 TLS_DH_RSA_WITH_AES_256_CBC_SHA256 timeout - timed out
1042 TLS_DH_RSA_WITH_AES_256_CBC_SHA timeout - timed out
1043 TLS_DH_RSA_WITH_AES_128_GCM_SHA256 timeout - timed out
1044 TLS_DH_RSA_WITH_AES_128_CBC_SHA256 timeout - timed out
1045 TLS_DH_RSA_WITH_AES_128_CBC_SHA timeout - timed out
1046 TLS_DH_RSA_WITH_3DES_EDE_CBC_SHA timeout - timed out
1047 TLS_DH_DSS_WITH_SEED_CBC_SHA timeout - timed out
1048 TLS_DH_DSS_WITH_DES_CBC_SHA timeout - timed out
1049 TLS_DH_DSS_WITH_CAMELLIA_256_CBC_SHA timeout - timed out
1050 TLS_DH_DSS_WITH_CAMELLIA_128_CBC_SHA timeout - timed out
1051 TLS_DH_DSS_WITH_AES_256_GCM_SHA384 timeout - timed out
1052 TLS_DH_DSS_WITH_AES_256_CBC_SHA256 timeout - timed out
1053 TLS_DH_DSS_WITH_AES_256_CBC_SHA timeout - timed out
1054 TLS_DH_DSS_WITH_AES_128_GCM_SHA256 timeout - timed out
1055 TLS_DH_DSS_WITH_AES_128_CBC_SHA256 timeout - timed out
1056 TLS_DH_DSS_WITH_AES_128_CBC_SHA timeout - timed out
1057 TLS_DH_DSS_WITH_3DES_EDE_CBC_SHA timeout - timed out
1058 TLS_DHE_RSA_WITH_SEED_CBC_SHA timeout - timed out
1059 TLS_DHE_RSA_WITH_DES_CBC_SHA timeout - timed out
1060 TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA timeout - timed out
1061 TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA timeout - timed out
1062 TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 timeout - timed out
1063 TLS_DHE_RSA_WITH_AES_256_CBC_SHA256 timeout - timed out
1064 TLS_DHE_RSA_WITH_AES_256_CBC_SHA timeout - timed out
1065 TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 timeout - timed out
1066 TLS_DHE_RSA_WITH_AES_128_CBC_SHA256 timeout - timed out
1067 TLS_DHE_RSA_WITH_AES_128_CBC_SHA timeout - timed out
1068 TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA timeout - timed out
1069 TLS_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA timeout - timed out
1070 TLS_DHE_DSS_WITH_SEED_CBC_SHA timeout - timed out
1071 TLS_DHE_DSS_WITH_DES_CBC_SHA timeout - timed out
1072 TLS_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA timeout - timed out
1073 TLS_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA timeout - timed out
1074 TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 timeout - timed out
1075 TLS_DHE_DSS_WITH_AES_256_CBC_SHA256 timeout - timed out
1076 TLS_DHE_DSS_WITH_AES_256_CBC_SHA timeout - timed out
1077 TLS_DHE_DSS_WITH_AES_128_GCM_SHA256 timeout - timed out
1078 TLS_DHE_DSS_WITH_AES_128_CBC_SHA256 timeout - timed out
1079 TLS_DHE_DSS_WITH_AES_128_CBC_SHA timeout - timed out
1080 TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA timeout - timed out
1081 TLS_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA timeout - timed out
1082
1083 * Certificate Information:
1084Unhandled exception while running --certinfo:
1085timeout - timed out
1086
1087 * TLSV1 Cipher Suites:
1088 Server rejected all cipher suites.
1089 Undefined - An unexpected error happened:
1090 TLS_RSA_WITH_SEED_CBC_SHA timeout - timed out
1091 TLS_RSA_WITH_RC4_128_SHA timeout - timed out
1092 TLS_RSA_WITH_RC4_128_MD5 timeout - timed out
1093 TLS_RSA_WITH_NULL_SHA256 timeout - timed out
1094 TLS_RSA_WITH_NULL_SHA timeout - timed out
1095 TLS_RSA_WITH_NULL_MD5 timeout - timed out
1096 TLS_RSA_WITH_IDEA_CBC_SHA timeout - timed out
1097 TLS_RSA_WITH_DES_CBC_SHA timeout - timed out
1098 TLS_RSA_WITH_CAMELLIA_256_CBC_SHA timeout - timed out
1099 TLS_RSA_WITH_CAMELLIA_128_CBC_SHA timeout - timed out
1100 TLS_RSA_WITH_AES_256_GCM_SHA384 timeout - timed out
1101 TLS_RSA_WITH_AES_256_CBC_SHA256 timeout - timed out
1102 TLS_RSA_WITH_AES_256_CBC_SHA timeout - timed out
1103 TLS_RSA_WITH_AES_128_GCM_SHA256 timeout - timed out
1104 TLS_RSA_WITH_AES_128_CBC_SHA256 timeout - timed out
1105 TLS_RSA_WITH_AES_128_CBC_SHA timeout - timed out
1106 TLS_RSA_WITH_3DES_EDE_CBC_SHA timeout - timed out
1107 TLS_RSA_EXPORT_WITH_RC4_40_MD5 timeout - timed out
1108 TLS_RSA_EXPORT_WITH_RC2_CBC_40_MD5 timeout - timed out
1109 TLS_RSA_EXPORT_WITH_DES40_CBC_SHA timeout - timed out
1110 TLS_ECDH_anon_WITH_RC4_128_SHA timeout - timed out
1111 TLS_ECDH_anon_WITH_NULL_SHA timeout - timed out
1112 TLS_ECDH_anon_WITH_AES_256_CBC_SHA timeout - timed out
1113 TLS_ECDH_anon_WITH_AES_128_CBC_SHA timeout - timed out
1114 TLS_ECDH_anon_WITH_3DES_EDE_CBC_SHA timeout - timed out
1115 TLS_ECDH_RSA_WITH_RC4_128_SHA timeout - timed out
1116 TLS_ECDH_RSA_WITH_NULL_SHA timeout - timed out
1117 TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384 timeout - timed out
1118 TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384 timeout - timed out
1119 TLS_ECDH_RSA_WITH_AES_256_CBC_SHA timeout - timed out
1120 TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256 timeout - timed out
1121 TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256 timeout - timed out
1122 TLS_ECDH_RSA_WITH_AES_128_CBC_SHA timeout - timed out
1123 TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA timeout - timed out
1124 TLS_ECDH_ECDSA_WITH_RC4_128_SHA timeout - timed out
1125 TLS_ECDH_ECDSA_WITH_NULL_SHA timeout - timed out
1126 TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384 timeout - timed out
1127 TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384 timeout - timed out
1128 TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA timeout - timed out
1129 TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256 timeout - timed out
1130 TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256 timeout - timed out
1131 TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA timeout - timed out
1132 TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA timeout - timed out
1133 TLS_ECDHE_RSA_WITH_RC4_128_SHA timeout - timed out
1134 TLS_ECDHE_RSA_WITH_NULL_SHA timeout - timed out
1135 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 timeout - timed out
1136 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 timeout - timed out
1137 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA timeout - timed out
1138 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 timeout - timed out
1139 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 timeout - timed out
1140 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA timeout - timed out
1141 TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA timeout - timed out
1142 TLS_ECDHE_ECDSA_WITH_RC4_128_SHA timeout - timed out
1143 TLS_ECDHE_ECDSA_WITH_NULL_SHA timeout - timed out
1144 TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 timeout - timed out
1145 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 timeout - timed out
1146 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA timeout - timed out
1147 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 timeout - timed out
1148 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 timeout - timed out
1149 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA timeout - timed out
1150 TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA timeout - timed out
1151 TLS_DH_anon_WITH_SEED_CBC_SHA timeout - timed out
1152 TLS_DH_anon_WITH_RC4_128_MD5 timeout - timed out
1153 TLS_DH_anon_WITH_DES_CBC_SHA timeout - timed out
1154 TLS_DH_anon_WITH_CAMELLIA_256_CBC_SHA timeout - timed out
1155 TLS_DH_anon_WITH_CAMELLIA_128_CBC_SHA timeout - timed out
1156 TLS_DH_anon_WITH_AES_256_GCM_SHA384 timeout - timed out
1157 TLS_DH_anon_WITH_AES_256_CBC_SHA256 timeout - timed out
1158 TLS_DH_anon_WITH_AES_256_CBC_SHA timeout - timed out
1159 TLS_DH_anon_WITH_AES_128_GCM_SHA256 timeout - timed out
1160 TLS_DH_anon_WITH_AES_128_CBC_SHA256 timeout - timed out
1161 TLS_DH_anon_WITH_AES_128_CBC_SHA timeout - timed out
1162 TLS_DH_anon_WITH_3DES_EDE_CBC_SHA timeout - timed out
1163 TLS_DH_anon_EXPORT_WITH_RC4_40_MD5 timeout - timed out
1164 TLS_DH_anon_EXPORT_WITH_DES40_CBC_SHA timeout - timed out
1165 TLS_DH_RSA_WITH_SEED_CBC_SHA timeout - timed out
1166 TLS_DH_RSA_WITH_DES_CBC_SHA timeout - timed out
1167 TLS_DH_RSA_WITH_CAMELLIA_256_CBC_SHA timeout - timed out
1168 TLS_DH_RSA_WITH_CAMELLIA_128_CBC_SHA timeout - timed out
1169 TLS_DH_RSA_WITH_AES_256_GCM_SHA384 timeout - timed out
1170 TLS_DH_RSA_WITH_AES_256_CBC_SHA256 timeout - timed out
1171 TLS_DH_RSA_WITH_AES_256_CBC_SHA timeout - timed out
1172 TLS_DH_RSA_WITH_AES_128_GCM_SHA256 timeout - timed out
1173 TLS_DH_RSA_WITH_AES_128_CBC_SHA256 timeout - timed out
1174 TLS_DH_RSA_WITH_AES_128_CBC_SHA timeout - timed out
1175 TLS_DH_RSA_WITH_3DES_EDE_CBC_SHA timeout - timed out
1176 TLS_DH_DSS_WITH_SEED_CBC_SHA timeout - timed out
1177 TLS_DH_DSS_WITH_DES_CBC_SHA timeout - timed out
1178 TLS_DH_DSS_WITH_CAMELLIA_256_CBC_SHA timeout - timed out
1179 TLS_DH_DSS_WITH_CAMELLIA_128_CBC_SHA timeout - timed out
1180 TLS_DH_DSS_WITH_AES_256_GCM_SHA384 timeout - timed out
1181 TLS_DH_DSS_WITH_AES_256_CBC_SHA256 timeout - timed out
1182 TLS_DH_DSS_WITH_AES_256_CBC_SHA timeout - timed out
1183 TLS_DH_DSS_WITH_AES_128_GCM_SHA256 timeout - timed out
1184 TLS_DH_DSS_WITH_AES_128_CBC_SHA256 timeout - timed out
1185 TLS_DH_DSS_WITH_AES_128_CBC_SHA timeout - timed out
1186 TLS_DH_DSS_WITH_3DES_EDE_CBC_SHA timeout - timed out
1187 TLS_DHE_RSA_WITH_SEED_CBC_SHA timeout - timed out
1188 TLS_DHE_RSA_WITH_DES_CBC_SHA timeout - timed out
1189 TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA timeout - timed out
1190 TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA timeout - timed out
1191 TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 timeout - timed out
1192 TLS_DHE_RSA_WITH_AES_256_CBC_SHA256 timeout - timed out
1193 TLS_DHE_RSA_WITH_AES_256_CBC_SHA timeout - timed out
1194 TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 timeout - timed out
1195 TLS_DHE_RSA_WITH_AES_128_CBC_SHA256 timeout - timed out
1196 TLS_DHE_RSA_WITH_AES_128_CBC_SHA timeout - timed out
1197 TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA timeout - timed out
1198 TLS_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA timeout - timed out
1199 TLS_DHE_DSS_WITH_SEED_CBC_SHA timeout - timed out
1200 TLS_DHE_DSS_WITH_DES_CBC_SHA timeout - timed out
1201 TLS_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA timeout - timed out
1202 TLS_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA timeout - timed out
1203 TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 timeout - timed out
1204 TLS_DHE_DSS_WITH_AES_256_CBC_SHA256 timeout - timed out
1205 TLS_DHE_DSS_WITH_AES_256_CBC_SHA timeout - timed out
1206 TLS_DHE_DSS_WITH_AES_128_GCM_SHA256 timeout - timed out
1207 TLS_DHE_DSS_WITH_AES_128_CBC_SHA256 timeout - timed out
1208 TLS_DHE_DSS_WITH_AES_128_CBC_SHA timeout - timed out
1209 TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA timeout - timed out
1210 TLS_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA timeout - timed out
1211
1212 * TLSV1_2 Cipher Suites:
1213 Server rejected all cipher suites.
1214 Undefined - An unexpected error happened:
1215 TLS_RSA_WITH_SEED_CBC_SHA timeout - timed out
1216 TLS_RSA_WITH_RC4_128_SHA timeout - timed out
1217 TLS_RSA_WITH_RC4_128_MD5 timeout - timed out
1218 TLS_RSA_WITH_NULL_SHA256 timeout - timed out
1219 TLS_RSA_WITH_NULL_MD5 timeout - timed out
1220 TLS_RSA_WITH_IDEA_CBC_SHA timeout - timed out
1221 TLS_RSA_WITH_DES_CBC_SHA timeout - timed out
1222 TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256 timeout - timed out
1223 TLS_RSA_WITH_CAMELLIA_256_CBC_SHA timeout - timed out
1224 TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256 timeout - timed out
1225 TLS_RSA_WITH_CAMELLIA_128_CBC_SHA timeout - timed out
1226 TLS_RSA_WITH_AES_256_GCM_SHA384 timeout - timed out
1227 TLS_RSA_WITH_AES_256_CBC_SHA256 timeout - timed out
1228 TLS_RSA_WITH_AES_256_CBC_SHA timeout - timed out
1229 TLS_RSA_WITH_AES_128_GCM_SHA256 timeout - timed out
1230 TLS_RSA_WITH_AES_128_CBC_SHA256 timeout - timed out
1231 TLS_RSA_WITH_AES_128_CBC_SHA timeout - timed out
1232 TLS_RSA_WITH_3DES_EDE_CBC_SHA timeout - timed out
1233 TLS_RSA_EXPORT_WITH_RC4_40_MD5 timeout - timed out
1234 TLS_RSA_EXPORT_WITH_RC2_CBC_40_MD5 timeout - timed out
1235 TLS_RSA_EXPORT_WITH_DES40_CBC_SHA timeout - timed out
1236 TLS_ECDH_anon_WITH_RC4_128_SHA timeout - timed out
1237 TLS_ECDH_anon_WITH_NULL_SHA timeout - timed out
1238 TLS_ECDH_anon_WITH_AES_256_CBC_SHA timeout - timed out
1239 TLS_ECDH_anon_WITH_AES_128_CBC_SHA timeout - timed out
1240 TLS_ECDH_anon_WITH_3DES_EDE_CBC_SHA timeout - timed out
1241 TLS_ECDH_RSA_WITH_RC4_128_SHA timeout - timed out
1242 TLS_ECDH_RSA_WITH_NULL_SHA timeout - timed out
1243 TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384 timeout - timed out
1244 TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384 timeout - timed out
1245 TLS_ECDH_RSA_WITH_AES_256_CBC_SHA timeout - timed out
1246 TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256 timeout - timed out
1247 TLS_ECDH_RSA_WITH_AES_128_CBC_SHA timeout - timed out
1248 TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA timeout - timed out
1249 TLS_ECDH_ECDSA_WITH_RC4_128_SHA timeout - timed out
1250 TLS_ECDH_ECDSA_WITH_NULL_SHA timeout - timed out
1251 TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384 timeout - timed out
1252 TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA timeout - timed out
1253 TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256 timeout - timed out
1254 TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256 timeout - timed out
1255 TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA timeout - timed out
1256 TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA timeout - timed out
1257 TLS_ECDHE_RSA_WITH_RC4_128_SHA timeout - timed out
1258 TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384 timeout - timed out
1259 TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256 timeout - timed out
1260 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 timeout - timed out
1261 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 timeout - timed out
1262 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA timeout - timed out
1263 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 timeout - timed out
1264 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 timeout - timed out
1265 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA timeout - timed out
1266 TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA timeout - timed out
1267 TLS_ECDHE_ECDSA_WITH_RC4_128_SHA timeout - timed out
1268 TLS_ECDHE_ECDSA_WITH_NULL_SHA timeout - timed out
1269 TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 timeout - timed out
1270 TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_CBC_SHA384 timeout - timed out
1271 TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_CBC_SHA256 timeout - timed out
1272 TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 timeout - timed out
1273 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 timeout - timed out
1274 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA timeout - timed out
1275 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 timeout - timed out
1276 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 timeout - timed out
1277 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA timeout - timed out
1278 TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA timeout - timed out
1279 TLS_DH_anon_WITH_SEED_CBC_SHA timeout - timed out
1280 TLS_DH_anon_WITH_RC4_128_MD5 timeout - timed out
1281 TLS_DH_anon_WITH_DES_CBC_SHA timeout - timed out
1282 TLS_DH_anon_WITH_CAMELLIA_256_CBC_SHA timeout - timed out
1283 TLS_DH_anon_WITH_CAMELLIA_128_CBC_SHA256 timeout - timed out
1284 TLS_DH_anon_WITH_CAMELLIA_128_CBC_SHA timeout - timed out
1285 TLS_DH_anon_WITH_AES_256_GCM_SHA384 timeout - timed out
1286 TLS_DH_anon_WITH_AES_256_CBC_SHA256 timeout - timed out
1287 TLS_DH_anon_WITH_AES_256_CBC_SHA timeout - timed out
1288 TLS_DH_anon_WITH_AES_128_GCM_SHA256 timeout - timed out
1289 TLS_DH_anon_WITH_AES_128_CBC_SHA256 timeout - timed out
1290 TLS_DH_anon_WITH_AES_128_CBC_SHA timeout - timed out
1291 TLS_DH_anon_WITH_3DES_EDE_CBC_SHA timeout - timed out
1292 TLS_DH_anon_EXPORT_WITH_RC4_40_MD5 timeout - timed out
1293 TLS_DH_anon_EXPORT_WITH_DES40_CBC_SHA timeout - timed out
1294 TLS_DH_RSA_WITH_SEED_CBC_SHA timeout - timed out
1295 TLS_DH_RSA_WITH_DES_CBC_SHA timeout - timed out
1296 TLS_DH_RSA_WITH_CAMELLIA_256_CBC_SHA timeout - timed out
1297 TLS_DH_RSA_WITH_CAMELLIA_128_CBC_SHA timeout - timed out
1298 TLS_DH_RSA_WITH_AES_256_GCM_SHA384 timeout - timed out
1299 TLS_DH_RSA_WITH_AES_256_CBC_SHA256 timeout - timed out
1300 TLS_DH_RSA_WITH_AES_256_CBC_SHA timeout - timed out
1301 TLS_DH_RSA_WITH_AES_128_GCM_SHA256 timeout - timed out
1302 TLS_DH_RSA_WITH_AES_128_CBC_SHA256 timeout - timed out
1303 TLS_DH_RSA_WITH_AES_128_CBC_SHA timeout - timed out
1304 TLS_DH_RSA_WITH_3DES_EDE_CBC_SHA timeout - timed out
1305 TLS_DH_DSS_WITH_SEED_CBC_SHA timeout - timed out
1306 TLS_DH_DSS_WITH_DES_CBC_SHA timeout - timed out
1307 TLS_DH_DSS_WITH_CAMELLIA_256_CBC_SHA timeout - timed out
1308 TLS_DH_DSS_WITH_CAMELLIA_128_CBC_SHA timeout - timed out
1309 TLS_DH_DSS_WITH_AES_256_GCM_SHA384 timeout - timed out
1310 TLS_DH_DSS_WITH_AES_256_CBC_SHA256 timeout - timed out
1311 TLS_DH_DSS_WITH_AES_256_CBC_SHA timeout - timed out
1312 TLS_DH_DSS_WITH_AES_128_GCM_SHA256 timeout - timed out
1313 TLS_DH_DSS_WITH_AES_128_CBC_SHA256 timeout - timed out
1314 TLS_DH_DSS_WITH_AES_128_CBC_SHA timeout - timed out
1315 TLS_DH_DSS_WITH_3DES_EDE_CBC_SHA timeout - timed out
1316 TLS_DHE_RSA_WITH_SEED_CBC_SHA timeout - timed out
1317 TLS_DHE_RSA_WITH_DES_CBC_SHA timeout - timed out
1318 TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 timeout - timed out
1319 TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256 timeout - timed out
1320 TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA timeout - timed out
1321 TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256 timeout - timed out
1322 TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA timeout - timed out
1323 TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 timeout - timed out
1324 TLS_DHE_RSA_WITH_AES_256_CCM timeout - timed out
1325 TLS_DHE_RSA_WITH_AES_256_CBC_SHA256 timeout - timed out
1326 TLS_DHE_RSA_WITH_AES_256_CBC_SHA timeout - timed out
1327 TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 timeout - timed out
1328 TLS_DHE_RSA_WITH_AES_128_CBC_SHA256 timeout - timed out
1329 TLS_DHE_RSA_WITH_AES_128_CBC_SHA timeout - timed out
1330 TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA timeout - timed out
1331 TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA timeout - timed out
1332 TLS_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA timeout - timed out
1333 TLS_DHE_DSS_WITH_SEED_CBC_SHA timeout - timed out
1334 TLS_DHE_DSS_WITH_DES_CBC_SHA timeout - timed out
1335 TLS_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA timeout - timed out
1336 TLS_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA256 timeout - timed out
1337 TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 timeout - timed out
1338 TLS_DHE_DSS_WITH_AES_256_CBC_SHA256 timeout - timed out
1339 TLS_DHE_DSS_WITH_AES_256_CBC_SHA timeout - timed out
1340 TLS_DHE_DSS_WITH_AES_128_GCM_SHA256 timeout - timed out
1341 TLS_DHE_DSS_WITH_AES_128_CBC_SHA256 timeout - timed out
1342 TLS_DHE_DSS_WITH_AES_128_CBC_SHA timeout - timed out
1343 TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA timeout - timed out
1344 TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA timeout - timed out
1345 TLS_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA timeout - timed out
1346 RSA_WITH_AES_256_CCM_8 timeout - timed out
1347 RSA_WITH_AES_256_CCM timeout - timed out
1348 RSA_WITH_AES_128_CCM_8 timeout - timed out
1349 RSA_WITH_AES_128_CCM timeout - timed out
1350 ECDHE_ECDSA_WITH_AES_256_CCM_8 timeout - timed out
1351 ECDHE_ECDSA_WITH_AES_256_CCM timeout - timed out
1352 ECDHE_ECDSA_WITH_AES_128_CCM_8 timeout - timed out
1353 ECDHE_ECDSA_WITH_AES_128_CCM timeout - timed out
1354 ECDHE-ECDSA-ARIA256-GCM-SHA384 timeout - timed out
1355 ECDHE-ECDSA-ARIA128-GCM-SHA256 timeout - timed out
1356 ECDHE-ARIA256-GCM-SHA384 timeout - timed out
1357 ECDHE-ARIA128-GCM-SHA256 timeout - timed out
1358 DHE_RSA_WITH_AES_256_CCM_8 timeout - timed out
1359 DHE_RSA_WITH_AES_128_CCM timeout - timed out
1360 DHE-RSA-ARIA256-GCM-SHA384 timeout - timed out
1361 DHE-RSA-ARIA128-GCM-SHA256 timeout - timed out
1362 DHE-DSS-ARIA256-GCM-SHA384 timeout - timed out
1363 DHE-DSS-ARIA128-GCM-SHA256 timeout - timed out
1364 ARIA256-GCM-SHA384 timeout - timed out
1365 ARIA128-GCM-SHA256 timeout - timed out
1366
1367 * OpenSSL CCS Injection:
1368Unhandled exception while running --openssl_ccs:
1369timeout - timed out
1370
1371 * SSLV3 Cipher Suites:
1372 Server rejected all cipher suites.
1373 Undefined - An unexpected error happened:
1374 TLS_RSA_WITH_SEED_CBC_SHA timeout - timed out
1375 TLS_RSA_WITH_RC4_128_SHA timeout - timed out
1376 TLS_RSA_WITH_RC4_128_MD5 timeout - timed out
1377 TLS_RSA_WITH_IDEA_CBC_SHA timeout - timed out
1378 TLS_RSA_WITH_DES_CBC_SHA timeout - timed out
1379 TLS_RSA_WITH_CAMELLIA_256_CBC_SHA timeout - timed out
1380 TLS_RSA_WITH_CAMELLIA_128_CBC_SHA timeout - timed out
1381 TLS_RSA_WITH_AES_256_GCM_SHA384 timeout - timed out
1382 TLS_RSA_WITH_AES_256_CBC_SHA256 timeout - timed out
1383 TLS_RSA_WITH_AES_256_CBC_SHA timeout - timed out
1384 TLS_RSA_WITH_AES_128_GCM_SHA256 timeout - timed out
1385 TLS_RSA_WITH_AES_128_CBC_SHA256 timeout - timed out
1386 TLS_RSA_WITH_AES_128_CBC_SHA timeout - timed out
1387 TLS_ECDH_anon_WITH_RC4_128_SHA timeout - timed out
1388 TLS_ECDH_anon_WITH_AES_256_CBC_SHA timeout - timed out
1389 TLS_ECDH_anon_WITH_AES_128_CBC_SHA timeout - timed out
1390 TLS_ECDH_RSA_WITH_RC4_128_SHA timeout - timed out
1391 TLS_ECDH_RSA_WITH_AES_256_GCM_SHA384 timeout - timed out
1392 TLS_ECDH_RSA_WITH_AES_256_CBC_SHA384 timeout - timed out
1393 TLS_ECDH_RSA_WITH_AES_256_CBC_SHA timeout - timed out
1394 TLS_ECDH_RSA_WITH_AES_128_GCM_SHA256 timeout - timed out
1395 TLS_ECDH_RSA_WITH_AES_128_CBC_SHA256 timeout - timed out
1396 TLS_ECDH_RSA_WITH_AES_128_CBC_SHA timeout - timed out
1397 TLS_ECDH_ECDSA_WITH_RC4_128_SHA timeout - timed out
1398 TLS_ECDH_ECDSA_WITH_AES_256_GCM_SHA384 timeout - timed out
1399 TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA384 timeout - timed out
1400 TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA timeout - timed out
1401 TLS_ECDH_ECDSA_WITH_AES_128_GCM_SHA256 timeout - timed out
1402 TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA256 timeout - timed out
1403 TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA timeout - timed out
1404 TLS_ECDHE_RSA_WITH_RC4_128_SHA timeout - timed out
1405 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 timeout - timed out
1406 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 timeout - timed out
1407 TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA timeout - timed out
1408 TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 timeout - timed out
1409 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 timeout - timed out
1410 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA timeout - timed out
1411 TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA timeout - timed out
1412 TLS_ECDHE_ECDSA_WITH_RC4_128_SHA timeout - timed out
1413 TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 timeout - timed out
1414 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 timeout - timed out
1415 TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA timeout - timed out
1416 TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 timeout - timed out
1417 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 timeout - timed out
1418 TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA timeout - timed out
1419 TLS_DH_anon_WITH_SEED_CBC_SHA timeout - timed out
1420 TLS_DH_anon_WITH_RC4_128_MD5 timeout - timed out
1421 TLS_DH_anon_WITH_CAMELLIA_256_CBC_SHA timeout - timed out
1422 TLS_DH_anon_WITH_CAMELLIA_128_CBC_SHA timeout - timed out
1423 TLS_DH_anon_WITH_AES_256_GCM_SHA384 timeout - timed out
1424 TLS_DH_anon_WITH_AES_256_CBC_SHA256 timeout - timed out
1425 TLS_DH_anon_WITH_AES_256_CBC_SHA timeout - timed out
1426 TLS_DH_anon_WITH_AES_128_GCM_SHA256 timeout - timed out
1427 TLS_DH_anon_WITH_AES_128_CBC_SHA256 timeout - timed out
1428 TLS_DH_anon_WITH_AES_128_CBC_SHA timeout - timed out
1429 TLS_DH_RSA_WITH_SEED_CBC_SHA timeout - timed out
1430 TLS_DH_RSA_WITH_CAMELLIA_256_CBC_SHA timeout - timed out
1431 TLS_DH_RSA_WITH_CAMELLIA_128_CBC_SHA timeout - timed out
1432 TLS_DH_RSA_WITH_AES_256_GCM_SHA384 timeout - timed out
1433 TLS_DH_RSA_WITH_AES_256_CBC_SHA256 timeout - timed out
1434 TLS_DH_RSA_WITH_AES_256_CBC_SHA timeout - timed out
1435 TLS_DH_RSA_WITH_AES_128_GCM_SHA256 timeout - timed out
1436 TLS_DH_RSA_WITH_AES_128_CBC_SHA256 timeout - timed out
1437 TLS_DH_RSA_WITH_AES_128_CBC_SHA timeout - timed out
1438 TLS_DH_DSS_WITH_SEED_CBC_SHA timeout - timed out
1439 TLS_DH_DSS_WITH_CAMELLIA_256_CBC_SHA timeout - timed out
1440 TLS_DH_DSS_WITH_CAMELLIA_128_CBC_SHA timeout - timed out
1441 TLS_DH_DSS_WITH_AES_256_GCM_SHA384 timeout - timed out
1442 TLS_DH_DSS_WITH_AES_256_CBC_SHA256 timeout - timed out
1443 TLS_DH_DSS_WITH_AES_256_CBC_SHA timeout - timed out
1444 TLS_DH_DSS_WITH_AES_128_GCM_SHA256 timeout - timed out
1445 TLS_DH_DSS_WITH_AES_128_CBC_SHA256 timeout - timed out
1446 TLS_DH_DSS_WITH_AES_128_CBC_SHA timeout - timed out
1447 TLS_DHE_RSA_WITH_SEED_CBC_SHA timeout - timed out
1448 TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA timeout - timed out
1449 TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA timeout - timed out
1450 TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 timeout - timed out
1451 TLS_DHE_RSA_WITH_AES_256_CBC_SHA256 timeout - timed out
1452 TLS_DHE_RSA_WITH_AES_256_CBC_SHA timeout - timed out
1453 TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 timeout - timed out
1454 TLS_DHE_RSA_WITH_AES_128_CBC_SHA256 timeout - timed out
1455 TLS_DHE_RSA_WITH_AES_128_CBC_SHA timeout - timed out
1456 TLS_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA timeout - timed out
1457 TLS_DHE_DSS_WITH_SEED_CBC_SHA timeout - timed out
1458 TLS_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA timeout - timed out
1459 TLS_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA timeout - timed out
1460 TLS_DHE_DSS_WITH_AES_256_GCM_SHA384 timeout - timed out
1461 TLS_DHE_DSS_WITH_AES_256_CBC_SHA256 timeout - timed out
1462 TLS_DHE_DSS_WITH_AES_256_CBC_SHA timeout - timed out
1463 TLS_DHE_DSS_WITH_AES_128_GCM_SHA256 timeout - timed out
1464 TLS_DHE_DSS_WITH_AES_128_CBC_SHA256 timeout - timed out
1465 TLS_DHE_DSS_WITH_AES_128_CBC_SHA timeout - timed out
1466
1467
1468 SCAN COMPLETED IN 384.68 S
1469 --------------------------
1470#######################################################################################################################################
1471
1472
1473Domains still to check: 1
1474 Checking if the hostname msb.gov.tr. given is in fact a domain...
1475
1476Analyzing domain: msb.gov.tr.
1477 Checking NameServers using system default resolver...
1478 IP: 82.222.182.100 (Turkey)
1479 HostName: ns3.msb.gov.tr Type: NS
1480 HostName: ns3.msb.gov.tr Type: PTR
1481 IP: 82.222.182.111 (Turkey)
1482 HostName: ns4.msb.gov.tr Type: NS
1483 HostName: ns4.msb.gov.tr Type: PTR
1484
1485 Checking MailServers using system default resolver...
1486 IP: 82.222.182.105 (Turkey)
1487 HostName: mx1.msb.gov.tr Type: MX
1488 HostName: mx1.msb.gov.tr Type: PTR
1489
1490 Checking the zone transfer for each NS... (if this takes more than 10 seconds, just hit CTRL-C and it will continue. Bug in the libs)
1491 No zone transfer found on nameserver 82.222.182.111
1492 No zone transfer found on nameserver 82.222.182.100
1493
1494 Checking SPF record...
1495
1496 Checking 192 most common hostnames using system default resolver...
1497 IP: 82.222.182.112 (Turkey)
1498 HostName: www.msb.gov.tr. Type: A
1499
1500 Checking with nmap the reverse DNS hostnames of every <ip>/24 netblock using system default resolver...
1501 Checking netblock 82.222.182.0
1502
1503 Searching for msb.gov.tr. emails in Google
1504 ordu_as_sb@msb.gov.tr.
1505
1506 Checking 4 active hosts using nmap... (nmap -sn -n -v -PP -PM -PS80,25 -PA -PY -PU53,40125 -PE --reason <ip> -oA <output_directory>/nmap/<ip>.sn)
1507 Host 82.222.182.105 is up (reset ttl 64)
1508 Host 82.222.182.111 is up (reset ttl 64)
1509 Host 82.222.182.100 is up (reset ttl 64)
1510 Host 82.222.182.112 is up (reset ttl 64)
1511
1512 Checking ports on every active host using nmap... (nmap -O --reason --webxml --traceroute -sS -sV -sC -Pn -n -v -F <ip> -oA <output_directory>/nmap/<ip>)
1513 Scanning ip 82.222.182.105 (mx1.msb.gov.tr (PTR)):
1514 465/tcp open tcpwrapped syn-ack ttl 50
1515 |_smtp-commands: Couldn't establish connection on port 465
1516 1720/tcp open tcpwrapped syn-ack ttl 243
1517 Scanning ip 82.222.182.111 (ns4.msb.gov.tr (PTR)):
1518 53/tcp open tcpwrapped syn-ack ttl 114
1519 1720/tcp open tcpwrapped syn-ack ttl 243
1520 Scanning ip 82.222.182.100 (ns3.msb.gov.tr (PTR)):
1521 53/tcp open tcpwrapped syn-ack ttl 114
1522 1720/tcp open tcpwrapped syn-ack ttl 243
1523 Scanning ip 82.222.182.112 (www.msb.gov.tr.):
1524 WebCrawling domain's web servers... up to 50 max links.
1525--Finished--
1526Summary information for domain msb.gov.tr.
1527-----------------------------------------
1528 Domain Specific Information:
1529 Email: ordu_as_sb@msb.gov.tr.
1530
1531 Domain Ips Information:
1532 IP: 82.222.182.105
1533 HostName: mx1.msb.gov.tr Type: MX
1534 HostName: mx1.msb.gov.tr Type: PTR
1535 Type: SPF
1536 Country: Turkey
1537 Is Active: True (reset ttl 64)
1538 Port: 465/tcp open tcpwrapped syn-ack ttl 50
1539 Script Info: |_smtp-commands: Couldn't establish connection on port 465
1540 Port: 1720/tcp open tcpwrapped syn-ack ttl 243
1541 IP: 82.222.182.111
1542 HostName: ns4.msb.gov.tr Type: NS
1543 HostName: ns4.msb.gov.tr Type: PTR
1544 Country: Turkey
1545 Is Active: True (reset ttl 64)
1546 Port: 53/tcp open tcpwrapped syn-ack ttl 114
1547 Port: 1720/tcp open tcpwrapped syn-ack ttl 243
1548 IP: 82.222.182.100
1549 HostName: ns3.msb.gov.tr Type: NS
1550 HostName: ns3.msb.gov.tr Type: PTR
1551 Country: Turkey
1552 Is Active: True (reset ttl 64)
1553 Port: 53/tcp open tcpwrapped syn-ack ttl 114
1554 Port: 1720/tcp open tcpwrapped syn-ack ttl 243
1555 IP: 82.222.182.112
1556 HostName: www.msb.gov.tr. Type: A
1557 Country: Turkey
1558 Is Active: True (reset ttl 64)
1559
1560--------------End Summary --------------
1561-----------------------------------------
1562#######################################################################################################################################
1563Starting Nmap 7.80 ( https://nmap.org ) at 2019-10-11 13:24 EDT
1564Nmap scan report for host-82-222-182-112.reverse.superonline.net (82.222.182.112)
1565Host is up (0.16s latency).
1566Not shown: 995 filtered ports, 3 closed ports
1567Some closed ports may be reported as filtered due to --defeat-rst-ratelimit
1568PORT STATE SERVICE
156980/tcp open http
1570443/tcp open https
1571
1572Nmap done: 1 IP address (1 host up) scanned in 13.03 seconds
1573###################################################################################################################################
1574Starting Nmap 7.80 ( https://nmap.org ) at 2019-10-11 13:24 EDT
1575Nmap scan report for host-82-222-182-112.reverse.superonline.net (82.222.182.112)
1576Host is up (0.084s latency).
1577Not shown: 2 filtered ports
1578PORT STATE SERVICE
157953/udp open|filtered domain
158067/udp open|filtered dhcps
158168/udp open|filtered dhcpc
158269/udp open|filtered tftp
158388/udp open|filtered kerberos-sec
1584123/udp open|filtered ntp
1585139/udp open|filtered netbios-ssn
1586161/udp open|filtered snmp
1587162/udp open|filtered snmptrap
1588389/udp open|filtered ldap
1589500/udp open|filtered isakmp
1590520/udp open|filtered route
15912049/udp open|filtered nfs
1592
1593Nmap done: 1 IP address (1 host up) scanned in 2.62 seconds
1594#####################################################################################################################################
1595Starting Nmap 7.80 ( https://nmap.org ) at 2019-10-11 13:24 EDT
1596NSE: Loaded 163 scripts for scanning.
1597NSE: Script Pre-scanning.
1598Initiating NSE at 13:24
1599Completed NSE at 13:24, 0.00s elapsed
1600Initiating NSE at 13:24
1601Completed NSE at 13:24, 0.00s elapsed
1602Initiating Parallel DNS resolution of 1 host. at 13:24
1603Completed Parallel DNS resolution of 1 host. at 13:24, 0.02s elapsed
1604Initiating SYN Stealth Scan at 13:24
1605Scanning host-82-222-182-112.reverse.superonline.net (82.222.182.112) [1 port]
1606Discovered open port 80/tcp on 82.222.182.112
1607Completed SYN Stealth Scan at 13:24, 0.20s elapsed (1 total ports)
1608Initiating Service scan at 13:24
1609Scanning 1 service on host-82-222-182-112.reverse.superonline.net (82.222.182.112)
1610Completed Service scan at 13:25, 6.80s elapsed (1 service on 1 host)
1611Initiating OS detection (try #1) against host-82-222-182-112.reverse.superonline.net (82.222.182.112)
1612Retrying OS detection (try #2) against host-82-222-182-112.reverse.superonline.net (82.222.182.112)
1613Initiating Traceroute at 13:25
1614Completed Traceroute at 13:25, 0.36s elapsed
1615Initiating Parallel DNS resolution of 17 hosts. at 13:25
1616Completed Parallel DNS resolution of 17 hosts. at 13:25, 0.35s elapsed
1617NSE: Script scanning 82.222.182.112.
1618Initiating NSE at 13:25
1619NSE: [http-wordpress-enum 82.222.182.112:80] got no answers from pipelined queries
1620Completed NSE at 13:28, 208.76s elapsed
1621Initiating NSE at 13:28
1622Completed NSE at 13:28, 2.00s elapsed
1623Nmap scan report for host-82-222-182-112.reverse.superonline.net (82.222.182.112)
1624Host is up (0.16s latency).
1625
1626PORT STATE SERVICE VERSION
162780/tcp open http-proxy F5 BIG-IP load balancer http proxy
1628|_http-aspnet-debug: ERROR: Script execution failed (use -d to debug)
1629| http-brute:
1630|_ Path "/" does not require authentication
1631|_http-chrono: Request times for /; avg: 218.63ms; min: 155.83ms; max: 285.50ms
1632|_http-csrf: Couldn't find any CSRF vulnerabilities.
1633|_http-devframework: Couldn't determine the underlying framework or CMS. Try increasing 'httpspider.maxpagecount' value to spider more pages.
1634|_http-dombased-xss: Couldn't find any DOM based XSS.
1635|_http-errors: ERROR: Script execution failed (use -d to debug)
1636|_http-feed: Couldn't find any feeds.
1637|_http-fetch: Please enter the complete path of the directory to save data in.
1638|_http-jsonp-detection: Couldn't find any JSONP endpoints.
1639|_http-mobileversion-checker: No mobile version detected.
1640|_http-security-headers:
1641| http-sitemap-generator:
1642| Directory structure:
1643| Longest directory structure:
1644| Depth: 0
1645| Dir: /
1646| Total files found (by extension):
1647|_
1648|_http-stored-xss: Couldn't find any stored XSS vulnerabilities.
1649| http-vhosts:
1650|_127 names had status ERROR
1651|_http-vuln-cve2014-3704: ERROR: Script execution failed (use -d to debug)
1652|_http-wordpress-users: [Error] Wordpress installation was not found. We couldn't find wp-login.php
1653|_http-xssed: No previously reported XSS vuln.
1654|_https-redirect: ERROR: Script execution failed (use -d to debug)
1655| vulscan: VulDB - https://vuldb.com:
1656| [127040] Loadbalancer.org Enterprise VA MAX up to 8.3.2 Apache HTTP Server Log cross site scripting
1657| [110793] Kemp Load Balancer up to 7.2.40.0 Web Application Firewall HTTP POST Request Bypass privilege escalation
1658| [108732] F5 BIG-IP up to 11.5.4/11.6.1/12.1.1 HTTP Proxy/SOCKS privilege escalation
1659| [63646] Apache HTTP Server up to 2.2.23/2.4.3 mod_proxy_balancer.c balancer_handler cross site scripting
1660| [40502] Apache HTTP Server up to 2.2.5 mod_proxy_balancer memory corruption
1661| [40501] Apache HTTP Server 2.2.6 mod_proxy_balancer cross site request forgery
1662| [40398] Apache HTTP Server up to 2.2 mod_proxy_balancer cross site scripting
1663| [40397] Apache HTTP Server up to 2.2 mod_proxy_balancer balancer_handler denial of service
1664| [139574] MicroDigital N-Series Camera up to 6400.0.8.5 httpd upload.php Filename memory corruption
1665| [138824] Proxygen HTTP Header Crafted Packet Out-of-Bounds memory corruption
1666| [137860] PluckCMS up to 4.7.4 File Upload data/inc/images.php HTTP Request privilege escalation
1667| [137767] Squid Proxy up to 2.7.STABLE9/3.5.28/4.7 HTTP Header Authorization Header memory corruption
1668| [137766] Squid Proxy up to 4.7.0 HttpHeader::getAuth Header memory corruption
1669| [137376] Cisco AsyncOS Web Proxy Function HTTP/HTTPS Request denial of service
1670| [137322] F5 BIG-IP up to 14.1.0.5 iControl REST Endpoint HTTP Request Loop denial of service
1671| [137315] F5 BIG-IP up to 11.6.4 iRules HTTP Header denial of service
1672| [136736] Cisco Wide Area Application Services HTTPS Proxy Connection Request privilege escalation
1673| [136245] Starry Station HTTP API JSON Payload PIN weak authentication
1674| [135220] IBM Cloud Private Kubernetes API Server 2.1.0/3.1.0/3.1.1/3.1.2 HTTP Proxy unknown vulnerability
1675| [134499] Google Android up to 9.0 Proxy Auto-Config ic.cc UpdateLoadElement memory corruption
1676| [134427] Sierra Wireless AirLink ES450 4.9.3 ACEManager template_load.cgi HTTP Request information disclosure
1677| [134424] Sierra Wireless AirLink ES450 4.9.3 Webserver upload.cgi HTTP Request Code Execution
1678| [134361] Cisco Web Security Appliance Web Proxy Function HTTPS Request Restart denial of service
1679| [133328] WebKitGTK/WPE WebKit up to 2.24.0 HTTP Proxy Setting Deanonymization information disclosure
1680| [130384] Zen Load Balancer 3.10.1 index.cgi privilege escalation
1681| [128801] Cisco IOS/IOS XE TCP Socket HTTP Requests Reload denial of service
1682| [128607] Proxygen HTTP2 Parser Header/Trailer denial of service
1683| [128606] Proxygen HTTP2 Priority Setting denial of service
1684| [127297] OCS Inventory NG File Upload HTTP Requests Code Execution
1685| [124890] Cisco Prime Infrastructure HTTP Web Server File Upload privilege escalation
1686| [123948] Lone Wolf Technologies loadingDOCS 2018-08-13 Permission HTTPS Request privilege escalation
1687| [123178] Insteon Hub 1013 HTTP Server /mpfsupload POST Request privilege escalation
1688| [122199] F5 BIG-IP up to 11.6.3.2/12.1.3.6/13.0.1 HTTP Health Monitor unknown vulnerability
1689| [122198] F5 BIG-IP ASM up to 11.5.6/11.6.3.1/12.1.3.5/13.1.0.1 bd HTTP Requests CPU Exhaustion denial of service
1690| [121993] F5 BIG-IP up to 11.6.3/12.1.3/13.1.0 TMM HTTP Response Restart denial of service
1691| [119218] https-proxy-agent up to 2.1.0 on Node.js JSON Parameter Memory Leak denial of service
1692| [119215] https-proxy-agent on Node.js Memory Leak denial of service
1693| [119044] http-proxy.js on Node.js Environment Variable privilege escalation
1694| [118904] Http-proxy up to 0.6.x on Node.js Error Crash denial of service
1695| [118896] http-signature up to 0.9.11 on Node.js Download weak encryption
1696| [118522] httpsync on Node.js Download weak encryption
1697| [118220] HAProxy up to 1.8.9 Authorization Header proto_http.c check_request_for_cacheability information disclosure
1698| [116923] Belkin N750 1.10.22 HTTP Request proxy.cgi memory corruption
1699| [116922] Belkin N750 1.10.22 HTTP Request proxy.cgi privilege escalation
1700| [116168] F5 BIG-IP up to 11.5.5/11.6.2/12.1.2 SPDY/HTTP2 Request denial of service
1701| [116167] F5 BIG-IP up to 11.5.5/11.6.2/12.1.2 SOCKS Proxy Request denial of service
1702| [116054] Symantec Advanced Secure Gateway/CacheFlow/ProxySG Management Console HTTP/HTTPS Request Crash denial of service
1703| [116052] Symantec Advanced Secure Gateway/ProxySG Management Console File Upload privilege escalation
1704| [115039] Apache HTTP Server up to 2.4.29 FilesMatch File Upload privilege escalation
1705| [113652] Atlassian Floodlight Controller up to 1.1 LoadBalancer Module NULL Pointer Dereference denial of service
1706| [113121] Vobot Clock up to 0.99.29 Breakout Download HTTP Response weak encryption
1707| [113073] Squid Proxy up to 4.0.22 HTTP Header HTTP Response NULL Pointer Dereference denial of service
1708| [113070] Squid Proxy up to 3.5.27/4.0.22 ESI Response HTTP Response denial of service
1709| [112294] AsusWRT up to 3.0.0.4 router/httpd/web.c do_vpnupload_post privilege escalation
1710| [111181] NetTransport Download Manager up to 2.96L NetTransport.exe HTTP Response memory corruption
1711| [111053] GetGo Download Manager up to 5.3.0.2712 HTTP Server memory corruption
1712| [110982] F5 BIG-IP 12.1.0/12.1.1/12.1.2/13.0.0 HTTP HTTP Requests denial of service
1713| [109852] Huawei VCM5010 HTTP Request File Upload weak authentication
1714| [108734] F5 BIG-IP up to 11.5.4/11.6.1/12.1.1 Traffic Management Microkernel HTTP Request Restart denial of service
1715| [106846] Apache Tomcat up to 7.0.79 on Windows HTTP PUT Method Parameter File Upload privilege escalation
1716| [103748] Barracuda Load Balancer 5.4.0.004/6.0.1.006 privilege escalation
1717| [102782] Vivotek IB8369/FD8164/FD816BA Web Service downloadMedias.cgi HTTP Request directory traversal
1718| [101768] Spring Security up to 3.2.4 CAS Proxy Ticket Authentication HTTP Request Bypass privilege escalation
1719| [99492] Facebook Proxygen HTTPMessage.request State Hijacking privilege escalation
1720| [97892] Apache Tomcat up to 9.0.0.M15 Reverse-Proxy Http11InputBuffer.java information disclosure
1721| [97489] Umbraco up to 7.3.x FeedProxy.aspx.cs Page_Load Server-Side Request Forgery
1722| [96077] PEAR HTTP_Upload v1.0.0b3 Upload.php privilege escalation
1723| [95118] http-client up to 0.10 Environment Variable Proxy privilege escalation
1724| [94746] filedownload Plugin 1.4 on WordPress Proxy privilege escalation
1725| [92268] F5 BIG-IP up to 11.5.1 HF10 Proxy/SOCKS privilege escalation
1726| [87133] Squid Proxy 3.5.17/4.0.9 HTTP Request privilege escalation
1727| [82731] Cisco AireOS up to 7.4.120.0/7.5.x/7.6.100.0 on WLC HTTP Request Reload denial of service
1728| [82215] F5 BIG-IP Blacklist Filter uploadImage.php privilege escalation
1729| [81565] Squid Proxy up to 3.5.15/4.0.7 HTTP Response denial of service
1730| [81149] Cisco Web Security Appliance Web Proxy HTTPS Request denial of service
1731| [81111] Squid Proxy up to 4.0.6 HTTP Status Code http.cc denial of service
1732| [81110] Squid Proxy up to 3.5.14/4.0.6 Response http.cc denial of service
1733| [81108] Squid Proxy up to 3.5.14/4.0.6 HTTP Header denial of service
1734| [81132] Squid Proxy 3.5.13/4.0 HTTP Status Code http.cc denial of service
1735| [80611] Cisco Web Security Appliance 8.5.3-055/9.1.0-000/9.5.0-235 Proxy Engine HTTP Method privilege escalation
1736| [75609] Wavelink ConnectPro TermProxy Service WLTermProxyService.exe HTTP Header memory corruption
1737| [75174] cURL/libcURL up to 7.42.0 HTTP Header Proxy information disclosure
1738| [75163] Cisco StarOS 12.0/12.2(300)/14.0/14.0(600) on ASR 5000 HTTP Reload denial of service
1739| [69198] Squid Proxy 3.1.9 HTTP Header Injection cross site scripting
1740| [69028] Cisco Unified IP Phone 9900 9.3(4.24) HTTP Request File Upload privilege escalation
1741| [69014] libcURL 7.30.0/7.31.0 HTTP Proxy cross site request forgery
1742| [68980] Barracuda Load Balancer 5.0.0.015 Default Credentials weak authentication
1743| [68435] Apache HTTP Server 2.4.10 mod_proxy_fcgi.c handle_headers denial of service
1744| [68198] F5 BIG-IP 10.2.1 HTTP POST Request properties.jsp directory traversal
1745| [71693] HAProxy 1.5.0/1.5.1/1.5.2/1.5.3 proto_http.c http_request_forward_body memory corruption
1746| [67289] Barracuda Load Balancer 4.2.1 cross site scripting
1747| [67183] Apache HTTP Server up to 2.4.9 mod_proxy denial of service
1748| [12338] Barracuda Networks Load Balancer 4.2.2.007 340-series index.php privilege escalation
1749| [11320] Instagram/Flattr 4.0.2/4.1.2/4.2.7 on iOS/Android HTTP POST Request Photo Upload weak encryption
1750| [9594] Oracle HTTP Server 2.2.9 Proxy Plug-In mod_proxy_http.c information disclosure
1751| [9547] Squid Proxy up to 3.3.7 HTTP Request denial of service
1752| [9526] Squid Proxy up to 3.3.6 dns_internal.cc idnsALookup HTTP Request denial of service
1753| [9076] Wireshark up to 1.8.7 HTTP Dissector packet-http.c http_payload_subdissector Crafted Packet denial of service
1754| [8099] Google Chrome up to 25.0.1364.172 ppb_url_loader_proxy.cc OnMsgReadResponseBodyAck() information disclosure
1755| [7890] Squid Proxy up to 3.2.7 http.cc httpMakeVaryMark denial of service
1756| [63089] Apache HTTP Server up to 2.2.13 mod_proxy_ajp denial of service
1757| [62895] libproxy 0.2.3/0.3.0/0.3.1 lib/pac.c px_pac_reload memory corruption
1758| [62290] Cisco Application Control Engine Module 3.0 Load Balancer denial of service
1759| [6092] Apache HTTP Server 2.4.0/2.4.1/2.4.2 mod_proxy_ajp.c information disclosure
1760| [6090] Apache HTTP Server 2.4.0/2.4.1/2.4.2 mod_proxy_http.c information disclosure
1761| [60862] CVS 1.11/1.12 HTTP Proxy Server proxy_connect memory corruption
1762| [5312] Mozilla Firefox up to 11.0 RSS/Atom XML HTTPS Content Loading URL spoofing
1763| [5176] Squid Proxy 3.1.19 HTTP Header Host Field Parser CONNECT Request privilege escalation
1764| [4846] Citrix XenServer up to 6.0.2 Workload Balancer denial of service
1765| [4591] Mozilla Firefox up to 3.6.26/6.0 IPv6 Proxy XMLHttpRequest Object information disclosure
1766| [59556] Apache HTTP Server up to 2.0.53 mod_proxy information disclosure
1767| [57268] Banu Tinyproxy up to 1.8.2 HTTP Proxy Server acl.c unknown vulnerability
1768| [56893] PHP HTTP Proxy Crash denial of service
1769| [51717] Apache HTTP Server up to 1.3.3 mod_proxy ap_proxy_send_fb memory corruption
1770| [49857] Apache HTTP Server mod_proxy_ftp cross site scripting
1771| [49856] Apache HTTP Server 2.2.13 mod_proxy_ftp ap_proxy_ftp_handler denial of service
1772| [49208] Joompolitan Com Livechat 1.0 HTTP Proxy xmlhttp.php unknown vulnerability
1773| [49178] Squid Proxy up to 3.1.0.11 HttpMsg.cc denial of service
1774| [49177] Squid Proxy up to 3.1.0.11 HttpMsg.cc denial of service
1775| [47568] Versalsoft Http File Upload Activex Control 6.0.0.35 ActiveX Control UUploaderSvrD.dll unknown vulnerability
1776| [46372] Squid Proxy up to 3.1.0.4 HttpMsg.c denial of service
1777| [43705] HAVP HTTP Antivirus Proxy 0.88 sockethandler.cpp denial of service
1778| [43556] Apache HTTP Server up to 2.1.8 mod_proxy_ftp proxy_ftp.c cross site scripting
1779| [40503] Apache HTTP Server mod_proxy_ftp cross site scripting
1780| [39685] F5 Firepass 4100 up to 5.4.6 download_plugin.php3 cross site scripting
1781| [39574] EDraw Flowchart ActiveX 2.3 ActiveX Control edimage.ocx HttpDownloadFile() directory traversal
1782| [37328] Astaro Security Gateway HTTP Proxy denial of service
1783| [36679] VersalSoft HTTP File Upload ActiveX control ActiveX Control ufileuploaderd.dll addfile memory corruption
1784|
1785| MITRE CVE - https://cve.mitre.org:
1786| [CVE-2012-4558] Multiple cross-site scripting (XSS) vulnerabilities in the balancer_handler function in the manager interface in mod_proxy_balancer.c in the mod_proxy_balancer module in the Apache HTTP Server 2.2.x before 2.2.24-dev and 2.4.x before 2.4.4 allow remote attackers to inject arbitrary web script or HTML via a crafted string.
1787| [CVE-2012-4505] Heap-based buffer overflow in the px_pac_reload function in lib/pac.c in libproxy 0.2.x and 0.3.x allows remote servers to have an unspecified impact via a crafted Content-Length size in an HTTP response header for a proxy.pac file request, a different vulnerability than CVE-2012-4504.
1788| [CVE-2011-3348] The mod_proxy_ajp module in the Apache HTTP Server before 2.2.21, when used with mod_proxy_balancer in certain configurations, allows remote attackers to cause a denial of service (temporary "error state" in the backend server) via a malformed HTTP request.
1789| [CVE-2007-6423] ** DISPUTED ** Unspecified vulnerability in mod_proxy_balancer for Apache HTTP Server 2.2.x before 2.2.7-dev, when running on Windows, allows remote attackers to trigger memory corruption via a long URL. NOTE: the vendor could not reproduce this issue.
1790| [CVE-2007-6422] The balancer_handler function in mod_proxy_balancer in the Apache HTTP Server 2.2.0 through 2.2.6, when a threaded Multi-Processing Module is used, allows remote authenticated users to cause a denial of service (child process crash) via an invalid bb variable.
1791| [CVE-2007-6421] Cross-site scripting (XSS) vulnerability in balancer-manager in mod_proxy_balancer in the Apache HTTP Server 2.2.0 through 2.2.6 allows remote attackers to inject arbitrary web script or HTML via the (1) ss, (2) wr, or (3) rr parameters, or (4) the URL.
1792| [CVE-2007-6420] Cross-site request forgery (CSRF) vulnerability in the balancer-manager in mod_proxy_balancer for Apache HTTP Server 2.2.x allows remote attackers to gain privileges via unspecified vectors.
1793| [CVE-2007-5273] Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 2 and earlier, JDK and JRE 5.0 Update 12 and earlier, SDK and JRE 1.4.2_15 and earlier, and SDK and JRE 1.3.1_20 and earlier, when an HTTP proxy server is used, allows remote attackers to violate the security model for an applet's outbound connections via a multi-pin DNS rebinding attack in which the applet download relies on DNS resolution on the proxy server, but the applet's socket operations rely on DNS resolution on the local machine, a different issue than CVE-2007-5274. NOTE: this is similar to CVE-2007-5232.
1794| [CVE-2006-4450] usercp_avatar.php in PHPBB 2.0.20, when avatar uploading is enabled, allows remote attackers to use the server as a web proxy by submitting a URL to the avatarurl parameter, which is then used in an HTTP GET request.
1795| [CVE-2013-4081] The http_payload_subdissector function in epan/dissectors/packet-http.c in the HTTP dissector in Wireshark 1.6.x before 1.6.16 and 1.8.x before 1.8.8 does not properly determine when to use a recursive approach, which allows remote attackers to cause a denial of service (stack consumption) via a crafted packet.
1796| [CVE-2013-2961] The internal web server in the Basic Services component in IBM Tivoli Monitoring (ITM) 6.2.0 through FP3, 6.2.1 through FP4, 6.2.2 through FP9, and 6.2.3 before FP3, as used in IBM Application Manager for Smart Business (formerly Tivoli Foundations Application Manager) 1.2.1 before 1.2.1.0-TIV-IAMSB-FP0004 and other products, allows remote attackers to perform unspecified redirection of HTTP requests, and bypass the proxy-server configuration, via crafted HTTP traffic.
1797| [CVE-2013-2950] CRLF injection vulnerability in IBM WebSphere Portal 6.1.0.x before 6.1.0.3 CF26, 6.1.5.x before 6.1.5 CF26, 7.0.0.x before 7.0.0.2 CF21, and 8.0.0.x through 8.0.0.1 CF5, when home substitution (aka uri.home.substitution) is enabled, allows remote authenticated users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.
1798| [CVE-2013-2873] Use-after-free vulnerability in Google Chrome before 28.0.1500.71 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a 404 HTTP status code during the loading of resources.
1799| [CVE-2013-2503] Privoxy before 3.0.21 does not properly handle Proxy-Authenticate and Proxy-Authorization headers in the client-server data stream, which makes it easier for remote HTTP servers to spoof the intended proxy service via a 407 (aka Proxy Authentication Required) HTTP status code.
1800| [CVE-2013-2304] The Sleipnir Mobile application 2.8.0 and earlier and Sleipnir Mobile Black Edition application 2.8.0 and earlier for Android allow remote attackers to load arbitrary Extension APIs, and trigger downloads or obtain sensitive HTTP response-body information, via a crafted web page.
1801| [CVE-2013-2203] WordPress before 3.5.2, when the uploads directory forbids write access, allows remote attackers to obtain sensitive information via an invalid upload request, which reveals the absolute path in an XMLHttpRequest error message.
1802| [CVE-2013-2070] http/modules/ngx_http_proxy_module.c in nginx 1.1.4 through 1.2.8 and 1.3.0 through 1.4.0, when proxy_pass is used with untrusted HTTP servers, allows remote attackers to cause a denial of service (crash) and obtain sensitive information from worker process memory via a crafted proxy response, a similar vulnerability to CVE-2013-2028.
1803| [CVE-2013-1912] Buffer overflow in HAProxy 1.4 through 1.4.22 and 1.5-dev through 1.5-dev17, when HTTP keep-alive is enabled, using HTTP keywords in TCP inspection rules, and running with rewrite rules that appends to requests, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted pipelined HTTP requests that prevent request realignment from occurring.
1804| [CVE-2013-1630] pyshop before 0.7.1 uses HTTP to retrieve packages from the PyPI repository, and does not perform integrity checks on package contents, which allows man-in-the-middle attackers to execute arbitrary code via a crafted response to a download operation.
1805| [CVE-2013-1451] Microsoft Internet Explorer 8 and 9, when the Proxy Settings configuration has the same Proxy address and Port values in the HTTP and Secure rows, does not ensure that the SSL lock icon is consistent with the Address bar, which makes it easier for remote attackers to spoof web sites via a crafted HTML document that triggers many HTTPS requests to an arbitrary host, followed by an HTTPS request to a trusted host and then an HTTP request to an untrusted host, a related issue to CVE-2013-1450.
1806| [CVE-2013-1450] Microsoft Internet Explorer 8 and 9, when the Proxy Settings configuration has the same Proxy address and Port values in the HTTP and Secure rows, does not properly reuse TCP sessions to the proxy server, which allows remote attackers to obtain sensitive information intended for a specific host via a crafted HTML document that triggers many HTTPS requests and then triggers an HTTP request to that host, as demonstrated by reading a Cookie header, aka MSRC 12096gd.
1807| [CVE-2013-1155] The auth-proxy functionality in Cisco Firewall Services Module (FWSM) software 3.1 and 3.2 before 3.2(20.1), 4.0 before 4.0(15.2), and 4.1 before 4.1(5.1) allows remote attackers to cause a denial of service (device reload) via a crafted URL, aka Bug ID CSCtg02624.
1808| [CVE-2013-1150] The authentication-proxy implementation on Cisco Adaptive Security Appliances (ASA) devices with software 7.x before 7.2(5.10), 8.0 before 8.0(5.31), 8.1 and 8.2 before 8.2(5.38), 8.3 before 8.3(2.37), 8.4 before 8.4(5.3), 8.5 and 8.6 before 8.6(1.10), 8.7 before 8.7(1.4), 9.0 before 9.0(1.1), and 9.1 before 9.1(1.2) allows remote attackers to cause a denial of service (device reload) via a crafted URL, aka Bug ID CSCud16590.
1809| [CVE-2013-0947] EMC RSA Authentication Manager 8.0 before P1 allows local users to discover cleartext operating-system passwords, HTTP plug-in proxy passwords, and SNMP communities by reading a (1) log file or (2) configuration file.
1810| [CVE-2013-0776] Mozilla Firefox before 19.0, Firefox ESR 17.x before 17.0.3, Thunderbird before 17.0.3, Thunderbird ESR 17.x before 17.0.3, and SeaMonkey before 2.16 allow man-in-the-middle attackers to spoof the address bar by operating a proxy server that provides a 407 HTTP status code accompanied by web script, as demonstrated by a phishing attack on an HTTPS site.
1811| [CVE-2013-0519] IBM Sterling Secure Proxy 3.2.0 and 3.3.01 before 3.3.01.23 Interim Fix 1, 3.4.0 before 3.4.0.6 Interim Fix 1, and 3.4.1 before 3.4.1.7 provides web-server version data in (1) an unspecified page title and (2) an unspecified HTTP header field, which allows remote attackers to obtain potentially sensitive information by reading a version string.
1812| [CVE-2013-0150] Directory traversal vulnerability in an unspecified signed Java applet in the client-side components in F5 BIG-IP APM 10.1.0 through 10.2.4 and 11.0.0 through 11.3.0, FirePass 6.0.0 through 6.1.0 and 7.0.0, and other products "when APM is provisioned," allows remote attackers to upload and execute arbitrary files via a .. (dot dot) in the filename parameter.
1813| [CVE-2012-6026] The HTTP Profiler on the Cisco Aironet Access Point with software 15.2 and earlier does not properly manage buffers, which allows remote attackers to cause a denial of service (device reload) via crafted HTTP requests, aka Bug ID CSCuc62460.
1814| [CVE-2012-5332] at32 Reverse Proxy 1.060.310 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a long string in an HTTP header field, as demonstrated using the If-Unmodified-Since field.
1815| [CVE-2012-4557] The mod_proxy_ajp module in the Apache HTTP Server 2.2.12 through 2.2.21 places a worker node into an error state upon detection of a long request-processing time, which allows remote attackers to cause a denial of service (worker consumption) via an expensive request.
1816| [CVE-2012-4271] Multiple cross-site scripting (XSS) vulnerabilities in bad-behavior-wordpress-admin.php in the Bad Behavior plugin before 2.0.47 and 2.2.x before 2.2.5 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) PATH_INFO, (2) httpbl_key, (3) httpbl_maxage, (4) httpbl_threat, (5) reverse_proxy_addresses, or (6) reverse_proxy_header parameter.
1817| [CVE-2012-3919] The Cisco Application Control Engine (ACE) module 3.0 for Cisco Catalyst switches and Cisco routers does not properly monitor Load Balancer (LB) queues, which allows remote attackers to cause a denial of service (incorrect memory access and module reboot) via application traffic, aka Bug ID CSCtw70879.
1818| [CVE-2012-3526] The reverse proxy add forward module (mod_rpaf) 0.5 and 0.6 for the Apache HTTP Server allows remote attackers to cause a denial of service (server or application crash) via multiple X-Forwarded-For headers in a request.
1819| [CVE-2012-3502] The proxy functionality in (1) mod_proxy_ajp.c in the mod_proxy_ajp module and (2) mod_proxy_http.c in the mod_proxy_http module in the Apache HTTP Server 2.4.x before 2.4.3 does not properly determine the situations that require closing a back-end connection, which allows remote attackers to obtain sensitive information in opportunistic circumstances by reading a response that was intended for a different client.
1820| [CVE-2012-3499] Multiple cross-site scripting (XSS) vulnerabilities in the Apache HTTP Server 2.2.x before 2.2.24-dev and 2.4.x before 2.4.4 allow remote attackers to inject arbitrary web script or HTML via vectors involving hostnames and URIs in the (1) mod_imagemap, (2) mod_info, (3) mod_ldap, (4) mod_proxy_ftp, and (5) mod_status modules.
1821| [CVE-2012-2632] SEIL routers with firmware SEIL/x86 1.00 through 2.35, SEIL/X1 2.30 through 3.75, SEIL/X2 2.30 through 3.75, and SEIL/B1 2.30 through 3.75, when the http-proxy and application-gateway features are enabled, do not properly handle the CONNECT command, which allows remote attackers to bypass intended URL restrictions via a TCP session.
1822| [CVE-2012-2573] Multiple cross-site scripting (XSS) vulnerabilities in T-dah WebMail 3.2.0-2.3 allow remote attackers to inject arbitrary web script or HTML via an e-mail message body with (1) a SCRIPT element, (2) a crafted Cascading Style Sheets (CSS) expression property, (3) a CSS expression property in the STYLE attribute of an arbitrary element, (4) an ONLOAD attribute of a BODY element, (5) a crafted SRC attribute of an IFRAME element, (6) a crafted CONTENT attribute of an HTTP-EQUIV="refresh" META element, or (7) a data: URL in the CONTENT attribute of an HTTP-EQUIV="refresh" META element.
1823| [CVE-2012-1011] actions.php in the AllWebMenus plugin 1.1.8 for WordPress allows remote attackers to bypass intended access restrictions to upload and execute arbitrary PHP code by setting the HTTP_REFERER to a certain value, then uploading a ZIP file containing a PHP file, then accessing it via a direct request to the file in an unspecified directory.
1824| [CVE-2012-0804] Heap-based buffer overflow in the proxy_connect function in src/client.c in CVS 1.11 and 1.12 allows remote HTTP proxy servers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted HTTP response.
1825| [CVE-2012-0387] Memory leak in the HTTP Inspection Engine feature in the Zone-Based Firewall in Cisco IOS 12.4, 15.0, 15.1, and 15.2 allows remote attackers to cause a denial of service (memory consumption or device reload) via crafted transit HTTP traffic, aka Bug ID CSCtq36153.
1826| [CVE-2012-0370] Cisco Wireless LAN Controller (WLC) devices with software 4.x, 5.x, 6.0, and 7.0 before 7.0.220.0 and 7.1 before 7.1.91.0, when WebAuth is enabled, allow remote attackers to cause a denial of service (device reload) via a sequence of (1) HTTP or (2) HTTPS packets, aka Bug ID CSCtt47435.
1827| [CVE-2011-5126] Blue Coat ProxySG 6.1 before SGOS 6.1.5.1 and 6.2 before SGOS 6.2.2.1 writes the secure heap to core images, which allows context-dependent attackers to obtain sensitive authentication information by leveraging read access to a downloaded core file.
1828| [CVE-2011-4765] The Site Editor (aka SiteBuilder) feature in Parallels Plesk Small Business Panel 10.2.0 does not include the HTTPOnly flag in a Set-Cookie header for a cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie, as demonstrated by cookies used by Wizard/Edit/Modules/ImageGallery/MultiImagesUpload and certain other files.
1829| [CVE-2011-4449] actions/files/files.php in WikkaWiki 1.3.1 and 1.3.2, when INTRANET_MODE is enabled, supports file uploads for file extensions that are typically absent from an Apache HTTP Server TypesConfig file, which makes it easier for remote attackers to execute arbitrary PHP code by placing this code in a file whose name has multiple extensions, as demonstrated by a (1) .mm or (2) .vpp file.
1830| [CVE-2011-4317] The mod_proxy module in the Apache HTTP Server 1.3.x through 1.3.42, 2.0.x through 2.0.64, and 2.2.x through 2.2.21, when the Revision 1179239 patch is in place, does not properly interact with use of (1) RewriteRule and (2) ProxyPassMatch pattern matches for configuration of a reverse proxy, which allows remote attackers to send requests to intranet servers via a malformed URI containing an @ (at sign) character and a : (colon) character in invalid positions. NOTE: this vulnerability exists because of an incomplete fix for CVE-2011-3368.
1831| [CVE-2011-3670] Mozilla Firefox before 3.6.26 and 4.x through 6.0, Thunderbird before 3.1.18 and 5.0 through 6.0, and SeaMonkey before 2.4 do not properly enforce the IPv6 literal address syntax, which allows remote attackers to obtain sensitive information by making XMLHttpRequest calls through a proxy and reading the error messages.
1832| [CVE-2011-3639] The mod_proxy module in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x before 2.2.18, when the Revision 1179239 patch is in place, does not properly interact with use of (1) RewriteRule and (2) ProxyPassMatch pattern matches for configuration of a reverse proxy, which allows remote attackers to send requests to intranet servers by using the HTTP/0.9 protocol with a malformed URI containing an initial @ (at sign) character. NOTE: this vulnerability exists because of an incomplete fix for CVE-2011-3368.
1833| [CVE-2011-3368] The mod_proxy module in the Apache HTTP Server 1.3.x through 1.3.42, 2.0.x through 2.0.64, and 2.2.x through 2.2.21 does not properly interact with use of (1) RewriteRule and (2) ProxyPassMatch pattern matches for configuration of a reverse proxy, which allows remote attackers to send requests to intranet servers via a malformed URI containing an initial @ (at sign) character.
1834| [CVE-2011-3281] Unspecified vulnerability in Cisco IOS 15.0 through 15.1, in certain HTTP Layer 7 Application Control and Inspection configurations, allows remote attackers to cause a denial of service (device reload or hang) via a crafted HTTP packet, aka Bug ID CSCto68554.
1835| [CVE-2011-1499] acl.c in Tinyproxy before 1.8.3, when an Allow configuration setting specifies a CIDR block, permits TCP connections from all IP addresses, which makes it easier for remote attackers to hide the origin of web traffic by leveraging the open HTTP proxy server.
1836| [CVE-2011-1498] Apache HttpClient 4.x before 4.1.1 in Apache HttpComponents, when used with an authenticating proxy server, sends the Proxy-Authorization header to the origin server, which allows remote web servers to obtain sensitive information by logging this header.
1837| [CVE-2011-1469] Unspecified vulnerability in the Streams component in PHP before 5.3.6 allows context-dependent attackers to cause a denial of service (application crash) by accessing an ftp:// URL during use of an HTTP proxy with the FTP wrapper.
1838| [CVE-2011-1316] The Session Initiation Protocol (SIP) Proxy in the HTTP Transport component in IBM WebSphere Application Server (WAS) before 7.0.0.15 allows remote attackers to cause a denial of service (worker thread exhaustion and UDP messaging outage) by sending many UDP messages.
1839| [CVE-2011-0398] The Piwik_Common::getIP function in Piwik before 1.1 does not properly determine the client IP address, which allows remote attackers to bypass intended geolocation and logging functionality via (1) use of a private (aka RFC 1918) address behind a proxy server or (2) spoofing of the X-Forwarded-For HTTP header.
1840| [CVE-2011-0395] Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.0 before 8.0(5.20), 8.1 before 8.1(2.48), 8.2 before 8.2(3), and 8.3 before 8.3(2.1), when the RIP protocol and the Cisco Phone Proxy functionality are configured, allow remote attackers to cause a denial of service (device reload) via a RIP update, aka Bug ID CSCtg66583.
1841| [CVE-2011-0272] Unspecified vulnerability in HP LoadRunner 9.52 allows remote attackers to execute arbitrary code via network traffic to TCP port 5001 or 5002, related to the HttpTunnel feature.
1842| [CVE-2010-5189] Blue Coat ProxySG before SGOS 4.3.4.1, 5.x before SGOS 5.4.5.1, 5.5 before SGOS 5.5.4.1, and 6.x before SGOS 6.1.1.1 allows remote authenticated users to execute arbitrary CLI commands by leveraging read-only administrator privileges and establishing an HTTPS session.
1843| [CVE-2010-4488] Google Chrome before 8.0.552.215 does not properly handle HTTP proxy authentication, which allows remote attackers to cause a denial of service (application crash) via unspecified vectors.
1844| [CVE-2010-3964] Unrestricted file upload vulnerability in the Document Conversions Launcher Service in Microsoft Office SharePoint Server 2007 SP2, when the Document Conversions Load Balancer Service is enabled, allows remote attackers to execute arbitrary code via a crafted SOAP request to TCP port 8082, aka "Malformed Request Code Execution Vulnerability."
1845| [CVE-2010-3281] Stack-based buffer overflow in the HTTP proxy service in Alcatel-Lucent OmniVista 4760 server before R5.1.06.03.c_Patch3 allows remote attackers to execute arbitrary code or cause a denial of service (service crash) via a long request.
1846| [CVE-2010-2823] Unspecified vulnerability in the deep packet inspection feature on the Cisco Application Control Engine (ACE) 4710 appliance with software before A3(2.6) allows remote attackers to cause a denial of service (device reload) via crafted HTTP packets, related to HTTP, RTSP, and SIP inspection, aka Bug ID CSCtb54493.
1847| [CVE-2010-2815] Unspecified vulnerability in the Transport Layer Security (TLS) implementation on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7.2 before 7.2(5), 8.0 before 8.0(5.15), 8.1 before 8.1(2.44), 8.2 before 8.2(2.17), and 8.3 before 8.3(1.6) and Cisco PIX Security Appliances 500 series devices allows remote attackers to cause a denial of service (device reload) via a sequence of crafted TLS packets, aka Bug ID CSCtf55259.
1848| [CVE-2010-2791] mod_proxy in httpd in Apache HTTP Server 2.2.9, when running on Unix, does not close the backend connection if a timeout occurs when reading a response from a persistent connection, which allows remote attackers to obtain a potentially sensitive response intended for a different client in opportunistic circumstances via a normal HTTP request. NOTE: this is the same issue as CVE-2010-2068, but for a different OS and set of affected versions.
1849| [CVE-2010-2787] api.php in MediaWiki before 1.15.5 does not prevent use of public caching headers for private data, which allows remote attackers to bypass intended access restrictions and obtain sensitive information by retrieving documents from an HTTP proxy cache that has been used by a victim.
1850| [CVE-2010-2584] The Upload method in the RealPage Module Upload ActiveX control in Realpage.dll 1.0.0.9 in RealPage Module ActiveX Controls does not properly restrict certain property values, which allows remote attackers to read arbitrary files via a filename in the SourceFile property in conjunction with an http URL in the DestURL property.
1851| [CVE-2010-2493] The default configuration of the deployment descriptor (aka web.xml) in picketlink-sts.war in (1) the security_saml quickstart, (2) the webservice_proxy_security quickstart, (3) the web-console application, (4) the http-invoker application, (5) the gpd-deployer application, (6) the jbpm-console application, (7) the contract application, and (8) the uddi-console application in JBoss Enterprise SOA Platform before 5.0.2 contains GET and POST http-method elements, which allows remote attackers to bypass intended access restrictions via a crafted HTTP request.
1852| [CVE-2010-2465] The S2 Security NetBox 2.5, 3.3, and 4.0, as used in the Linear eMerge 50 and 5000 and the Sonitrol eAccess, stores sensitive information under the web root with insufficient access control, which allows remote attackers to download node logs, photographs of persons, and backup files via unspecified HTTP requests.
1853| [CVE-2010-2327] mod_ibm_ssl in IBM HTTP Server 6.0 before 6.0.2.43, 6.1 before 6.1.0.33, and 7.0 before 7.0.0.11, as used in IBM WebSphere Application Server (WAS) on z/OS, does not properly handle a large HTTP request body in uploading over SSL, which might allow remote attackers to cause a denial of service (daemon fail) via an upload.
1854| [CVE-2010-2267] Multiple cross-site scripting (XSS) vulnerabilities in Accoria Web Server (aka Rock Web Server) 1.4.7 allow remote attackers to inject arbitrary web script or HTML via (1) the query string to the getenv sample program, (2) the desc parameter to loadstatic.cgi, (3) the name parameter to httpdcfg.cgi, or (4) the dns parameter to servercfg.cgi.
1855| [CVE-2010-2068] mod_proxy_http.c in mod_proxy_http in the Apache HTTP Server 2.2.9 through 2.2.15, 2.3.4-alpha, and 2.3.5-alpha on Windows, NetWare, and OS/2, in certain configurations involving proxy worker pools, does not properly detect timeouts, which allows remote attackers to obtain a potentially sensitive response intended for a different client in opportunistic circumstances via a normal HTTP request.
1856| [CVE-2010-1908] The SdcUser.TgConCtl ActiveX control in tgctlcm.dll in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance does not properly restrict access to the HTTPDownloadFile, HTTPGetFile, Install, and RunCmd methods, which allows remote attackers to execute arbitrary programs via a URL in the url argument to (1) HTTPDownloadFile or (2) HTTPGetFile.
1857| [CVE-2010-1767] Cross-site request forgery (CSRF) vulnerability in loader/DocumentThreadableLoader.cpp in WebCore in WebKit before r57041, as used in Google Chrome before 4.1.249.1059, allows remote attackers to hijack the authentication of unspecified victims via a crafted synchronous preflight XMLHttpRequest operation.
1858| [CVE-2010-1760] loader/DocumentThreadableLoader.cpp in the XMLHttpRequest implementation in WebCore in WebKit before r58409 does not properly handle credentials during a cross-origin synchronous request, which has unspecified impact and remote attack vectors, aka rdar problem 7905150.
1859| [CVE-2010-1622] SpringSource Spring Framework 2.5.x before 2.5.6.SEC02, 2.5.7 before 2.5.7.SR01, and 3.0.x before 3.0.3 allows remote attackers to execute arbitrary code via an HTTP request containing class.classLoader.URLs[0]=jar: followed by a URL of a crafted .jar file.
1860| [CVE-2010-1197] Mozilla Firefox 3.5.x before 3.5.10 and 3.6.x before 3.6.4, and SeaMonkey before 2.0.5, does not properly handle situations in which both "Content-Disposition: attachment" and "Content-Type: multipart" are present in HTTP headers, which allows remote attackers to conduct cross-site scripting (XSS) attacks via an uploaded HTML document.
1861| [CVE-2010-0652] Microsoft Internet Explorer permits cross-origin loading of CSS stylesheets even when the stylesheet download has an incorrect MIME type and the stylesheet document is malformed, which allows remote HTTP servers to obtain sensitive information via a crafted document.
1862| [CVE-2010-0643] Google Chrome before 4.0.249.89 attempts to make direct connections to web sites when all configured proxy servers are unavailable, which allows remote HTTP servers to obtain potentially sensitive information about the identity of a client user via standard HTTP logging, as demonstrated by a proxy server that was configured for the purpose of anonymity.
1863| [CVE-2010-0597] Unspecified vulnerability in Cisco Mediator Framework 1.5.1 before 1.5.1.build.14-eng, 2.2 before 2.2.1.dev.1, and 3.0 before 3.0.9.release.1 on the Cisco Network Building Mediator NBM-2400 and NBM-4800 and the Richards-Zeta Mediator 2500 allows remote authenticated users to read or modify the device configuration, and gain privileges or cause a denial of service (device reload), via a (1) XML RPC or (2) XML RPC over HTTPS request, aka Bug ID CSCtb83618.
1864| [CVE-2010-0425] modules/arch/win32/mod_isapi.c in mod_isapi in the Apache HTTP Server 2.0.37 through 2.0.63, 2.2.0 through 2.2.14, and 2.3.x before 2.3.7, when running on Windows, does not ensure that request processing is complete before calling isapi_unload for an ISAPI .dll module, which allows remote attackers to execute arbitrary code via unspecified vectors related to a crafted request, a reset packet, and "orphaned callback pointers."
1865| [CVE-2010-0408] The ap_proxy_ajp_request function in mod_proxy_ajp.c in mod_proxy_ajp in the Apache HTTP Server 2.2.x before 2.2.15 does not properly handle certain situations in which a client sends no request body, which allows remote attackers to cause a denial of service (backend server outage) via a crafted request, related to use of a 500 error code instead of the appropriate 400 error code.
1866| [CVE-2010-0155] CRLF injection vulnerability in load.php in the Local Management Interface (LMI) on the IBM Proventia Network Mail Security System (PNMSS) appliance with firmware before 2.5 allows remote authenticated users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the javaVersion parameter.
1867| [CVE-2010-0010] Integer overflow in the ap_proxy_send_fb function in proxy/proxy_util.c in mod_proxy in the Apache HTTP Server before 1.3.42 on 64-bit platforms allows remote origin servers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a large chunk size that triggers a heap-based buffer overflow.
1868| [CVE-2009-4509] The administrative web console on the TANDBERG Video Communication Server (VCS) before X4.3 uses predictable session cookies in (1) tandberg/web/lib/secure.php and (2) tandberg/web/user/lib/secure.php, which makes it easier for remote attackers to bypass authentication, and execute arbitrary code by loading a custom software update, via a crafted "Cookie: tandberg_login=" HTTP header.
1869| [CVE-2009-4140] Unrestricted file upload vulnerability in ofc_upload_image.php in Open Flash Chart v2 Beta 1 through v2 Lug Wyrm Charmer, as used in Piwik 0.2.35 through 0.4.3, Woopra Analytics Plugin before 1.4.3.2, and possibly other products, when register_globals is enabled, allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension through the name parameter with the code in the HTTP_RAW_POST_DATA parameter, then accessing it via a direct request to the file in tmp-upload-images/.
1870| [CVE-2009-3890] Unrestricted file upload vulnerability in the wp_check_filetype function in wp-includes/functions.php in WordPress before 2.8.6, when a certain configuration of the mod_mime module in the Apache HTTP Server is enabled, allows remote authenticated users to execute arbitrary code by posting an attachment with a multiple-extension filename, and then accessing this attachment via a direct request to a wp-content/uploads/ pathname, as demonstrated by a .php.jpg filename.
1871| [CVE-2009-3693] Directory traversal vulnerability in the Persits.XUpload.2 ActiveX control (XUpload.ocx) in HP LoadRunner 9.5 allows remote attackers to create arbitrary files via \.. (backwards slash dot dot) sequences in the third argument to the MakeHttpRequest method.
1872| [CVE-2009-3095] The mod_proxy_ftp module in the Apache HTTP Server allows remote attackers to bypass intended access restrictions and send arbitrary commands to an FTP server via vectors related to the embedding of these commands in the Authorization HTTP header, as demonstrated by a certain module in VulnDisco Pack Professional 8.11.
1873| [CVE-2009-3094] The ap_proxy_ftp_handler function in modules/proxy/proxy_ftp.c in the mod_proxy_ftp module in the Apache HTTP Server 2.0.63 and 2.2.13 allows remote FTP servers to cause a denial of service (NULL pointer dereference and child process crash) via a malformed reply to an EPSV command.
1874| [CVE-2009-2582] Stack-based buffer overflow in manager.exe in Akamai Download Manager (aka DLM or dlmanager) before 2.2.4.8 allows remote web servers to execute arbitrary code via a malformed HTTP response during a Redswoosh download, a different vulnerability than CVE-2007-1891 and CVE-2007-1892.
1875| [CVE-2009-2072] Apple Safari does not require a cached certificate before displaying a lock icon for an https web site, which allows man-in-the-middle attackers to spoof an arbitrary https site by sending the browser a crafted (1) 4xx or (2) 5xx CONNECT response page for an https request sent through a proxy server.
1876| [CVE-2009-2071] Google Chrome before 1.0.154.53 displays a cached certificate for a (1) 4xx or (2) 5xx CONNECT response page returned by a proxy server, which allows man-in-the-middle attackers to spoof an arbitrary https site by letting a browser obtain a valid certificate from this site during one request, and then sending the browser a crafted 502 response page upon a subsequent request.
1877| [CVE-2009-2070] Opera displays a cached certificate for a (1) 4xx or (2) 5xx CONNECT response page returned by a proxy server, which allows man-in-the-middle attackers to spoof an arbitrary https site by letting a browser obtain a valid certificate from this site during one request, and then sending the browser a crafted 502 response page upon a subsequent request.
1878| [CVE-2009-2069] Microsoft Internet Explorer before 8 displays a cached certificate for a (1) 4xx or (2) 5xx CONNECT response page returned by a proxy server, which allows man-in-the-middle attackers to spoof an arbitrary https site by letting a browser obtain a valid certificate from this site during one request, and then sending the browser a crafted 502 response page upon a subsequent request.
1879| [CVE-2009-2068] Google Chrome detects http content in https web pages only when the top-level frame uses https, which allows man-in-the-middle attackers to execute arbitrary web script, in an https site's context, by modifying an http page to include an https iframe that references a script file on an http site, related to "HTTP-Intended-but-HTTPS-Loadable (HPIHSL) pages."
1880| [CVE-2009-2067] Opera detects http content in https web pages only when the top-level frame uses https, which allows man-in-the-middle attackers to execute arbitrary web script, in an https site's context, by modifying an http page to include an https iframe that references a script file on an http site, related to "HTTP-Intended-but-HTTPS-Loadable (HPIHSL) pages."
1881| [CVE-2009-2066] Apple Safari detects http content in https web pages only when the top-level frame uses https, which allows man-in-the-middle attackers to execute arbitrary web script, in an https site's context, by modifying an http page to include an https iframe that references a script file on an http site, related to "HTTP-Intended-but-HTTPS-Loadable (HPIHSL) pages."
1882| [CVE-2009-2065] Mozilla Firefox 3.0.10, and possibly other versions, detects http content in https web pages only when the top-level frame uses https, which allows man-in-the-middle attackers to execute arbitrary web script, in an https site's context, by modifying an http page to include an https iframe that references a script file on an http site, related to "HTTP-Intended-but-HTTPS-Loadable (HPIHSL) pages."
1883| [CVE-2009-2064] Microsoft Internet Explorer 8, and possibly other versions, detects http content in https web pages only when the top-level frame uses https, which allows man-in-the-middle attackers to execute arbitrary web script, in an https site's context, by modifying an http page to include an https iframe that references a script file on an http site, related to "HTTP-Intended-but-HTTPS-Loadable (HPIHSL) pages."
1884| [CVE-2009-2060] src/net/http/http_transaction_winhttp.cc in Google Chrome before 1.0.154.53 uses the HTTP Host header to determine the context of a document provided in a (1) 4xx or (2) 5xx CONNECT response from a proxy server, which allows man-in-the-middle attackers to execute arbitrary web script by modifying this CONNECT response, aka an "SSL tampering" attack.
1885| [CVE-2009-2059] Opera, possibly before 9.25, uses the HTTP Host header to determine the context of a document provided in a (1) 4xx or (2) 5xx CONNECT response from a proxy server, which allows man-in-the-middle attackers to execute arbitrary web script by modifying this CONNECT response, aka an "SSL tampering" attack.
1886| [CVE-2009-2058] Apple Safari before 3.2.2 uses the HTTP Host header to determine the context of a document provided in a (1) 4xx or (2) 5xx CONNECT response from a proxy server, which allows man-in-the-middle attackers to execute arbitrary web script by modifying this CONNECT response, aka an "SSL tampering" attack.
1887| [CVE-2009-2057] Microsoft Internet Explorer before 8 uses the HTTP Host header to determine the context of a document provided in a (1) 4xx or (2) 5xx CONNECT response from a proxy server, which allows man-in-the-middle attackers to execute arbitrary web script by modifying this CONNECT response, aka an "SSL tampering" attack.
1888| [CVE-2009-1890] The stream_reqbody_cl function in mod_proxy_http.c in the mod_proxy module in the Apache HTTP Server before 2.3.3, when a reverse proxy is configured, does not properly handle an amount of streamed data that exceeds the Content-Length value, which allows remote attackers to cause a denial of service (CPU consumption) via crafted requests.
1889| [CVE-2009-1836] Mozilla Firefox before 3.0.11, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.17 use the HTTP Host header to determine the context of a document provided in a non-200 CONNECT response from a proxy server, which allows man-in-the-middle attackers to execute arbitrary web script by modifying this CONNECT response, aka an "SSL tampering" attack.
1890| [CVE-2009-1567] Multiple stack-based buffer overflows in the Lateral Arts Photobox uploader ActiveX control 1.x before 1.3, and 2.2.0.6, allow remote attackers to execute arbitrary code via a long URL string for the (1) LogURL, (2) ConnectURL, (3) SkinURL, (4) AlbumCreateURL, (5) ErrorURL, or (6) httpsinglehost property value.
1891| [CVE-2009-1476] Buffer overflow in lib/load_http.c in ippool in Darren Reed IPFilter (aka IP Filter) 4.1.31 allows local users to gain privileges via vectors involving a long hostname in a URL.
1892| [CVE-2009-1211] Blue Coat ProxySG, when transparent interception mode is enabled, uses the HTTP Host header to determine the remote endpoint, which allows remote attackers to bypass access controls for Flash, Java, Silverlight, and probably other technologies, and possibly communicate with restricted intranet sites, via a crafted web page that causes a client to send HTTP requests with a modified Host header.
1893| [CVE-2009-1191] mod_proxy_ajp.c in the mod_proxy_ajp module in the Apache HTTP Server 2.2.11 allows remote attackers to obtain sensitive response data, intended for a client that sent an earlier POST request with no request body, via an HTTP request.
1894| [CVE-2009-1166] The administrative web interface on the Cisco Wireless LAN Controller (WLC) platform 4.x before 4.2.205.0 and 5.x before 5.2.191.0, as used in Cisco 1500 Series, 2000 Series, 2100 Series, 4100 Series, 4200 Series, and 4400 Series Wireless Services Modules (WiSM), WLC Modules for Integrated Services Routers, and Catalyst 3750G Integrated Wireless LAN Controllers, allows remote attackers to cause a denial of service (device reload) via a crafted (1) HTTP or (2) HTTPS request, aka Bug ID CSCsy27708.
1895| [CVE-2009-1164] The administrative web interface on the Cisco Wireless LAN Controller (WLC) platform 4.2 before 4.2.205.0 and 5.x before 5.2.178.0, as used in Cisco 1500 Series, 2000 Series, 2100 Series, 4100 Series, 4200 Series, and 4400 Series Wireless Services Modules (WiSM), WLC Modules for Integrated Services Routers, and Catalyst 3750G Integrated Wireless LAN Controllers, allows remote attackers to cause a denial of service (device reload) via a malformed response to a (1) HTTP or (2) HTTPS authentication request, aka Bug ID CSCsx03715.
1896| [CVE-2009-1156] Unspecified vulnerability on Cisco Adaptive Security Appliances (ASA) 5500 Series devices 8.0 before 8.0(4)25 and 8.1 before 8.1(2)15, when an SSL VPN or ASDM access is configured, allows remote attackers to cause a denial of service (device reload) via a crafted (1) SSL or (2) HTTP packet.
1897| [CVE-2009-0804] Ziproxy 2.6.0, when transparent interception mode is enabled, uses the HTTP Host header to determine the remote endpoint, which allows remote attackers to bypass access controls for Flash, Java, Silverlight, and probably other technologies, and possibly communicate with restricted intranet sites, via a crafted web page that causes a client to send HTTP requests with a modified Host header.
1898| [CVE-2009-0626] The SSLVPN feature in Cisco IOS 12.3 through 12.4 allows remote attackers to cause a denial of service (device reload or hang) via a crafted HTTPS packet.
1899| [CVE-2009-0187] Stack-based buffer overflow in Orbit Downloader 2.8.2 and 2.8.3, and possibly other versions before 2.8.5, allows remote attackers to execute arbitrary code via a crafted HTTP URL with a long host name, which is not properly handled when constructing a "Connecting" log message.
1900| [CVE-2009-0183] Stack-based buffer overflow in Remote Control Server in Free Download Manager (FDM) 2.5 Build 758 and 3.0 Build 844 allows remote attackers to execute arbitrary code via a long Authorization header in an HTTP request.
1901| [CVE-2009-0033] Apache Tomcat 4.1.0 through 4.1.39, 5.5.0 through 5.5.27, and 6.0.0 through 6.0.18, when the Java AJP connector and mod_jk load balancing are used, allows remote attackers to cause a denial of service (application outage) via a crafted request with invalid headers, related to temporary blocking of connectors that have encountered errors, as demonstrated by an error involving a malformed HTTP Host header.
1902| [CVE-2008-7250] Cross-site scripting (XSS) vulnerability in Squid Analysis Report Generator (Sarg) 2.2.4 allows remote attackers to inject arbitrary web script or HTML via a JavaScript onload event in the User-Agent header, which is not properly handled when displaying the Squid proxy log. NOTE: this issue exists because of an incomplete fix for CVE-2008-1168.
1903| [CVE-2008-7193] PHPKIT 1.6.4 PL1 includes the session ID in the URL, which allows remote attackers to conduct cross-site request forgery (CSRF) attacks by reading the PHPKITSID parameter from the HTTP Referer and using it in a request to (1) modify the user profile via upload_files/include.php or (2) create a new administrator via upload_files/pk/include.php.
1904| [CVE-2008-7139] Multiple cross-site request forgery (CSRF) vulnerabilities in WS-Proxy in Eye-Fi 1.1.2 allow remote attackers to hijack the authentication of users for requests that modify configuration via a SOAPAction parameter of (1) urn:SetOptions for autostart, (2) urn:SetDesktopSync for file upload, or (3) urn:SetFolderConfig for file download location or modification of authentication credentials
1905| [CVE-2008-6882] Live Chat (com_livechat) component 1.0 for Joomla! allows remote attackers to use the xmlhttp.php script as an open HTTP proxy to hide network scanning activities or scan internal networks via a GET request with a full URL in the query string.
1906| [CVE-2008-6638] Insecure method vulnerability in the Versalsoft HTTP Image Uploader ActiveX control (UUploaderSvrD.dll 6.0.0.35) allows remote attackers to delete arbitrary files via the RemoveFileOrDir method.
1907| [CVE-2008-5905] The web interface plugin in KTorrent before 3.1.4 allows remote attackers to bypass intended access restrictions and upload arbitrary torrent files, and trigger the start of downloads and seeding, via a crafted HTTP POST request.
1908| [CVE-2008-5825] The SmartPoster implementation on the Nokia 6131 Near Field Communication (NFC) phone with 05.12 firmware does not properly display the URI record when the Title record contains a certain combination of space, CR (aka \r), and . (dot) characters, which allows remote attackers to trick a user into loading an arbitrary URI via a crafted NDEF tag, as demonstrated by (1) an http: URI for a malicious web site, (2) a tel: URI for a premium-rate telephone number, and (3) an sms: URI that triggers purchase of a ringtone.
1909| [CVE-2008-5404] Insecure method vulnerability in the FlexCell.Grid ActiveX control in FlexCell.ocx 5.7.0.1 in FlexCell Grid ActiveX Component allows remote attackers to create and overwrite arbitrary files via the HttpDownloadFile method. NOTE: this could be leveraged for code execution by creating executable files in Startup folders or by accessing files using hcp:// URLs. NOTE: the provenance of this information is unknown
1910| [CVE-2008-4541] Heap-based buffer overflow in the FTP subsystem in Sun Java System Web Proxy Server 4.0 through 4.0.7 allows remote attackers to execute arbitrary code via a crafted HTTP GET request.
1911| [CVE-2008-4493] Microsoft PicturePusher ActiveX control (PipPPush.DLL 7.00.0709), as used in Microsoft Digital Image 2006 Starter Edition, allows remote attackers to force the upload of arbitrary files by using the AddString and Post methods and a modified PostURL to construct an HTTP POST request. NOTE: this issue might only be exploitable in limited environments or non-default browser settings.
1912| [CVE-2008-4198] Opera before 9.52, when rendering an http page that has loaded an https page into a frame, displays a padlock icon and offers a security information dialog reporting a secure connection, which might allow remote attackers to trick a user into performing unsafe actions on the http page.
1913| [CVE-2008-3878] Stack-based buffer overflow in the Ultra.OfficeControl ActiveX control in OfficeCtrl.ocx 2.0.2008.801 in Ultra Shareware Ultra Office Control allows remote attackers to execute arbitrary code via long strUrl, strFile, and strPostData parameters to the HttpUpload method.
1914| [CVE-2008-3812] Cisco IOS 12.4, when IOS firewall Application Inspection Control (AIC) with HTTP Deep Packet Inspection is enabled, allows remote attackers to cause a denial of service (device reload) via a malformed HTTP transit packet.
1915| [CVE-2008-3688] sockethandler.cpp in HTTP Antivirus Proxy (HAVP) 0.88 allows remote attackers to cause a denial of service (hang) by connecting to a non-responsive server, which triggers an infinite loop due to an uninitialized variable.
1916| [CVE-2008-2800] Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 allow remote attackers to bypass the Same Origin Policy and conduct cross-site scripting (XSS) attacks via vectors involving (1) an event handler attached to an outer window, (2) a SCRIPT element in an unloaded document, or (3) the onreadystatechange handler in conjunction with an XMLHttpRequest.
1917| [CVE-2008-2735] The HTTP server in Cisco Adaptive Security Appliance (ASA) 5500 devices 8.0 before 8.0(3)15 and 8.1 before 8.1(1)5, when configured as a clientless SSL VPN endpoint, does not properly process URIs, which allows remote attackers to cause a denial of service (device reload) via a URI in a crafted SSL or HTTP packet, aka Bug ID CSCsq19369.
1918| [CVE-2008-2558] CRE Loaded 6.2.13.1 and earlier does not set the "Secure" attribute for cookies that are sent over HTTPS, which might allow remote attackers to sniff the cookies if they are sent over HTTP.
1919| [CVE-2008-2364] The ap_proxy_http_process_response function in mod_proxy_http.c in the mod_proxy module in the Apache HTTP Server 2.0.63 and 2.2.8 does not limit the number of forwarded interim responses, which allows remote HTTP servers to cause a denial of service (memory consumption) via a large number of interim responses.
1920| [CVE-2008-1924] Unspecified vulnerability in phpMyAdmin before 2.11.5.2, when running on shared hosts, allows remote authenticated users with CREATE table permissions to read arbitrary files via a crafted HTTP POST request, related to use of an undefined UploadDir variable.
1921| [CVE-2008-1885] Directory traversal vulnerability in the NeffyLauncher 1.0.5 ActiveX control (NeffyLauncher.dll) in CDNetworks Nefficient Download allows remote attackers to download arbitrary code onto a client system via a .. (dot dot) in the SkinPath parameter and a .zip URL in the HttpSkin parameter. NOTE: this can be leveraged for code execution by writing to a Startup folder.
1922| [CVE-2008-1840] SQL injection vulnerability in upload.php in Coppermine Photo Gallery (CPG) 1.4.16 and earlier allows remote authenticated users or user-assisted remote HTTP servers to execute arbitrary SQL commands via the Content-Type HTTP response header provided by the HTTP server that is used for an upload.
1923| [CVE-2008-1531] The connection_state_machine function (connections.c) in lighttpd 1.4.19 and earlier, and 1.5.x before 1.5.0, allows remote attackers to cause a denial of service (active SSL connection loss) by triggering an SSL error, such as disconnecting before a download has finished, which causes all active SSL connections to be lost.
1924| [CVE-2008-1245] cgi-bin/setup_virtualserver.exe on the Belkin F5D7230-4 router with firmware 9.01.10 allows remote attackers to cause a denial of service (control center outage) via an HTTP request with invalid POST data and a "Connection: Keep-Alive" header.
1925| [CVE-2008-1106] The management interface in Akamai Client (formerly Red Swoosh) 3322 and earlier allows remote attackers to bypass authentication via an HTTP request that contains (1) no Referer header, or (2) a spoofed Referer header that matches an approved domain, which allows remote attackers to conduct cross-site request forgery (CSRF) attacks and force the client to download and execute arbitrary files.
1926| [CVE-2008-0971] Multiple cross-site scripting (XSS) vulnerabilities in index.cgi in Barracuda Spam Firewall (BSF) before 3.5.12.007, Message Archiver before 1.2.1.002, Web Filter before 3.3.0.052, IM Firewall before 3.1.01.017, and Load Balancer before 2.3.024 allow remote attackers to inject arbitrary web script or HTML via (1) the Policy Name field in Search Based Retention Policy in Message Archiver
1927| [CVE-2008-0456] CRLF injection vulnerability in the mod_negotiation module in the Apache HTTP Server 2.2.6 and earlier in the 2.2.x series, 2.0.61 and earlier in the 2.0.x series, and 1.3.39 and earlier in the 1.3.x series allows remote authenticated users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks by uploading a file with a multi-line name containing HTTP header sequences and a file extension, which leads to injection within a (1) "406 Not Acceptable" or (2) "300 Multiple Choices" HTTP response when the extension is omitted in a request for the file.
1928| [CVE-2008-0455] Cross-site scripting (XSS) vulnerability in the mod_negotiation module in the Apache HTTP Server 2.2.6 and earlier in the 2.2.x series, 2.0.61 and earlier in the 2.0.x series, and 1.3.39 and earlier in the 1.3.x series allows remote authenticated users to inject arbitrary web script or HTML by uploading a file with a name containing XSS sequences and a file extension, which leads to injection within a (1) "406 Not Acceptable" or (2) "300 Multiple Choices" HTTP response when the extension is omitted in a request for the file.
1929| [CVE-2008-0050] CFNetwork in Apple Mac OS X 10.4.11 allows remote HTTPS proxy servers to spoof secure websites via data in a 502 Bad Gateway error.
1930| [CVE-2007-6405] Sergey Lyubka Simple HTTPD (shttpd) 1.38 and earlier on Windows allows remote attackers to download arbitrary CGI programs or scripts via a URI with an appended (1) '+' character, (2) '.' character, (3) %2e sequence (hex-encoded dot), or (4) hex-encoded character greater than 0x7f. NOTE: the %20 vector is already covered by CVE-2007-3407.
1931| [CVE-2007-6385] The proxy server in Kerio WinRoute Firewall before 6.4.1 does not properly enforce authentication for HTTPS pages, which has unknown impact and attack vectors. NOTE: it is not clear whether this issue crosses privilege boundaries.
1932| [CVE-2007-5979] Cross-site scripting (XSS) vulnerability in download_plugin.php3 in F5 Firepass 4100 SSL VPN 5.4 through 5.5.2 and 6.0 through 6.0.1 allows remote attackers to inject arbitrary web script or HTML via the backurl parameter.
1933| [CVE-2007-5826] Absolute path traversal vulnerability in the EDraw Flowchart ActiveX control in EDImage.ocx 2.0.2005.1104 allows remote attackers to create or overwrite arbitrary files with arbitrary contents via a full pathname in the second argument to the HttpDownloadFile method, a different product than CVE-2007-4420.
1934| [CVE-2007-5796] Cross-site scripting (XSS) vulnerability in the management console in Blue Coat ProxySG before 4.2.6.1, and 5.x before 5.2.2.5, allows remote attackers to inject arbitrary web script or HTML by modifying the URL that is used for loading Certificate Revocation Lists.
1935| [CVE-2007-5570] Cisco Firewall Services Module (FWSM) 3.2(1), and 3.1(5) and earlier, allows remote attackers to cause a denial of service (device reload) via a crafted HTTPS request, aka CSCsi77844.
1936| [CVE-2007-5156] Incomplete blacklist vulnerability in editor/filemanager/upload/php/upload.php in FCKeditor, as used in SiteX CMS 0.7.3.beta, La-Nai CMS, Syntax CMS, Cardinal Cms, and probably other products, allows remote attackers to upload and execute arbitrary PHP code via a file whose name contains ".php." and has an unknown extension, which is recognized as a .php file by the Apache HTTP server, a different vulnerability than CVE-2006-0658 and CVE-2006-2529.
1937| [CVE-2007-5034] ELinks before 0.11.3, when sending a POST request for an https URL, appends the body and content headers of the POST request to the CONNECT request in cleartext, which allows remote attackers to sniff sensitive data that would have been protected by TLS. NOTE: this issue only occurs when a proxy is defined for https.
1938| [CVE-2007-4821] Buffer overflow in a certain ActiveX control in officeviewer.ocx 5.2.218.1 in EDraw Office Viewer Component 5.2 allows remote attackers to execute arbitrary code via a long first argument to the HttpDownloadFileToTempDir method, a different vulnerability than CVE-2007-3169.
1939| [CVE-2007-4727] Buffer overflow in the fcgi_env_add function in mod_proxy_backend_fastcgi.c in the mod_fastcgi extension in lighttpd before 1.4.18 allows remote attackers to overwrite arbitrary CGI variables and execute arbitrary code via an HTTP request with a long content length, as demonstrated by overwriting the SCRIPT_FILENAME variable, aka a "header overflow."
1940| [CVE-2007-4540] Multiple SQL injection vulnerabilities in download.php in Olate Download (od) 3.4.2 allow remote attackers to execute arbitrary SQL commands via the (1) HTTP_REFERER or (2) HTTP_USER_AGENT HTTP header.
1941| [CVE-2007-4420] Absolute path traversal vulnerability in a certain ActiveX control in officeviewer.ocx 5.1.199.1 in EDraw Office Viewer Component 5.1 allows remote attackers to create or overwrite arbitrary files via a full pathname in the second argument to the HttpDownloadFile method, a different vulnerability than CVE-2007-3168 and CVE-2007-3169.
1942| [CVE-2007-3389] Wireshark before 0.99.6 allows remote attackers to cause a denial of service (crash) via a crafted chunked encoding in an HTTP response, possibly related to a zero-length payload.
1943| [CVE-2007-3169] Buffer overflow in a certain ActiveX control in the EDraw Office Viewer Component (edrawofficeviewer.ocx) 4.0.5.20, and other versions before 5.0, allows remote attackers to cause a denial of service (Internet Explorer 7 crash) or execute arbitrary code via a long first argument to the HttpDownloadFile method.
1944| [CVE-2007-2695] The HttpClusterServlet and HttpProxyServlet in BEA WebLogic Express and WebLogic Server 6.1 through SP7, 7.0 through SP7, 8.1 through SP5, 9.0, and 9.1, when SecureProxy is enabled, may process "external requests on behalf of a system identity," which allows remote attackers to access administrative data or functionality.
1945| [CVE-2007-2588] Multiple buffer overflows in the Office Viewer OCX ActiveX control (oa.ocx) 3.2 allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long argument to the (1) HttpDownloadFile, (2) Open, (3) OpenWebFile, (4) DoOleCommand, (5) FTPDownloadFile, (6) FTPUploadFile, (7) HttpUploadFile, (8) Save, or (9) SaveWebFile function.
1946| [CVE-2007-2563] Buffer overflow in the AddFile function in VersalSoft HTTP File Upload ActiveX control (UFileUploaderD.dll) allows remote attackers to execute arbitrary code via a long argument.
1947| [CVE-2007-2496] The WordOCX ActiveX control in WordViewer.ocx 3.2.0.5 allows remote attackers to cause a denial of service (Internet Explorer 7 crash) via a long (1) DoOleCommand, (2) FTPDownloadFile, (3) FTPUploadFile, (4) HttpUploadFile, (5) GotoPage, (6) Save, (7) SaveWebFile, (8) HttpDownloadFile, (9) Open, (10) OpenWebFile, (11) SaveAs, or (12) ShowWordStandardDialog property value.
1948| [CVE-2007-2495] Multiple stack-based buffer overflows in the ExcelOCX ActiveX control in ExcelViewer.ocx 3.1.0.6 allow remote attackers to cause a denial of service (Internet Explorer 7 crash) via a long (1) DoOleCommand, (2) FTPDownloadFile, (3) FTPUploadFile, (4) HttpUploadFile, (5) Save, (6) SaveWebFile, (7) HttpDownloadFile, (8) Open, or (9) OpenWebFile property value. NOTE: some of these details are obtained from third party information.
1949| [CVE-2007-2494] Multiple stack-based buffer overflows in the PowerPointOCX ActiveX control in PowerPointViewer.ocx 3.1.0.3 allow remote attackers to cause a denial of service (Internet Explorer 7 crash) via a long (1) DoOleCommand, (2) FTPDownloadFile, (3) FTPUploadFile, (4) HttpUploadFile, (5) Save, (6) SaveWebFile, (7) HttpDownloadFile, (8) Open, or (9) OpenWebFile property value. NOTE: some of these details are obtained from third party information.
1950| [CVE-2007-2197] Race condition in the NeatUpload ASP.NET component 1.2.11 through 1.2.16, 1.1.18 through 1.1.23, and trunk.379 through trunk.445 allows remote attackers to obtain other clients' HTTP responses via multiple simultaneous requests, which triggers multiple calls to HttpWorkerRequest.FlushResponse for the same HttpWorkerRequest object and causes a buffer to be reused for a different request.
1951| [CVE-2007-2031] Buffer overflow in the HTTP proxy service for 3proxy 0.5 to 0.5.3g, and 0.6b-devel before 20070413, might allow remote attackers to execute arbitrary code via crafted transparent requests.
1952| [CVE-2007-1552] Unrestricted file upload vulnerability in usercp.php in MetaForum 0.513 Beta restricts file types based on the MIME type in the Content-type HTTP header, which allows remote attackers to upload and execute arbitrary scripts via an image MIME type with a filename containing an executable extension such as .php.
1953| [CVE-2007-1459] Multiple PHP remote file inclusion vulnerabilities in WebCreator 0.2.6-rc3 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the moddir parameter to (1) content/load.inc.php, (2) config/load.inc.php, (3) http/load.inc.php, and unspecified other files.
1954| [CVE-2007-1225] The connection log file implementation in Grok Developments NetProxy 4.03 does not record requests that omit http:// in a URL, which might allow remote attackers to conduct unauthorized activities and avoid detection.
1955| [CVE-2007-1224] Grok Developments NetProxy 4.03 allows remote attackers to bypass URL filtering via a request that omits "http://" from the URL and specifies the destination port (:80).
1956| [CVE-2007-0972] Unrestricted file upload vulnerability in modules/emoticons.php in Jupiter CMS 1.1.5 allows remote attackers to upload arbitrary files by modifying the HTTP request to send an image content type, and to omit is_guest and is_user parameters. NOTE: this issue might be related to CVE-2006-4875.
1957| [CVE-2007-0796] Blue Coat Systems WinProxy 6.1a and 6.0 r1c, and possibly earlier, allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long HTTP CONNECT request, which triggers heap corruption.
1958| [CVE-2007-0450] Directory traversal vulnerability in Apache HTTP Server and Tomcat 5.x before 5.5.22 and 6.x before 6.0.10, when using certain proxy modules (mod_proxy, mod_rewrite, mod_jk), allows remote attackers to read arbitrary files via a .. (dot dot) sequence with combinations of (1) "/" (slash), (2) "\" (backslash), and (3) URL-encoded backslash (%5C) characters in the URL, which are valid separators in Tomcat but not in Apache.
1959| [CVE-2007-0419] The BEA WebLogic Server proxy plug-in before June 2006 for the Apache HTTP Server does not properly handle protocol errors, which allows remote attackers to cause a denial of service (server outage).
1960| [CVE-2006-6511] dadaIMC .99.3 uses an insufficiently restrictive FilesMatch directive in the installed .htaccess file, which allows remote attackers to execute arbitrary PHP code by uploading files whose names contain (1) feature, (2) editor, (3) newswire, (4) otherpress, (5) admin, (6) pbook, (7) media, or (8) mod, which are processed as PHP file types (application/x-httpd-php).
1961| [CVE-2006-6361] Heap-based buffer overflow in the uploadprogress_php_rfc1867_file function in uploadprogress.c in Bitflux Upload Progress Meter before 8276 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via crafted HTTP POST fileupload requests.
1962| [CVE-2006-6276] HTTP request smuggling vulnerability in Sun Java System Proxy Server before 20061130, when used with Sun Java System Application Server or Sun Java System Web Server, allows remote attackers to bypass HTTP request filtering, hijack web sessions, perform cross-site scripting (XSS), and poison web caches via unspecified attack vectors.
1963| [CVE-2006-5596] Directory traversal vulnerability in the SSL server in AEP Smartgate 4.3b allows remote attackers to download arbitrary files via ..\ (dot dot backslash) sequences in an HTTP GET request.
1964| [CVE-2006-5037] ** DISPUTED ** MySource Matrix after 3.8 allows remote attackers to use the application as an HTTP proxy server via a MIME encoded URL in the sq_content_src parameter to access arbitrary sites with the server's IP address and conduct cross-site scripting (XSS) attacks. NOTE: the researcher reports that "The vendor does not consider this a vulnerability."
1965| [CVE-2006-5036] ** DISPUTED ** MySource Matrix 3.8 and earlier, and MySource 2.x, allow remote attackers to use the application as an HTTP proxy server via the sq_remote_page_url parameter to access arbitrary sites with the server's IP address and conduct cross-site scripting (XSS) attacks. NOTE: the researcher reports that "The vendor does not consider this a vulnerability."
1966| [CVE-2006-4558] DeluxeBB 1.06 and earlier, when run on the Apache HTTP Server with the mod_mime module, allows remote attackers to execute arbitrary PHP code by uploading files with double extensions via the fileupload parameter in a newthread action in newpost.php.
1967| [CVE-2006-4409] The Online Certificate Status Protocol (OCSP) service in the Security Framework in Apple Mac OS X 10.4 through 10.4.8 retrieve certificate revocation lists (CRL) when an HTTP proxy is in use, which could cause the system to accept certificates that have been revoked.
1968| [CVE-2006-4197] Multiple buffer overflows in libmusicbrainz (aka mb_client or MusicBrainz Client Library) 2.1.2 and earlier, and SVN 8406 and earlier, allow remote attackers to cause a denial of service (crash) or execute arbitrary code via (1) a long Location header by the HTTP server, which triggers an overflow in the MBHttp::Download function in lib/http.cpp
1969| [CVE-2006-4111] Ruby on Rails before 1.1.5 allows remote attackers to execute Ruby code with "severe" or "serious" impact via a File Upload request with an HTTP header that modifies the LOAD_PATH variable, a different vulnerability than CVE-2006-4112.
1970| [CVE-2006-3935] system/workplace/views/admin/admin-main.jsp in Alkacon OpenCms before 6.2.2 does not restrict access to administrator functions, which allows remote authenticated users to (1) send broadcast messages to all users (/workplace/broadcast), (2) list all users (/accounts/users), (3) add webusers (/accounts/webusers/new), (4) upload database import and export files (/database/importhttp), (5) upload arbitrary program modules (/modules/modules_import), and (6) read the log file (/workplace/logfileview) by setting the appropriate value for the path parameter in a direct request to admin-main.jsp.
1971| [CVE-2006-3830] The Languages selection in the admin interface in Kailash Nadh boastMachine (formerly bMachine) 3.1 and earlier allows remote authenticated administrators to upload files with arbitrary extensions to the bmc/Inc/Lang directory. NOTE: because the uploaded files cannot be accessed through HTTP, this issue is a vulnerability only if there is a likely usage pattern in which the files would be opened or executed by local users, e.g., malware files with names that entice local users to open the files.
1972| [CVE-2006-3731] Mozilla Firefox 1.5.0.4 and earlier allows remote user-assisted attackers to cause a denial of service (crash) via a form with a multipart/form-data encoding and a user-uploaded file. NOTE: a third party has claimed that this issue might be related to the LiveHTTPHeaders extension.
1973| [CVE-2006-3549] services/go.php in Horde Application Framework 3.0.0 through 3.0.10 and 3.1.0 through 3.1.1 does not properly restrict its image proxy capability, which allows remote attackers to perform "Web tunneling" attacks and use the server as a proxy via (1) http, (2) https, and (3) ftp URL in the url parameter, which is requested from the server.
1974| [CVE-2006-3070] write_ok.php in Zeroboard 4.1 pl8, when installed on Apache with mod_mime, allows remote attackers to bypass restrictions for uploading files with executable extensions by uploading a .htaccess file that with an AddType directive that assigns an executable module to files with assumed-safe extensions, as demonstrated by assigning the txt extension to be handled by application/x-httpd-php.
1975| [CVE-2006-2926] Stack-based buffer overflow in the WWW Proxy Server of Qbik WinGate 6.1.1.1077 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long URL HTTP request.
1976| [CVE-2006-2786] HTTP response smuggling vulnerability in Mozilla Firefox and Thunderbird before 1.5.0.4, when used with certain proxy servers, allows remote attackers to cause Firefox to interpret certain responses as if they were responses from two different sites via (1) invalid HTTP response headers with spaces between the header name and the colon, which might not be ignored in some cases, or (2) HTTP 1.1 headers through an HTTP 1.0 proxy, which are ignored by the proxy but processed by the client.
1977| [CVE-2006-2341] The HTTP proxy in Symantec Gateway Security 5000 Series 2.0.1 and 3.0, and Enterprise Firewall 8.0, when NAT is being used, allows remote attackers to determine internal IP addresses by using malformed HTTP requests, as demonstrated using a get request without a space separating the URI.
1978| [CVE-2006-2330] PHP-Fusion 6.00.306 and earlier, running under Apache HTTP Server 1.3.27 and PHP 4.3.3, allows remote authenticated users to upload files of arbitrary types using a filename that contains two or more extensions that ends in an assumed-valid extension such as .gif, which bypasses the validation, as demonstrated by uploading then executing an avatar file that ends in ".php.gif" and contains PHP code in EXIF metadata.
1979| [CVE-2006-1785] Adobe Document Server for Reader Extensions 6.0 allows remote authenticated users to inject arbitrary web script via a leading (1) ftp or (2) http URI in the ReaderURL variable in the "Update Download Site" section of ads-readerext. NOTE: it is not clear whether the vendor advisory addresses this issue. In addition, since the issue requires administrative privileges to exploit, it is not clear whether this crosses security boundaries.
1980| [CVE-2006-1645] Cross-site scripting (XSS) vulnerability in Anton Vlasov and Rostislav Gaitkuloff ReloadCMS 1.2.5 and earlier allows remote attackers to inject arbitrary web script or HTML and gain leverage to execute arbitrary PHP code via the User-Agent HTTP header, which is displayed by admin/modules/general/statistic.php in the administration panel.
1981| [CVE-2006-1631] Unspecified vulnerability in the HTTP compression functionality in Cisco CSS 11500 Series Content Services switches allows remote attackers to cause a denial of service (device reload) via (1) "valid, but obsolete" or (2) "specially crafted" HTTP requests.
1982| [CVE-2006-1218] Unspecified vulnerability in the HTTP proxy in Novell BorderManager 3.8 and earlier allows remote attackers to cause a denial of service (CPU consumption and ABEND) via unknown attack vectors related to "media streaming over HTTP 1.1".
1983| [CVE-2006-0483] Cisco VPN 3000 series concentrators running software 4.7.0 through 4.7.2.A allow remote attackers to cause a denial of service (device reload or user disconnect) via a crafted HTTP packet.
1984| [CVE-2005-4874] The XMLHttpRequest object in Mozilla 1.7.8 supports the HTTP TRACE method, which allows remote attackers to obtain (1) proxy authentication passwords via a request with a "Max-Forwards: 0" header or (2) arbitrary local passwords on the web server that hosts this object.
1985| [CVE-2005-4827] Internet Explorer 6.0, and possibly other versions, allows remote attackers to bypass the same origin security policy and make requests outside of the intended domain by calling open on an XMLHttpRequest object (Microsoft.XMLHTTP) and using tab, newline, and carriage return characters within the first argument (method name), which is supported by some proxy servers that convert tabs to spaces. NOTE: this issue can be leveraged to conduct referer spoofing, HTTP Request Smuggling, and other attacks.
1986| [CVE-2005-4814] Unrestricted file upload vulnerability in Segue CMS before 1.3.6, when the Apache HTTP Server handles .phtml files with the PHP interpreter, allows remote attackers to upload and execute arbitrary PHP code by placing .phtml files in the userfiles/ directory.
1987| [CVE-2005-3187] The listening daemon in Blue Coat Systems Inc. WinProxy before 6.1a allows remote attackers to cause a denial of service (crash) via a long HTTP request that causes an out-of-bounds read.
1988| [CVE-2005-2916] Linksys WRT54G 3.01.03, 3.03.6, 4.00.7, and possibly other versions before 4.20.7, does not verify user authentication until after an HTTP POST request has been processed, which allows remote attackers to (1) modify configuration using restore.cgi or (2) upload new firmware using upgrade.cgi.
1989| [CVE-2005-2830] Microsoft Internet Explorer 5.01, 5.5, and 6, when using an HTTPS proxy server that requires Basic Authentication, sends URLs in cleartext, which allows remote attackers to obtain sensitive information, aka "HTTPS Proxy Vulnerability."
1990| [CVE-2005-2730] The HTTP proxy in Astaro Security Linux 6.0 allows remote attackers to obtain sensitive information via an invalid request, which reveals a Proxy-authorization string in an error message.
1991| [CVE-2005-2729] The HTTP proxy in Astaro Security Linux 6.0 does not properly filter HTTP CONNECT requests to localhost, which allows remote attackers to bypass firewall rules and connect to local services.
1992| [CVE-2005-2088] The Apache HTTP server before 1.3.34, and 2.0.x before 2.0.55, when acting as an HTTP proxy, allows remote attackers to poison the web cache, bypass web application firewall protection, and conduct XSS attacks via an HTTP request with both a "Transfer-Encoding: chunked" header and a Content-Length header, which causes Apache to incorrectly handle and forward the body of the request in a way that causes the receiving server to process it as a separate HTTP request, aka "HTTP Request Smuggling."
1993| [CVE-2005-1857] Format string vulnerability in simpleproxy before 3.4 allows remote malicious HTTP proxies to execute arbitrary code via format string specifiers in a reply.
1994| [CVE-2005-1576] The file download dialog in Mozilla Firefox 0.10.1 and 1.0 for Windows uses the Content-Type HTTP header to determine the file type, but saves the original file extension when "Save to Disk" is selected, which allows remote attackers to hide the real file types of downloaded files.
1995| [CVE-2005-1575] The file download dialog in Mozilla Firefox 0.10.1 and 1.0 for Windows allows remote attackers to hide the real file types of downloaded files via the Content-Type HTTP header and a filename containing whitespace, dots, or ASCII byte 160.
1996| [CVE-2005-1340] The HTTP proxy service in Server Admin for Mac OS X 10.3.9 does not restrict access when it is enabled, which allows remote attackers to use the proxy.
1997| [CVE-2005-0943] Cisco VPN 3000 series Concentrator running firmware 4.1.7.A and earlier allows remote attackers to cause a denial of service (device reload or drop user connection) via a crafted HTTPS packet.
1998| [CVE-2005-0668] Unknown vulnerability in HTTP Anti Virus Proxy (HAVP) before 0.51 prevents viruses from being properly detected in certain files such as (1) .CAB or (2) .ZIP files.
1999| [CVE-2005-0657] Directory traversal vulnerability in Computalynx CProxy 3.3.x and 3.4.x through 3.4.4 allows remote attackers to read arbitrary files or cause a denial of service (application crash) via a .. (dot dot) in an HTTP request.
2000| [CVE-2005-0593] Firefox before 1.0.1 and Mozilla before 1.7.6 allows remote attackers to spoof the SSL "secure site" lock icon via (1) a web site that does not finish loading, which shows the lock of the previous site, (2) a non-HTTP server that uses SSL, which causes the lock to be displayed when the SSL handshake is completed, or (3) a URL that generates an HTTP 204 error, which updates the icon and location information but does not change the display of the original site.
2001| [CVE-2004-2582] Novell iChain 2.3 includes the build number in the VIA line of the proxy server's HTTP headers, which allows remote attackers to obtain sensitive information.
2002| [CVE-2004-2416] Buffer overflow in the logging component of CCProxy allows remote attackers to execute arbitrary code via a long HTTP GET request.
2003| [CVE-2004-2107] Finjan SurfinGate 6.0 and 7.0, when running in proxy mode, does not authenticate FHTTP commands on TCP port 3141, which allows remote attackers to use the finjan-parameter-type header to (1) restart the service, (2) use the getlastmsg command to view log information, or (3) use the online command to force a policy update from the database server.
2004| [CVE-2004-2061] RiSearch 1.0.01 and RiSearch Pro 3.2.06 allows remote attackers to use the show.pl script as an open proxy, or read arbitrary local files, by setting the url parameter to a (1) http://, (2) ftp://, or (3) file:// URL.
2005| [CVE-2004-1953] phProfession 2.5 allows remote attackers to gain sensitive information via a direct HTTP request to upload.php, which reveals the path in a PHP error message.
2006| [CVE-2004-1893] Dreamweaver MX, when "Using Driver On Testing Server" or "Using DSN on Testing Server" is selected, uploads the mmhttpdb.asp script to the web site but does not require authentication, which allows remote attackers to obtain sensitive information and possibly execute arbitrary SQL commands via a direct request to mmhttpdb.asp.
2007| [CVE-2004-1887] Ada Image Server (ImgSvr) 0.4 allows remote attackers to view directories or download files via an HTTP request with a trailing %00 (null).
2008| [CVE-2004-1811] The SSL HTTP Server in HP Web-enabled Management Software 5.0 through 5.92, with anonymous access enabled, allows remote attackers to compromise the trusted certificates by uploading their own certificates.
2009| [CVE-2004-1540] ZyXEL Prestige 623, 650, and 652 HW Routers, and possibly other versions, with HTTP Remote Administration enabled, does not require a password to access rpFWUpload.html, which allows remote attackers to reset the router configuration file.
2010| [CVE-2004-1484] Format string vulnerability in the _msg function in error.c in socat 1.4.0.3 and earlier, when used as an HTTP proxy client and run with the -ly option, allows remote attackers or local users to execute arbitrary code via format string specifiers in a syslog message.
2011| [CVE-2004-0989] Multiple buffer overflows in libXML 2.6.12 and 2.6.13 (libxml2), and possibly other versions, may allow remote attackers to execute arbitrary code via (1) a long FTP URL that is not properly handled by the xmlNanoFTPScanURL function, (2) a long proxy URL containing FTP data that is not properly handled by the xmlNanoFTPScanProxy function, and other overflows related to manipulation of DNS length values, including (3) xmlNanoFTPConnect, (4) xmlNanoHTTPConnectHost, and (5) xmlNanoHTTPConnectHost.
2012| [CVE-2004-0740] The HTTP server in Lexmark T522 and possibly other models allows remote attackers to cause a denial of service (server crash, reload, or hang) via an HTTP header with a long Host field, possibly triggering a buffer overflow.
2013| [CVE-2004-0700] Format string vulnerability in the mod_proxy hook functions function in ssl_engine_log.c in mod_ssl before 2.8.19 for Apache before 1.3.31 may allow remote attackers to execute arbitrary messages via format string specifiers in certain log messages for HTTPS that are handled by the ssl_log function.
2014| [CVE-2004-0684] WebSphere Edge Component Caching Proxy in WebSphere Edge Server 5.02, with the JunctionRewrite directive enabled, allows remote attackers to cause a denial of service via an HTTP GET request without any parameters.
2015| [CVE-2004-0613] osTicket allows remote attackers to view sensitive uploaded files and possibly execute arbitrary code via an HTTP request that uploads a PHP file to the ticket attachments directory.
2016| [CVE-2004-0596] The Equalizer Load-balancer for serial network interfaces (eql.c) in Linux kernel 2.6.x up to 2.6.7 allows local users to cause a denial of service via a non-existent device name that triggers a null dereference.
2017| [CVE-2004-0551] Cisco CatOS 5.x before 5.5(20) through 8.x before 8.2(2) and 8.3(2)GLX, as used in Catalyst switches, allows remote attackers to cause a denial of service (system crash and reload) by sending invalid packets instead of the final ACK portion of the three-way handshake to the (1) Telnet, (2) HTTP, or (3) SSH services, aka "TCP-ACK DoS attack."
2018| [CVE-2004-0549] The WebBrowser ActiveX control, or the Internet Explorer HTML rendering engine (MSHTML), as used in Internet Explorer 6, allows remote attackers to execute arbitrary code in the Local Security context by using the showModalDialog method and modifying the location to execute code such as Javascript, as demonstrated using (1) delayed HTTP redirect operations, and an HTTP response with a Location: header containing a "URL:" prepended to a "ms-its" protocol URI, or (2) modifying the location attribute of the window, as exploited by the Download.ject (aka Scob aka Toofer) using the ADODB.Stream object.
2019| [CVE-2004-0492] Heap-based buffer overflow in proxy_util.c for mod_proxy in Apache 1.3.25 to 1.3.31 allows remote attackers to cause a denial of service (process crash) and possibly execute arbitrary code via a negative Content-Length HTTP header field, which causes a large amount of data to be copied.
2020| [CVE-2004-0313] Buffer overflow in PSOProxy 0.91 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long HTTP request, as demonstrated using a long (1) GET argument or (2) method name.
2021| [CVE-2004-0049] Helix Universal Server/Proxy 9 and Mobile Server 10 allow remote attackers to cause a denial of service via certain HTTP POST messages to the Administration System port.
2022| [CVE-2004-0006] Multiple buffer overflows in Gaim 0.75 and earlier, and Ultramagnetic before 0.81, allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) cookies in a Yahoo web connection, (2) a long name parameter in the Yahoo login web page, (3) a long value parameter in the Yahoo login page, (4) a YMSG packet, (5) the URL parser, and (6) HTTP proxy connect.
2023| [CVE-2003-1286] HTTP Proxy in Sambar Server before 6.0 beta 6, when security.ini lacks a 127.0.0.1 proxydeny entry, allows remote attackers to send proxy HTTP requests to the Sambar Server's administrative interface and external web servers, by making a "Connection: keep-alive" request before the proxy requests.
2024| [CVE-2003-1159] Plug and Play Web Server Proxy 1.0002c allows remote attackers to cause a denial of service (server crash) via an invalid URI in an HTTP GET request to TCP port 8080.
2025| [CVE-2003-1028] The download function of Internet Explorer 6 SP1 allows remote attackers to obtain the cache directory name via an HTTP response with an invalid ContentType and a .htm file, which could allow remote attackers to bypass security mechanisms that rely on random names, as demonstrated by threadid10008.
2026| [CVE-2003-1001] Buffer overflow in the Cisco Firewall Services Module (FWSM) in Cisco Catalyst 6500 and 7600 series devices allows remote attackers to cause a denial of service (crash and reload) via HTTP auth requests for (1) TACACS+ or (2) RADIUS authentication.
2027| [CVE-2003-0963] Buffer overflows in (1) try_netscape_proxy and (2) try_squid_eplf for lftp 2.6.9 and earlier allow remote HTTP servers to execute arbitrary code via long directory names that are processed by the ls or rels commands.
2028| [CVE-2003-0807] Buffer overflow in the COM Internet Services and in the RPC over HTTP Proxy components for Microsoft Windows NT Server 4.0, NT 4.0 Terminal Server Edition, 2000, XP, and Server 2003 allows remote attackers to cause a denial of service via a crafted request.
2029| [CVE-2003-0803] Nokia Electronic Documentation (NED) 5.0 allows remote attackers to use NED as an open HTTP proxy via a URL in the location parameter, which NED accesses and returns to the user.
2030| [CVE-2003-0106] The HTTP proxy for Symantec Enterprise Firewall (SEF) 7.0 allows proxy users to bypass pattern matching for blocked URLs via requests that are URL-encoded with escapes, Unicode, or UTF-8.
2031| [CVE-2002-2414] Opera 6.0.3, when using Squid 2.4 for HTTPS proxying, does not properly handle when accepting a non-global certificate authority (CA) certificate from a site and establishing a subsequent HTTPS connection, which allows remote attackers to cause a denial of service (crash).
2032| [CVE-2002-2405] Check Point FireWall-1 4.1 and Next Generation (NG), with UserAuth configured to proxy HTTP traffic only, allows remote attackers to pass unauthorized HTTPS, FTP and possibly other traffic through the firewall.
2033| [CVE-2002-2286] The parse-get function in utils.c for apt-www-proxy 0.1 allows remote attackers to cause a denial of service (crash) via an empty HTTP request, which causes a null dereference.
2034| [CVE-2002-2081] cphost.dll in Microsoft Site Server 3.0 allows remote attackers to cause a denial of service (disk consumption) via an HTTP POST of a file with a long TargetURL parameter, which causes Site Server to abort and leaves the uploaded file in c:\temp.
2035| [CVE-2002-1999] HP Praesidium Webproxy 1.0 running on HP-UX 11.04 VVOS could allow remote attackers to cause Webproxy to forward requests to the internal network via crafted HTTP requests.
2036| [CVE-2002-1710] The attachment capability in Compose Mail in BasiliX Webmail 1.1.0 does not check whether the attachment was uploaded by the user or came from a HTTP POST, which could allow local users to steal sensitive information like a password file.
2037| [CVE-2002-1629] Multi-Tech ProxyServer products MTPSR1-100, MTPSR1-120, MTPSR1-202ST, MTPSR2-201, and MTPSR3-200 ship with a null password, which allows remote attackers to gain administrative privileges via Telnet or HTTP.
2038| [CVE-2002-1169] IBM Web Traffic Express Caching Proxy Server 3.6 and 4.x before 4.0.1.26 allows remote attackers to cause a denial of service (crash) via an HTTP request to helpout.exe with a missing HTTP version number, which causes ibmproxy.exe to crash.
2039| [CVE-2002-1168] Cross-site scripting (XSS) vulnerability in IBM Web Traffic Express Caching Proxy Server 3.6 and 4.x before 4.0.1.26 allows remote attackers to execute script as other users via an HTTP request that contains an Location: header with a "%0a%0d" (CRLF) sequence, which echoes the Location as an HTTP header in the server response.
2040| [CVE-2002-1167] Cross-site scripting (XSS) vulnerability in IBM Web Traffic Express Caching Proxy Server 3.6 and 4.x before 4.0.1.26 allows remote attackers to execute script as other users via an HTTP GET request.
2041| [CVE-2002-1087] The scripts (1) createdir.php, (2) removedir.php and (3) uploadfile.php for ezContents 1.41 and earlier do not check credentials, which allows remote attackers to create or delete directories and upload files via a direct HTTP POST request.
2042| [CVE-2002-1061] Multiple buffer overflows in Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) an HTTP GET request with a long major version number, (2) an HTTP GET request to the HTTP proxy on port 3128 with a long major version number, (3) a long OK reply from a POP3 server, and (4) a long SMTP server response.
2043| [CVE-2002-1001] Buffer overflows in AnalogX Proxy before 4.12 allows remote attackers to cause a denial of service and possibly execute arbitrary code via (1) a long HTTP request to TCP port 6588 or (2) a SOCKS 4A request to TCP port 1080 with a long DNS hostname.
2044| [CVE-2002-0847] tinyproxy HTTP proxy 1.5.0, 1.4.3, and earlier allows remote attackers to execute arbitrary code via memory that is freed twice (double-free).
2045| [CVE-2002-0815] The Javascript "Same Origin Policy" (SOP), as implemented in (1) Netscape, (2) Mozilla, and (3) Internet Explorer, allows a remote web server to access HTTP and SOAP/XML content from restricted sites by mapping the malicious server's parent DNS domain name to the restricted site, loading a page from the restricted site into one frame, and passing the information to the attacker-controlled frame, which is allowed because the document.domain of the two frames matches on the parent domain.
2046| [CVE-2002-0778] The default configuration of the proxy for Cisco Cache Engine and Content Engine allows remote attackers to use HTTPS to make TCP connections to allowed IP addresses while hiding the actual source IP.
2047| [CVE-2002-0663] Buffer overflow in HTTP Proxy for Symantec Norton Personal Internet Firewall 3.0.4.91 and Norton Internet Security 2001 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large outgoing HTTP request.
2048| [CVE-2002-0440] Trend Micro InterScan VirusWall HTTP proxy 3.6 with the "Skip scanning if Content-length equals 0" option enabled allows malicious web servers to bypass content scanning via a Content-length header set to 0, which is often ignored by HTTP clients.
2049| [CVE-2002-0133] Buffer overflows in Avirt Gateway Suite 4.2 allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) long header fields to the HTTP proxy, or (2) a long string to the telnet proxy.
2050| [CVE-2002-0081] Buffer overflows in (1) php_mime_split in PHP 4.1.0, 4.1.1, and 4.0.6 and earlier, and (2) php3_mime_split in PHP 3.0.x allows remote attackers to execute arbitrary code via a multipart/form-data HTTP POST request when file_uploads is enabled.
2051| [CVE-2002-0058] Vulnerability in Java Runtime Environment (JRE) allows remote malicious web sites to hijack or sniff a web client's sessions, when an HTTP proxy is being used, via a Java applet that redirects the session to another server, as seen in (1) Netscape 6.0 through 6.1 and 4.79 and earlier, (2) Microsoft VM build 3802 and earlier as used in Internet Explorer 4.x and 5.x, and possibly other implementations that use vulnerable versions of SDK or JDK.
2052| [CVE-2001-1130] Sdbsearch.cgi in SuSE Linux 6.0-7.2 could allow remote attackers to execute arbitrary commands by uploading a keylist.txt file that contains filenames with shell metacharacters, then causing the file to be searched using a .. in the HTTP referer (from the HTTP_REFERER variable) to point to the directory that contains the keylist.txt file.
2053| [CVE-2001-1030] Squid before 2.3STABLE5 in HTTP accelerator mode does not enable access control lists (ACLs) when the httpd_accel_host and http_accel_with_proxy off settings are used, which allows attackers to bypass the ACLs and conduct unauthorized activities such as port scanning.
2054| [CVE-2001-0535] Example applications (Exampleapps) in ColdFusion Server 4.x do not properly restrict prevent access from outside the local host's domain, which allows remote attackers to conduct upload, read, or execute files by spoofing the "HTTP Host" (CGI.Host) variable in (1) the "Web Publish" example script, and (2) the "Email" example script.
2055| [CVE-2001-0483] Configuration error in Axent Raptor Firewall 6.5 allows remote attackers to use the firewall as a proxy to access internal web resources when the http.noproxy Rule is not set.
2056| [CVE-2001-0374] The HTTP server in Compaq web-enabled management software for (1) Foundation Agents, (2) Survey, (3) Power Manager, (4) Availability Agents, (5) Intelligent Cluster Administrator, and (6) Insight Manager can be used as a generic proxy server, which allows remote attackers to bypass access restrictions via the management port, 2301.
2057| [CVE-2001-0308] UploadServlet in Bajie HTTP JServer 0.78, and possibly other versions before 0.80, allows remote attackers to execute arbitrary commands by calling the servlet to upload a program, then using a ... (modified ..) to access the file that was created for the program.
2058| [CVE-2001-0129] Buffer overflow in Tinyproxy HTTP proxy 1.3.3 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long connect request.
2059| [CVE-2000-0984] The HTTP server in Cisco IOS 12.0 through 12.1 allows local users to cause a denial of service (crash and reload) via a URL containing a "?/" string.
2060| [CVE-2000-0812] The administration module in Sun Java web server allows remote attackers to execute arbitrary commands by uploading Java code to the module and invoke the com.sun.server.http.pagecompile.jsp92.JspServlet by requesting a URL that begins with a /servlet/ tag.
2061| [CVE-2000-0593] WinProxy 2.0 and 2.0.1 allows remote attackers to cause a denial of service by sending an HTTP GET request without listing an HTTP version number.
2062| [CVE-2000-0395] Buffer overflow in CProxy 3.3 allows remote users to cause a denial of service via a long HTTP request.
2063| [CVE-2000-0376] Buffer overflow in the HTTP proxy server for the i-drive Filo software allows remote attackers to execute arbitrary commands via a long HTTP GET request.
2064| [CVE-1999-1535] Buffer overflow in AspUpload.dll in Persits Software AspUpload before 1.4.0.2 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long argument in the HTTP request.
2065| [CVE-1999-0923] Sample runnable code snippets in ColdFusion Server 4.0 allow remote attackers to read files, conduct a denial of service, or use the server as a proxy for other HTTP calls.
2066|
2067| SecurityFocus - https://www.securityfocus.com/bid/:
2068| [94953] Squid HTTP proxy Multiple Information Disclosure Vulnerabilities
2069| [92569] F5 BIG-IP CVE-2015-8022 Arbitrary File Upload Vulnerability
2070| [92147] Barracuda Web App Firewall and Load Balancer Arbitrary Command Injection Vulnerability
2071| [90202] Http Anti Virus Proxy %28Havp%29 CVE-2005-0668 Remote Security Vulnerability
2072| [82340] Multiple F5 BIG-IP Products CVE-2015-8021 Arbitrary File Upload Vulnerability
2073| [77810] I-Httpd CVE-2014-7260 File-Upload Vulnerability
2074| [74648] Proxychains-ng 'LD_PRELOAD' Arbitrary Code Execution Vulnerability
2075| [71657] Apache HTTP Server 'mod_proxy_fcgi' Module Denial of Service Vulnerability
2076| [66268] Loadbalancer Enterprise VA Security Bypass Vulnerability
2077| [65508] Barracuda Load Balancer '/cgi-mod/index.cgi' Arbitrary Command Execution Vulnerability
2078| [65037] Cantata Internal HTTP Server Path Traversal Arbitrary File Download Vulnerability
2079| [56979] Loadbalancer Enterprise R16 Multiple HTML Injection Vulnerabilities
2080| [56753] Apache Apache HTTP Server 'mod_proxy_ajp Module Denial Of Service Vulnerability
2081| [55638] ZEN Load Balancer Multiple Security Vulnerabilities
2082| [53046] Apache HTTP Server 'LD_LIBRARY_PATH' Insecure Library Loading Arbitrary Code Execution Vulnerability
2083| [53024] RETIRED: Squid Proxy 'Host' HTTP Header Security Bypass Vulnerability
2084| [52553] at32 Reverse Proxy Multiple HTTP Header Fields Denial Of Service Vulnerabilities
2085| [52443] Citrix XenServer Workload Balancer Component Unspecified Denial of Service Vulnerability
2086| [51869] Apache HTTP Server CVE-2011-3639 'mod_proxy' Reverse Proxy Security Bypass Vulnerability
2087| [50802] Apache HTTP Server 'mod_proxy' Reverse Proxy Security Bypass Vulnerability
2088| [49957] Apache HTTP Server 'mod_proxy' Reverse Proxy Information Disclosure Vulnerability
2089| [43338] Alcatel-Lucent OmniVista 4760 HTTP Proxy Remote Buffer Overflow Vulnerability
2090| [42102] Apache 'mod_proxy_http' 2.2.9 for Unix Timeout Handling Information Disclosure Vulnerability
2091| [40827] Apache 'mod_proxy_http' Timeout Handling Information Disclosure Vulnerability
2092| [40685] ImageStore HTTP Header Remote Arbitrary File Upload Vulnerability
2093| [37966] Apache 1.3 mod_proxy HTTP Chunked Encoding Integer Overflow Vulnerability
2094| [36550] HP LoadRunner XUpload.ocx ActiveX Control 'MakeHttpRequest()' Arbitrary File Download Vulnerability
2095| [36491] Cisco IOS Authentication Proxy for HTTP(S) Authentication Bypass Vulnerability
2096| [35380] Multiple Browser Malicious Proxy HTTPS Man In The Middle Vulnerability
2097| [35076] IPFilter 'ippool' 'lib/load_http.c' Local Buffer Overflow Vulnerability
2098| [33865] MLdonkey HTTP Request Arbitrary File Download Vulnerability
2099| [33858] Multiple HTTP Proxy HTTP Host Header Incorrect Relay Behavior Vulnerability
2100| [33779] Barracuda Load Balancer 'realm' Parameter Cross Site Scripting Vulnerability
2101| [33687] Trend Micro Interscan Web Security HTTP Proxy Authentication Information Disclosure Vulnerability
2102| [33604] Squid Web Proxy Cache HTTP Version Number Parsing Denial of Service Vulnerability
2103| [31431] ZoneAlarm HTTP Proxy Remote Denial of Service Vulnerability
2104| [31416] CCProxy Server HTTP 'CONNECT' Request Buffer Overflow Vulnerability
2105| [30861] Ultra Office Control 'HttpUpload()' Method Buffer Overflow Vulnerability
2106| [29653] Apache 'mod_proxy_http' Interim Response Denial of Service Vulnerability
2107| [28301] HTTP File Upload ActiveX Control Arbitrary File and Directory Deletion Vulnerability
2108| [27236] Apache 'mod_proxy_balancer' Multiple Vulnerabilities
2109| [26732] HFS HTTP File Server Arbitrary File Upload Vulnerability
2110| [26661] F5 Networks FirePass 4100 SSL VPN Download_Plugin.PHP3 Cross-Site Scripting Vulnerability
2111| [26412] F5 FirePass 4100 SSL VPN Download_Plugin.PHP3 Cross-Site Scripting Vulnerability
2112| [25593] EDraw Office Viewer Component HttpDownloadFileToTempDir ActiveX Buffer Overflow Vulnerability
2113| [25489] Apache HTTP Server Mod_Proxy Denial of Service Vulnerability
2114| [23853] VersalSoft HTTP File Upload ActiveX Control Remote Buffer Overflow Vulnerability
2115| [23578] NeatUpload HTTPWorkerRequest.FlushResponse Information Disclosure Vulnerability
2116| [23545] 3proxy HTTP Proxy Request Buffer Overflow Vulnerability
2117| [22203] Squid Proxy ACL Queue Overload Remote Denial of Service Vulnerability
2118| [17965] PHPBB Unauthorized HTTP Proxy Vulnerability
2119| [17936] Symantec Enterprise Firewall / Gateway Security HTTP Proxy Internal IP Leakage Weakness
2120| [15825] Microsoft Internet Explorer HTTPS Proxy Information Disclosure Vulnerability
2121| [13435] Squid Proxy HTTP Response Splitting Remote Cache Poisoning Vulnerability
2122| [12464] F5 BIG-IP HTTP Pipelining OneConnect Information Leakage Vulnerability
2123| [12433] Squid Proxy Malformed HTTP Header Parsing Cache Poisoning Vulnerability
2124| [12412] Squid Proxy Oversize HTTP Headers Unspecified Remote Vulnerability
2125| [10735] AnomicHTTPProxy Administrative Interface Denial Of Service Vulnerability
2126| [10733] AnomicHTTPProxy Administrative Interface Authentication Bypass Vulnerability
2127| [10732] AnomicHTTPProxy Directory Traversal Vulnerability
2128| [10730] Linux Kernel Equalizer Load Balancer Device Driver Local Denial Of Service Vulnerability
2129| [8584] CacheFlow CacheOS HTTP HOST Proxy Vulnerability
2130| [7331] WebGUI HTTPProxy Denial Of Service Vulnerability
2131| [7054] DeleGate HTTP Proxy Robot.TXT User-Agent: Buffer Overflow Vulnerability
2132| [6765] Macromedia ColdFusion HTTP Client Sample Application Proxy Access Vulnerability
2133| [6339] apt-www-proxy NULL HTTP Request Denial Of Service Vulnerability
2134| [6218] Opera HTTPS Proxy Denial of Service Vulnerability
2135| [6212] Cisco PIX TACACS+/RADIUS HTTP Proxy Buffer Overrun Vulnerability
2136| [5959] Multiple Symantec HTTP Proxy Information Disclosure Vulnerability
2137| [5958] Multiple Symantec HTTP Proxy Denial of Service Vulnerability
2138| [5744] Check Point Firewall-1 HTTP Proxy Server Unauthorized Protocol Access Vulnerability
2139| [5447] W3C CERN httpd Proxy Cross-Site Scripting Vulnerability
2140| [5320] T. Hauck Jana Server HTTP Proxy Server Request Logging Buffer Overflow Vulnerability
2141| [4731] tinyproxy HTTP Proxy Memory Corruption Vulnerability
2142| [4488] EMUMail HTTP Host Arbitrary Config File Loading Vulnerability
2143| [3904] Avirt Gateway Suite HTTP Proxy Remote Buffer Overflow Vulnerability
2144| [3858] SapporoWorks Black JumboDog HTTP Proxy Buffer Overflow Vulnerability
2145| [2517] Raptor Firewall HTTP Request Proxying Vulnerability
2146| [104563] Multiple Microsoft Products DLL Loading Multiple Remote Code Execution Vulnerabilities
2147| [104470] F5 BIG-IP ASM CVE-2018-5526 Remote Denial of Service Vulnerability
2148| [104384] Multiple F5 BIG-IP Products CVE-2018-5522 Remote Denial of Service Vulnerability
2149| [104373] Microsoft Windows 'HTTP.sys' CVE-2018-8231 Remote Code Execution Vulnerability
2150| [104362] Multiple F5 BIG-IP Products CVE-2018-5517 Remote Denial of Service Vulnerability
2151| [104361] Microsoft Windows 'HTTP.sys' CVE-2018-8226 Denial of Service Vulnerability
2152| [104347] HAProxy CVE-2018-11469 Information Disclosure Vulnerability
2153| [104282] Symantec Advanced Secure Gateway and ProxySG CVE-2018-5241 Authentication Bypass Vulnerability
2154| [104272] Joomla! Core CVE-2018-11322 Arbitrary File Upload Vulnerability
2155| [104108] SAP Internet Graphics Server CVE-2018-2420 Unspecified Arbitrary File Upload Vulnerability
2156| [104099] F5 BIG-IP CVE-2018-5515 Remote Denial of Service Vulnerability
2157| [104097] F5 BIG-IP CVE-2018-5514 Remote Denial of Service Vulnerability
2158| [104095] F5 BIG-IP CVE-2018-5512 Remote Denial of Service Vulnerability
2159| [103952] nghttp2 CVE-2018-1000168 Remote Denial of Service Vulnerability
2160| [103826] Oracle HTTP Server CVE-2018-2760 Remote Security Vulnerability
2161| [103742] CA Workload Automation AE and Workload Control Center Multiple Security Vulnerabilities
2162| [103716] Adobe InDesign CC CVE-2018-4927 DLL Loading Local Privilege Escalation Vulnerability
2163| [103685] Symantec ProxySG and ASG Multiple Security Vulnerabilities
2164| [103684] Ruby CVE-2017-17742 HTTP Response Splitting Vulnerability
2165| [103650] Microsoft Windows 'HTTP.sys' CVE-2018-0956 Denial of Service Vulnerability
2166| [103528] Apache HTTP Server CVE-2018-1302 Denial of Service Vulnerability
2167| [103525] Apache HTTP Server CVE-2017-15715 Remote Security Bypass Vulnerability
2168| [103524] Apache HTTP Server CVE-2018-1312 Remote Security Bypass Vulnerability
2169| [103522] Apache HTTP Server CVE-2018-1303 Denial of Service Vulnerability
2170| [103520] Apache HTTP Server CVE-2018-1283 Remote Security Vulnerability
2171| [103515] Apache HTTP Server CVE-2018-1301 Denial of Service Vulnerability
2172| [103512] Apache HTTP Server CVE-2017-15710 Denial of Service Vulnerability
2173| [103505] F5 BIG-IP ASM and Analytics CVE-2018-5505 Remote Denial of Service Vulnerability
2174| [103504] Multiple F5 BIG-IP Products CVE-2018-5509 Remote Denial of Service Vulnerability
2175| [103441] F5 BIG-IQ Centralized Management CVE-2017-6152 Local Privilege Escalation Vulnerability
2176| [103434] APACHE Allura CVE-2018-1319 HTTP Response Splitting Vulnerability
2177| [103404] IBM Notes CVE-2018-1435 DLL Loading Remote Code Execution Vulnerability
2178| [103401] IBM Notes CVE-2018-1437 DLL Loading Local Privilege Escalation Vulnerability
2179| [103393] Adobe Connect CVE-2018-4921 Arbitrary File Upload Vulnerability
2180| [103338] Multiple Schneider Electric Products CVE-2018-7239 DLL Loading Local Code Execution Vulnerability
2181| [103236] Microsoft Windows Installer CVE-2018-0868 DLL Loading Local Privilege Escalation Vulnerability
2182| [103235] Multiple F5 BIG-IP Products CVE-2017-6150 Remote Denial of Service Vulnerability
2183| [103233] F5 BIG-IP ASM CVE-2017-6154 Remote Denial of Service Vulnerability
2184| [103217] Multiple F5 BIG-IP Products CVE-2018-5500 Memory Corruption Vulnerability
2185| [103211] Multiple F5 BIG-IP Products CVE-2018-5501 Remote Denial of Service Vulnerability
2186| [103173] Telerik UI for ASP.NET AJAX CVE-2017-11357 Arbitrary File Upload Vulnerability
2187| [103171] Telerik UI for ASP.NET AJAX CVE-2017-11317 Arbitrary File Upload Vulnerability
2188| [103148] Drupal CKEditor Upload Image Module Access Bypass Vulnerability
2189| [103096] Multiple Trend Micro Products CVE-2018-6218 DLL Loading Remote Code Execution Vulnerability
2190| [103084] F5 BIG-IP AFM Certificate Validation Security Bypass Vulnerability
2191| [103052] Schneider Electric StruxureOn Gateway CVE-2017-9970 Arbitrary File Upload Vulnerability
2192| [103039] Multiple Dell EMC Products Arbitrary File Upload and Security Bypass Vulnerabilities
2193| [102983] CareFusion Upgrade Utility CVE-2018-5457 DLL Loading Local Privilege Escalation Vulnerability
2194| [102835] NetIQ Access Manager CVE-2018-1342 Arbitrary File Upload Vulnerability
2195| [102733] Cisco Small Business Managed Switches Multiple HTTP Response Splitting Vulnerabilities
2196| [102565] Oracle HTTP Server CVE-2018-2561 Remote Security Vulnerability
2197| [102467] Multiple F5 BIG-IP Products CVE-2017-6133 Remote Denial of Service Vulnerability
2198| [102466] Multiple F5 BIG-IP Products CVE-2017-6134 Remote Denial of Service Vulnerability
2199| [102456] NetGain Systems Enterprise Manager CVE-2017-16594 Arbitrary File Upload Vulnerability
2200| [102455] Symantec ProxySG and ASG CVE-2016-9099 Open Redirection Vulnerability
2201| [102454] Symantec ProxySG and ASG CVE-2016-9100 Information Disclosure Vulnerability
2202| [102451] Symantec ProxySG CVE-2016-10256 Cross Site Scripting Vulnerability
2203| [102447] Symantec ProxySG and ASG CVE-2016-10257 Cross Site Scripting Vulnerability
2204| [102363] VMware vSphere Data Protection CVE-2017-15549 Arbitrary File Upload Vulnerability
2205| [102337] NetGain Systems Enterprise Manager CVE-2017-16609 Arbitrary File Download Vulnerability
2206| [102333] Multiple F5 BIG-IP Products CVE-2017-6132 Remote Denial of Service Vulnerability
2207| [102332] F5 BIG-IP AFM CVE-2017-0304 SQL Injection Vulnerability
2208| [102324] IBM Security Guardium CVE-2017-1262 HTTP Response Splitting Vulnerability
2209| [102264] Multiple F5 BIG-IP Products CVE-2017-6166 Remote Denial of Service Vulnerability
2210| [102228] GNU C Library 'elf/dl-load.c ' CVE-2017-16997 Local Privilege Escalation Vulnerability
2211| [102145] SAP Plant Connectivity CVE-2017-16690 DLL Loading Remote Code Execution Vulnerability
2212| [102044] Amazon Audible CVE-2017-17069 DLL Loading Local Privilege Escalation Vulnerability
2213| [101974] IBM Workload Scheduler CVE-2017-1716 Local Information Disclosure Vulnerability
2214| [101930] Cisco Immunet Antimalware CVE-2017-12312 DLL Loading Local Privilege Escalation Vulnerability
2215| [101928] Cisco Email Security Appliance CVE-2017-12309 HTTP Response Splitting Vulnerability
2216| [101901] Multiple F5 BIG-IP Products CVE-2017-6168 Information Disclosure Vulnerability
2217| [101896] Cisco FindIT Discovery Utility DLL Loading Local Arbitrary Code Execution Vulnerability
2218| [101890] VMware Workstation DLL Loading CVE-2017-4939 Local Code Execution Vulnerability
2219| [101858] Cisco Network Academy Packet Tracer DLL Loading Local Privilege Escalation Vulnerability
2220| [101801] SAP NwSapSetup DLL Loading Local Code Execution Vulnerability
2221| [101789] ManageEngine ServiceDesk CVE-2017-11512 Arbitrary File Download Vulnerability
2222| [101788] ManageEngine ServiceDesk CVE-2017-11511 Arbitrary File Download Vulnerability
2223| [101780] Multiple AutomationDirect Products CVE-2017-1402 DLL Loading Local Code Execution Vulnerability
2224| [101636] Multiple F5 BIG-IP Products CVE-2017-6161 Security Bypass Vulnerability
2225| [101635] Multiple F5 BIG-IP Products CVE-2017-6162 Denial of Service Vulnerability
2226| [101634] Multiple F5 BIG-IP Products CVE-2017-6157 Remote Command Execution Vulnerability
2227| [101633] Multiple F5 BIG-IP Products CVE-2017-6159 Denial of Service Vulnerability
2228| [101632] Multiple F5 BIG-IP Products CVE-2017-6160 Denial of Service Vulnerability
2229| [101624] Joomla! NS Download Shop Component CVE-2017-15965 SQL Injection Vulnerability
2230| [101612] Multiple F5 BIG-IP Products CVE-2017-0303 Denial of Service Vulnerability
2231| [101606] Multiple F5 BIG-IP Products CVE-2017-6163 Denial of Service Vulnerability
2232| [101548] Multiple F5 BIG-IP Products CVE-2017-6144 Security Bypass Vulnerability
2233| [101543] Multiple F5 BIG-IP Products CVE-2017-6165 Local Information Disclosure Vulnerability
2234| [101542] Multiple F5 BIG-IP Products CVE-2017-6145 Security Bypass Vulnerability
2235| [101530] ProxySG and ASG CVE-2016-9097 Remote Authorization Bypass Vulnerability
2236| [101516] Apache HTTP Server CVE-2017-12171 Security Bypass Vulnerability
2237| [101505] SpiderControl MicroBrowser CVE-2017-14010 DLL Loading Remote Code Execution Vulnerability
2238| [101282] HP Intelligent Management Center Service Operation Management Arbitrary File Download Vulnerability
2239| [101234] IBM WebSphere Application Server CVE-2017-1503 HTTP Response Splitting Vulnerability
2240| [101112] Microsoft Windows DLL Loading CVE-2017-11769 Multiple Local Privilege Escalation Vulnerabilities
2241| [100981] Multiple F5 BIG-IP Products CVE-2017-6147 Denial of Service Vulnerability
2242| [100970] Trend Micro Mobile Security for Enterprise Multiple Arbitrary File Upload Vulnerabilities
2243| [100939] Symantec Norton Remove and Reinstall DLL Loading CVE-2017-13676 Local Code Execution Vulnerability
2244| [100923] Cisco FindIT Network Discovery Utility DLL Loading Arbitrary Code Execution Vulnerability
2245| [100872] Apache HTTP Server CVE-2017-9798 Information Disclosure Vulnerability
2246| [100837] ManageEngine Firewall Analyzer CVE-2017-14123 Arbitrary File Upload Vulnerability
2247| [100680] Google Android Bootloaders Multiple Security Vulnerabilities
2248| [100605] 360 Total Security CVE-2017-12653 Insecure Library Loading Remote Privilege Escalation Vulnerability
2249| [100572] IBM Sametime Proxy Server Multiple Security Vulnerabilities
2250| [100554] Symantec ProxyClient CVE-2017-13674 Local Privilege Escalation Vulnerability
2251| [100498] connman 'src/dnsproxy.c' Stack Based Buffer Overflow Vulnerability
2252| [100465] RedHat RESTEasy CVE-2017-7561 HTTP Header Injection Vulnerability
2253| [100452] Automated Logic Corporation Products Directory Traversal and Arbitrary File Upload Vulnerabilities
2254| [100414] Foxit PDF Compressor CVE-2017-12892 DLL Loading Remote Code Execution Vulnerability
2255| [100338] HP LoadRunner and Performance Center CVE-2017-8953 Cross Site Scripting Vulnerability
2256| [100264] Solar Controls WATTConfig M Software CVE-2017-9648 DLL Loading Local Code Execution Vulnerability
2257| [100263] SIMPlight SCADA Software CVE-2017-9661 DLL Loading Local Code Execution Vulnerability
2258| [100261] Solar Controls Heating Control Downloader DLL Loading Local Code Execution Vulnerability
2259| [100208] Moxa SoftNVR-IA Live Viewer CVE-2017-5170 DLL Loading Local Code Execution Vulnerability
2260| [100200] Symantec VIP Access Desktop DLL Loading CVE-2017-6329 Local Code Execution Vulnerability
2261| [100147] Libexpat Expat CVE-2017-11742 DLL Loading Remote Code Execution Vulnerability
2262| [100130] Trend Micro OfficeScan 'Proxy.php' Command Injection Vulnerability
2263| [100127] Trend Micro OfficeScan Proxy CVE-2017-11393 Command Injection Vulnerability
2264| [100114] Schneider Electric Pro-face GP-Pro CVE-2017-9961 DLL Loading Arbitrary Code Execution Vulnerability
2265| [100006] VMware vCenter Server CVE-2017-4921 DLL Loading Local Privilege Escalation Vulnerability
2266| [99920] Cisco ASR 5000 Series GGSN Gateway CVE-2017-6612 HTTP Redirection Security Bypass Vulnerability
2267| [99911] Palo Alto DNS Proxy CVE-2017-8390 Arbitrary Code Execution Vulnerability
2268| [99569] Apache HTTP Server CVE-2017-9788 Memory Corruption Vulnerability
2269| [99568] Apache HTTP Server CVE-2017-9789 Denial of Service Vulnerability
2270| [99549] IBM Daeja ViewONE CVE-2017-1308 Arbitrary File Download Vulnerability
2271| [99429] Microsoft Windows Https.sys Component CVE-2017-8582 Information Disclosure Vulnerability
2272| [99348] Microsoft Office Patch Installer Multiple DLL Loading Remote Code Execution Vulnerabilities
2273| [99334] e-Tax software CVE-2017-2226 DLL Loading Remote Code Execution Vulnerability
2274| [99290] Multiple Sharp Devices DLL Loading Remote Code Execution Vulnerability
2275| [99243] EMC Avamar Authentication Bypass And Arbitrary File Upload Vulnerabilities
2276| [99223] Cisco Prime Collaboration Provisioning CVE-2017-6704 Arbitrary File Download Vulnerability
2277| [99170] Apache HTTP Server CVE-2017-7679 Buffer Overflow Vulnerability
2278| [99137] Apache HTTP Server CVE-2017-7668 Denial of Service Vulnerability
2279| [99135] Apache HTTP Server CVE-2017-3167 Authentication Bypass Vulnerability
2280| [99134] Apache HTTP Server CVE-2017-3169 Denial of Service Vulnerability
2281| [99132] Apache HTTP Server CVE-2017-7659 Denial of Service Vulnerability
2282| [98823] Screensaver Installers CVE-2017-2176 DLL Loading Remote Code Execution Vulnerability
2283| [98817] SaAT Netizen CVE-2017-2206 DLL Loading Remote Code Execution Vulnerability
2284| [98811] Microsoft Office CVE-2017-8506 DLL Loading Remote Code Execution Vulnerability
2285| [98810] Microsoft Office CVE-2017-0260 DLL Loading Remote Code Execution Vulnerability
2286| [98809] SaAT Personal Installer CVE-2017-2207 DLL Loading Remote Code Execution Vulnerability
2287| [98807] Tera Term Installer CVE-2017-2193 DLL Loading Remote Code Execution Vulnerability
2288| [98777] Magento CMS Video Upload Functionality Remote Code Execution Vulnerability
2289| [98725] Electronic Tendering and Bid Opening System DLL Loading Remote Code Execution Vulnerability
2290| [98659] F5 BIG-IP Azure Products CVE-2017-6131 Security Bypass Vulnerability
2291| [98637] Multiple IBM Products CVE-2017-1291 HTTP Response Splitting Vulnerability
2292| [98566] Multiple VMware Workstation Products DLL Loading Local Privilege Escalation Vulnerability
2293| [98481] Multiple F5 BIG-IP Products CVE-2017-6128 Denial of Service Vulnerability
2294| [98478] Multiple F5 BIG-IP Products CVE-2016-9250 Security Bypass Vulnerability
2295| [98446] Schneider Electric SoMachine HVAC DLL Loading Remote Code Execution Vulnerability
2296| [98420] PrimeDrive Desktop Application Installer DLL Loading Remote Code Execution Vulnerability
2297| [98400] Trend Micro Threat Discovery Appliance 'upload.cgi' Directory Traversal Vulnerability
2298| [98199] Google Android Htc Bootloader CVE-2017-0623 Privilege Escalation Vulnerability
2299| [98149] Google Android Motorola Bootloader CVE-2016-10277 Privilege Escalation Vulnerability
2300| [98148] Google Android Qualcomm Bootloader CVE-2016-10276 Privilege Escalation Vulnerability
2301| [98146] Google Android Qualcomm Bootloader CVE-2016-10275 Privilege Escalation Vulnerability
2302| [98094] Zabbix Proxy Server CVE-2017-2825 Man in the Middle Security Bypass Vulnerability
2303| [98074] Multiple IBM Products CVE-2016-9693 Unspecified Arbitrary File Download Vulnerability
2304| [98040] Vivaldi Installer CVE-2017-2156 DLL Loading Remote Code Execution Vulnerability
2305| [98031] BLF-Tech LLC VisualView HMI CVE-2017-6051 DLL Loading Local Code Execution Vulnerability
2306| [98029] Joomla! Core CVE-2017-7989 Arbitrary File Upload Vulnerability
2307| [97719] Cybozu Office CVE-2016-4874 Arbitrary File Download Vulnerability
2308| [97712] vtiger CRM CVE-2015-6000 Arbitrary File Upload Vulnerability
2309| [97697] Multiple Toshiba memory card installers DLL Loading Remote Code Execution Vulnerability
2310| [97662] Google Android CVE-2016-1155 HTTP Header Injection Vulnerability
2311| [97642] Magento CMS 'RetrieveImage.php' Arbitrary File Upload Vulnerability
2312| [97620] D-Link DWR-116 CVE-2017-6190 Arbitrary File Download Vulnerabilitiy
2313| [97591] Trend Micro Deep Discovery Email Inspector 'policy_setting' Arbitrary File Upload Vulnerability
2314| [97571] Fiyo CMS '/dapur/apps/app_theme/libs/save_file.php' Arbitrary File Upload Vulnerability
2315| [97483] Veritas System Recovery CVE-2017-7444 DLL Loading Local Code Execution Vulnerability
2316| [97479] Certec EDV GmbH atvise scada Cross Site Scripting and HTTP Header Injection Vulnerabilities
2317| [97411] Microsoft Office CVE-2017-0197 DLL Loading Remote Code Execution Vulnerability
2318| [97389] Schneider Electric Interactive Graphical SCADA DLL Loading Remote Code Execution Vulnerability
2319| [97388] Marel Food Processing Systems Security Bypass and Arbitrary File Upload Vulnerabilities
2320| [97198] Multiple F5 BIG-IP CVE-2016-7474 Local Information Disclosure Vulnerability
2321| [97174] CODESYS Web Server Stack Based Buffer Overflow and File Upload Vulnerabilities
2322| [97168] F5 BIG-IP APM CVE-2016-7472 Denial of Service Vulnerability
2323| [97146] Nghttp2 CVE-2017-2428 Multiple Remote Security Vulnerabilities
2324| [97125] WordPress recent-backups Plugin 'download-file.php' Arbitrary File Download Vulnerability
2325| [97119] Multiple F5 BIG-IP Products CVE-2016-7468 Denial of Service Vulnerability
2326| [97113] PhishWall Client CVE-2017-2130 DLL Loading Remote Code Execution Vulnerability
2327| [97108] candidate-application-form Wordpress Plugin CVE-2015-1000005 Arbitrary File Download Vulnerability
2328| [97107] WordPress Filedownload Plugin CVE-2015-1000004 Cross-Site Scripting Vulnerability
2329| [97106] WordPress Filedownload Plugin CVE-2015-1000003 SQL Injection Vulnerability
2330| [97100] Wordpress Filedownload Plugin CVE-2015-1000002 Security Bypass Vulnerability
2331| [97083] Nuxeo Platform CVE-2017-5869 Arbitrary File Upload Vulnerability
2332| [97031] Multiple Trend Micro Products CVE-2017-5565 DLL Loading Local Code Injection Vulnerability
2333| [97024] Multiple Bitdefender Products CVE-2017-6186 DLL Loading Local Code Injection Vulnerability
2334| [97022] Multiple AVG Products CVE-2017-5566 DLL Loading Local Code Injection Vulnerability
2335| [97021] Multiple Avira Products CVE-2017-6417 DLL Loading Local Code Injection Vulnerability
2336| [97017] Multiple Avast Products CVE-2017-5567 DLL Loading Local Code Injection Vulnerability
2337| [97000] Rockwell Automation Connected Components Workbench DLL Loading Local Code Execution Vulnerability
2338| [96990] AppSamvid DLL Loading Local Code Execution Vulnerability
2339| [96969] Skype CVE-2017-6517 DLL Loading Local Code Execution Vulnerability
2340| [96957] Rapid7 AppSpider CVE-2017-5233 DLL Loading Remote Code Execution Vulnerability
2341| [96956] Nexpose Information Disclosure and DLL Loading Remote Code Execution Vulnerabilities
2342| [96945] b2evolution CVE-2017-6902 Arbitrary File Upload Vulnerability
2343| [96908] WordPress Wp2android Plugin CVE-2017-1002003 Arbitrary File Upload Vulnerability
2344| [96906] WordPress Webapp-Builder Plugin CVE-2017-1002002 Arbitrary File Upload Vulnerability
2345| [96905] WordPress Mobile App Builder By Wappress Plugin Arbitrary File Upload Vulnerability
2346| [96899] WordPress Mobile Friendly App Builder By Easytouch Plugin Arbitrary File Upload Vulnerability
2347| [96857] Trend Micro Endpoint Sensor CVE-2017-6798 DLL Loading Remote Code Execution Vulnerability
2348| [96826] IBM Rational Rhapsody Design Manager CVE-2016-8973 Arbitrary File Upload Vulnerability
2349| [96812] Google Pixel Qualcomm Bootloader CVE-2017-0455 Information Disclosure Vulnerability
2350| [96774] HP LoadRunner and Performance Center CVE-2017-5789 Remote Heap Buffer Overflow Vulnerability
2351| [96773] HP Intelligent Management Center CVE-2017-5795 Arbitrary File Download Vulnerability
2352| [96772] Multiple VMware Workstation Products CVE-2017-4898 DLL Loading Remote Code Execution Vulnerability
2353| [96718] PHP FormMail Generator Cross Site Scripting and Arbitrary File Upload Vulnerabilities
2354| [96619] PrimeDrive Desktop Application Installer DLL Loading Remote Code Execution Vulnerability
2355| [96554] WordPress fast-image-adder Plugin CVE-2015-1000001 Arbitrary File Upload Vulnerability
2356| [96548] Rapid7 Metasploit Pro CVE-2017-5235 DLL Loading Remote Code Execution Vulnerability
2357| [96547] WordPress Mobile App Plugin CVE-2017-6104 Arbitrary File Upload Vulnerability
2358| [96545] Rapid7 Insight Collector CVE-2017-5234 DLL Loading Remote Code Execution Vulnerability
2359| [96476] Amazon Kindle Setup CVE-2017-6189 DLL Loading Local Code Execution Vulnerability
2360| [96471] Multiple F5 BIG-IP Products CVE-2016-9245 Denial of Service Vulnerability
2361| [96464] Multiple F5 BIG-IP Products CVE-2016-9256 Privilege Escalation Vulnerability
2362| [96431] 7-ZIP32.DLL CVE-2017-2107 DLL Loading Remote Code Execution Vulnerability
2363| [96424] Huawei Honor 7 and Mate S CVE-2017-2699 Arbitrary File Upload Vulnerability
2364| [96418] Nessus Arbitrary File Upload Vulnerability
2365| [96411] Drupal DownloadFile Module Unspecified Security Vulnerability
2366| [96379] Dotclear 'inc/core/class.dc.core.php' Arbitrary File Upload Vulnerability
2367| [96328] Multiple F5 BIG-IP Products CVE-2016-6249 Information Disclosure Vulnerability
2368| [96293] Apache Tomcat 'http11/AbstractInputBuffer.java' Denial of Service Vulnerability
2369| [96248] Cisco Prime Collaboration Assurance CVE-2017-3843 Arbitrary File Download Vulnerability
2370| [96210] Advantech WebAccess CVE-2017-5175 DLL Loading Local Code Execution Vulnerability
2371| [96143] Multiple F5 BIG-IP Products CVE-2016-9244 Information Disclosure Vulnerability
2372| [96119] Sielco Sistemi Winlog Pro/ Winlog Lite CVE-2017-5161 DLL Loading Local Code Execution Vulnerability
2373| [96036] Hawtio CVE-2017-2617 Arbitrary File Upload Vulnerability
2374| [96024] Microsoft Windows CVE-2017-0039 DLL Loading Local Privilege Escalation Vulnerability
2375| [95997] OpenBSD httpd CVE-2017-5850 Denial of Service Vulnerability
2376| [95995] Akamai NetSession CVE-2016-10157 DLL Loading Remote Code Execution Vulnerability
2377| [95980] IBM Tivoli Key Lifecycle Manager CVE-2016-6104 Arbitrary File Upload Vulnerability
2378| [95968] SageCRM SQL Injection and Arbitrary File Upload Vulnerabilities
2379| [95898] SHDesigns Resident Download Manager CVE-2016-6567 Remote Code Execution Vulnerability
2380| [95863] pecl_http CVE-2016-5873 Buffer Overflow Vulnerability
2381| [95825] Multiple F5 BIG-IP Products CVE-2016-9249 Denial of Service Vulnerability
2382| [95680] GigaCC OFFICE OS Command Execution and Arbitrary File Upload Vulnerabilities
2383| [95460] GeniXCMS CVE-2017-5520 Arbitrary File Upload Vulnerability
2384| [95451] IBM Kenexa LMS on Cloud CVE-2016-8931 Arbitrary File Upload Vulnerability
2385| [95444] Symantec Norton Download Manager CVE-2016-6592 DLL Loading Remote Code Execution Vulnerability
2386| [95443] IBM Kenexa LMS on Cloud CVE-2016-8932 Arbitrary File Upload Vulnerability
2387| [95405] Multiple F5 BIG-IP Products CVE-2016-9247 Denial of Service Vulnerability
2388| [95359] libgit2 'src/transports/http.c' Security Bypass Vulnerability
2389| [95320] Multiple F5 BIG-IP Products CVE-2016-7469 HTML Injection Vulnerability
2390| [95241] Google Android Products Qualcomm Bootloader Multiple Integer Overflow Vulnerabilities
2391| [95237] Google Android bootloader Multiple Local Information Disclosure Vulnerabilities
2392| [95228] Multiple F5 BIG-IP Products CVE-2016-5024 Denial of Service Vulnerability
2393| [95199] IBM Security Privileged Identity Manager CVE-2016-5990 Arbitrary File Upload Vulnerability
2394| [95186] ImageMagick CVE-2016-10048 Module Loading Security Bypass Vulnerability
2395| [95078] Apache HTTP Server CVE-2016-0736 Remote Security Vulnerability
2396| [95077] Apache HTTP Server CVE-2016-8743 Security Bypass Vulnerability
2397| [95076] Apache HTTP Server CVE-2016-2161 Denial of Service Vulnerability
2398| [94886] McAfee VirusScan Enterprise for Windows DLL Loading Remote Code Execution Vulnerability
2399| [94768] Microsoft Windows Installer CVE-2016-7292 DLL Loading Local Privilege Escalation Vulnerability
2400| [94731] Symantec VIP Access Desktop DLL Loading CVE-2016-6593 Local Code Execution Vulnerability
2401| [94695] RETIRED: Symantec Norton Download Manager DLL Loading Remote Code Execution Vulnerability
2402| [94665] Microsoft Office CVE-2016-7275 DLL Loading Remote Code Execution Vulnerability
2403| [94663] Joomla! Core CVE-2016-9836 Arbitrary File Upload Vulnerability
2404| [94650] Apache HTTP Server CVE-2016-8740 Denial of Service Vulnerability
2405| [94616] Multiple Japan Pension Service Products CVE-2016-7818 DLL Loading Local Code Execution Vulnerability
2406| [94582] IBM FileNet Workplace XT CVE-2016-8921 Unspecified Arbitrary File Upload Vulnerability
2407| [94497] Wordpress csv2wpec-coupon Plugin CVE-2015-1000013 Arbitrary File Upload Vulnerability
2408| [94417] HDF5 CVE-2016-4332 Local Heap Overflow Vulnerability
2409| [94416] HDF5 CVE-2016-4333 Local Heap Buffer Overflow Vulnerability
2410| [94414] HDF5 CVE-2016-4330 Local Heap Overflow Vulnerability
2411| [94411] HDF5 CVE-2016-4331 Local Heap Buffer Overflow Vulnerability
2412| [94383] Apereo Webproxy Portlet Information Disclosure Vulnerability
2413| [94353] Multiple F5 BIG-IP Products CVE-2016-7476 Denial of Service Vulnerability
2414| [94306] IBM Kenexa LMS on Cloud CVE-2016-6124 Arbitrary File Upload Vulnerability
2415| [94295] Multiple Symantec Products CVE-2016-5311 DLL Loading Local Privilege Escalation Vulnerability
2416| [94288] TYPO3 Secure Download Form Extension Unspecified Cross Site Scripting Vulnerability
2417| [94279] Multiple Symantec Products CVE-2016-6590 DLL Loading Local Privilege Escalation Vulnerability
2418| [94267] Drupal D8 Editor File upload Module Cross Site Scripting Vulnerability
2419| [94260] F5 BIG-IP ASM CVE-2016-7472 Denial of Service Vulnerability
2420| [94246] Dotclear CVE-2016-9268 Arbitrary File Upload Vulnerability
2421| [94240] F5 BIG-IP LTM Products CVE-2016-5745 Security Bypass Vulnerability
2422| [94203] Google Nexus Qualcomm Bootloader CVE-2016-6729 Privilege Escalation Vulnerability
2423| [94193] IBM BigFix Platform CVE-2016-0214 Unspecified Arbitrary File Upload Vulnerability
2424| [94191] Moodle CVE-2016-9187 Arbitrary File Upload Vulnerability
2425| [94190] Moodle CVE-2016-9186 Arbitrary File Upload Vulnerability
2426| [94185] Google Android Proxy Auto Config CVE-2016-6723 Denial of Service Vulnerability
2427| [94176] SAP Message Server HTTP Daemon Denial of Service Vulnerability
2428| [94170] Google Android Download Manager CVE-2016-6710 Information Disclosure Vulnerability
2429| [94121] Exponent CMS CVE-2016-7095 Arbitrary File Upload Vulnerability
2430| [94087] JPKI Client Software CVE-2016-4902 DLL Loading Remote Code Execution Vulnerability
2431| [93967] Wordpress contus-video-comments Plugin 'save.php' Arbitrary File Upload Vulnerability
2432| [93830] Schneider Electric Unity PRO Insecure File Downloading Remote Code Execution Vulnerability
2433| [93774] Apache OpenOffice CVE-2016-6804 DLL Loading Remote Code Execution Vulnerability
2434| [93606] National Tax Agency e-Tax CVE-2016-4901 DLL Loading Remote Code Execution Vulnerability
2435| [93575] Magento CMS Flash File Uploader Cross Site Scripting Vulnerability
2436| [93572] Evernote for Windows DLL Loading Remote Code Execution Vulnerability
2437| [93456] Lighttpd CVE-2016-1000212 Security Bypass Vulnerability
2438| [93440] Dotclear CVE-2016-7902 Arbitrary File Upload Vulnerability
2439| [93347] IBM Sterling Secure Proxy Configuration Manager CVE-2016-6023 Directory Traversal Vulnerability
2440| [93345] IBM Sterling Secure Proxy Configuration Manager CVE-2016-6025 Local Security Bypass Vulnerability
2441| [93342] IBM Sterling Secure Proxy CVE-2016-6026 Man in the Middle Information Disclosure Vulnerability
2442| [93340] IBM Sterling Secure Proxy CVE-2016-6027 Man in the Middle Information Disclosure Vulnerability
2443| [93325] Multiple F5 BIG-IP Products CVE-2016-5700 Remote Command Execution Vulnerability
2444| [93279] Microsoft Windows 'Capcom.sys' DLL Loading Local Code Execution Vulnerability
2445| [93269] Snort CVE-2016-1417 DLL Loading Remote Code Execution Vulnerability
2446| [93267] Joomla! DVFolderContent Module 'download.php' Local File Include Vulnerability
2447| [93119] Exponent CMS Arbitrary Code Execution and File Upload Vulnerabilities
2448| [93088] Cisco IOS and IOS XE Software CVE-2016-6412 HTTP Header Injection Vulnerability
2449| [93082] Multiple IBM Products CVE-2016-5945 Arbitrary File Upload Vulnerability
2450| [93073] Exponent CMS Cross Site Scripting and Arbitrary File Upload Vulnerabilities
2451| [93072] Exponent CMS Local File Include and Arbitrary File Upload Vulnerabilities
2452| [93069] HP LoadRunner and Performance Center CVE-2016-4384 Unspecified Denial of Service Vulnerability
2453| [93015] Huawei HiSuite Local Information Disclosure and DLL Loading Local Code Execution Vulnerability
2454| [92980] ABB DataManagerPro CVE-2016-4526 DLL Loading Local Code Execution Vulnerability
2455| [92976] Fortinet FortiClient DLL Loading Remote Code Execution Vulnerability
2456| [92940] Multiple VMware Workstation Products CVE-2016-7085 DLL Loading Remote Code Execution Vulnerability
2457| [92900] Multiple F5 BIG-IP Products CVE-2016-5022 Denial of Service Vulnerability
2458| [92899] Blue Coat K9 Web Protection DLL Loading Remote Code Execution Vulnerability
2459| [92894] RedHat JBoss Enterprise Application Platform CVE-2016-4993 HTTP Header Injection Vulnerability
2460| [92800] Multiple F5 BIG-IP Products CVE-2016-6876 Denial of Service Vulnerability
2461| [92794] Infoblox Network Automation CVE-2016-6484 HTTP Response Splitting Vulnerability
2462| [92773] HTTP/2 CVE-2016-7153 Information Disclosure Vulnerability
2463| [92769] HTTPS CVE-2016-7152 Information Disclosure Vulnerability
2464| [92671] Multiple F5 BIG-IP Products CVE-2016-1497 Information Disclosure Vulnerability
2465| [92670] Multiple F5 BIG-IP Products CVE-2016-5023 Denial of Service Vulnerability
2466| [92656] Traps Endpoint Server Management Core Arbitrary File Download Vulnerability
2467| [92647] Dotclear Arbitrary File Upload Vulnerability
2468| [92614] IBM Tivoli Storage Manager CVE-2016-5934 DLL Loading Local Code Execution Vulnerability
2469| [92574] RETIRED: ownCloud DLL Loading Local Code Execution Vulnerability
2470| [92570] Multiple F5 BIG-IP Products CVE-2016-5736 Security Bypass Vulnerability
2471| [92502] Huawei FusionAccess HTTP Header Injection Vulnerability
2472| [92498] The Installer of PhishWall Client Internet Explorer DLL Loading Code Execution Vulnerability
2473| [92492] phpMyAdmin CVE-2016-6628 Arbitrary File Download Vulnerability
2474| [92477] Enpass DLL Loading Local Code Execution Vulnerability
2475| [92393] NMAP DLL Loading Local Code Execution Vulnerability
2476| [92392] Cisco Jabber for Windows Predictable Memory Address Load Vulnerability
2477| [92370] ownCloud 'Download Log' Functionality Cross-Site Scripting Vulnerability
2478| [92365] Foxit Reader and PhantomPDF DLL Loading Remote Code Execution Vulnerability
2479| [92351] Sophos Mobile Control EAS Proxy CVE-2016-6597 Information Disclosure Vulnerability
2480| [92334] IBM Rational Publishing Engine CVE-2016-2914 Arbitrary File Upload Vulnerability
2481| [92331] Apache HTTP Server CVE-2016-1546 Remote Denial of Service Vulnerability
2482| [92324] VMware vCenter Server and ESXi CVE-2016-5331 HTTP Header Injection Vulnerability
2483| [92323] VMware Tools CVE-2016-5330 DLL Loading Remote Code Execution Vulnerability
2484| [92320] Apache APR-util and httpd CVE-2016-6312 Denial of Service Vulnerability
2485| [92268] BullGuard Antivirus DLL Loading Local Code Execution Vulnerability
2486| [92251] Google Nexus LG Electronics Bootloader CVE-2016-3851 Privilege Escalation Vulnerability
2487| [92236] Google Nexus Qualcomm Bootloader CVE-2016-3850 Privilege Escalation Vulnerability
2488| [92137] Dropbox DLL Loading Local Code Execution Vulnerability
2489| [92026] Oracle HTTP Server CVE-2016-3482 Remote Security Vulnerability
2490| [91816] Apache HTTP Server CVE-2016-5387 Security Bypass Vulnerability
2491| [91798] 7-Zip DLL Loading Local Code Execution Vulnerability
2492| [91797] Bitdefender Antivirus DLL Loading Local Code Execution Vulnerability
2493| [91752] Python DLL Loading Local Code Execution Vulnerability
2494| [91750] Notepad++ DLL Loading Local Code Execution Vulnerability
2495| [91749] Drupal Webform Multiple File Upload Module Remote Code Execution Vulnerability
2496| [91746] JetBrains PyCharm Professional DLL Loading Local Code Execution Vulnerability
2497| [91745] 360 Total Security 2016 DLL Loading Local Code Execution Vulnerability
2498| [91632] Google Nexus Qualcomm Bootloader Multiple Denial of Service Vulnerabilities
2499| [91566] Apache HTTP Server CVE-2016-4979 Authentication Bypass Vulnerability
2500| [91561] PuTTY DLL Loading Local Code Execution Vulnerability
2501| [91532] Multiple F5 BIG-IP Products CVE-2016-5020 Privilege Escalation Vulnerability
2502| [91487] PHP 'php_http_url.c' Multiple Buffer Overflow Vulnerabilities
2503| [91484] IBM WebSphere Application Server CVE-2016-0359 HTTP Response Splitting Vulnerability
2504| [91465] Multiple Panda Security Multiple Products DLL Loading Local Code Execution Vulnerability
2505| [91453] Apache Commons FileUpload CVE-2016-3092 Denial Of Service Vulnerability
2506| [91425] GIMP 'app/xcf/xcf-load.c' Multiple Remote Code Execution Vulnerabilities
2507| [91418] Huawei HiSuite DLL Loading Local Code Execution Vulnerability
2508| [91333] Multiple F5 BIG-IP Products CVE-2016-3687 Open Redirect Vulnerability
2509| [91226] Python 'urrlib2/urllib/httplib/http.client' HTTP Header Injection Vulnerability
2510| [91213] NCH Software WavePad DLL Loading Local Code Execution Vulnerability
2511| [91164] HAProxy CVE-2016-3711 Local Information Disclosure Vulnerability
2512| [91162] Multiple F5 Networks Products CVE-2016-5021 Information Disclosure Vulnerability
2513| [91138] HAProxy CVE-2016-5360 Remote Denial of Service Vulnerability
2514| [91096] Microsoft Office CVE-2016-3235 DLL Loading Local Privilege Escalation Vulnerability
2515| [91036] WordPress WP Mobile Detector Plugin 'resize.php' Arbitrary File Upload Vulnerability
2516| [90997] cURL CVE-2016-4802 DLL Loading Local Code Execution Vulnerability
2517| [90972] Typo3 'http:BL Blocking' Extension SQL Injection and Cross-Site Scripting Vulnerability
2518| [90963] Relay Ajax Directory Manager Arbitrary File Upload Vulnerability
2519| [90951] IBM WebSphere eXtreme Scale CVE-2016-0400 HTTP Response Splitting Vulnerability
2520| [90907] CMS Made Simple CVE-2016-2784 HTTP Header Injection Vulnerability
2521| [90865] Libxml2 'xmlLoadEntityContent()' Function CVE-2016-4449 Security Bypass Vulnerability
2522| [90862] IBM Connections CVE-2016-0322 Arbitrary File Upload Vulnerability
2523| [90827] Apache ActiveMQ CVE-2016-3088 Multiple Arbitrary File Upload Vulnerabilities
2524| [90670] Python kdcproxy CVE-2015-5159 Remote Denial of Service Vulnerability
2525| [90656] Multiple F5 BIG-IP Products CVE-2015-8099 Denial of Service Vulnerability
2526| [90581] Websphere Edge server Caching proxy CVE-2004-0684 Denial-Of-Service Vulnerability
2527| [90554] Imap Proxy CVE-2004-1035 Denial-Of-Service Vulnerability
2528| [90478] Browser CVE-2004-1449 File-Upload Vulnerability
2529| [90436] Geohttpserver CVE-2004-2100 Security Bypass Vulnerability
2530| [90412] Geohttpserver CVE-2004-2101 Denial-Of-Service Vulnerability
2531| [90397] Foreman Smart Proxy CVE-2016-3728 Remote Code Execution Vulnerability
2532| [90361] Myproxy CVE-2004-2481 Local Security Vulnerability
2533| [90355] Activepost Standard CVE-2004-2616 File-Upload Vulnerability
2534| [90329] AspDotNetStorefront CVE-2004-2700 File-Upload Vulnerability
2535| [90328] newsPHP CVE-2004-2690 File-Upload Vulnerability
2536| [90265] Sami Http Server CVE-2005-0450 Directory Traversal Vulnerability
2537| [90260] lighttpd CVE-2005-0453 Remote Security Vulnerability
2538| [90256] ArGoSoft Mail Server CVE-2005-0367 File-Upload Vulnerability
2539| [90249] Sami Http Server CVE-2005-0451 Denial-Of-Service Vulnerability
2540| [90203] RaidenHTTPD CVE-2005-0622 Remote Security Vulnerability
2541| [90188] Cproxy CVE-2005-0657 Denial-Of-Service Vulnerability
2542| [90169] RSA Authentication Manager CVE-2016-0902 HTTP Response Splitting Vulnerability
2543| [90156] Ublog Reload CVE-2005-0938 Remote Security Vulnerability
2544| [90060] Uapplication Uphotogallery CVE-2005-1428 File-Upload Vulnerability
2545| [90020] Microsoft Windows CVE-2016-0152 DLL Loading Remote Code Execution Vulnerability
2546| [89897] I-Man CVE-2005-1868 File-Upload Vulnerability
2547| [89869] YaPig CVE-2005-1881 File-Upload Vulnerability
2548| [89830] File Upload Manager CVE-2005-1957 File-Upload Vulnerability
2549| [89822] File Upload Manager CVE-2005-1956 File-Upload Vulnerability
2550| [89365] PHPKIT CVE-2005-2699 File-Upload Vulnerability
2551| [89341] Cisco WebEx Productivity Tools CVE-2016-4349 DLL Loading Local Code Execution Vulnerabilities
2552| [89293] vBulletin CVE-2005-3021 File-Upload Vulnerability
2553| [89188] Mini Httpd CVE-2001-0893 Remote Security Vulnerability
2554| [89177] JiRo Upload System CVE-2005-1904 SQL-Injection Vulnerability
2555| [89153] Reload CVE-2005-2009 SQL-Injection Vulnerability
2556| [89087] Thttpd CVE-2001-0892 Remote Security Vulnerability
2557| [89082] OmniHTTPD CVE-2001-0778 Remote Security Vulnerability
2558| [89035] Internet Download Manager CVE-2005-2210 Remote Security Vulnerability
2559| [89003] Http Server CVE-2001-0285 Denial-Of-Service Vulnerability
2560| [88888] Parosproxy CVE-2005-4668 Local Security Vulnerability
2561| [88861] Compaqhttpserver CVE-2005-2982 Cross-Site Scripting Vulnerability
2562| [88776] Java HTTP Server CVE-2001-0307 Remote Security Vulnerability
2563| [88680] Segue Cms CVE-2005-4814 File-Upload Vulnerability
2564| [88677] Java System Web Proxy Server CVE-2005-4806 Denial-Of-Service Vulnerability
2565| [88523] Small HTTP server CVE-2000-0898 Denial-Of-Service Vulnerability
2566| [88460] Csm Proxy CVE-1999-1149 Denial-Of-Service Vulnerability
2567| [88413] Http Server CVE-1999-0929 Denial-Of-Service Vulnerability
2568| [88395] I-Gear MS Proxy CVE-2000-1007 Remote Security Vulnerability
2569| [88316] Fur Http Server CVE-2000-0838 Denial-Of-Service Vulnerability
2570| [88147] ProxySG CVE-2006-0578 Security Bypass Vulnerability
2571| [88139] PHPKIT CVE-2006-0785 File-Upload Vulnerability
2572| [88084] Internet Explorer CVE-1999-0870 File-Upload Vulnerability
2573| [88072] Php Upload Center CVE-2006-1207 Remote Security Vulnerability
2574| [88069] Php Upload Center CVE-2006-1208 File-Upload Vulnerability
2575| [87939] Thttpd Http Server CVE-1999-1456 Remote Security Vulnerability
2576| [87912] Thttpd Http Server CVE-1999-1457 Remote Security Vulnerability
2577| [87761] Squid Web Proxy CVE-1999-1273 Remote Security Vulnerability
2578| [87694] Compaqhttpserver CVE-2006-1774 Security Bypass Vulnerability
2579| [87691] Php Live Helper CVE-2006-1478 File-Upload Vulnerability
2580| [87621] Coppermine Photo Gallery CVE-2006-2514 File-Upload Vulnerability
2581| [87601] Iheat CVE-2006-2511 File-Upload Vulnerability
2582| [87587] Segue Cms CVE-2006-5498 File-Upload Vulnerability
2583| [87576] DownloadEngine CVE-2006-5459 Remote Security Vulnerability
2584| [87501] Wm Downloader CVE-2009-1327 Remote Security Vulnerability
2585| [87494] Rm Downloader CVE-2009-1326 Remote Security Vulnerability
2586| [87486] Mini-Stream Rm Downloader CVE-2009-1646 Remote Security Vulnerability
2587| [87478] getPlus Download Manager CVE-2008-5364 Remote Security Vulnerability
2588| [87470] PHP 'libxml_disable_entity_loader()' CVE-2015-8866 XML External Entity Injection Vulnerability
2589| [87395] Speedywiki CVE-2006-5845 File-Upload Vulnerability
2590| [87392] Punbb CVE-2006-5735 File-Upload Vulnerability
2591| [87378] Seleniumserver Ftp Server CVE-2006-5981 File-Upload Vulnerability
2592| [87301] TFT Gallery CVE-2006-6347 File-Upload Vulnerability
2593| [87114] Logahead Unu CVE-2006-6887 File-Upload Vulnerability
2594| [87046] 3proxy CVE-2006-6981 Denial-Of-Service Vulnerability
2595| [87039] 3proxy CVE-2006-6982 Remote Security Vulnerability
2596| [87007] Httprotect CVE-2001-1172 Local Security Vulnerability
2597| [86993] Dnhttpd CVE-2001-1266 Directory Traversal Vulnerability
2598| [86850] Rigter Portal System CVE-2006-7082 File-Upload Vulnerability
2599| [86845] Imce Module CVE-2006-7109 File-Upload Vulnerability
2600| [86786] VerliAdmin CVE-2007-0098 File-Upload Vulnerability
2601| [86774] Uber Uploader CVE-2007-0123 File-Upload Vulnerability
2602| [86732] Sami HTTP Server CVE-2007-0548 Denial-Of-Service Vulnerability
2603| [86726] Uploader CVE-2007-0532 Information Disclosure Vulnerability
2604| [86651] F3Site CVE-2007-0764 File-Upload Vulnerability
2605| [86585] Wiclear CVE-2007-1097 File-Upload Vulnerability
2606| [86583] Sitex CVE-2007-1235 File-Upload Vulnerability
2607| [86570] webSPELL CVE-2007-1155 File-Upload Vulnerability
2608| [86560] Fantastico De Luxe CVE-2007-1455 File-Upload Vulnerability
2609| [86372] Really Simple Php And Ajax CVE-2007-1851 File-Upload Vulnerability
2610| [86370] Pcp-Guestbook CVE-2007-1933 File-Upload Vulnerability
2611| [86345] pL-PHP CVE-2007-2008 File-Upload Vulnerability
2612| [86313] Ixon Cms CVE-2007-2104 File-Upload Vulnerability
2613| [86302] Monkey Cms CVE-2007-2105 File-Upload Vulnerability
2614| [86299] Phphd Download System CVE-2007-2096 Remote Security Vulnerability
2615| [86290] Kai Content Management System CVE-2007-2106 File-Upload Vulnerability
2616| [86286] Download-Engine CVE-2007-2255 Remote Security Vulnerability
2617| [86279] Multiple F5 BIG-IP Products CVE-2016-3686 Authorization Bypass Vulnerability
2618| [86225] Download-Engine CVE-2007-2289 Remote Security Vulnerability
2619| [86221] Minimal HTTP Server CVE-2007-2315 Denial-Of-Service Vulnerability
2620| [86217] News Manager Deluxe CVE-2007-2303 File-Upload Vulnerability
2621| [86207] Wp-Table CVE-2007-2483 File-Upload Vulnerability
2622| [86173] b2evolution CVE-2007-2681 File-Upload Vulnerability
2623| [86169] Weblogic Server CVE-2007-2699 File-Upload Vulnerability
2624| [86142] EMC Unisphere for VMAX Virtual Appliance CVE-2016-0889 Arbitrary File Upload Vulnerability
2625| [86119] Scallywag CVE-2007-2960 File-Upload Vulnerability
2626| [86023] Multiple F5 BIG-IP Products CVE-2016-2084 Denial of Service Vulnerability
2627| [85987] Multiple F5 BIG-IP Products CVE-2015-8240 Denial of Service Vulnerability
2628| [85972] Imlib2 'loaders/loader_gif.c' Out of Bounds Read Denial of Service Vulnerability
2629| [85937] Microsoft Windows Library Loading CVE-2016-0148 Remote Code Execution Vulnerability
2630| [85936] Microsoft Internet Explorer Library Loading CVE-2016-0160 Remote Code Execution Vulnerability
2631| [85908] Microsoft Windows 'HTTP.sys' CVE-2016-0150 Denial of Service Vulnerability
2632| [85877] Golang Go CVE-2016-3958 DLL Loading Arbitrary Code Execution Vulnerability
2633| [85826] Google Android Download Manager CVE-2016-0848 Remote Privilege Escalation Vulnerability
2634| [85718] Punbb CVE-2006-5735 File-Upload Vulnerability
2635| [85707] Blue Coat ProxySG and Advanced Secure Gateway CVE-2015-8597 Open Redirection Vulnerability
2636| [85656] Pluxml CVE-2007-3432 File-Upload Vulnerability
2637| [85648] GL-SH Deaf Forum CVE-2007-3535 File-Upload Vulnerability
2638| [85645] WordPress CVE-2007-3544 File-Upload Vulnerability
2639| [85612] Ezfactory Download Cgi CVE-2007-3692 Directory Traversal Vulnerability
2640| [85592] Gpg Plugin CVE-2007-3779 File-Upload Vulnerability
2641| [85589] PSnews CVE-2007-3772 File-Upload Vulnerability
2642| [85480] Neuron Blog CVE-2007-4371 File-Upload Vulnerability
2643| [85469] Bilder Uploader CVE-2007-4326 Remote Security Vulnerability
2644| [85405] Pakupaku Cms CVE-2007-4641 File-Upload Vulnerability
2645| [85388] RedHat Ceph CVE-2015-5245 HTTP Response Splitting Vulnerability
2646| [85385] Bluecoat ProxySG CVE-2015-4334 Authentication Bypass Vulnerability
2647| [85370] Izicontents CVE-2007-5055 File-Upload Vulnerability
2648| [85364] Wordsmith CVE-2007-5103 File-Upload Vulnerability
2649| [85332] TorrentTrader CVE-2007-5311 File-Upload Vulnerability
2650| [85316] Dircproxy CVE-2007-5226 Denial-Of-Service Vulnerability
2651| [85297] Force Download CVE-2007-5732 Directory Traversal Vulnerability
2652| [85243] FTP Admin CVE-2007-6233 File-Upload Vulnerability
2653| [85225] Uber Uploader CVE-2007-6676 Remote Security Vulnerability
2654| [85187] Zero CMS CVE-2008-0233 File-Upload Vulnerability
2655| [85174] Photopost Vbgallery CVE-2008-0251 File-Upload Vulnerability
2656| [85161] All Club CMS CVE-2008-0602 File-Upload Vulnerability
2657| [85156] Project Issue Tracking Module CVE-2008-0577 File-Upload Vulnerability
2658| [85146] Azucar CMS CVE-2008-0654 File-Upload Vulnerability
2659| [85115] Lan Manager CVE-2008-0803 File-Upload Vulnerability
2660| [85020] Tr Script News CVE-2008-1958 File-Upload Vulnerability
2661| [85010] Phoenix View Cms CVE-2008-2534 File-Upload Vulnerability
2662| [85001] Chicomas CVE-2008-2016 File-Upload Vulnerability
2663| [84995] Chicomas CVE-2008-2017 File-Upload Vulnerability
2664| [84988] FlashBlog CVE-2008-2574 File-Upload Vulnerability
2665| [84987] Cre Loaded CVE-2008-2558 Remote Security Vulnerability
2666| [84984] AbsoluteTelnet DLL Loading Arbitrary Code Execution Vulnerability
2667| [84960] Phpcards CVE-2006-5604 File-Upload Vulnerability
2668| [84955] Segue Cms CVE-2006-5498 File-Upload Vulnerability
2669| [84950] DownloadEngine CVE-2006-5459 Remote Security Vulnerability
2670| [84934] OtomiGenX CVE-2008-2782 File-Upload Vulnerability
2671| [84921] HomePH Design CVE-2008-2982 File-Upload Vulnerability
2672| [84916] Hedgehog-CMS CVE-2008-2898 File-Upload Vulnerability
2673| [84900] Minishowcase Image Gallery CVE-2008-3390 File-Upload Vulnerability
2674| [84889] Links CVE-2008-3555 File-Upload Vulnerability
2675| [84874] Documentum Applicationxtender Workflow Manager CVE-2008-3685 File-Upload Vulnerability
2676| [84870] Gallery CVE-2008-3600 File-Upload Vulnerability
2677| [84859] Symphony CVE-2008-3592 File-Upload Vulnerability
2678| [84828] Zanfi CMS Lite CVE-2008-4158 File-Upload Vulnerability
2679| [84773] PhpWebGallery CVE-2008-4702 File-Upload Vulnerability
2680| [84765] Sports Clubs Web Portal CVE-2008-4592 File-Upload Vulnerability
2681| [84761] X7 Chat CVE-2008-4718 File-Upload Vulnerability
2682| [84730] Webcards CVE-2008-4878 File-Upload Vulnerability
2683| [84701] ABB Panel Builder CVE-2016-2281 DLL Loading Local Code Execution Vulnerability
2684| [84665] Professional Download Assistant CVE-2008-5572 Information Disclosure Vulnerability
2685| [84575] Blue Smiley Organizer CVE-2006-5238 File-Upload Vulnerability
2686| [84524] Asp Download CVE-2008-6739 Remote Security Vulnerability
2687| [84519] Flexphpdirectory CVE-2008-6750 File-Upload Vulnerability
2688| [84496] Mini File Host CVE-2008-6785 File-Upload Vulnerability
2689| [84482] LoveCMS CVE-2008-7062 File-Upload Vulnerability
2690| [84357] HP ArcSight ESM and ArcSight ESM Express CVE-2016-1991 Arbitrary File Download Vulnerability
2691| [84307] PHP 'soap/php_http.c' Type Confusion Remote Denial Of Service Vulnerability
2692| [84286] SAP Download Manager Weak Encryption Local Security Weakness
2693| [84243] Simple Http Scanner CVE-2006-5026 Remote Security Vulnerability
2694| [84237] Simple Http Scanner CVE-2006-5025 Remote Security Vulnerability
2695| [84213] Flexera Software InstallShield CVE-2016-2542 DLL Loading Local Privilege Escalation Vulnerability
2696| [84192] Osu Httpd CVE-2006-4907 Information Disclosure Vulnerability
2697| [84189] Osu Httpd CVE-2006-4908 Information Disclosure Vulnerability
2698| [84159] Punbb CVE-2006-4759 File-Upload Vulnerability
2699| [83930] Microsoft Windows Library Loading CVE-2016-0100 Remote Code Execution Vulnerability
2700| [83923] Downloadcontrol CVE-2006-2553 Cross-Site Scripting Vulnerability
2701| [83872] Huawei UTPS CVE-2016-2780 DLL Loading Local Code Execution Vulnerability
2702| [83859] Dokuwiki CVE-2006-4675 File-Upload Vulnerability
2703| [83747] Webex Downloader Activex Control CVE-2006-3424 Remote Security Vulnerability
2704| [83728] PHCDownload CVE-2006-3525 SQL-Injection Vulnerability
2705| [83719] Jenkins CVE-2016-0789 HTTP Response Splitting Vulnerability
2706| [83713] vtiger CRM CVE-2006-4617 File-Upload Vulnerability
2707| [83703] Microsoft PowerPoint Viewer DLL Loading Arbitrary Code Execution Vulnerability
2708| [83596] GIMP DLL Loading Arbitrary Code Execution Vulnerability
2709| [83589] Wireshark CVE-2016-2521 DLL Loading Remote Code Execution Vulnerability
2710| [83522] Dproxy CVE-2007-1866 Remote Security Vulnerability
2711| [83502] Http Service CVE-2007-5560 Remote Security Vulnerability
2712| [83469] Download Accelerator Plus CVE-2008-3433 Remote Security Vulnerability
2713| [83408] Drupal Core Arbitrary File Upload and Information Disclosure Vulnerabilities
2714| [83391] Nghttp2 CVE-2016-1544 Local Denial of Service Vulnerability
2715| [83296] Square OkHttp CVE-2016-2402 Security Bypass Vulnerability
2716| [83282] Node.js CVE-2016-2086 HTTP Request Smuggling Vulnerability
2717| [83245] HD Video Player PRO Local File Include and Arbitrary File Upload Vulnerabilities
2718| [83220] SAP Java Proxy Runtime Unspecified Cross Site Scripting Vulnerability
2719| [83141] Node.js CVE-2016-2216 HTTP Response Splitting Vulnerability
2720| [83133] ME Download System CVE-2006-4054 Remote Security Vulnerability
2721| [82988] Wm Downloader CVE-2009-1327 Remote Security Vulnerability
2722| [82980] Rm Downloader CVE-2009-1326 Remote Security Vulnerability
2723| [82893] OmniHTTPD CVE-2002-1455 Cross-Site Scripting Vulnerability
2724| [82813] Windows NT CVE-1999-0489 File-Upload Vulnerability
2725| [82630] Netgear Management System NMS300 Directory Traversal and Arbitrary File Upload Vulnerabilities
2726| [82563] Cherokee Httpd CVE-2004-1946 Local Security Vulnerability
2727| [82517] CCProxy CVE-2004-2685 Remote Security Vulnerability
2728| [82511] Microsoft Windows CVE-2016-0044 DLL Loading Denial of Service Vulnerability
2729| [82510] Microsoft Windows CVE-2016-0042 DLL Loading Local Privilege Escalation Vulnerability
2730| [82505] Microsoft Windows CVE-2016-0041 DLL Loading Multiple Local Privilege Escalation Vulnerabilities
2731| [82481] Mini-Stream Rm Downloader CVE-2009-1646 Remote Security Vulnerability
2732| [82436] Download module for PostNuke CVE-2005-0616 Cross-Site Scripting Vulnerability
2733| [82419] RaidenHTTPD CVE-2005-0623 Remote Security Vulnerability
2734| [82356] Java System Web Proxy Server CVE-2005-1232 Remote Security Vulnerability
2735| [82145] Burak Yilmaz Download Portal CVE-2006-6672 SQL-Injection Vulnerability
2736| [81928] Aktueldownload Haber Script CVE-2007-1015 SQL-Injection Vulnerability
2737| [81925] Aktueldownload Haber Script CVE-2007-1016 SQL-Injection Vulnerability
2738| [81845] Rha7 Downloads CVE-2007-2107 SQL-Injection Vulnerability
2739| [81692] Foxit Reader and Foxit PhantomPDF DLL Loading Arbitrary Code Execution Vulnerability
2740| [81690] LEADTOOLS ActiveX Control Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
2741| [81689] HP LaserJet Fax Preview DLL Loading Arbitrary Code Execution Vulnerability
2742| [81687] HP LaserJet Printer DLL Loading Arbitrary Code Execution Vulnerability
2743| [81546] Multiple F5 BIG-IP Products CVE-2015-5516 Denial of Service Vulnerability
2744| [81524] Anon Proxy Server CVE-2007-6460 Cross-Site Scripting Vulnerability
2745| [81470] PHCDownload CVE-2007-6670 SQL-Injection Vulnerability
2746| [81457] Http File Server CVE-2008-0409 Cross-Site Scripting Vulnerability
2747| [81125] Oracle GoldenGate CVE-2016-0451 Arbitrary File Upload Vulnerability
2748| [81122] Oracle GoldenGate CVE-2016-0452 Arbitrary File Upload Vulnerability
2749| [80740] H2O CVE-2016-1133 HTTP Header Injection Vulnerability
2750| [80737] PHCDownload CVE-2008-6597 Cross-Site Scripting Vulnerability
2751| [80526] HPE ArcSight Logger Client Certificate Upload Multiple Security Bypass Vulnerabilities
2752| [80486] Download Manager CVE-2006-2964 Multiple File Include Vulnerabilities
2753| [80438] Nghttp2 CVE-2015-8659 Unspecified Security Vulnerability
2754| [80433] Multiple F5 BIG-IP Products CVE-2015-7759 Denial of Service Vulnerability
2755| [80430] Multiple F5 BIG-IP Products CVE-2015-7393 Local Privilege Escalation Vulnerability
2756| [80385] Multiple F5 BIG-IP Products CVE-2015-8611 Insecure Default Password Vulnerability
2757| [80271] Myth Download CVE-2009-4701 SQL-Injection Vulnerability
2758| [80203] Uploader CVE-2003-1552 File-Upload Vulnerability
2759| [80166] TrueCrypt and VeraCrypt DLL Loading Arbitrary Code Execution Vulnerability
2760| [80061] I-Httpd CVE-2014-7263 Cross-Site Scripting Vulnerability
2761| [80059] I-Httpd CVE-2014-7262 Cross-Site Scripting Vulnerability
2762| [80040] I-Httpd CVE-2014-7261 Cross-Site Scripting Vulnerability
2763| [80022] F5 BIG-IP APM File Handling Out of Bounds Memory Corruption Vulnerability
2764| [79985] Maian Uploader CVE-2014-10004 SQL-Injection Vulnerability
2765| [79968] Maian Uploader CVE-2014-10003 Cross-Site Scripting Vulnerability
2766| [79966] Maian Uploader CVE-2014-10006 Cross-Site Scripting Vulnerability
2767| [79909] Microsoft Windows MAPI DLL Loading CVE-2016-0020 Local Privilege Escalation Vulnerability
2768| [79906] Microsoft Windows CVE-2016-0018 DLL Loading Remote Code Execution Vulnerability
2769| [79902] Microsoft Windows CVE-2016-0016 DLL Loading Remote Code Execution Vulnerability
2770| [79901] Linux Kernel KVM 'kvm_pit_load_count()' Function Divide By Zero Denial of Service Vulnerability
2771| [79896] Microsoft Windows DLL Loading CVE-2016-0014 Local Privilege Escalation Vulnerability
2772| [79837] RETIRED: F5 BIG-IP LTM Denial of Service Vulnerability
2773| [79712] Mediawiki CVE-2015-8625 Arbitrary File Upload Vulnerability
2774| [79702] CG-WLBARAGM Wireless LAN Router CVE-2015-7793 Open Proxy Vulnerability
2775| [79669] Multiple Kaspersky products DLL Loading Arbitrary Code Execution Vulnerability
2776| [79666] WinRAR CVE-2015-5663 Executable Loading Arbitrary Code Execution Vulnerability
2777| [79657] F-Secure Online Scanner CVE-2015-8264 DLL Loading Arbitrary Code Execution Vulnerability
2778| [79652] Oracle OLE DB Provider Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
2779| [79630] Maian Uploader CVE-2014-10005 Information Disclosure Vulnerability
2780| [79629] Product Data Management CVE-2014-100015 File-Upload Vulnerability
2781| [79603] WebFrame CVE-2009-0514 File-Upload Vulnerability
2782| [79591] Downloadcenter CVE-2009-0732 Information Disclosure Vulnerability
2783| [79586] Kipper CVE-2009-0765 File-Upload Vulnerability
2784| [79580] Phpskelsite CVE-2009-0596 File-Upload Vulnerability
2785| [79570] Ziproxy CVE-2009-0804 Security Bypass Vulnerability
2786| [79538] Rapidleech CVE-2009-1090 File-Upload Vulnerability
2787| [79530] Pastelcms CVE-2009-1405 File-Upload Vulnerability
2788| [79518] Fungamez CVE-2009-1488 File-Upload Vulnerability
2789| [79502] Answer And Question Script CVE-2009-1663 File-Upload Vulnerability
2790| [79460] DeDeCMS CVE-2009-2270 File-Upload Vulnerability
2791| [79432] Dit.Cms CVE-2009-2784 File-Upload Vulnerability
2792| [79423] Cms Chainuk CVE-2009-2333 File-Upload Vulnerability
2793| [79386] Vedit CVE-2009-3064 File-Upload Vulnerability
2794| [79369] Gazelle CMS CVE-2009-3182 File-Upload Vulnerability
2795| [79326] Cmsphp CVE-2009-3507 File-Upload Vulnerability
2796| [79315] D.Net Cms CVE-2009-3515 File-Upload Vulnerability
2797| [79311] Httpdx CVE-2009-3711 Denial-Of-Service Vulnerability
2798| [79300] WordPress CVE-2009-3890 File-Upload Vulnerability
2799| [79293] XUpload CVE-2009-3693 Directory Traversal Vulnerability
2800| [79269] Sweetrice CVE-2009-4231 File-Upload Vulnerability
2801| [79264] Operations Manager CVE-2009-4189 File-Upload Vulnerability
2802| [79262] Betsy Cms CVE-2009-4056 File-Upload Vulnerability
2803| [79259] CuteNews CVE-2009-4116 File-Upload Vulnerability
2804| [79252] Piwik CVE-2009-4137 File-Upload Vulnerability
2805| [79229] Open Source Security Information Management CVE-2009-4373 File-Upload Vulnerability
2806| [79180] Serendipity CVE-2009-4412 File-Upload Vulnerability
2807| [79155] Httpdx CVE-2009-4770 Remote Security Vulnerability
2808| [79144] Bandsite Cms CVE-2009-4793 File-Upload Vulnerability
2809| [79136] Skadate Online Dating Software CVE-2009-4739 File-Upload Vulnerability
2810| [79094] Cre Loaded CVE-2009-5076 Security Bypass Vulnerability
2811| [79073] Cre Loaded CVE-2009-5077 Security Bypass Vulnerability
2812| [79053] Sb Folderdownload CVE-2010-0325 Information Disclosure Vulnerability
2813| [79045] Dhttpd CVE-2009-5110 Denial-Of-Service Vulnerability
2814| [79023] Com Gcalendar CVE-2010-0972 File-Upload Vulnerability
2815| [79014] Scriptegrator Plugin CVE-2010-0760 File-Upload Vulnerability
2816| [79006] vBSEO CVE-2010-1077 File-Upload Vulnerability
2817| [78967] OpenCominterne CVE-2010-1936 File-Upload Vulnerability
2818| [78956] Openfoncier CVE-2010-1948 File-Upload Vulnerability
2819| [78955] openCatalogue CVE-2010-1999 File-Upload Vulnerability
2820| [78954] Openpresse CVE-2010-1935 File-Upload Vulnerability
2821| [78946] Opencourrier CVE-2010-1926 File-Upload Vulnerability
2822| [78942] Openplanning CVE-2010-1928 File-Upload Vulnerability
2823| [78934] Proman CVE-2010-2138 File-Upload Vulnerability
2824| [78929] Orbit Downloader CVE-2010-2104 Directory Traversal Vulnerability
2825| [78918] CMSQLite CVE-2010-2096 File-Upload Vulnerability
2826| [78909] OPC Systems.NET CVE-2015-7917 DLL Loading Local Privilege Escalation Vulnerability
2827| [78881] Ziproxy CVE-2010-2350 Denial-Of-Service Vulnerability
2828| [78879] CMS Made Simple CVE-2010-2797 File-Upload Vulnerability
2829| [78817] Cisco Emergency Responder Web Framework CVE-2015-6407 Arbitrary File Upload Vulnerability
2830| [78807] LOYTEC Router CVE-2015-7906 Arbitrary File Download Vulnerability
2831| [78792] Websiteadmin CVE-2010-3688 File-Upload Vulnerability
2832| [78763] vtiger CRM CVE-2010-3910 File-Upload Vulnerability
2833| [78739] Multiple Cisco IP Phones CVE-2015-6403 Local Arbitrary File Upload Vulnerability
2834| [78634] Proxysg Sg9000-5 CVE-2010-5189 Remote Security Vulnerability
2835| [78628] Proxysg Sg9000-5 CVE-2010-5190 Security Bypass Vulnerability
2836| [78615] Microsoft Windows Library Loading CVE-2015-6133 Remote Code Execution Vulnerability
2837| [78614] Microsoft Windows Library Loading CVE-2015-6132 Remote Code Execution Vulnerability
2838| [78612] Microsoft Windows CVE-2015-6128 DLL Loading Remote Code Execution Vulnerability
2839| [78593] Fraise CVE-2011-0518 File-Upload Vulnerability
2840| [78457] Multiple IBM Products CVE-2015-2017 HTTP Response Splitting Vulnerability
2841| [78340] Open Business Management CVE-2011-5141 File-Upload Vulnerability
2842| [78332] Com Jce CVE-2011-5134 File-Upload Vulnerability
2843| [78321] Openemr CVE-2011-5161 File-Upload Vulnerability
2844| [78220] WordPress Double-Opt-in-for-Download Plugin Multiple SQL Injection Vulnerabilities
2845| [78170] Rbx Gallery CVE-2012-3575 File-Upload Vulnerability
2846| [78157] Wpstorecart CVE-2012-3576 File-Upload Vulnerability
2847| [78152] Font Uploader CVE-2012-3814 File-Upload Vulnerability
2848| [78102] Elastic Load Balancing Api Tools CVE-2012-5781 Remote Security Vulnerability
2849| [78094] Phppaleo CVE-2012-5386 File-Upload Vulnerability
2850| [77980] Powermail CVE-2014-3947 File-Upload Vulnerability
2851| [77946] HP LoadRunner Virtual Table Server CVE-2015-6857 Local Code Execution Vulnerability
2852| [77890] An-Http CVE-2003-1270 Denial-Of-Service Vulnerability
2853| [77841] Proxysg CVE-2011-5124 Remote Security Vulnerability
2854| [77759] Cformsii CVE-2014-9473 File-Upload Vulnerability
2855| [77741] Infinitewp Admin Panel CVE-2014-9521 File-Upload Vulnerability
2856| [77732] ProjectSend CVE-2014-9567 File-Upload Vulnerability
2857| [77673] TomatoCart 'json.php' Multiple Arbitrary File Upload Vulnerabilities
2858| [77666] Multiple F5 BIG-IP Products CVE-2015-3628 Privilege Escalation Vulnerability
2859| [77658] AggreGate Platform Multiple Arbitrary File Upload Vulnerabilities
2860| [77372] Mediawiki 'api/ApiUpload.php' Security Bypass Vulnerability
2861| [77110] Apache HttpComponents HttpClient CVE-2015-5262 Denial of Service Vulnerability
2862| [77087] MAGMI Plugin For Magento 'download_file.php' Directory Traversal Vulnerability
2863| [77076] Multiple F5 Products CVE-2015-4040 Directory Traversal Vulnerability
2864| [77013] SolarWinds Storage Manager 'ProcessFileUpload.jsp' Arbitrary File Upload Vulnerability
2865| [76929] Python DLL Loading 'readline.pyd' Remote Code Execution Vulnerability
2866| [76899] TYPO3 'http:BL Blocking' Extension SQL Injection Vulnerability
2867| [76838] Kaseya Virtual System Administrator CVE-2015-6589 Arbitrary File Upload Vulnerability
2868| [76835] Kaseya Virtual System Administrator Arbitrary File Upload and Privilege Escalation Vulnerability
2869| [76832] Apache cordova-plugin-file-transfer CVE-2015-5204 HTTP Header Injection Vulnerability
2870| [76727] FreeType 't1load.c' Denial of Service Vulnerability
2871| [76726] Symantec Web Gateway CVE-2015-5692 Arbitrary File Upload Vulnerability
2872| [76716] IBM WebSphere eXtreme Scale CVE-2015-2028 HTTP Response Splitting Vulnerability
2873| [76658] IBM HTTP Server CVE-2015-4947 Stack Buffer Overflow Vulnerability
2874| [76545] HP LoadRunner CVE-2015-5426 Local Code Execution Vulnerability
2875| [76459] JasPer 'jasper_image_stop_load()' Function Double Free Denial of Service Vulnerability
2876| [76445] ManageEngine ServiceDesk Arbitrary File Upload Vulnerability
2877| [76418] SAP NetWeaver 'AFPServlet' Arbitrary File Download Vulnerability
2878| [76368] vBulletin Multiple Arbitrary File Upload Vulnerabilities
2879| [76339] Apple Safari WebKit Page Loading Information Disclosure Vulnerability
2880| [76281] Golang Go CVE-2015-5739 HTTP Header Injection Vulnerability
2881| [76271] Thomson Reuters FATCA CVE-2015-5951 Arbitrary File Upload Vulnerability
2882| [76228] Microsoft Remote Desktop Protocol DLL Loading CVE-2015-2473 Remote Code Execution Vulnerability
2883| [76226] SuiteCRM 'Upload Company Logo' Functionality Incomplete Fix Arbitrary File Upload Vulnerability
2884| [76091] RabbitMQ CVE-2014-9650 HTTP Response Splitting Vulnerability
2885| [76061] Gazou BBS plus CVE-2015-2974 Arbitrary File Upload Vulnerability
2886| [76032] Golang Go CVE-2015-5741 HTTP Header Injection Vulnerability
2887| [76028] WordPress MailCWP Plugin 'mailcwp-upload.php' Arbitrary File Upload Vulnerability
2888| [76014] Multiple D-Link Products HTTP Buffer Overflow Vulnerability
2889| [76009] WordPress wp-powerplaygallery Plugin 'upload.php' Multiple SQL Injection Vulnerabilities
2890| [75991] WordPress image-export Plugin 'download.php' Arbitrary File Download Vulnerability
2891| [75965] Apache HTTP Server CVE-2015-3185 Security Bypass Vulnerability
2892| [75964] Apache HTTP Server CVE-2015-0253 Remote Denial of Service Vulnerability
2893| [75963] Apache HTTP Server CVE-2015-3183 Security Vulnerability
2894| [75962] Microsoft Malicious Software Removal Tool DLL Loading Local Privilege Escalation Vulnerability
2895| [75943] Multiple F5 BIG-IP Products CVE-2015-4637 Authentication Bypass Vulnerability
2896| [75922] SAP SERVICE DATA DOWNLOAD Remote Command Execution Vulnerability
2897| [75755] Oracle Endeca Information Discovery Studio CVE-2015-2602 Arbitrary File Upload Vulnerability
2898| [75750] Oracle Endeca Information Discovery Studio CVE-2015-4745 Arbitrary File Download Vulnerability
2899| [75698] WordPress IBS Mappro Plugin 'download.php' Arbitrary File Download Vulnerability
2900| [75600] WordPress Swim Team Plugin 'download.php' Arbitrary File Download Vulnerability
2901| [75599] WordPress ACF Frontend Display Plugin 'index.php' Arbitrary File Upload Vulnerability
2902| [75584] WordPress S3Bubble Plugin 'downloader.php' Arbitrary File Download Vulnerability
2903| [75577] PivotX Cross Site Scripting, Session Fixation and Arbitrary File Upload Vulnerabilities
2904| [75567] WordPress MDC YouTube Downloader Plugin 'download.php' Arbitrary File Download Vulnerability
2905| [75563] WordPress WP e-Commerce Shop Styling Plugin 'download.php' Arbitrary File Download Vulnerability
2906| [75554] HAProxy CVE-2015-3281 Information Disclosure Vulnerability
2907| [75519] Multiple EMC Documentum Products Cross Site Scripting and Arbitrary File Upload Vulnerabilities
2908| [75396] WordPress Download Zip Attachments Plugin 'download.php' Arbitrary File Download Vulnerability
2909| [75394] WordPress wp-instance-rename Plugin 'mysqldump_download.php' Arbitrary File Download Vulnerability
2910| [75366] IBM Leads CVE-2015-0126 Multiple Arbitrary File Upload Vulnerabilities
2911| [75344] IBM WebSphere Commerce CVE-2015-0196 HTTP Response Splitting Vulnerability
2912| [75341] WordPress Fusion Theme 'functions.php' Arbitrary File Upload Vulnerability
2913| [75326] Cisco Web Security Appliance CVE-2015-4198 HTTP Header Injection Vulnerability
2914| [75311] MantisBT SQL Injection and Arbitrary File Download Vulnerabilities
2915| [75297] Schneider Electric Wonderware System Platform DLL Loading Arbitrary Code Execution Vulnerability
2916| [75276] Drupal HTTP Strict Transport Security Module Security Bypass Vulnerability
2917| [75248] TYPO3 Frontend User Upload Extension CVE-2015-4607 Arbitrary File Upload Vulnerability
2918| [75238] TYPO3 Job Fair Extension CVE-2015-4606 Arbitrary File Upload Vulnerability
2919| [75226] WordPress History Collection Plugin 'download.php' Arbitrary File Download Vulnerability
2920| [75211] WordPress Zip Attachments Plugin 'download.php' Arbitrary File Download Vulnerability
2921| [75210] BlackCat CMS 'logs.php' Arbitrary File Download Vulnerability
2922| [75207] WordPress NativeChurch Theme 'download.php' Arbitrary File Download Vulnerability
2923| [75203] Symantec Endpoint Protection Manager and Client DLL Loading Local Privilege Escalation Vulnerability
2924| [75182] Microsoft Internet Explorer ShowSaveFileDialog DLL Loading Arbitrary Code Execution Vulnerability
2925| [75164] IBM HTTP Server CVE-2015-1829 Denial of Service Vulnerability
2926| [75146] WordPress 'functions.php' Arbitrary File Upload Vulnerability
2927| [75110] WordPress Aviary Image Editor Add-on For Gravity Forms Plugin Arbitrary File Upload Vulnerability
2928| [75047] WordPress Wow Moodboard Lite Plugin 'wowproxy.php' Open Redirection Vulnerability
2929| [75026] Cisco TelePresence Integrator C Series CVE-2015-0770 HTTP Response Splitting Vulnerability
2930| [75004] Microsoft Windows LoadLibrary CVE-2015-1758 Remote Privilege Escalation Vulnerability
2931| [74967] Cisco Unified MeetingPlace CVE-2015-0764 Arbitrary File Download Vulnerability
2932| [74958] IBM Marketing Operations CVE-2014-8887 Arbitrary File Upload Vulnerability
2933| [74931] Multiple IBM Flex System Products CVE-2014-9564 HTTP Response Splitting Vulnerability
2934| [74920] Cisco Headend System Release CVE-2015-0745 Arbitrary File Download Vulnerabilitiy
2935| [74919] Cisco Videoscape Conductor and Headend System Release HTTP Header Injection Vulnerability
2936| [74917] Cisco Headend Digital Broadband Delivery System CVE-2015-0733 HTTP Response Splitting Vulnerability
2937| [74875] Sierra Wireless AirCard 'export.cfg' HTTP Header Injection Vulnerability
2938| [74858] Wavelink ConnectPro 'WLTermProxyService.exe' Heap Buffer Overflow Vulnerability
2939| [74828] WordPress Estrutura-Basica Theme 'download.php' Arbitrary File Download Vulnerability
2940| [74813] Lighttpd 'http_auth.c' Security Bypass Vulnerability
2941| [74788] Visual Mining NetCharts Server CVE-2015-4032 Arbitrary File Upload Vulnerability
2942| [74772] Schneider Electric OPC Factory Server DLL Loading Arbitrary Code Execution Vulnerability
2943| [74758] WordPress Simple Backup Plugin 'tools.php' Arbitrary File Download Vulnerability
2944| [74744] SuiteCRM 'Upload Company Logo' Functionality Arbitrary File Upload Vulnerability
2945| [74738] Xamarin for Android DLL Loading Arbitrary Code Execution Vulnerability
2946| [74737] HP LoadRunner CVE-2015-2110 Remote Buffer Overflow Vulnerability
2947| [74731] WISE-FTP DLL Loading Multiple Local Code Execution Vulnerabilities
2948| [74709] Cisco Sourcefire 3D System Lights-Out Management CVE-2015-0739 Arbitrary File Upload Vulnerability
2949| [74650] Multiple F5 BIG-IP Products SSL Certificate Validation Multiple Security Bypass Vulnerabilities
2950| [74625] SAP Sybase Unwired Platform Online Data Proxy Local Information Disclosure Vulnerability
2951| [74583] HP Network Virtualization for LoadRunner and Performance Center Information Disclosure Vulnerability
2952| [74562] F5 Networks BIG-IQ User Enumeration Vulnerability
2953| [74479] F5 BIG-IP Application Security Manager Security Bypass Vulnerability
2954| [74442] IBM InfoSphere Optim Workload Replay CVE-2015-1895 Security Bypass Vulnerability
2955| [74441] IBM InfoSphere Optim Workload Replay CVE-2015-1894 Cross Site Request Forgery Vulnerability
2956| [74343] Drupal Webform Multiple File Upload Module Multiple Cross Site Request Forgery Vulnerabilities
2957| [74335] Dovecot 'ssl-proxy-openssl.c' Remote Denial of Service Vulnerability
2958| [74308] Avsarsoft Matbaa Script Cross Site Scripting and Arbitrary File Upload Vulnerabilities
2959| [74286] Cisco FireSIGHT System Software CVE-2015-0706 HTTP Open Redirection Vulnerability
2960| [74271] Drupal Public Download Count Module CVE-2015-3389 Cross Site Scripting Vulnerability
2961| [74209] Wolf CMS 'FileManagerController.php' Arbitrary File Upload Vulnerability
2962| [74207] LiteSpeed Web Server 'httpreq.cpp' Use After Free Denial of Service Vulnerability
2963| [74201] BlueDragon CFChart Servlet CVE-2014-5370 Arbitrary File Download Vulnerability
2964| [74158] Apache HTTP Server 'protocol.c' Remote Denial of Service Vulnerability
2965| [74013] Microsoft Windows HTTP Protocol Stack CVE-2015-1635 Remote Code Execution Vulnerability
2966| [73949] Novell ZENworks Configuration Management CVE-2015-0779 Remote File Upload Vulnerability
2967| [73944] WordPress Work The Flow Plugin 'index.php' Arbitrary File Upload Vulnerability
2968| [73909] ManageEngine Desktop Central MSP 'InventorySWMeteringServlet' Arbitrary File Upload Vulnerability
2969| [73907] ManageEngine OpManager CVE-2014-6036 Arbitrary File Upload Vulnerability
2970| [73694] WordPress VideoWhisper Video Conference Integration Arbitrary File Upload Vulnerability
2971| [73690] WordPress VideoWhisper Video Presentation 'vw_upload.php' Arbitrary File Upload Vulnerability
2972| [73538] Barracuda Link Balancer Series Firmware CVE-2011-5114 Cross-Site Scripting Vulnerability
2973| [73450] mini_httpd CVE-2015-1548 Information Disclosure Vulnerability
2974| [73445] WordPress Aspose DOC Exporter Plugin Arbitrary File Download Vulnerability
2975| [73439] Websense TRITON V-Series CVE-2015-2772 Unspecified Arbitrary File Upload Vulnerability
2976| [73404] GoAhead WebServer 'src/http.c' Directory Traversal Vulnerability
2977| [73384] WordPress Aspose Cloud eBook Generator Arbitrary File Download Vulnerability
2978| [73382] Berta CMS 'upload.php' Arbitrary File Upload Vulnerability
2979| [73350] Huawei eSpace Desktop CVE-2014-9416 DLL Loading Multiple Local Code Execution Vulnerabilities
2980| [73328] WordPress WP Marketplace Plugin 'wpmarketplace\libs\cart.php' Arbitrary File Download Vulnerability
2981| [73309] Citrix Command Center CVE-2015-2682 Arbitrary File Download Vulnerabilitiy
2982| [73298] Codoforum 'index.php' Arbitrary File Download Vulnerabilitiy
2983| [73247] Multiple Rockwell Automation Products DLL Loading Multiple Local Code Execution Vulnerabilities
2984| [73118] WordPress Pixabay Images Plugin CVE-2015-1375 Arbitrary File Upload Vulnerability
2985| [73083] Adobe Flash Player CVE-2015-0340 File Upload Restriction Security Bypass Vulnerability
2986| [73041] Apache HTTP Server 'mod_lua' Module Denial of Service Vulnerability
2987| [73040] Apache HTTP Server 'mod_lua.c' Local Access Bypass Vulnerability
2988| [73030] Telerik Analytics Monitor Library DLL Loading Multiple Local Code Execution Vulnerabilities
2989| [73027] Cimon CmnView CVE-2014-9207 DLL Loading Arbitrary Code Execution Vulnerability
2990| [72999] NetCat CMS Multiple HTTP Response Splitting Vulnerabilities
2991| [72992] WeBid 'ajax.php' Arbitrary File Upload Vulnerability
2992| [72956] GNOME librest 'rest_proxy_call_get_url()' Memory Corruption Vulnerability
2993| [72894] Microsoft Windows DLL Loading CVE-2015-0096 Remote Code Execution Vulnerability
2994| [72767] libcsoap 'nanohttp-server.c' Buffer Overflow and Denial of Service Vulnerabilities
2995| [72749] Mozilla Firefox 'nsXMLHttpRequest::GetResponse' Heap Double Free Memory Corruption Vulnerability
2996| [72747] Mozilla Firefox Firefox ESR and Thunderbird DLL Loading Arbitrary Code Execution Vulnerability
2997| [72703] Squid CVE-2015-0881 HTTP Header Injection Vulnerability
2998| [72686] GLPI Arbitrary File Upload and Privilege Escalation Vulnerability
2999| [72674] Drupal Avatar Uploader Module Arbitrary File Upload Vulnerability
3000| [72633] HumHub '.htaccess' Arbitrary File Upload Vulnerability
3001| [72621] Maarch LetterBox CVE-2015-1587 Arbitrary File Upload Vulnerability
3002| [72620] WordPress Photo Gallery Plugin CVE-2014-9312 Arbitrary File Upload Vulnerability
3003| [72546] WordPress Holding Pattern Theme CVE-2015-1172 Arbitrary File Upload Vulnerability
3004| [72485] Cisco Unified IP Phones 9900 Series CVE-2015-0604 Arbitrary File Upload Vulnerability
3005| [72471] ArticleFR 'videouploader.php' Arbitrary File Upload Vulnerability
3006| [72384] SYNCK GRAPHICA Download Log CGI CVE-2015-0867 Directory Traversal Vulnerability
3007| [72256] Multiple EMC Products CVE-2015-0515 Arbitrary File Upload Vulnerability
3008| [72250] Siemens Scalance X Switches 'HTTP' Request Denial of Service Vulnerability
3009| [72193] Oracle HTTP Server CVE-2015-0386 Remote Security Vulnerability
3010| [72143] Oracle HTTP Server CVE-2014-6571 Remote Security Vulnerability
3011| [72079] Django 'django.util.http.is_safe_url()' Cross Site Scripting Vulnerability
3012| [72053] Apache HTTP Server 'mod_remoteip.c' IP Address Spoofing Vulnerability
3013| [72046] Mozilla Firefox/Thunderbird/SeaMonkey Proxy Authentication Session Fixation Vulnerability
3014| [72017] Fork CMS 'loadForm()' Function Cross Site Scripting Vulnerability
3015| [72014] F5 Networks BIG-IP Application Security Manager (ASM) HTML Injection Vulnerability
3016| [72010] Corel FastFlick CVE-2014-8398 Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
3017| [72009] VideoStudio Pro X7 'u32ZLib.dll' DLL Loading Arbitrary Code Execution Vulnerability
3018| [72007] Corel PDF Fusion 'quserex.dll' DLL Loading Arbitrary Code Execution Vulnerability
3019| [72006] Corel Painter 'wacommt.dll' DLL Loading Arbitrary Code Execution Vulnerability
3020| [72005] Multiple Corel Products 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
3021| [72004] CorelCAD 'TD_Mgd_3.08_9.dll' DLL Loading Arbitrary Code Execution Vulnerability
3022| [71983] WordPress Shopping Cart Plugin 'banneruploaderscript.php' Arbitrary File Upload Vulnerability
3023| [71894] Strongswan IKEv2 Payloads CVE-2014-9221 Remote Denial Of Service Vulnerability
3024| [71879] Apache Traffic Server 'HttpTransact.cc' Denial of Service Vulnerability
3025| [71872] AdaptCMS Arbitrary File Upload Vulnerability
3026| [71871] AdaptCMS 'Referer' Header Field HTTP Open Redirection Vulnerability
3027| [71842] Osclass 'contact.php' Arbitrary File Upload Vulnerability
3028| [71818] WordPress cformsII Plugin 'lib_nonajax.php' Arbitrary File Upload Vulnerability
3029| [71808] WordPress Frontend Uploader Plugin 'errors' Parameter Cross Site Scripting Vulnerability
3030| [71781] libvirt 'storageVolUpload()' Function Local Denial of Service Vulnerability
3031| [71744] Allegro RomPager HTTP Cookie Handling CVE-2014-9222 Security Bypass Vulnerability
3032| [71702] WordPress DB Backup Plugin 'download.php' Directory Traversal Vulnerability
3033| [71686] WordPress WP Symposium Plugin Multiple Arbitrary File Upload Vulnerabilities
3034| [71672] Intrexx CVE-2014-2025 Unspecified Arbitrary File Upload Vulnerability
3035| [71656] Apache HTTP Server 'mod_cache' Module Denial of Service Vulnerability
3036| [71551] WordPress Ajax Store Locator Plugin 'sl_file_download.php' Arbitrary File Download Vulnerability
3037| [71549] Multiple F5 Products CVE-2014-8730 Man In The Middle Information Disclosure Vulnerability
3038| [71535] Zenoss Core 'HTTPOnly' Cookie Flag Information Disclosure Vulnerability
3039| [71521] MantisBT 'file_download.php' HTML Injection Vulnerability
3040| [71490] WordPress Download Manager Plugin Remote Code Execution and Remote File Include Vulnerabilities
3041| [71418] WordPress CM Download Manager Plugin Cross Site Request Forgery Vulnerability
3042| [71404] Multiple ManageEngine Products Multiple Arbitrary File Download Vulnerabilities
3043| [71380] MantisBT 'file_download.php' HTML Injection Vulnerability
3044| [71353] Apache HTTP Server 'LuaAuthzProvider' Authorization Bypass Vulnerability
3045| [71290] Digi Online Examination System CVE-2014-8997 Unspecified Arbitrary File Upload Vulnerability
3046| [71274] Serenity Client Management Portal Arbitrary File Upload and Multiple HTML Injection Vulnerabilities
3047| [71272] WordPress wpDataTables Plugin Multiple Arbitrary File Upload Vulnerabilities
3048| [71266] Mouse Media Script Upload Image Multiple HTML Injection Vulnerabilities
3049| [71229] Joomla HD FLV 'com_hdflvplayer/hdflvplayer/download.php' Arbitrary File Download Vulnerabilitiy
3050| [71204] WordPress CM Download Manager Plugin CVE-2014-8877 Remote PHP Code Execution Vulnerability
3051| [71127] Moodle CVE-2014-7835 Unspecified Arbitrary File Upload Vulnerability
3052| [71108] OpenKM 'frontend/Download' Cross Site Scripting Vulnerability
3053| [71099] Multiple Magento Products CVE-2014-8770 Arbitrary File Upload Vulnerability
3054| [71063] F5 Networks BIG-IP CVE-2014-8727 Directory Traversal Vulnerability
3055| [71001] Multiple ManageEngine Products CVE-2014-7866 Arbitrary File Upload Vulnerabilities
3056| [70929] HelpDEZk 'uploadify.php' Arbitrary File Upload Vulnerability
3057| [70920] Cisco Small Business RV Series Routers CVE-2014-2179 Arbitrary File Upload Vulnerability
3058| [70895] Visual Mining NetCharts Server CVE-2014-8516 Arbitrary File Upload Vulnerability
3059| [70838] F5 Networks BIG-IP CVE-2014-6033 XML External Entity Injection Vulnerability
3060| [70834] F5 Networks BIG-IP CVE-2014-6032 XML External Entity Injection Vulnerability
3061| [70764] WordPress Download Manager Plugin 'file_download.php' Arbitrary File Download Vulnerabilitiy
3062| [70734] Multiple Maarch Products 'file_to_index.php' Arbitrary File Upload Vulnerability
3063| [70727] IBM Tivoli Integrated Portal CVE-2014-6151 HTTP Response Splitting Vulnerability
3064| [70723] Creative Contact Form 'wp-content/plugins/sexy-contact-form' Arbitrary File Upload Vulnerability
3065| [70716] DotNetNuke DNNspot Store 'UploadifyHandler.ashx' Arbitrary File Upload Vulnerability
3066| [70671] Huawei Mobile Partner 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
3067| [70614] Fox DataDiode Proxy Server CVE-2014-2358 Cross Site Request Forgery Vulnerability
3068| [70576] YourMembers 'ym-download_functions.include.php' SQL Injection Vulnerability
3069| [70375] TWiki '.htaccess' File Arbitrary File Upload Vulnerability
3070| [70320] Foreman Smart Proxy CVE-2014-3691 SSL Certificate Validation Security Bypass Vulnerability
3071| [70231] Zyxel SBG-3300 Series Routers 'framLoad()' Function Denial of Service Vulnerability
3072| [70216] HTTP File Server CVE-2014-7226 Remote Command Execution Vulnerability
3073| [70181] Cisco WebEx Meetings Server CVE-2014-3395 Arbitrary File Download Vulnerabilitiy
3074| [70169] ManageEngine OpManager CVE-2014-6035 Arbitrary File Upload Vulnerability
3075| [70167] Multiple ManageEngine Products CVE-2014-6034 Arbitrary File Upload Vulnerability
3076| [70162] Posnic Multiple Information Disclosure and Arbitrary File Upload Vulnerabilities
3077| [70145] WordPress WP file upload and manager by N-Media Plugin Arbitrary File Upload Vulnerability
3078| [70109] HTTP File Server Multiple Cross Site Scripting Vulnerabilities
3079| [70082] Joomla! Face Gallery SQL Injection and Arbitrary File Download Vulnerabilities
3080| [70081] X2CRM 'FileUploadsFilter.php' CVE-2014-5298 Arbitrary File Upload Vulnerability
3081| [70078] Joomla Mac Gallery 'albumid' Parameter Arbitrary File Download Vulnerabilitiy
3082| [69996] AVD Download Video CVE-2014-5666 SSL Certificate Validation Security Bypass Vulnerability
3083| [69806] Huawei Honor Cube WS860S Arbitrary File Upload Vulnerability
3084| [69782] HTTP File Server 'ParserLib.pas' Remote Command Execution Vulnerability
3085| [69759] WordPress Trinity Theme 'download.php' Arbitrary File Download Vulnerabilitiy
3086| [69734] IBM WebSphere Portal CVE-2014-4792 Arbitrary File Upload Vulnerability
3087| [69728] Apache Tomcat CVE-2013-4444 Arbitrary File Upload Vulnerability
3088| [69719] Posnic SQL Injection and Arbitrary File Upload Vulnerabilities
3089| [69690] HAProxy Multiple Buffer Overflow Vulnerabilities
3090| [69680] Multiple F5 Networks Products CVE-2014-4024 Information Disclosure Vulnerability
3091| [69676] Loaded Commerce 7 Address Book Multiple SQL Injection Vulnerabilities
3092| [69673] WordPress Antioch Theme 'download.php' Arbitrary File Download Vulnerabilitiy
3093| [69672] WordPress Epic Theme 'download.php' Arbitrary File Download Vulnerabilitiy
3094| [69671] WordPress Authentic Theme 'download.php' Arbitrary File Download Vulnerabilitiy
3095| [69670] WordPress Urban City Theme 'download.php' Arbitrary File Download Vulnerabilitiy
3096| [69604] Microsoft Internet Explorer 'CHTMLEditorProxy' Objects Remote Memory Corruption Vulnerability
3097| [69577] Drupal Avatar Uploader Module Information Disclosure Vulnerability
3098| [69570] TYPO3 SB Folderdownload Unspecified Cross Site Scripting Vulnerability
3099| [69547] IBM Business Process Manager and WebSphere CVE-2014-3075 Arbitrary File Upload Vulnerability
3100| [69497] Multiple WordPress Themes Multiple Arbitrary File Download Vulnerabilities
3101| [69494] Multiple ManageEngine Products CVE-2014-5005 Arbitrary File Upload Vulnerability
3102| [69493] Multiple ManageEngine Products CVE-2014-5006 Arbitrary File Upload Vulnerability
3103| [69491] ManageEngine DesktopCentral Incomplete Fix Arbitrary File Upload Vulnerability
3104| [69485] WordPress Slideshow Gallery Plugin 'admin.php' Arbitrary File Upload Vulnerability
3105| [69461] Multiple F5 Networks Products CVE-2014-2927 Remote Code Execution Vulnerability
3106| [69455] Cisco Intelligent Automation for Cloud CVE-2014-3349 Arbitrary File Upload Vulnerability
3107| [69449] Multiple F5 BIG-IP Products 'echo.jsp' Multiple Cross Site Scripting Vulnerabilities
3108| [69440] WordPress Download Shortcode Plugin 'force-download.php' Local File Include Vulnerability
3109| [69424] Novell Groupwise 'FileUploadServlet' Arbitrary File Access Vulnerability
3110| [69394] Aruba Networks Web Management Portal CVE-2014-2592 Arbitrary File Upload Vulnerability
3111| [69389] SAS Visual Analytics CVE-2014-5454 Arbitrary File Upload Vulnerability
3112| [69387] WordPress KenBurner Slider Plugin 'admin-ajax.php' Arbitrary File Download Vulnerabilitiy
3113| [69385] ntopng HTTP Host Request Header Lines Multiple HTML Injection Vulnerabilities
3114| [69347] WordPress File Upload Plugin 'admin-ajax.php' Cross Site Scripting Vulnerability
3115| [69317] AsyncHttpClient SSL Host Name Verification Security Weakness
3116| [69316] AsyncHttpClient SSL/TLS Certificate Validation Security Bypass Weakness
3117| [69279] Monkey HTTP Daemon CVE-2014-5336 Remote Denial of Service Vulnerability
3118| [69278] WordPress WP Content Source Control Plugin 'download.php' Directory Traversal Vulnerability
3119| [69258] Apache HttpComponents Incomplete Fix CVE-2014-3577 SSL Validation Security Bypass Vulnerability
3120| [69257] Apache HttpComponents Incomplete Fix SSL Certificate Validation Security Bypass Vulnerability
3121| [69248] Apache HTTP Server CVE-2013-4352 Remote Denial of Service Vulnerability
3122| [69230] WordPress File Upload Plugin CVE-2014-5199 Cross Site Request Forgery Vulnerability
3123| [69204] WordPress CK-And-SyntaxHighLighter Plugin Arbitrary File Upload Vulnerability
3124| [69111] nginx SMTP Proxy Remote Command Injection Vulnerability
3125| [69014] WordPress Gmedia Gallery Plugin Arbitrary File Upload Vulnerability
3126| [68993] iFolder+ Local File Include and Arbitrary File Upload Vulnerabilities
3127| [68962] Attachmate Verastream Process Designer CVE-2014-0607 Arbitrary File Upload Vulnerability
3128| [68960] Trusted Boot 'loader.c' Security Bypass Vulnerability
3129| [68942] WordPress Slider Revolution Responsive Plugin 'img' Parameter Arbitrary File Download Vulnerabilitiy
3130| [68936] dtSearch Desktop 'imhost32.dll' DLL Loading Arbitrary Code Execution Vulnerability
3131| [68892] Omeka '/admin/items/add' Arbitrary File Upload Vulnerability
3132| [68867] Ukora CMS 'uploadFile.php' Arbitrary File Upload Vulnerability
3133| [68863] Apache HTTP Server 'mod_cache' Module Remote Denial of Service Vulnerability
3134| [68825] WordPress WP Backup Plus Plugin Arbitrary File Download Vulnerabilitiy
3135| [68786] Multiple IBM Products CVE-2014-0948 Unspecified Arbitrary File Upload Vulnerability
3136| [68752] bozohttpd 'snprintf()' Function Authentication Bypass Vulnerability
3137| [68747] Apache HTTP Server CVE-2014-3523 Remote Denial of Service Vulnerability
3138| [68746] Acme micro_httpd CVE-2014-4927 Buffer Overflow Denial of Service Vulnerability
3139| [68745] Apache HTTP Server CVE-2014-0118 Remote Denial of Service Vulnerability
3140| [68742] Apache HTTP Server CVE-2014-0231 Remote Denial of Service Vulnerability
3141| [68740] Apache HTTP Server CVE-2014-0117 Remote Denial of Service Vulnerability
3142| [68694] Cisco Unified Communications Domain Manager Admin HTTP Open Redirection Vulnerability
3143| [68678] Apache HTTP Server 'mod_status' CVE-2014-0226 Remote Code Execution Vulnerability
3144| [68661] WordPress Tidio Gallery Plugin Cross Site Scripting and Arbitrary File Upload Vulnerabilities
3145| [68658] WEBMIS CMS Arbitrary File Upload Vulnerability
3146| [68656] WordPress CopySafe PDF Protection Plugin Arbitrary File Upload Vulnerability
3147| [68654] WordPress WPTouch Plugin Arbitrary File Upload Vulnerability
3148| [68652] Oracle HTTP Server CVE-2014-4222 Remote Security Vulnerability
3149| [68650] Oracle HTTP Server CVE-2014-4251 Remote Security Vulnerability
3150| [68522] WordPress Download Manager Plugin Arbitrary File Upload Vulnerability
3151| [68503] Cisco WebEx Meetings Client File Transfer Functionality Arbitrary File Download Vulnerabilitiy
3152| [68479] Cisco Unified Communications Manager CVE-2014-3316 Arbitrary File Upload Vulnerability
3153| [68468] Frog CMS file_manager Plugin Arbitrary File Upload Vulnerability
3154| [68437] AtomCMS SQL Injection and Arbitrary File Upload Vulnerabilities
3155| [68414] WordPress NextGEN Gallery 'photocrati_ajax' Arbitrary File Upload Vulnerability
3156| [68406] WordPress Hot Files: File Sharing and Download Manager Plugin Cross Site Scripting Vulnerability
3157| [68404] WordPress WP Media Player Plugin 'uploader.php' Cross Site Scripting Vulnerability
3158| [68310] WordPress MailPoet Newsletters Plugin Remote File Upload Vulnerability
3159| [68295] ownCloud CVE-2012-5057 HTTP Header Injection Vulnerability
3160| [68291] IBM Sametime Meeting Server Arbitrary File Upload Vulnerability
3161| [68256] Foreman Smart-Proxy CVE-2012-5477 Insecure File Permissions Vulnerability
3162| [68147] Python CGIHTTPServer Module Path Separators Handling Information Disclosure Vulnerability
3163| [68117] Foreman Smart-Proxy Remote Command Injection Vulnerability
3164| [68078] F5 Networks ARX Data Manager CVE-2014-2949 SQL Injection Vulnerabilitiy
3165| [68022] Yealink VoIP Phones '/servlet' HTTP Response Splitting Vulnerability
3166| [68008] IBM C\xFAram Social Program Management CVE-2014-3012 HTTP Response Splitting Vulnerability
3167| [67960] DotNetNuke ResponsiveSidebar 'ResponsiveSidebarDownload.aspx' Arbitrary File Download Vulnerabilitiy
3168| [67959] DotNetNuke EventsCalendar 'downloaddoc.aspx' Arbitrary File Download Vulnerabilitiy
3169| [67958] DotNetNuke EasyDnnGallery 'ImageDownload.aspx' Arbitrary File Download Vulnerabilitiy
3170| [67957] DotNetNuke dnnUI_NewsArticlesSlider 'ImageHandler.ashx' Arbitrary File Download Vulnerabilitiy
3171| [67956] DotNetNuke CodeEditor 'NNCodeEditorDownload.aspx' Arbitrary File Download Vulnerabilitiy
3172| [67950] DotNetNuke ASPSlideshow 'ASPSlideShowDownload.aspx' Arbitrary File Download Vulnerabilitiy
3173| [67783] F*EX '/rup' HTTP Response Splitting Vulnerability
3174| [67781] Xilisoft Video Converter Ultimate 'quserex.dll' DLL Loading Arbitrary Code Execution Vulnerability
3175| [67771] Multiple F5 BIG-IP and Enterprise Manager 'list.jsp' Multiple Cross Site Scripting Vulnerabilities
3176| [67710] Perl libwww-perl (LWP) Module HTTP Header Arbitrary File Overwrite Vulnerability
3177| [67708] Foreman Smart Proxy CVE-2013-0210 Arbitrary Command Execution Vulnerability
3178| [67665] Cisco Unified Communications Domain Manager Self-Care HTTP Open Redirection Vulnerability
3179| [67646] Multiple IBM Products CVE-2013-5465 Arbitrary File Upload Vulnerability
3180| [67637] Multiple IBM Products CVE-2012-3333 HTTP Response Splitting Vulnerability
3181| [67634] Red Hat sos GRUB Bootloader Password Information Disclosure Vulnerability
3182| [67626] TYPO3 HTTP Host Header Spoofing Vulnerability
3183| [67620] Atlassian Confluence ClassLoader Manipulation Security Bypass Vulnerability
3184| [67619] TYPO3 Powermail Extension Arbitrary File Upload Vulnerability
3185| [67615] Pimcore 'Zend_Http_Response_Stream' PHP Object Injection Vulnerability
3186| [67612] Pyplate HTTPOnly Cookie Flag Information Disclosure Weakness
3187| [67608] Pyplate 'download.py' Arbitrary File Disclosure Vulnerability
3188| [67598] IBM Sametime Proxy Server and Web Client CVE-2014-3015 Cross Site Request Forgery Vulnerability
3189| [67559] Dotclear 'filemanager::isFileExclude()' Method Arbitrary File Upload Vulnerability
3190| [67558] Cisco TelePresence System HTTPS Communication Information Disclosure Vulnerability
3191| [67484] Joomla! Yeendeen YEEditor File Upload Security Bypass Vulnerability
3192| [67469] WordPress cnhk-slideshow Plugin Arbitrary File Upload Vulnerability
3193| [67455] Multiple Solar-Log Products Arbitrary File Upload and Information Disclosure Vulnerabilities
3194| [67388] Xen Loading Guest Kernel Multiple Denial of Service Vulnerabilities
3195| [67278] Multiple F5 BIG-IP Products CVE-2014-2928 Remote Command Injection Vulnerability
3196| [67270] WordPress Photo Gallery Plugin 'UploadHandler.php' Cross Site Request Forgery Vulnerability
3197| [67227] Multiple F5 BIG-IQ Products Configuration Utility Access Control Security Bypass Vulnerability
3198| [67192] Erlang/OTP 'httpc' Denial of Service Vulnerability
3199| [67191] F5 Networks BIG-IQ Remote Privilege Escalation Vulnerability
3200| [67121] Apache Struts ClassLoader Manipulation CVE-2014-0114 Security Bypass Vulnerability
3201| [67102] Cisco Unified Contact Center Express CVE-2014-2180 Arbitrary File Upload Vulnerability
3202| [67083] WordPress Work The Flow Plugin 'admin-ajax.php' Arbitrary File Upload Vulnerability
3203| [67080] WordPress Echelon Theme 'media-upload.php' Arbitrary File Upload Vulnerability
3204| [67064] Apache Struts ClassLoader Manipulation Incomplete Fix Security Bypass Vulnerability
3205| [67061] Siemens SIMATIC S7-1200 CVE-2014-2909 HTTP Response Splitting Vulnerability
3206| [67044] Livetecs Timelive CVE-2014-2042 Arbitrary File Upload Vulnerability
3207| [66988] KnowledgeTree 'mdownload.php' SQL Injection Vulnerability
3208| [66976] QEMU 'virtio_load()' Function Memory Corruption Vulnerability
3209| [66964] JBoss Overload Runtime Governance CVE-2013-6469 Remote Code Execution Vulnerability
3210| [66961] HP LoadRunner Virtual User Generator CVE-2013-6213 Remote Code Execution Vulnerability
3211| [66921] WordPress Linenity Theme 'download.php' Local File Include Vulnerability
3212| [66797] PivotX 'fileupload.php' CVE-2014-0342 Arbitrary File Upload Vulnerability
3213| [66772] vSphere Client CVE-2014-1209 Arbitrary File Download Vulnerability
3214| [66752] CGIScript.net csUpload Authentication Bypass Vulnerability
3215| [66637] FortiBalancer SSH Access CVE-2014-2723 Security Bypass Vulnerability
3216| [66636] FortiBalancer SSH Access CVE-2014-2722 Security Bypass Vulnerability
3217| [66626] FortiBalancer SSH Access CVE-2014-2721 Security Bypass Vulnerability
3218| [66621] IBM InfoSphere Optim Workload Replay CVE-2014-0827 Cross Site Scripting Vulnerability
3219| [66599] lighttpd CVE-2014-2469 Remote Denial of Service Vulnerability
3220| [66566] Cisco Security Manager HTTP Header CVE-2014-2138 Open Redirection Vulnerability
3221| [66565] Cisco Web Security Appliance HTTP Header Injection Vulnerability
3222| [66531] ionCube Loader Wizard 'loader-wizard.php' Multiple Security Vulnerabilities
3223| [66506] X2CRM 'ProfileController.php' CVE-2014-2664 Arbitrary File Upload Vulnerability
3224| [66490] WordPress Felici Theme 'uploadify.php' Arbitrary File Upload Vulnerability
3225| [66443] KCFinder 'browse.php' Arbitrary File Upload Vulnerability
3226| [66430] iThoughtsHD CVE-2014-1827 Unspecified Arbitrary File Upload Vulnerability
3227| [66409] SeedDMS Multiple Unspecified Arbitrary File Upload Vulnerabilities
3228| [66398] qEngine Multiple Arbitrary File Upload Vulnerabilities
3229| [66394] Check_MK CVE-2014-2331 Multiple Arbitrary File Upload Vulnerabilities
3230| [66371] OXID eShop 'index.php' Multiple HTTP Response Splitting Vulnerabilities
3231| [66359] IBM InfoSphere BigInsights CVE-2013-3998 HTTP Response Splitting Vulnerability
3232| [66307] VLC Media Player 'src/network/httpd.c' Cross Site Scripting Vulnerability
3233| [66303] Apache HTTP Server Multiple Denial of Service Vulnerabilities
3234| [66288] WordPress Subscribe To Comments Reloaded Plugin Cross-Site Request Forgery Vulnerability
3235| [66255] SeedDMS '/op/op.AddFile2.php' Arbitrary File Upload Vulnerability
3236| [66217] FrontAccounting 'attachments.php' Arbitrary File Upload Vulnerability
3237| [66211] Free Download Manager 'Downloads_Deleted.cpp' Stack Based Buffer Overflow Vulnerability
3238| [66185] Siemens SIMATIC S7-1500 CVE-2014-2247 HTTP Response Splitting Vulnerability
3239| [66158] cups-filters 'OPVPWrapper::loadDriver()' Function Local Arbitrary Command Execution Vulnerability
3240| [66157] lighttpd CVE-2014-2324 Multiple Directory Traversal Vulnerabilities
3241| [66153] lighttpd 'mod_mysql_vhost.c' SQL Injection Vulnerability
3242| [66109] MyBB Plugin Uploader Arbitrary File Upload Vulnerability
3243| [66093] Multiple Asterisk Products 'main/http.c' Remote Stack Overflow Vulnerability
3244| [66073] ClipShare Pro 'ubr_link_upload.php' Local File Include Vulnerability
3245| [66054] Blue Coat ProxySG CVE-2014-2033 Security Bypass Vulnerability
3246| [66044] WordPress Premium Gallery Manager Plugin Arbitrary File Upload Vulnerability
3247| [66041] RETIRED: Apache Struts CVE-2014-0094 Classloader Manipulation Security Bypass Vulnerability
3248| [65999] Apache Struts ClassLoader Manipulation CVE-2014-0094 Security Bypass Vulnerability
3249| [65972] HP SiteScope 'loadFileContents' SOAP Request Remote Code Execution Vulnerability
3250| [65958] WordPress The Cotton Theme Arbitrary File Upload Vulnerability
3251| [65913] GetGo Download Manager CVE-2014-2206 Stack Buffer Overflow Vulnerability
3252| [65866] WordPress VideoWhisper Live Streaming Integration Arbitrary File Upload Vulnerability
3253| [65846] Plogger 'plog-admin/plog-upload.php' Arbitrary File Upload Vulnerability
3254| [65800] WordPress Feedweb Plugin '_wp_http_referer' Parameter Cross Site Scripting Vulnerability
3255| [65749] Autodesk AutoCAD CVE-2014-0819 Insecure Library Loading Arbitrary Code Execution Vulnerability
3256| [65739] Telligent Evolution 'loading.aspx' Cross Site Scripting Vulnerability
3257| [65708] Cisco Adaptive Security Appliance Phone Proxy CTL Security Bypass Vulnerability
3258| [65707] Cisco Adaptive Security Appliance Phone Proxy sec_db Security Bypass Vulnerability
3259| [65685] VideoCharge Studio 'CHTTPResponse::GetHttpResponse()' Function Stack Buffer Overflow Vulnerability
3260| [65681] Ultra Mini HTTPD 'POST' Request Stack-Based Buffer Overflow Vulnerability
3261| [65662] Cisco Firewall Services Module Cut-Through Proxy Remote Denial of Service Vulnerability
3262| [65646] MODx Evogallery Module 'uploadify.php' Arbitrary File Upload Vulnerability
3263| [65629] Openswan IKEv2 Payloads Incomplete Fix Remote Denial Of Service Vulnerability
3264| [65594] Red Hat Satellite and Spacewalk 'return_url' Paramter HTTP Header Injection Vulnerability
3265| [65561] MyBB Extended Useradmininfo Plugin 'User-Agent' HTTP Header HTML Injection Vulnerability
3266| [65489] IBM WebSphere Portal CVE-2013-6722 Arbitrary File Upload Vulnerability
3267| [65488] SpagoBI CVE-2013-6234 Arbitrary File Upload Vulnerability
3268| [65460] WordPress Kiddo Theme Arbitrary File Upload Vulnerability
3269| [65452] Bandizip 'dwmapi.dll' Insecure Library Loading Arbitrary Code Execution Vulnerability
3270| [65438] Joomla! Projoom NovaSFH Plugin 'upload.php' Arbitrary File Upload Vulnerability
3271| [65435] OneHTTPD HTTP Request Denial of Service Vulnerability
3272| [65422] Multiple F5 Networks Products CVE-2013-6024 Local Information Disclosure Vulnerability
3273| [65411] WordPress Dandelion Theme Arbitrary File Upload Vulnerability
3274| [65400] Apache Commons FileUpload CVE-2014-0050 Denial Of Service Vulnerability
3275| [65251] SmarterMail '\App_Data\Temp' Directory Arbitrary Shell Upload Vulnerability
3276| [65248] Sitecore CMS Multiple Arbitrary Shell Upload Vulnerabilities
3277| [65227] Cisco Identity Services Engine HTTP Control Interface for NAC Web Cross Site Scripting Vulnerability
3278| [65218] WordPress 'media-upload.php' Information Disclosure Vulnerability
3279| [65201] socat PROXY-CONNECT Address Stack Buffer Overflow Vulnerability
3280| [65188] Pidgin 'gg_http_watch_fd()' Function Buffer Overflow Vulnerability
3281| [65175] Simple E-Document 'upload.php' Arbitrary File Upload Vulnerability
3282| [65155] Openswan IKEv2 payloads Remote Denial Of Service Vulnerability
3283| [65141] WordPress SS Downloads Plugin Multiple Cross Site Scripting Vulnerabilities
3284| [65137] Maian Uploader Multiple Security Vulnerabilities
3285| [65124] Multiple Generel Electric Products 'gefebt.exe' Shell Upload Vulnerability
3286| [65117] Multiple Generel Electric Products Shell Upload Vulnerability
3287| [65060] WordPress Global Flash Gallery Plugin 'swfupload.php' Arbitrary File Upload Vulnerability
3288| [65059] Imageview 'upload.php' Arbitrary File Upload Vulnerability
3289| [65047] WordPress Wordfence Security Plugin 'User-Agent' HTTP Header HTML Injection Vulnerability
3290| [65005] IDA Pro Mach-O Loader Unspecified Security Vulnerability
3291| [64987] Libreswan 'IKEv2' Payloads Remote Denial of Service Vulnerability
3292| [64939] Cisco Identity Services Engine Support Bundle Download Unauthorized Access Vulnerability
3293| [64827] Oracle iPlanet Web Proxy Server CVE-2013-5808 Remote Security Vulnerability
3294| [64788] Joomla! Almond Classifieds Component Arbitrary File Upload Vulnerability
3295| [64785] Conceptronic C54APM 2.0 'submit-url' Parameter HTTP Response Splitting Vulnerability
3296| [64732] CCProxy 'CCProxy.ini' Configuration File Integer Overflow Vulnerability
3297| [64705] Joomla! Aclsfgpl Component 'index.php' Arbitrary File Upload Vulnerability
3298| [64633] Huawei eSight Arbitrary File Upload Vulnerability
3299| [64615] Python 'Lib/CGIHTTPServer.py' Script Directory Traversal Vulnerability
3300| [64587] Advanced Dewplayer Plugin for WordPress 'download-file.php' Script Directory Traversal Vulnerability
3301| [64556] PhotoStore 'uploadify.php' Arbitrary File Upload Vulnerability
3302| [64554] LimeSurvey '/admin/templates.php' Script Arbitrary File Upload Vulnerability
3303| [64545] eFront Arbitrary File Upload and Information Disclosure Vulnerabilities
3304| [64380] Iscripts Multicart 'HTTP_RAW_POST_DATA' Parameter Remote PHP Code Injection Vulnerability
3305| [64346] Veno File Manager 'q' Parameter Arbitrary File Download Vulnerability
3306| [64327] Telmanik CMS 'photo_upload.php' Arbitrary File Upload Vulnerability
3307| [64307] osCMax Arbitrary File Upload and Full Path Information Disclosure Vulnerabilities
3308| [64302] IBM Sterling Connect:Enterprise HTTP Option CVE-2013-6327 Cross Site Scripting Vulnerability
3309| [64264] Monitorix HTTP Server CVE-2013-7072 Multiple Unspecified Security Vulnerabilities
3310| [64251] FlashCanvas 'proxy.php' Cross Site Scripting Vulnerability
3311| [64237] NVIDIA mental ray DLL Loading Arbitrary Code Execution Vulnerability
3312| [64178] Monitorix HTTP Server 'handle_request()' Remote Command Execution Vulnerability
3313| [64173] WordPress PhotoSmash Galleries Plugin 'bwbps-uploader.php' Arbitrary File Upload Vulnerability
3314| [64171] Snes9x 'codec_mpeg.dll' DLL Loading Arbitrary Code Execution Vulnerability
3315| [64165] Hex Workshop 'mfc100trk.dll' DLL Loading Arbitrary Code Execution Vulnerability
3316| [64164] WordPress Page Flip Image Gallery Plugin 'upload.php' Arbitrary File Upload Vulnerability
3317| [64163] Cisco Cloud Portal CVE-2013-6708 Arbitrary File Download Vulnerability
3318| [64159] WordPress Download Manager Plugin 'file[title]' Parameter Cross Site Scripting Vulnerability
3319| [64138] Libmicrohttpd Multiple Remote Security Vulnerabilities
3320| [64068] TP-Link TL-WR740N/TL-WR740ND Wireless N Routers HTTP Processing Denial of Service Vulnerability
3321| [64055] Novell Remote Manager HTTPSTK Service Denial of Service Vulnerability
3322| [64054] FlashComs Chat 'file.php' Arbitrary File Upload Vulnerability
3323| [64044] WordPress OptimizePress Theme 'media-upload.php' Arbitrary File Upload Vulnerability
3324| [64041] phpThumb 'phpThumb.php' Arbitrary File Upload Vulnerability
3325| [64031] up.time Monitoring '/wizards/post2file.php' Arbitrary File Upload Vulnerability
3326| [64025] Static HTTP Server GET Request Processing Remote Denial of Service Vulnerability
3327| [64023] Potplayer DLL Loading Arbitrary Code Execution Vulnerability
3328| [64019] Multiple WordPress Orange Themes 'upload-handler.php' Arbitrary File Upload Vulnerability
3329| [63974] Wondershare Player 'ws_converterex.dll' DLL Loading Arbitrary Code Execution Vulnerability
3330| [63973] BZR Player 'codec_mpeg.dll' DLL Loading Arbitrary Code Execution Vulnerability
3331| [63971] Microsoft Windows Kernel 'NDProxy.sys' Local Privilege Escalation Vulnerability
3332| [63968] phpMyFAQ Image Manager Arbitrary File Upload Vulnerability
3333| [63935] Apache Solr 'SolrResourceLoader' Directory Traversal Vulnerability
3334| [63929] Multiple Fujitsu Interstage Products HTTP Server Unspecified Buffer Overflow Vulnerability
3335| [63923] Multiple WordPress Themes 'themify-ajax.php' Arbitrary File Upload Vulnerability
3336| [63917] FTP Drive + HTTP Server for iOS Directory Traversal Vulnerability
3337| [63913] Monitorix HTTP Server 'handle_request()' Session Fixation and Cross Site Scripting Vulnerabilities
3338| [63881] WordPress Contact Form 7 Plugin Arbitrary File Upload Vulnerability
3339| [63862] ERDAS ER Viewer Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
3340| [63836] WordPress Suco Themes 'themify-ajax.php' Arbitrary File Upload Vulnerability
3341| [63784] ManageEngine DesktopCentral 'AgentLogUploadServlet' Directory Traversal Vulnerability
3342| [63782] Kaseya 'SystemTab/UploadImage.asp' Arbitrary File Upload Vulnerability
3343| [63780] IBM WebSphere Application Server HTTP Response Data Cross Site Scripting Vulnerability
3344| [63779] SAP NetWeaver 'SHSTI_UPLOAD_XML()' Function XML External Entity Injection Vulnerability
3345| [63768] Multiple WordPress Themes 'upload-handler.php' Arbitrary File Upload Vulnerability
3346| [63762] WordPress Make A Statement Theme Arbitrary File Upload Vulnerability
3347| [63735] Cisco Services Portal CVE-2013-3406 Arbitrary File Download Vulnerability
3348| [63721] Allegro RomPager HTTP Referer Header URI Redirection and Cross Site Scripting Vulnerabilities
3349| [63716] Multiple WordPress Themes 'upload-handler.php' Arbitrary File Upload Vulnerability
3350| [63688] lighttpd CVE-2013-4559 Local Privilege Escalation Vulnerability
3351| [63686] lighttpd CVE-2013-4560 Use-After-Free Remote Denial of Service Vulnerability
3352| [63662] AjaXplorer 'save_zoho.php' Arbitrary File Upload Vulnerability
3353| [63660] YUI 'uploader.swf' Cross Site Scripting Vulnerability
3354| [63658] WordPress Highlight Theme Arbitrary File Upload Vulnerability
3355| [63624] Cisco Adaptive Security Appliance Phone Proxy Database Security Bypass Vulnerability
3356| [63623] WordPress Kernel Theme 'upload-handler.php' Arbitrary File Upload Vulnerability
3357| [63573] Drupal Secure Pages Module HTTP Redirection Information Disclosure Vulnerability
3358| [63542] TinyMCE SQL Injection and Arbitrary File Upload Vulnerabilities
3359| [63534] lighttpd SSL Weak Cipher CVE-2013-4508 Security Bypass Weakness
3360| [63523] WordPress This Way Theme 'upload_settings_image.php' Arbitrary File Upload Vulnerability
3361| [63522] WordPress Think Responsive Themes 'upload_settings_image.php' Arbitrary File Upload Vulnerability
3362| [63513] GitLab 'SSH key upload' Feature CVE-2013-4490 Remote Code Execution Vulnerability
3363| [63477] HP LoadRunner Virtual User Generator CVE-2013-4839 Remote Code Execution Vulnerability
3364| [63476] HP LoadRunner Virtual User Generator CVE-2013-4838 Remote Code Execution Vulnerability
3365| [63475] HP LoadRunner Virtual User Generator CVE-2013-4837 Remote Code Execution Vulnerability
3366| [63472] WordPress Checkout Plugin Cross Site Scripting and Arbitrary File Upload Vulnerabilities
3367| [63454] vTiger CRM 'files' Upload Folder Arbitrary PHP Code Execution Vulnerability
3368| [63412] WordPress Money Theme Cross Site Scripting and Arbitrary File Upload Vulnerabilities
3369| [63391] Juniper Networks Junos CVE-2013-6014 Proxy ARP Denial of Service Vulnerability
3370| [63362] WordPress GeoPlaces Theme Arbitrary Shell Upload Vulnerability
3371| [63355] Attachmate Verastream Host Integrator CVE-2013-3626 Arbitrary File Upload Vulnerability
3372| [63306] WordPress AREA53 Theme 'php.php' Arbitrary File Upload Vulnerability
3373| [63287] Joomla! Maian15 Component 'name' Parameter Arbitrary Shell Upload Vulnerability
3374| [63275] SMF CVE-2013-4465 Unspecified Arbitrary File Upload Vulnerability
3375| [63257] WordPress Daily Deal Theme Arbitrary Shell Upload Vulnerability
3376| [63247] WebCollab 'item' Parameter HTTP Response Splitting Vulnerability
3377| [63245] F5 BIG-IP Traffic Management Microkernel Denial of Service Vulnerability
3378| [63219] PHP Point Of Sale 'ofc_upload_image.php' Remote Code Execution Vulnerability
3379| [63174] Apache Commons FileUpload 'DiskFileItem' Class Null Byte Arbitrary File Write Vulnerability
3380| [63165] UbiDisk Local File Include and Arbitrary File Upload Vulnerabilities
3381| [63159] OpenStack Glance 'download_image' Policy Information Disclosure Vulnerability
3382| [63033] Cisco Identity Services Engine CVE-2013-5541 Arbitrary File Upload Vulnerability
3383| [63031] Cisco Identity Services Engine CVE-2013-5539 Arbitrary File Upload Vulnerability
3384| [62974] Open-Xchange AppSuite CVE-2013-6009 HTTP Response Splitting Vulnerability
3385| [62876] WordPress Woopra Analytics Plugin 'ofc_upload_image.php' Arbitrary PHP Code Execution Vulnerability
3386| [62875] CPAN HTTP::Body::MultiPart Module CVE-2013-4407 Remote Command Injection Vulnerability
3387| [62852] FlashChat 'upload.php' Arbitrary File Upload Vulnerability
3388| [62836] Corel PaintShop Pro X5 and X6 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
3389| [62825] WordPress SEO Watcher Plugin 'ofc_upload_image.php' Arbitrary PHP Code Execution Vulnerability
3390| [62776] ClipBucket 'ofc_upload_image.php' Arbitrary PHP Code Execution Vulnerability
3391| [62723] Abuse HTTP Server Remote Denial of Service Vulnerability
3392| [62720] Open-Xchange AppSuite HTTP Response Splitting and Multiple Cross Site Scripting Vulnerabilities
3393| [62691] ESRI ArcGIS for Server CVE-2013-5221 Arbitrary File Upload Vulnerability
3394| [62666] Multiple Emerson Process Management RTUs CVE-2013-0689 Arbitrary File Upload Vulnerability
3395| [62647] Blue Coat ProxySG and Security Gateway OS Denial Of Service Vulnerability
3396| [62620] AspxCommerce 'LogoHandler.ashx' Module Arbitrary File Upload Vulnerability
3397| [62596] F5 BIG-IP APM Access Policy Logout Page Cross Site Scripting Vulnerability
3398| [62594] F5 BIG-IP APM Access Policy Logon Page Clickjacking Vulnerability
3399| [62589] WordPress Lazy SEO Plugin 'lazyseo.php' Arbitrary File Upload Vulnerability
3400| [62514] Ajax File and Image Manager 'ajax_file_upload.php' Arbitrary File Upload Vulnerability
3401| [62496] WordPress Complete Gallery Manager Plugin 'upload-images.php' Arbitrary File Upload Vulnerability
3402| [62476] Mozilla Firefox For Android Insecure Shared Library Loading Arbitrary Code Execution Vulnerability
3403| [62439] Image Uploader 'index.php' Arbitrary File Upload Vulnerability
3404| [62437] WordPress Simple Dropbox Upload 'multi.php' Arbitrary File Upload Vulnerability
3405| [62413] Uploadify 'uploadify.php' Multiple Input Validation Vulnerabilities
3406| [62396] IBM Analytical Decision Management CVE-2013-4049 Arbitrary File Upload Vulnerability
3407| [62385] NetEase Personal Address Book for iOS Arbitrary File Upload Vulnerability
3408| [62383] NetEase lua Programming Language for iOS Arbitrary File Upload Vulnerability
3409| [62365] OpenEMR Multiple SQL Injection and Arbitrary File Upload Vulnerabilities
3410| [62357] NetEase Perl Programming Language for iOS Arbitrary File Upload Vulnerability
3411| [62355] NetEase Ruby Programming Language for iOS Arbitrary File Upload Vulnerability
3412| [62279] Prestashop HTTP Header Injection Vulnerability
3413| [62259] AjaXplorer CVE-2013-5689 Arbitrary File Upload Vulnerability
3414| [62156] Red Hat JBoss Enterprise Application Platform CVE-2013-2185 Arbitrary File Upload Vulnerability
3415| [62076] YingZhi Python Programming Language for iOS Arbitrary File Upload Vulnerability
3416| [62072] Linux Kernel '/net/core/scm.c' nsproxy Local Privilege Escalation Vulnerability
3417| [61994] Belkin F5D7234-4 G Wireless Router Authentication Bypass and Remote Code Execution Vulnerabilities
3418| [61910] Graphite 'pickle.loads()' Multiple Remote Code Execution Vulnerabilities
3419| [61836] Download Monitor 'sort' Parameter Cross Site Scripting Vulnerability
3420| [61820] Joomla! jDownloads Component Cross Site Scripting Vulnerability
3421| [61808] Photo Transfer Local File Include, Arbitrary File Upload and HTML Injection Vulnerabilities
3422| [61797] TYPO3 Backend File Upload / File Abstraction Layer Extension Arbitrary File Upload Vulnerability
3423| [61768] ThinkVantage Access Connections Insecure Library Loading Arbitrary Code Execution Vulnerabilities
3424| [61753] OneHTTPD Denial of Service Vulnerability
3425| [61751] Review Board CVE-2013-4796 Arbitrary File Upload Vulnerability
3426| [61745] HTC Sync Manager Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
3427| [61735] Advanced Guestbook 'addentry.php' Arbitrary Shell Upload Vulnerability
3428| [61727] Soda PDF CVE-2013-3485 Multiple Insecure Library Loading Arbitrary Code Execution Vulnerabilities
3429| [61715] Symfony CVE-2013-4752 HTTP Header Spoofing Security Bypass Vulnerability
3430| [61622] TimeLine SocialEngine Plugin Arbitrary File Upload Vulnerability
3431| [61617] OmegaBB 'attach_file.php' Arbitrary File Upload Vulnerability
3432| [61613] FluidGalleries 'photo-upload.php' Arbitrary File Upload Vulnerability
3433| [61585] FunGamez 'game.php' Arbitrary File Upload Vulnerability
3434| [61582] Joomla! 'media.php' Arbitrary File Upload Vulnerability
3435| [61569] MachForm CVE-2013-4949 Arbitrary File Upload Vulnerability
3436| [61554] WordPress Comment Extra Fields Plugin 'swfupload.swf' Cross Site Scripting Vulnerability
3437| [61531] TP-Link TL-SC3171 IP Camera Arbitrary File Upload Vulnerability
3438| [61526] YUI 'flashuploader.swf' Cross-Site Scripting Vulnerability
3439| [61524] YUI 'uploader.swf' File Cross Site Scripting Vulnerability
3440| [61448] FileChucker Multiple Arbitrary File Upload Vulnerabilities
3441| [61446] HP LoadRunner CVE-2013-4800 Remote Code Execution Vulnerability
3442| [61445] HP LoadRunner CVE-2013-4801 Remote Code Execution Vulnerability
3443| [61444] HP LoadRunner CVE-2013-4797 Remote Code Execution Vulnerability
3444| [61443] HP LoadRunner CVE-2013-4798 Remote Code Execution Vulnerability
3445| [61442] HP LoadRunner CVE-2013-4799 Remote Code Execution Vulnerability
3446| [61441] HP LoadRunner CVE-2013-2370 Remote Code Execution Vulnerability
3447| [61437] HP LoadRunner CVE-2013-2369 Remote Code Execution Vulnerability
3448| [61436] HP LoadRunner CVE-2013-2368 Unspecified Denial of Service Vulnerability
3449| [61416] Cisco Unified Operations Manager CVE-2013-3439 Unspecified HTTP Header Injection Vulnerability
3450| [61407] Download Monitor 'admin.php' Multiple Cross Site Scripting Vulnerabilities
3451| [61405] Photo Server Arbitrary File Upload and Command Injection Vulnerabilities
3452| [61379] Apache HTTP Server CVE-2013-2249 Unspecified Remote Security Vulnerability
3453| [61368] TinyMCE Image Manager Plugin Cross Site Scripting and Arbitrary File Upload Vulnerabilities
3454| [61330] Cisco Unified IP Phones 9900 Series CVE-2013-3426 Arbitrary File Download Vulnerability
3455| [61326] Flux Player Local File Include and Arbitrary File Upload Vulnerabilities
3456| [61324] WiFly Pro Arbitrary File Upload Vulnerability
3457| [61202] Multiple F5 Networks Java Applet 'filename' Parameter Directory Traversal Vulnerability
3458| [61200] Voice Logger Authentication Bypass and Multiple Arbitrary File Download Vulnerabilities
3459| [61170] Atlassian Confluence Multiple Arbitrary File Upload Vulnerabilities
3460| [61130] Ultra Mini HTTPD 'GET' Request Stack-Based Buffer Overflow Vulnerability
3461| [61129] Apache HTTP Server CVE-2013-1896 Remote Denial of Service Vulnerability
3462| [61080] Drupal Stage File Proxy Module Denial Of Service Vulnerability
3463| [61065] Imperva SecureSphere Operations Manager CVE-2013-4094 Multiple Arbitrary File Upload Vulnerabilities
3464| [61034] dl Download Ticket Service Session Fixation and Cross Site Request Forgery Vulnerabilities
3465| [60987] Multiple IBM products CVE-2013-2982 Arbitrary File Upload Vulnerability
3466| [60918] JRuby Insecure Library Loading Arbitrary Code Execution Vulnerability
3467| [60910] MachForm SQL Injection and Arbitrary File Upload Vulnerabilities
3468| [60875] Apache Geronimo RMI Classloader Security Bypass Vulnerability
3469| [60859] Atomy Maxsite 'index.php' Arbitrary File Upload Vulnerability
3470| [60856] YOPMAIL HTTP Response Splitting and Multiple Cross Site Scripting Vulnerabilities
3471| [60847] Mobile USB Drive HD Multiple Local File Include and Arbitrary File Upload Vulnerabilities
3472| [60839] eFile Arbitrary File Upload and Multiple HTML Injection Vulnerabilities
3473| [60775] WordPress CVE-2013-2203 File Upload Path Disclosure Vulnerability
3474| [60759] WordPress 'SWFUpload' Library CVE-2013-2205 Multiple Cross Site Scripting Vulnerabilities
3475| [60738] Monkey HTTP Daemon Local Buffer Overflow Vulnerability
3476| [60725] PodHawk Arbitrary File Upload Vulnerability
3477| [60690] Joomla! RokDownloads Component Arbitrary File Upload Vulnerability
3478| [60662] imacs 'mng.php' Arbitrary File Upload Vulnerability
3479| [60660] et-chat Privilege Escalation and Arbitrary Shell Upload Vulnerabilities
3480| [60597] HAProxy CVE-2013-2175 Remote Denial of Service Vulnerability
3481| [60589] Monkey HTTP Daemon CVE-2013-2183 Local Security Bypass Vulnerability
3482| [60588] HAProxy CVE-2013-2175 Multiple Denial of Service Vulnerabilities
3483| [60585] bloofoxCMS 'index.php' Arbitrary File Upload Vulnerability
3484| [60574] Fly-High CMS 'upload.php' Arbitrary File Upload Vulnerability
3485| [60573] Havalite CMS 'upload.php' Arbitrary File Upload Vulnerability
3486| [60569] Monkey HTTP Daemon Mandril Security Plugin CVE-2013-2182 Security Bypass Vulnerability
3487| [60564] Monkey HTTP Daemon 'dirlisting' Plugin Cross Site Scripting Vulnerability
3488| [60560] LibrettoCMS 'PGRFileManager.php' Arbitrary File Upload Vulnerability
3489| [60533] WordPress NextGEN Gallery 'upload.php' Arbitrary File Upload Vulnerability
3490| [60433] WordPress NextGEN Gallery Plugin 'swfupload.swf' Multiple Cross Site Scripting Vulnerabilities
3491| [60425] Monkey HTTP Daemon Multiple Denial of Service Vulnerabilities
3492| [60415] Monkey HTTP Daemon CVE-2013-2159 Authentication Bypass Vulnerability
3493| [60333] Monkey HTTP Daemon 'memcpy()' Function Buffer Overflow Vulnerability
3494| [60332] gpEasy CMS Arbitrary File Upload Vulnerability
3495| [60275] TYPO3 SB Folderdownload Extension Unspecified File Disclosure Vulnerability
3496| [60210] Monkey HTTP Daemon NULL Byte Denial of Service Vulnerability
3497| [60201] IBM WebSphere Portal CVE-2013-2950 HTTP Response Splitting Vulnerability
3498| [60181] WordPress Export To Text Plugin 'download' Parameter Remote File Include Vulnerability
3499| [60105] Request Tracker CVE-2013-3372 HTTP Header Injection Vulnerability
3500| [60077] MediaWiki Arbitrary File Upload Vulnerability
3501| [60017] Juniper Networks Junos Proxy ARP Denial of Service Vulnerability
3502| [60010] RETIRED: Acme thttpd HTTP Server Directory Traversal Vulnerability
3503| [59990] MiniWeb HTTP POST Denial of Service Vulnerability
3504| [59989] Moxiecode File Manager Multiple Remote File Upload Vulnerabilities
3505| [59988] TinyMCE MCImageManager Plugin Arbitrary File Upload Vulnerability
3506| [59968] ownCloud CVE-2013-2089 Arbitrary File Upload Vulnerability
3507| [59941] Apple iTunes CVE-2013-1014 HTTPS Certificate Validation Security Bypass Vulnerability
3508| [59934] Jojo CMS 'X-Forwarded-For' HTTP header SQL-Injection Vulnerability
3509| [59886] WordPress wp-FileManager Plugin 'path' Parameter Arbitrary File Download Vulnerability
3510| [59831] Gallery Server Pro Arbitrary File Upload Vulnerability
3511| [59826] Apache HTTP Server Terminal Escape Sequence in Logs Command Injection Vulnerability
3512| [59784] Microsoft Windows 'HTTP.sys' Remote Denial of Service Vulnerability
3513| [59718] Drupal Htmlarea Module Multiple Arbitrary File Upload Vulnerabilities
3514| [59699] nginx 'ngx_http_parse.c' Stack Buffer Overflow Vulnerability
3515| [59694] IBM Sterling Secure Proxy CVE-2013-0520 Information Disclosure Vulnerability
3516| [59692] IBM Sterling Secure Proxy CVE-2013-0518 Information Disclosure Vulnerability
3517| [59691] IBM Sterling Secure Proxy CVE-2013-0519 Information Disclosure Vulnerability
3518| [59671] GetSimple CMS Arbitrary File Upload Vulnerability
3519| [59669] EMC RSA Archer GRC CVE-2013-0932 Arbitrary File Upload Vulnerability
3520| [59515] WebKit 'FrameLoader::checkCompleted()' Function Use After Free Remote Code Execution Vulnerability
3521| [59509] vCenter Server Appliance CVE-2013-3080 Arbitrary File Upload Vulnerability
3522| [59496] nginx 'ngx_http_close_connection()' Remote Integer Overflow Vulnerability
3523| [59495] Light HTTPD Stack-Based Buffer Overflow Vulnerability
3524| [59477] Belkin F5D8236-4 Router CVE-2013-3084 Unspecified Cross Site Scripting Vulnerability
3525| [59476] Belkin F5D8236-4 Router CVE-2013-3083 Cross Site Request Forgery Vulnerability
3526| [59372] Joomla Civicrm Component Arbitrary Shell Upload Vulnerability
3527| [59360] Global Mapper Multiple Insecure Library Loading Arbitrary Code Execution Vulnerabilities
3528| [59280] Open-Xchange Server and OX App Suite CVE-2013-2582 HTTP Header Injection Vulnerability
3529| [59132] Oracle WebCenter Sites CVE-2013-1509 HTTP Header Injection Vulnerability
3530| [59059] CMSLogik Arbitrary File Upload and Multiple HTML Injection Vulnerabilities
3531| [58968] HP Intelligent Management Center 'SyslogDownloadServlet' Information Disclosure Vulnerability
3532| [58967] HP Intelligent Management Center 'tamServletDownload' Servlet Information Disclosure Vulnerability
3533| [58966] HP Intelligent Management Center 'DownloadServlet' Information Disclosure Vulnerability
3534| [58965] HP Intelligent Management Center 'flexFileUpload' Servlet Remote Code Execution Vulnerability
3535| [58964] HP Intelligent Management Center 'acmServletDownload' Information Disclosure Vulnerability
3536| [58946] MiniWeb Directory Traversal and Arbitrary File Upload Vulnerabilities
3537| [58937] WordPress WP-DownloadManager Plugin Cross Site Request Forgery Vulnerability
3538| [58929] Belkin Wemo Switch Arbitrary Firmware Upload Vulnerability
3539| [58928] Nitro PDF 'bcgcbproresen.dll' DLL Loading Arbitrary Code Execution Vulnerability
3540| [58820] HAProxy 'tcp-request content' CVE-2013-1912 Buffer Overflow Vulnerability
3541| [58677] HP Intelligent Management Center 'DownloadReportSourceServlet' Information Disclosure Vulnerability
3542| [58676] HP Intelligent Management Center 'IctDownloadServlet' Information Disclosure Vulnerability
3543| [58675] HP Intelligent Management Center 'FaultDownloadServlet' Information Disclosure Vulnerability
3544| [58673] HP Intelligent Management Center 'mibFileUpload' Servlet Remote Code Execution Vulnerability
3545| [58664] Novell ZENWorks AdminStudio ISProxy 'ISProxy.dll' Activex Remote Code Execution Vulnerability
3546| [58528] lighttpd CVE-2013-1427 Insecure Temporary File Creation Vulnerability
3547| [58519] Skype Click to Call Update Service DLL Loading Arbitrary Code Execution Vulnerability
3548| [58486] SAP NetWeaver DI Arbitrary File Upload Vulnerability
3549| [58473] Open-Xchange Server CVE-2013-1647 Multiple HTTP Header Injection Vulnerabilities
3550| [58432] PHPBoost Arbitrary File Upload and Information Disclosure Vulnerabilities
3551| [58431] KindEditor Multiple Remote File Upload Vulnerabilities
3552| [58425] Privoxy Proxy Authentication Information Disclosure Vulnerabilities
3553| [58422] Flexera InstallShield and AdminStudio 'ISProxy.dll' Activex Remote Code Execution Vulnerability
3554| [58417] SWFUpload Multiple Content Spoofing and Cross Site Scripting Vulnerabilities
3555| [58364] Wireshark RELOAD Dissector CVE-2013-2487 Denial of Service Vulnerability
3556| [58363] Wireshark RELOAD Dissector CVE-2013-2486 Denial of Service Vulnerability
3557| [58326] Apache Commons FileUpload CVE-2013-0248 Insecure Temporary File Creation Vulnerability
3558| [58325] Debian Apache HTTP Server CVE-2013-1048 Symlink Attack Local Privilege Escalation Vulnerability
3559| [58322] Squid 'httpMakeVaryMark()' Function Memory Corruption Vulnerability
3560| [58321] AirDrive HD Local File Include and Arbitrary File Upload Vulnerabilities
3561| [58319] Squid 'httpMakeVaryMark()' Function Remote Denial of Service Vulnerability
3562| [58285] WordPress Uploader Plugin 'blog' Parameter Cross Site Scripting Vulnerability
3563| [58276] USB Disk & File Transfer 'File Upload' Multiple Local File Include Vulnerabilities
3564| [58260] Ruby HTTParty CVE-2013-1801 Parameter Parsing Vulnerability
3565| [58199] IP.Board IP.Downloads Multiple Access Security Bypass Vulnerabilities
3566| [58165] Apache HTTP Server Multiple Cross Site Scripting Vulnerabilities
3567| [58159] Kordil EDMS Arbitrary File Upload Vulnerability
3568| [58158] PolarBear CMS 'upload.php' Arbitrary File Upload Vulnerability
3569| [58131] Photodex ProShow Producer Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
3570| [58130] IPMap Local File Include and Arbitrary File Upload Vulnerabilities
3571| [58127] sthttpd 'thttpd.log' Insecure File Permissions Vulnerability
3572| [58119] RETIRED: IBM HTTP Server Multiple Modules Cross Site Scripting Vulnerabilities
3573| [58073] Apache Commons HttpClient CVE-2012-5783 SSL Certificate Validation Security Bypass Vulnerability
3574| [58062] Drupal Varnish HTTP Accelerator Integration Module Cross Site Scripting Vulnerability
3575| [58010] Air Transfer 'File Upload' Multiple Local File Include Vulnerabilities
3576| [57983] chillyCMS Security Bypass and Arbitrary File Upload Vulnerabilities
3577| [57974] mora Downloader CVE-2012-5188 Arbitrary Code Execution Vulnerability
3578| [57951] Pidgin 'libpurple' CVE-2013-0272 HTTP Header Stack Buffer Overflow Vulnerability
3579| [57824] Microsoft Internet Explorer COmWindowProxy Use-After-Free Remote Code Execution Vulnerability
3580| [57820] WirelessFiles Local File Include and Arbitrary File Upload Vulnerabilities
3581| [57790] Google Chrome 24.0.1312.57 HTTP Authentication Security Bypass Weakness
3582| [57680] Free Monthly Websites Multiple Security Bypass and Arbitrary File Upload Vulnerabilities
3583| [57664] WordPress WP-Table Reloaded Plugin 'id' Parameter Cross Site Scripting Vulnerability
3584| [57650] Wordpress Gallery Plugin 'load' Parameter Remote File Include Vulnerability
3585| [57555] WordPress Plupload Plugin 'id' Parameter Cross Site Scripting Vulnerability
3586| [57532] Atomy Maxsite CVE-2012-6498 Arbitrary File Upload Vulnerability
3587| [57504] Lenovo Bluetooth with Enhanced Data Rate Software DLL Loading Arbitrary Code Execution Vulnerability
3588| [57500] F5 BIG-IP CVE-2012-3000 SQL Injection Vulnerability
3589| [57496] F5 Networks BIG-IP CVE-2012-2997 XML External Entity Injection Vulnerability
3590| [57464] Joomla! Collector Component Arbitrary File Upload Vulnerability
3591| [57361] Oracle Enterprise Manager Grid Control CVE-2013-0354 HTTP Response Splitting Vulnerability
3592| [57319] Serva HTTP Server Denial of Service Vulnerability
3593| [57242] Prizm Content Connect Arbitrary File Upload Vulnerability
3594| [57229] Free Blog Arbitrary File Upload and Arbitrary File Deletion Vulnerabilities
3595| [57152] WordPress Multiple WPScientist Themes Arbitrary File Upload Vulnerability
3596| [57112] WordPress Uploader Plugin Arbitrary File Upload Vulnerability
3597| [57101] WordPress Shopping Cart Plugin Multiple SQL Injection and Arbitrary File Upload Vulnerabilities
3598| [57100] WordPress ReFlex Gallery Plugin 'php.php' Arbitrary File Upload Vulnerability
3599| [57098] WordPress Xerte Online Plugin 'save.php' Arbitrary File Upload Vulnerability
3600| [57093] e107 'e107_admin/download.php' Cross Site Request Forgery Vulnerability
3601| [57074] WordPress SB Uploader Plugin Arbitrary File Upload Vulnerability
3602| [57073] RETIRED: WordPress TwentyTen Theme 'loo.php' Arbitrary File Upload Vulnerability
3603| [57063] Content Component 'cont' Parameter Arbitrary File Upload Vulnerability
3604| [57055] MotoCMS File Disclosure and Arbitrary File Upload Vulnerabilities
3605| [57044] Feindura CMS Arbitrary File Upload Vulnerability
3606| [57028] Sony PC Companion 'DownloadURLToFile()' Function Stack Based Buffer Overflow Vulnerability
3607| [57022] vCenter Server Appliance Arbitrary File Download Vulnerability
3608| [56988] WordPress Multiple CMSMasters Themes 'upload.php' Arbitrary File Upload Vulnerability
3609| [56866] Freefloat FTP Server 'WMI' Service Arbitrary File Upload Vulnerability
3610| [56840] Microsoft Windows IP-HTTPS Server Revoked SSL Certificate Validation Security Bypass Vulnerability
3611| [56809] IBM Tivoli Monitoring HTTP Monitoring Console Cross Site Scripting Vulnerability
3612| [56808] Panda Internet Security Insecure Library Loading Multiple Local Privilege Escalation Vulnerabilities
3613| [56807] Qt 'XmlHttpRequest' Object Insecure Redirection Information Disclosure Vulnerability
3614| [56789] Symantec Messaging Gateway Arbitrary File Download Vulnerabilities
3615| [56749] JsUpload '/tmp/uploader' Directory Traversal Vulnerability
3616| [56744] BigDump Cross Site Scripting, SQL Injection, and Arbitrary File Upload Vulnerabilities
3617| [56735] FCKEditor 'FileUpload()' Function Arbitrary File Upload Vulnerability
3618| [56712] libproxy 'print_proxies()' Function Format String Vulnerability
3619| [56711] Perl Dancer.pm CVE-2012-5572 HTTP Header Injection Vulnerability
3620| [56668] Websense Proxy Filter Security Bypass Vulnerability
3621| [56663] WordPress Zarzadzonie Kontem Plugin 'ajaxfilemanager.php' Script Arbitrary File Upload Vulnerability
3622| [56659] WordPress Zingiri Web Shop Plugin 'path' Parameter Arbitrary File Upload Vulnerability
3623| [56658] ownCloud Multiple Cross Site Scripting and Arbitrary File Upload Vulnerabilities
3624| [56619] lighttpd 'http_request_split_value()' Function Remote Denial of Service Vulnerability
3625| [56593] IBM WebSphere Portal Theme Component 'LayerLoader.jsp' Directory Traversal Vulnerability
3626| [56588] WeBid 'loader.php' Directory Traversal Vulnerability
3627| [56562] Perl CGI.pm 'Set-Cookie' and 'P3P' Headers HTTP Header Injection Vulnerability
3628| [56500] SWFUpload 'swfupload_f9.swf' Script Cross Site Scripting Vulnerability
3629| [56496] Pebble HTTP Response Splitting Vulnerability
3630| [56490] IDIC Blogs 'picture_upload.php' Arbitrary File Upload Vulnerability
3631| [56470] VMware Player and Workstation Insecure Library Loading Arbitrary Code Execution Vulnerability
3632| [56462] Microsoft .NET Framework CVE-2012-2519 DLL Loading Arbitrary Code Execution Vulnerability
3633| [56432] XiVO 'id' Parameter Arbitrary File Download Vulnerability
3634| [56354] UMPlayer 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
3635| [56308] Arora 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
3636| [56245] IBM Tivoli Monitoring Web Server HTTP TRACE/TRACK Methods Information Disclosure Vulnerability
3637| [56175] F5 FirePass Remote SQL Injection Vulnerability
3638| [56146] Django 'HttpRequest.get_host()' Information Disclosure Vulnerability
3639| [56109] BSW Gallery 'uploadpic.php' Arbitrary File Upload Vulnerability
3640| [56105] radsecproxy Client Certificate Verification Security Bypass Vulnerability
3641| [56097] WordPress Download Shortcode Plugin 'file' Parameter Arbitrary File Disclosure Vulnerability
3642| [56087] Sisfokol Multiple Arbitrary File Upload Vulnerabilities
3643| [55919] WordPress Crayon Syntax Highlighter Plugin 'wp_load' Parameter Remote File Include Vulnerabilities
3644| [55910] libproxy CVE-2012-4505 Heap-Based Buffer Overflow Vulnerability
3645| [55909] libproxy CVE-2012-4504 Stack-Based Buffer Overflow Vulnerability
3646| [55905] Monkey HTTP Daemon '/var/run/monkey.pid' Symlink Attack Local Privilege Escalation Vulnerability
3647| [55902] WordPress Guest Posting Plugin CVE-2012-5318 'uploadify.php' Arbitrary File Upload Vulnerability
3648| [55758] ProjectPier 'upload.php' Arbitrary File Upload Vulnerability
3649| [55692] WordPress Archin Theme Cross Site Scripting and Arbitrary File Upload Vulnerabilities
3650| [55686] Foxit Reader 'fxdecod1.dll' DLL Loading Arbitrary Code Execution Vulnerability
3651| [55685] YingZhiPython Directory Traversal and Arbitrary File Upload Vulnerabilities
3652| [55648] Novell GroupWise HTTP Interfaces Directory Traversal Vulnerability
3653| [55639] Monkey HTTP Daemon Local Privilege Escalation Vulnerability
3654| [55635] Monkey HTTP Daemon Local Information Disclosure Vulnerability
3655| [55621] Technicolor THOMSON TWG850-4 HTTP Authentication Bypass Vulnerability
3656| [55527] PHP 'main/SAPI.c' CVE-2012-4388 HTTP Header Injection Vulnerability
3657| [55510] Webify eDownloads Cart Arbitrary File Deletion Vulnerability
3658| [55487] WordPress Download Monitor Plugin 'dlsearch' Parameter Cross Site Scripting Vulnerability
3659| [55486] F5 Networks BIG-IP Application Security Manager (ASM) Cross-Site Scripting Vulnerability
3660| [55464] Multiple RealFlex Products Insecure Library Loading Arbitrary Code Execution Vulnerability
3661| [55443] ownCloud 'migrate.php' File Upload Vulnerability
3662| [55436] Tiki Wiki CMS Groupware 'SWFUpload' Unspecified Vulnerability
3663| [55426] web@all Local File Include and Multiple Arbitrary File Upload Vulnerabilities
3664| [55421] ThinPrint 'tpfc.dll' Insecure Library Loading Arbitrary Code Execution Vulnerability
3665| [55420] OpenStack Swift 'loads()' Arbitrary Code Execution Vulnerability
3666| [55417] Kayako Fusion 'download.php' Cross Site Scripting Vulnerability
3667| [55402] Ektron CMS 'Upload.aspx' Arbitrary File Upload Vulnerability
3668| [55384] InterPhoto CMS Arbitrary File Upload Vulnerability
3669| [55380] CyberLink PowerProducer Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
3670| [55378] CyberLink StreamAuthor Insecure Library Loading Multiple Arbitrary Code Execution Vulnerabilities
3671| [55376] CyberLink LabelPrint Multiple Insecure Library Loading Arbitrary Code Execution Vulnerabilities
3672| [55368] Internet Download Manager '.ef2' File Buffer Overflow Vulnerability
3673| [55297] PHP 'header()' HTTP Header Injection Vulnerability
3674| [55273] HP SiteScope UploadFilesHandler Directory Traversal Vulnerability
3675| [55243] WordPress Simple:Press Forum Plugin Arbitrary File Upload Vulnerability
3676| [55225] Joomla! FreiChat Component Insecure File Upload Vulnerability
3677| [55223] ownCloud 'fileuploaded.php' Arbitrary File Upload Vulnerability
3678| [55210] elcomCMS 'UploadStyleSheet.aspx' Arbitrary File Upload Vulnerability
3679| [55209] EMC ApplicationXtender Multiple Products Arbitrary File Upload Vulnerability
3680| [55204] BusinessWiki Arbitrary File Upload and Multiple HTML Injection Vulnerabilities
3681| [55179] Adobe Pixel Bender Toolkit2 'tbbmalloc.dll' Multiple DLL Loading Code Execution Vulnerabilities
3682| [55177] Foxit Reader 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
3683| [55175] WordPress Monsters Editor for WP Super Edit Plugin Arbitrary File Upload Vulnerability
3684| [55174] WordPress Rich Widget Plugin Arbitrary File Upload Vulnerability
3685| [55173] WordPress 'sem-wysiwyg' Plugin Arbitrary File Upload Vulnerability
3686| [55166] Joomla! CiviCRM Component Multiple Arbitrary File Upload Vulnerabilities
3687| [55131] Apache HTTP Server HTML-Injection And Information Disclosure Vulnerabilities
3688| [55127] XODA Arbitrary File Upload and HTML Injection Vulnerabilities
3689| [55117] SaltOS 'download.php' Cross Site Scripting Vulnerability
3690| [55099] Tinyproxy Header Multiple Denial of Service Vulnerabilities
3691| [55095] IBM Lotus Domino HTTP Response Splitting and Cross Site Scripting Vulnerabilities
3692| [55040] MobileCartly Multiple Remote File Upload Vulnerabilities
3693| [54994] Group-Office HTTPOnly Cookies Flag Information Disclosure Vulnerabilities
3694| [54933] dirLIST Multiple Local File Include and Arbitrary File Upload Vulnerabilities
3695| [54818] AOL downloadUpdater2 Plugin 'SRC' Parameter Remote Buffer Overflow Vulnerability
3696| [54774] Joomla Joomgalaxy Component SQL Injection and Arbitrary File Upload Vulnerabilities
3697| [54727] Scrutinizer HTTP Authentication Bypass Vulnerability
3698| [54726] Scrutinizer Arbitrary File Upload Vulnerability
3699| [54721] Symantec Web Gateway 'deptUploads_data.php' SQL Injection Vulnerability
3700| [54712] httpdx Heap Buffer Overflow Vulnerability
3701| [54704] Ruby on Rails 'authenticate_or_request_with_http_digest' Method Denial Of Service Vulnerability
3702| [54700] WebKit WebSockets CVE-2012-3696 HTTP Header Injection Vulnerability
3703| [54655] WordPress Front End Upload Plugin Arbitrary File Upload Vulnerability
3704| [54651] Multiple Siemens SIMATIC Products DLL Loading Arbitrary Code Execution Vulnerability
3705| [54646] Invensys Multiple Products DLL Loading Arbitrary Code Execution Vulnerability
3706| [54635] WordPress chenpress Plugin Arbitrary File Upload Vulnerability
3707| [54629] httpdx Wildcards Remote Denial of Service Vulnerability
3708| [54597] WordPress Cimy User Extra Fields Plugin Arbitrary File Upload Vulnerability
3709| [54594] Symantec System Recovery CVE-2012-0305 DLL Loading Arbitrary Code Execution Vulnerability
3710| [54478] DomsHttpd Remote Denial of Service Vulnerability
3711| [54477] Google Chrome 'metro_driver.dll' DLL Loading Arbitrary Code Execution Vulnerability
3712| [54470] EmbryoCore CMS 'loadcss.php' Multiple Directory Traversal Vulnerabilities
3713| [54467] Rama Zeiten CMS 'download.php' Remote File Disclosure Vulnerability
3714| [54464] EGallery 'egallery/uploadify.php' Arbitrary File Upload Vulnerability
3715| [54447] Joomla! KSAdvertiser Component Arbitrary File Upload Vulnerability
3716| [54446] Joomla! OS Property Component Arbitrary File Upload Vulnerability
3717| [54441] WordPress Resume Submissions & Job Postings Unrestricted File Upload Vulnerability
3718| [54440] WordPress Generic Plugin Arbitrary File Upload Vulnerability
3719| [54421] Chyrp SQL Injection and Arbitrary File Upload Vulnerabilities
3720| [54372] Open Upload Cross-Site Scripting and Arbitrary Code Execution Vulnerabilities
3721| [54351] Umbraco CMS 'codeEditorSave.asmx' Arbitrary File Upload Vulnerability
3722| [54344] Mono 'HttpForbiddenHandler.cs' Cross-Site Scripting Vulnerability
3723| [54338] WordPress Contus Vblog Plugin 'save.php' Arbitrary File Upload Vulnerability
3724| [54337] WordPress Front-end Editor Plugin 'upload.php' Arbitrary File Upload Vulnerability
3725| [54336] Eclydre Web Manager 'upload.php' Arbitrary File Upload Vulnerability
3726| [54335] sflog! 'uploadContent.inc.php' Arbitrary File Upload Vulnerability
3727| [54303] Microsoft Visual Basic for Applications DLL Loading Arbitrary Code Execution Vulnerability
3728| [54264] Photodex ProShow Producer 'load' File Remote Stack Buffer Overflow Vulnerability
3729| [54255] GetSimple CMS Items Manager Plugin 'php.php' Arbitrary File Upload Vulnerability
3730| [54254] Magix CMS 'upload.php' Arbitrary File Upload Vulnerability
3731| [54252] Magix CMS 'upload.php' Arbitrary File Upload Vulnerability
3732| [54245] SWFUpload 'movieName' Parameter Cross Site Scripting Vulnerability
3733| [54238] JAKCMS PRO 'uploader.php' Arbitrary File Upload Vulnerability
3734| [54228] PHP-Fusion Advanced MP3 Player Infusion 'upload.php' Arbitrary File Upload Vulnerability
3735| [54225] Avaya IP Office Customer Call Reporter 'ImageUpload.ashx' Remote Code Execution Vulnerability
3736| [54205] Drupal IMCE Mkdir 'imce' Arbitrary File Upload Vulnerability
3737| [54204] Schoolhos CMS Arbitrary File Upload and HTML Injection Vulnerabilities
3738| [54193] Western Digital Live TV Local File Include and Arbitrary File Upload Vulnerabilities
3739| [54179] Drupal Drag & Drop Gallery 'upload.php' Arbitrary File Upload Vulnerability
3740| [54174] e107 Articulate 'manage_articulate.php' Arbitrary File Upload Vulnerability
3741| [54173] WordPress Flip Book 'php.php' Arbitrary File Upload Vulnerability
3742| [54172] SilverStripe Pixlr Image Editor 'upload.php' Arbitrary File Upload Vulnerability
3743| [54171] WordPress Fancy Gallery 'image-upload.php' Arbitrary File Upload Vulnerability
3744| [54170] Amazon S3 Uploadify Script 'uploadify.php' Arbitrary File Upload Vulnerability
3745| [54165] IBM Lotus Expeditor DLL Loading Arbitrary Code Execution Vulnerability
3746| [54127] AdNovum nevisProxy Cross Site Scripting Vulnerability
3747| [54107] Cisco AnyConnect Secure Mobility Client VPN Downloader Arbitrary Code Execution Vulnerabilities
3748| [54098] e107 FileDownload Plugin Arbitrary File Upload and Remote File Disclosure Vulnerabilities
3749| [54092] e107 Filemanager Plugin 'ajaxfilemanager.php' Arbitrary File Upload Vulnerability
3750| [54091] e107 Hupsi_fancybox Plugin 'uploadify.php' Arbitrary File Upload Vulnerability
3751| [54090] e107 Hupsis Media Gallery Plugin 'ajaxfilemanager.php' Arbitrary File Upload Vulnerability
3752| [54088] e107 Hupsi Share Plugin 'uploadify.php' Arbitrary File Upload Vulnerability
3753| [54087] e107 Radio Plan Plugin 'upload.php' Arbitrary File Upload Vulnerability
3754| [54085] e107 Tap Plugin 'ajaxfilemanager.php' Arbitrary File Upload Vulnerability
3755| [54083] Python SimpleHTTPServer 'list_directory()' Function Cross Site Scripting Vulnerability
3756| [54078] WordPress Auctions Plugin 'upload.php' Arbitrary File Upload Vulnerability
3757| [54059] WordPress Lim4wp 'upload.php' Arbitrary File Upload Vulnerability
3758| [54057] WordPress LB Mixed Slideshow Plugin 'upload.php' Arbitrary File Upload Vulnerability
3759| [54055] Samsung AllShare 'Content-Length' HTTP Header Remote Denial Of Service Vulnerability
3760| [54052] WordPress Multiple Themes 'upload.php' Arbitrary File Upload Vulnerability
3761| [54041] Joomla! Maian Media Component 'uploadhandler.php' Arbitrary File Upload Vulnerability
3762| [54038] Joomla! Dione FileUploader Component 'upload.php' Arbitrary File Upload Vulnerability
3763| [54037] Joomla! hwdVideoShare Component 'flash_upload.php' Arbitrary File Upload Vulnerability
3764| [54022] qdPM Arbitrary File Upload Vulnerability
3765| [54020] WordPress Zingiri Web Shop Plugin 'uploadfilexd.php' Arbitrary File Upload Vulnerability
3766| [53995] WordPress Invit0r Plugin 'ofc_upload_image.php' Arbitrary File Upload Vulnerability
3767| [53994] WordPress Evarisk Plugin 'uploadPhotoApres.php' Arbitrary File Upload Vulnerability
3768| [53990] Zimplit CMS Local File Include and Arbitrary File Upload Vulnerabilities
3769| [53978] WordPress Annonces Plugin 'theme.php' Arbitrary File Upload Vulnerability
3770| [53977] Joomla! Easy Flash Uploader Component 'helper.php' Arbitrary File Upload Vulnerability
3771| [53975] Joomla! jFancy Component 'script.php' Arbitrary File Upload Vulnerability
3772| [53973] Joomla! IDoEditor Component 'image.php' Arbitrary File Upload Vulnerability
3773| [53972] Joomla! DentroVideo Component 'upload.php' Arbitrary File Upload Vulnerability
3774| [53969] Joomla! Art Uploader Component 'upload.php' Arbitrary File Upload Vulnerability
3775| [53968] Joomla! Simple SWFUpload Component 'uploadhandler.php' Arbitrary File Upload Vulnerability
3776| [53967] WordPress HD FLV Player Plugin 'uploadVideo.php' Arbitrary File Upload Vulnerability
3777| [53945] XOOPS Cube PROJECT FileManager 'xupload.php' Arbitrary File Upload Vulnerability
3778| [53944] Joomla! Joomsport Component SQL Injection and Arbitrary File Upload Vulnerabilities
3779| [53941] Adobe ColdFusion Component Browser CVE-2012-2041 HTTP Response Splitting Vulnerability
3780| [53931] WordPress Contus Video Gallery Plugin 'upload1.php' Arbitrary File Upload Vulnerability
3781| [53929] Clansuite 'uploadify.php' Arbitrary File Upload Vulnerability
3782| [53928] ET - Chat Multiple Arbitrary File Upload Vulnerabilities
3783| [53925] Check Point Endpoint Connect DLL Loading Arbitrary Code Execution Vulnerability
3784| [53923] Agora-Project 'dossierup' Parameter Remote Arbitrary File Upload Vulnerability
3785| [53920] PHPAccounts SQL Injection and Arbitrary File Upload Vulnerabilities
3786| [53919] WordPress Custom Content Type Manager Plugin 'upload_form.php' Arbitrary File Upload Vulnerability
3787| [53918] WordPress PICA Photo Gallery 'picaPhotosResize.php' Arbitrary File Upload Vulnerability
3788| [53915] WordPress Drag & Drop File Uploader Plugin 'dnd-upload.php' Arbitrary File Upload Vulnerability
3789| [53914] Wordpress SFBrowser Plugin 'sfbrowser.php' Arbitrary File Upload Vulnerability
3790| [53913] WordPress Top Quark Architecture Plugin 'script.php' Arbitrary File Upload Vulnerability
3791| [53912] WordPress Mac Photo Gallery Plugin 'upload-file.php' Arbitrary File Upload Vulnerability
3792| [53910] WordPress User Meta Plugin 'uploader.php' Arbitrary File Upload Vulnerability
3793| [53909] WordPress WP GPX Maps Plugin Arbitrary File Upload Vulnerability
3794| [53898] WordPress Hungred Post Thumbnail Plugin 'hpt_file_upload.php' Arbitrary File Upload Vulnerability
3795| [53897] F5 Multiple Products SSH Configuration Remote Unauthorized Access Vulnerability
3796| [53896] WordPress wpStoreCart Plugin 'upload.php' Arbitrary File Upload Vulnerability
3797| [53895] WordPress PDW File Browser Plugin 'upload.php' Arbitrary File Upload Vulnerability
3798| [53894] WordPress Picturesurf Gallery Plugin 'upload.php' Arbitrary File Upload Vulnerability
3799| [53891] WordPress Front File Manager Plugin 'Upload.php' Arbitrary File Upload Vulnerability
3800| [53879] IBM Lotus iNotes Upload Module ActiveX Control Buffer Overflow Vulnerability
3801| [53874] WordPress Front End Upload Plugin 'Upload.php' Arbitrary File Upload Vulnerability
3802| [53872] WordPress Omni Secure Files Plugin 'Upload.php' Arbitrary File Upload Vulnerability
3803| [53855] WordPress FCChat Widget Plugin 'Upload.php' Arbitrary File Upload Vulnerability
3804| [53853] WordPress Font Uploader Plugin 'font-upload.php' Arbitrary File Upload Vulnerability
3805| [53852] WordPress MM Forms Community Plugin 'doajaxfileupload.php' Arbitrary File Upload Vulnerability
3806| [53851] WordPress VideoWhisper Video Presentation Plugin 'vw_upload.php' Arbitrary File Upload Vulnerability
3807| [53849] WordPress Gallery Plugin Arbitrary File Upload Vulnerability
3808| [53831] Microsoft Lync CVE-2012-1849 DLL Loading Arbitrary Code Execution Vulnerability
3809| [53830] RETIRED: Microsoft Visual Basic for Applications DLL Loading Arbitrary Code Execution Vulnerability
3810| [53813] Collabtive 'manageuser.php' Arbitrary File Upload Vulnerability
3811| [53809] WordPress Asset Manager Plugin 'upload.php' Arbitrary File Upload Vulnerability
3812| [53806] WordPress Comment Extra Fields Plugin 'cef-upload.php' Arbitrary File Upload Vulnerability
3813| [53805] WordPress Foxypress Plugin 'uploadify.php' Arbitrary File Upload Vulnerability
3814| [53804] WordPress HTML5 AV Manager Plugin 'custom.php' Arbitrary File Upload Vulnerability
3815| [53790] Nmedia WordPress Member Conversation Plugin 'doupload.php' Arbitrary File Upload Vulnerability
3816| [53789] WordPress WP Marketplace Plugin 'uploadify.php' Arbitrary File Upload Vulnerability
3817| [53787] WordPress WP-Property Plugin 'uploadify.php' Arbitrary File Upload Vulnerability
3818| [53786] Nmedia Users File Uploader Plugin Arbitrary File Upload Vulnerability
3819| [53782] PyroCMS HTTP Response Splitting and HTML Injection Vulnerabilities
3820| [53777] f2blog 'uploadimg.php' Remote File Upload Vulnerability
3821| [53761] TinyCMS Local File Include and Arbitrary File Upload Vulnerabilities
3822| [53740] WHMCS Cross Site Scripting and Multiple HTTP Parameter Pollution Vulnerabilities
3823| [53724] VAMCart 'tinybrowser.php' Remote Arbitrary File Upload Vulnerability
3824| [53701] PHP Volunteer Management Arbitrary File Upload and HTML Injection Vulnerabilities
3825| [53696] DynPage 'ckfinder' Multiple Arbitrary File Upload Vulnerabilities
3826| [53695] DornCMS 'add_page.php' Remote Arbitrary File Upload Vulnerability
3827| [53681] Measuresoft ScadaPro DLL Loading Arbitrary Code Execution Vulnerability
3828| [53675] phpCollab Unauthorized Access and Arbitrary File Upload Vulnerabilities
3829| [53647] HAProxy Trash Buffer Overflow Vulnerability
3830| [53645] Macronia AhMeBa Professional Arbitrary File Upload Vulnerability
3831| [53641] AZ Photo Album Cross Site Scripting and Arbitrary File Upload Vulnerabilities
3832| [53616] Acuity CMS Directory Traversal and Arbitrary File Upload Vulnerabilities
3833| [53612] Tornado 'tornado.web.RequestHandler.set_header()' HTTP Response Splitting Vulnerability
3834| [53609] Cryptographp 'cryptographp.inc.php' HTTP Response Splitting Vulnerability
3835| [53568] 3DVIA Composer 'dwmapi.dll' and 'ibfs32.dll' DLL Loading Arbitrary Code Execution Vulnerabilities
3836| [53560] 3D XML Player Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
3837| [53517] Download Manager 'cid' Parameter Cross Site Scripting Vulnerability
3838| [53514] Download Monitor 'uploader.php' Multiple Cross Site Scripting Vulnerabilities
3839| [53486] Anaconda Bootloader Configuration Module Insecure File Permission Vulnerability
3840| [53448] Chevereto Image Upload Script Cross Site Scripting and Information Disclosure Vulnerability
3841| [53443] Symantec Web Gateway Management Scripts Arbitrary File Upload Vulnerability
3842| [53442] Symantec Web Gateway Arbitrary File Download And Delete Vulnerability
3843| [53439] Cisco Prime LAN Management Solution HTTP Response Splitting Vulnerability
3844| [53416] Node.js HTTP Parser Information Disclosure Vulnerability
3845| [53412] eFront Cross Site Scripting and Arbitrary File Upload Vulnerabilities
3846| [53316] WellinTech KingView DLL Loading Arbitrary Code Execution Vulnerability
3847| [53277] Joomla! 'Host' HTTP Header Cross Site Scripting Vulnerability
3848| [53267] NetArt Media Car Portal Arbitrary File Upload and HTML Injection Vulnerabilities
3849| [53242] Ettercap 'exchndl.dll' And 'quserex.dll' DLL Loading Arbitrary Code Execution Vulnerabilities
3850| [53191] Xunlei Thunder Insecure Library Loading Arbitrary Code Execution Vulnerability
3851| [53190] RETIRED: Liferay Enterprise Portal Arbitrary File Download And Security Bypass Vulnerability
3852| [53176] WordPress Download Manager Plugin 'cid' Parameter Cross Site Scripting Vulnerability
3853| [53093] Oracle Database Server CVE-2012-0527 Remote HTTP Response Splitting Vulnerability
3854| [53084] Oracle Database Server CVE-2012-0526 Remote HTTP Response Splitting Vulnerability
3855| [53015] McAfee Web Gateway 'Host' HTTP Header Security Bypass Vulnerability
3856| [53011] ActiveScriptRuby 'GRScript18.dll' ActiveX Control DLL Loading Arbitrary Code Execution Vulnerability
3857| [52999] nginx 'ngx_http_mp4_module.c' Buffer Overflow Vulnerability
3858| [52994] CGIProxy Multiple Unspecified Security Vulnerabilities
3859| [52964] Nmedia Users File Uploader plugin for WordPress Multiple Security Vulnerabilities
3860| [52960] WordPress WP Marketplace Plugin File Enumeration Weakness and File Upload Vulnerabilities
3861| [52944] WordPress Uploadify Integration Plugin Multiple Cross Site Scripting Vulnerabilities
3862| [52933] Siemens Scalance X Switches 'HTTP' Request Denial of Service Vulnerability
3863| [52912] Umbraco CMS 'url' Parameter Open Proxy Vulnerability
3864| [52861] Wordpress Another WordPress Classifieds Plugin Unspecified Image Upload Vulnerability
3865| [52832] Red Hat Network Satellite Server NULL Organization Package Upload Security Bypass Vulnerability
3866| [52825] Havalite CMS SQL Injection and Arbitrary File Upload Vulnerabilities
3867| [52823] GetSimple CMS 'filebrowser.php' Remote Arbitrary File Upload Vulnerability
3868| [52713] vBulletin vBDownloads module 'mirrors[]' Parameter HTML Injection Vulnerability
3869| [52702] Apache Struts2 'XSLTResult.java' Remote Arbitrary File Upload Vulnerability
3870| [52696] Apache Traffic Server HTTP Host Header Handling Heap Based Buffer Overflow Vulnerability
3871| [52653] F5 FirePass 'state' Parameter SQL Injection Vulnerability
3872| [52643] Tiny Server HTTP GET Request Remote Denial of Service Vulnerability
3873| [52635] Tiny Server HTTP HEAD Request Remote Denial of Service Vulnerability
3874| [52622] Gnuboard 'download.php' HTML Injection Vulnerability
3875| [52542] Xtreme RAT 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
3876| [52512] TVersity Arbitrary File Download Vulnerability
3877| [52463] Mozilla Firefox/Thunderbird/SeaMonkey HTTP Header Security Bypass Vulnerability
3878| [52450] Ettercap NG 'wpcap.dll' DLL Loading Arbitrary Code Execution Vulnerability
3879| [52445] GoAhead WebServer HTTP Requests Denial Of Service Vulnerability
3880| [52421] WebKit HTTP Authentication Credentials Information Disclosure Vulnerability
3881| [52413] DVD Architect 'CFHDDecoder.dll' DLL Loading Arbitrary Code Execution Vulnerability
3882| [52412] moviEZ HD 'avrt.dll' DLL Loading Arbitrary Code Execution Vulnerability
3883| [52410] Vegas Movie Studio HD 'CFHDDecoder.dll' DLL Loading Arbitrary Code Execution Vulnerability
3884| [52402] Jam Trax Xpress 'sage.dll' DLL Loading Arbitrary Code Execution Vulnerability
3885| [52386] DotNetNuke Remote Arbitrary File Upload Vulnerability
3886| [52375] Microsoft Expression 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
3887| [52336] OSClass Directory Traversal and Arbitrary File Upload Vulnerabilities
3888| [52325] Apple Safari Plugin Unloading Remote Code Execution Vulnerability
3889| [52282] KoolUploader Remote Arbitrary File Upload Vulnerability
3890| [52279] phpCAS Proxy Authorization Security Bypass Vulnerability
3891| [52234] BrewBlogger Multiple Arbitrary File Upload Vulnerabilities
3892| [52212] Cisco Wireless LAN Controller CVE-2012-0368 HTTP Request Denial of Service Vulnerability
3893| [52208] NetDecision HTTP Server Long HTTP Request Remote Denial of Service Vulnerability
3894| [52194] NetDecision HTTP Server Stack-Based Buffer Overflow Vulnerability
3895| [52179] python-httplib2 CVE-2013-2037 SSL Certificate Validation Security Bypass Vulnerability
3896| [52174] Piwigo 'index.php' Remote Arbitrary File Upload Vulnerability
3897| [52173] Dotclear 'swfupload.swf' Remote Arbitrary File Upload Vulnerability
3898| [52156] The Uploader 'username' Parameter SQL Injection Vulnerability
3899| [52136] Mobile Mp3 Search Script 'dl.php' HTTP Response Splitting Vulnerability
3900| [52130] WordPress Magn WP Drag and Drop Upload Plugin Arbitrary Shell Upload Vulnerability
3901| [52106] Mercury MR804 Router Multiple HTTP Header Fields Denial Of Service Vulnerabilities
3902| [52087] WebsiteBaker HTTP 'Referer' Header Cross Site Scripting Vulnerabilities
3903| [52080] Mitra Iranian CMS 'manager.php' Remote Arbitrary File Upload Vulnerability
3904| [52070] 7T AQUIS DLL Loading Arbitrary Code Execution Vulnerability
3905| [52069] 7T TERMIS DLL Loading Arbitrary Code Execution Vulnerability
3906| [51990] PBBoard 'index.php' Arbitrary File Upload Vulnerability
3907| [51984] ALFTP Insecure Excutable File Loading Arbitrary Code Execution Vulnerability
3908| [51950] Sysax Multi Server 'uploadfile_name1.htm' Buffer Overflow Vulnerability
3909| [51943] CVS CVE-2012-0804 'proxy_connect()' Heap Buffer Overflow Vulnerability
3910| [51924] HDWiki 'attachement.php' Arbitrary File Upload Vulnerability
3911| [51910] Scientific Toolworks Understand 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
3912| [51838] TYPO3 Documents Download Extension Cross Site Scripting and SQL Injection Vulnerabilities
3913| [51767] Mindjet MindManager 2012 DLL Loading Arbitrary Code Execution Vulnerabilities
3914| [51725] phux Download Manager 'file' Parameter SQL Injection Vulnerability
3915| [51722] Ajax Upload Extension Wing Header Arbitrary File Upload Vulnerability
3916| [51706] Apache HTTP Server 'httpOnly' Cookie Information Disclosure Vulnerability
3917| [51705] Apache HTTP Server CVE-2012-0021 mod_log_config Denial Of Service Vulnerability
3918| [51677] Joomla! JE Story Submit 'update()' Function Arbitrary File Upload Vulnerability
3919| [51657] Joomla! 'com_jesubmit' Component 'index.php' Arbitrary File Upload Vulnerability
3920| [51650] glFusion SQL Injection and Arbitrary File Upload Vulnerabilities
3921| [51638] WordPress Guest Posting Plugin 'uploadify.php' Arbitrary File Upload Vulnerability
3922| [51631] Raven 'connector.asp' Arbitrary File Upload Vulnerability
3923| [51630] ARYADAD CMS fckeditor Arbitrary File Upload Vulnerability
3924| [51615] WordPress AllWebMenus Plugin 'actions.php' Arbitrary File Upload Vulnerability
3925| [51576] appRain CMF 'uploadify.php' Remote Arbitrary File Upload Vulnerability
3926| [51456] Oracle JD Edwards EnterpriseOne Tools CVE-2011-2317 Arbitrary File Upload Vulnerability
3927| [51438] 7T Interactive Graphical SCADA System DLL Loading Arbitrary Code Execution Vulnerability
3928| [51415] Pragyan CMS 'frmupload.html' Arbitrary File Upload Vulnerability
3929| [51407] Apache HTTP Server Scoreboard Local Security Bypass Vulnerability
3930| [51406] Tahoe-LAFS Mutable Downloader Security Bypass Vulnerability
3931| [51402] WordPress Count per Day Plugin Arbitrary File Download and Cross Site Scripting Vulnerabilities
3932| [51398] HP LoadRunner 'magentservice.exe' Remote Stack Buffer Overflow Vulnerability
3933| [51375] Multiple Cogent Datahub Products Unspecified HTTP Header Injection Vulnerability
3934| [51365] PHP-Fusion 'downloads.php' Cross Site Scripting Vulnerability
3935| [51347] dl Download Ticket Service Authentication Bypass Vulnerability
3936| [51320] AirTies Air 4450 'cgi-bin/loader' Denial of Service Vulnerability
3937| [51302] eFront 'download' Parameter Directory Traversal Vulnerability
3938| [51264] Moodle '/calendar/set.php' HTTP Response Splitting Vulnerability
3939| [51234] Joomla! Simple File Upload Arbitrary File Upload Vulnerability
3940| [51214] Joomla Simple File Upload 'index.php' Remote Code Execution Vulnerability
3941| [51188] WordPress WP Symposium Arbitrary File Upload Vulnerabilities
3942| [51164] IDAPython Script Loading Arbitrary Code Execution Vulnerability
3943| [51112] SecCommerce SecSigner Java Applet Arbitrary File Upload Vulnerability
3944| [51073] RSA SecurID Software Token DLL Loading Arbitrary Code Execution Vulnerability
3945| [51068] Google Chrome IFRAME Loading Information Disclosure Vulnerability
3946| [51066] Opera Web Browser IFRAME Loading Information Disclosure Vulnerability
3947| [51065] Microsoft Internet Explorer IFRAME Loading Information Disclosure Vulnerability
3948| [51063] FFFTP CVE-2011-4266 Insecure Executable File Loading Arbitrary Code Execution Vulnerability
3949| [51053] Mozilla Firefox IFRAME Loading Information Disclosure Vulnerability
3950| [51002] Joomla! JCE Component 'file.php' Arbitrary File Upload Vulnerability
3951| [50998] DoceboLMS Multiple Arbitrary File Upload and SQL Injection Vulnerabilities
3952| [50975] Microsoft Internet Explorer CVE-2011-2019 DLL Loading Arbitrary Code Execution Vulnerability
3953| [50967] Microsoft PowerPoint CVE-2011-3396 DLL Loading Arbitrary Code Execution Vulnerability
3954| [50925] Simple Machines Forum ''fckeditor' Arbitrary File Upload Vulnerability
3955| [50862] Manx HTTP Response Splitting and Cross Site Scripting Vulnerabilities
3956| [50851] lighttpd 'http_auth.c' Remote Denial of Service Vulnerability
3957| [50829] Linux GNU Debugger 'debug_gdb_scripts' Loading Arbitrary Code Execution Vulnerability
3958| [50828] Siemens SIMATIC WinCC Flexible Runtime 'HmiLoad.exe' Multiple Security Vulnerabilities
3959| [50823] Joomla! Fabrik Component 'importcsv.php' Arbitrary File Upload Vulnerability
3960| [50785] Prestashop 'displayImage.php' HTTP Response Splitting Vulnerability
3961| [50771] Namazu HTTP Cookie Cross Site Scripting Vulnerability
3962| [50768] Privoxy RFC 3986 HTTP Response Splitting Vulnerability
3963| [50706] V-CMS Multiple Cross Site Scripting Arbitrary File Upload and SQL Injection Vulnerabilities
3964| [50703] DVR Remote ActiveX Control 'DVRobot.dll' DLL Loading Arbitrary Code Execution Vulnerability
3965| [50695] FleaHttpd Remote Denial of Service Vulnerability
3966| [50673] QuiXplorer 'index.php' Arbitrary File Upload Vulnerability
3967| [50666] Seraphim Tech Upload Script 'uploadurl.php' Remote Arbitrary File Upload Vulnerability
3968| [50639] Apache HTTP Server 'ap_pregsub()' Function Local Denial of Service Vulnerability
3969| [50608] LabWiki Multiple Cross Site Scripting And Arbitrary File Upload Vulnerabilities
3970| [50589] Mozilla Firefox and Thunderbird 'loadSubScript()' Security Bypass Vulnerability
3971| [50587] 11in1 (Eleven in One) 'do.php' HTTP Response Splitting Vulnerability
3972| [50554] Barracuda Link Balancer Multiple Cross Site Scripting Vulnerabilities
3973| [50553] UBB.Threads Unspecified File Upload Vulnerability
3974| [50542] Mahara CVE-2011-2772 Upload Denial of Service Vulnerability
3975| [50509] EMC Documentum eRoom Arbitrary File Upload Vulnerability
3976| [50508] Web File Browser 'webFileBrowser.php' Arbitrary File Download Vulnerability
3977| [50507] Windows Mail and Windows Meeting Space DLL Loading Arbitrary Code Execution Vulnerability
3978| [50497] phpMyAdmin 'simplexml_load_string()' Function Information Disclosure Vulnerability
3979| [50496] Attachmate Reflection DLL Loading Arbitrary Code Execution Vulnerability
3980| [50494] Apache HTTP Server 'ap_pregsub()' Function Local Privilege Escalation Vulnerability
3981| [50449] Squid Proxy Caching Server CNAME Denial of Service Vulnerability
3982| [50447] IBM HTTP Server Multiple Cross Site Scripting Vulnerabilities
3983| [50412] FFFTP Insecure Excutable File Loading Arbitrary Code Execution Vulnerability
3984| [50363] Novell XTier Framework HTTP Header Remote Integer Overflow Vulnerability
3985| [50335] Cyclope Internet Filtering Proxy 'CEPMServer.exe' Denial of Service Vulnerability
3986| [50324] Mozilla NSS 'NSS_NoDB_Init()' Insecure Library Loading Arbitrary Code Execution Vulnerability
3987| [50317] Cyclope Internet Filtering Proxy 'user' HTML Injection Vulnerability
3988| [50306] TYPO3 pmkshadowbox and pmkslimbox Cross Site Scripting and Arbitrary File Download Vulnerabilities
3989| [50301] osCommerce Remote File Upload and File Disclosure Vulnerabilities
3990| [50290] fims File Management System 'f' Parameter Arbitrary File Download Vulnerability
3991| [50285] Cisco Show and Share CVE-2011-2585 Arbitrary File Upload Vulnerability
3992| [50275] 1024 CMS 1.1.0 Beta 'force_download.php' Local File Include Vulnerability
3993| [50084] Cisco TelePresence Video Communication Server 'User-Agent' HTTP Header HTML Injection Vulnerability
3994| [50078] Honeywell EBI TEMA Remote Installer ActiveX Control Arbitrary File Download Vulnerability
3995| [50027] eFront 'view_file.php' Multiple Arbitrary File Download Vulnerabilities
3996| [50007] VLC Media Player 'httpd_ClientRecv()' Heap Based Buffer Overflow Vulnerability
3997| [49985] WordPress Redirection Plug-in HTTP Referrer Header HTML Injection Vulnerability
3998| [49979] Microsoft Forefront Unified Access Gateway (CVE-2011-1895) HTTP Response Splitting Vulnerability
3999| [49976] Microsoft Windows Active Accessibility DLL Loading Arbitrary Code Execution Vulnerability
4000| [49962] Microsoft Internet Explorer OnLoad Event CVE-2011-1997 Memory Corruption Vulnerability
4001| [49955] Cisco Firewall Services Module Authentication Proxy Remote Denial of Service Vulnerability
4002| [49943] Microsoft Windows Media Center DLL Loading Arbitrary Code Execution Vulnerability
4003| [49908] Polipo POST/PUT Requests HTTP Header Processing Denial Of Service Vulnerability
4004| [49890] SabadKharid 'upload.php' Arbitrary File Upload Vulnerability
4005| [49882] TYPO3 'download.php' Local File Disclosure Vulnerability
4006| [49852] Mozilla Firefox and SeaMonkey 'loadSubScript()' Security Bypass Vulnerability
4007| [49849] Mozilla Firefox/Thunderbird/SeaMonkey CVE-2011-3000 HTTP Response Splitting Vulnerability
4008| [49817] TimeLive Time and Expense 'FileDownload.aspx' Arbitrary File Download Vulnerability
4009| [49779] Novell GroupWise Internet Agent HTTP Interface Stack Buffer Overflow Vulnerability
4010| [49762] Apache Tomcat HTTP DIGEST Authentication Multiple Security Weaknesses
4011| [49693] WordPress Relocate Upload Plugin 'abspath' Parameter Remote File Include Vulnerability
4012| [49673] Toko LiteCMS HTTP Response Splitting and Cross Site Scripting Vulnerabilities
4013| [49669] WordPress Filedownload Local File Disclosure Vulnerability
4014| [49633] Oracle Application Server 9i 'httpd.conf' Information Disclosure Vulnerability
4015| [49616] Apache HTTP Server CVE-2011-3348 Denial Of Service Vulnerability
4016| [49604] Movicon 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4017| [49557] TYPO3 WEC Staff Directory Extension Arbitrary File Upload Vulnerability
4018| [49556] WordPress Easy Comment Uploads Plugin 'upload.php' Arbitrary File Upload Vulnerability
4019| [49535] Spring Security HTTP Header Injection Vulnerability
4020| [49519] Microsoft Office Shared Component CVE-2011-1980 DLL Loading Arbitrary Code Execution Vulnerability
4021| [49516] TYPO3 Drag Drop Mass Upload Extension 'ameos_dragndropupload' Arbitrary File Upload Vulnerability
4022| [49504] WordPress Paid Downloads Plugin 'download_key' Parameter SQL Injection Vulnerability
4023| [49501] WordPress WP-Filebase Download Manager 'base' Parameter SQL Injection Vulnerability
4024| [49495] 1 Flash Gallery 'upload.php' Arbitrary File Upload Vulnerability
4025| [49488] WordPress wpcu3er Plugin 'ajaxReq.php' Arbitrary File Upload Vulnerability_
4026| [49487] GnuCash Insecure Excutable File Loading Arbitrary Code Execution Vulnerability
4027| [49479] Siemens SIMATIC WinCC Flexible Runtime Advanced Loader Heap Buffer Overflow Vulnerability
4028| [49449] GTK+ Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
4029| [49436] Microsoft Windows Script Host 'wshesn.dll' DLL Loading Arbitrary Code Execution Vulnerability
4030| [49434] Joomla! Simple File Uploader Module Arbitrary File Upload Vulnerability
4031| [49421] KaiBB SQL Injection and Arbitrary File Upload Vulnerabilities
4032| [49385] WordPress Image Gallery with Slideshow Plugin 'upload-file.php' Arbitrary File Upload Vulnerability
4033| [49384] WordPress Grapefile Plugin 'grapeupload.php' Arbitrary File Upload Vulnerability
4034| [49356] Squid Proxy Gopher Remote Buffer Overflow Vulnerability
4035| [49309] Zazavi 'filemanager/controller.php' Arbitrary File Upload Vulnerability
4036| [49303] Apache HTTP Server CVE-2011-3192 Denial Of Service Vulnerability
4037| [49274] JagoanStore CMS fckeditor Arbitrary File Upload Vulnerability
4038| [49185] Website Baker 'upload.php' Arbitrary File Upload Vulnerability
4039| [49026] Microsoft Windows Data Access Component DLL Loading Arbitrary Code Execution Vulnerability
4040| [48963] WordPress Timthumb Plugin 'timthumb' Cache Directory Arbitrary File Upload Vulnerability
4041| [48929] Linux Kernel Generic Receive Offload (GRO) CVE-2011-2723 Denial of Service Vulnerability
4042| [48911] Drupal Core File Download Security Bypass Vulnerability
4043| [48871] Download Accelerator Plus '.m3u' File Buffer Overflow Vulnerability
4044| [48863] PRADO 'TActiveFileUpload.php' Directory Traversal Vulnerability
4045| [48708] Joomla! AvReloaded Component SQL Injection Vulnerability
4046| [48643] Fire Soft Board 'User-Agent' HTTP Header HTML Injection Vulnerability
4047| [48614] Aruba Networks ArubaOS HTTP Response Splitting and HTML Injection Vulnerabilities
4048| [48608] Effective File Search (EFS) DLL Loading Arbitrary Code Execution Vulnerability
4049| [48579] F5 BIG-IP ASM Web Scraping Cross-Site Scripting Vulnerability
4050| [48577] HP-UX Dynamic Loader Unspecified Local Privilege Escalation Vulnerability
4051| [48562] XnView DLL Loading Arbitrary Code Execution Vulnerability
4052| [48535] Donar Player Multiple DLL Loading Arbitrary Code Execution Vulnerability
4053| [48514] IBM DB2 'DT_RPATH' Insecure Library Loading Arbitrary Code Execution Vulnerability
4054| [48484] Atlassian JIRA File Download Security Bypass Vulnerability
4055| [48432] xAurora 'RSRC32.DLL' DLL Loading Arbitrary Code Execution Vulnerability
4056| [48425] gdk-pixbuf 'gdk_pixbuf__gif_image_load()' Remote Denial of Service Vulnerability
4057| [48398] Drupal Download Count Module HTML Injection Vulnerability
4058| [48343] Retired: Blackice Cover Page 'DownloadImageFileURL()' Arbitrary File Download Vulnerability
4059| [48336] Blue Coat ProxySG core Files Local Information Disclosure Vulnerability
4060| [48331] Helium Music Manager DLL Loading Arbitrary Code Execution Vulnerability
4061| [48285] Gogago YouTube Video Converter ActiveX control 'Download()' Method Buffer Overflow Vulnerability
4062| [48274] WordPress Real WYSIWYG Plugin 'insert_file.php' Arbitrary File Upload Vulnerability
4063| [48257] Phpnuke 'upload.php' Arbitrary File Upload Vulnerability
4064| [48252] Adobe Acrobat and Reader CVE-2011-2100 DLL Loading Arbitrary Code Execution Vulnerability
4065| [48211] Microsoft Internet Explorer HTTP Redirect Uninitialized Memory Remote Code Execution Vulnerability
4066| [48194] PlotSoft PDFill Multiple DLL Loading Arbitrary Code Execution Vulnerability
4067| [48130] ACDSee Fotoslate DLL Loading Arbitrary Code Execution Vulnerability
4068| [48128] ACDSee Photo Editor 2008 DLL Loading Arbitrary Code Execution Vulnerability
4069| [48127] ACDSee Picture Frame Manager DLL Loading Arbitrary Code Execution Vulnerability
4070| [48111] Xitami HTTP Header Remote Buffer Overflow Vulnerability
4071| [48108] Joomla CCBoard SQL Injection and Arbitrary File Upload Vulnerabilities
4072| [48093] mcCMS 'manager.php' Arbitrary File Upload Vulnerability
4073| [48073] HP LoadRunner Virtual User Script Files Remote Buffer Overflow Vulnerability
4074| [48061] Belkin F5D7234-4V5 Wireless G Router 'login.stm' Administrator Password Disclosure Vulnerability
4075| [48055] Microsoft Windows Live Messenger 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4076| [48031] Lil' HTTP Server 'pbcgi.cgi' Cross Site Scripting Vulnerability
4077| [48022] Lil' HTTP Server Source Code Information Disclosure Vulnerability
4078| [48001] WalRack File Extension Handling Arbitrary File Upload Vulnerability
4079| [47970] MidiCMS Website Builder Local File Include and Arbitrary File Upload Vulnerabilities
4080| [47915] Drupal Webform Module Cross Site Scripting and Arbitrary File Upload Vulnerabilities
4081| [47908] Joomla! jDownloads Component Arbitrary File Upload Vulnerability
4082| [47897] Microsoft Windows 'nsiproxy.sys' Driver Local Denial of Service Vulnerability
4083| [47876] Web File Browser Arbitrary File Upload Vulnerability
4084| [47869] NoticeBoardPro SQL Injection and Arbitrary File Upload Vulnerabilities
4085| [47855] osCommerce 'banner_manager.php' Arbitrary File Upload Vulnerability
4086| [47805] Big Brother Arbitrary File Deletion Vulnerability and Arbitrary File Upload Vulnerability
4087| [47759] phpWebSite 'upload.php' Arbitrary File Upload Vulnerability
4088| [47757] Exponent CMS Local File Include and Arbitrary File Upload Vulnerabilities
4089| [47752] BlueFTP 'ProfUIS250m.dll' DLL Loading Arbitrary Code Execution Vulnerability
4090| [47751] FestOS 'upload.php' Arbitrary File Upload Vulnerability
4091| [47743] WP-DBManager Arbitrary File Download Vulnerability and Cross Site Request Forgery Vulnerability
4092| [47741] Multiple Microsoft Products DLL Loading Arbitrary Code Execution Vulnerability
4093| [47715] Tinyproxy 'conf.c' Integer Overflow Security Bypass Vulnerability
4094| [47709] WordPress '.phtml' Files Arbitrary File Upload Vulnerability
4095| [47701] SelectaPix 'uploadername' Parameter Cross Site Scripting Vulnerability
4096| [47689] WP-DBManager 'wp-config.php' Arbitrary File Download Vulnerability
4097| [47680] UDisks Kernel 'mount' Module Loading Security Vulnerability
4098| [47637] CMS Made Simple 'uploadview.php' Arbitrary File Upload Vulnerability
4099| [47636] ClanSphere Local File Include and Arbitrary File Upload Vulnerabilities
4100| [47624] libmodplug 'load_abc.cpp' Remote Stack Based Buffer Overflow Vulnerability
4101| [47591] Ariadne Multiple Arbitrary File Upload Vulnerabilities
4102| [47570] EasyPHP 'php5nsapi.dll' Loading Arbitrary Code Execution Vulnerability
4103| [47564] Xilisoft Video Converter Ultimate 'cmdProcess.dll' Loading Arbitrary Code Execution Vulnerability
4104| [47560] DynMedia Pro Web CMS 'downloadfile.php' Local File Disclosure Vulnerability
4105| [47508] PPLive TCP Port 9415 'tudouva.pac' Open Proxy Vulnerability
4106| [47487] Oracle Java System Access Manager Policy Agent CVE-2011-0846 Remote Web Proxy Agent Vulnerability
4107| [47406] SoftXMLCMS 'uploadfile1.asp' Arbitrary File Upload Vulnerability
4108| [47399] Joomla Component 'com_phocadownload' Local File Include Vulnerability
4109| [47379] cPassMan 'downloadfile.php' Arbitrary File Download Vulnerability
4110| [47358] Dotclear Media Manager Arbitrary File Upload Vulnerability
4111| [47349] EC Software Help & Manual 'ijl15.dll' DLL Loading Arbitrary Code Execution Vulnerability
4112| [47347] Open Text FirstClass Client 'FCP://' URI and DLL Loading Arbitrary Code Execution Vulnerabilities
4113| [47313] Joomla! Phoca Download Component Multiple SQL Injection Vulnerabilities
4114| [47309] eForum '/eforum.php' Arbitrary File Upload Vulnerability
4115| [47297] ManageEngine Applications Manager 'Upload.do' Arbitrary File Upload Vulnerability
4116| [47276] Tinyproxy ACL Security Bypass Vulnerability
4117| [47270] Simple Machines Forum Arbitrary File Upload Vulnerability
4118| [47259] WampServer 'index.php' Arbitrary File Download Vulnerability
4119| [47246] Microsoft Office Shared Component DLL Loading Arbitrary Code Execution Vulnerability
4120| [47199] Apache Tomcat HTTP BIO Connector Information Disclosure Vulnerability
4121| [47195] PHPBoost 'gallery.php' Arbitrary File Upload Vulnerability
4122| [47145] EasyPHP 'index.php' Arbitrary File Download Vulnerability
4123| [47101] Virtual DJ 'schannel.dll' DLL Loading Arbitrary Code Execution Vulnerability
4124| [47090] BigACE Multiple Arbitrary File Upload Vulnerabilities
4125| [47075] jHTTPd Directory Traversal Vulnerability
4126| [47069] Toon Boom Studio 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
4127| [47067] Ulead COOL 3D Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
4128| [47057] Alkacon OpenCms HTTPOnly Cookie Flag Information Disclosure Weakness
4129| [47056] Linux Kernel Generic Receive Offload (GRO) Local Denial of Service Vulnerability
4130| [47049] Feng Office Arbitrary File Upload and Cross Site Scripting Vulnerabilities
4131| [47031] Google Picasa Insecure Library Loading Arbitrary Code Execution Vulnerability
4132| [47011] Constructr CMS Arbitrary File Upload Vulnerability
4133| [47002] PHP-Nuke 'HTTP_REFERER' Header Cross Site Request Forgery Vulnerability
4134| [46979] Immunity Debugger HTTP Request Buffer Overflow Vulnerability
4135| [46974] Apache HttpComponents 'HttpClient' Information Disclosure Vulnerability
4136| [46956] Kleophatra 'users.php' Arbitrary File Upload Vulnerability
4137| [46955] Phpbuddies 'index.php' Arbitrary File Upload Vulnerability
4138| [46949] CMS Balitbang Multiple Arbitrary File Upload Vulnerabilities
4139| [46927] Douran Portal 'download.aspx' Arbitrary File Download Vulnerability
4140| [46915] CMS Lokomedia 'downlot.php' Arbitrary File Download Vulnerability
4141| [46907] Progea Movicon 'TCPUploadServer.exe' Security Bypass Vulnerability
4142| [46905] Sybase OneBridge Server and DMZ Proxy Format String Vulnerability
4143| [46891] TIBCO tibbr 'HTTP Request' Cross Site Scripting Vulnerability
4144| [46880] nostromo nhttpd Directory Traversal Remote Command Execution Vulnerability
4145| [46857] SAP GUI DLL Loading Arbitrary Code Execution Vulnerability
4146| [46827] Air Contacts Lite HTTP Packet Denial Of Service Vulnerability
4147| [46774] WS Interactive Automne 'admin/upload-controler.php' Remote Arbitrary File Upload Vulnerability
4148| [46760] PBlogEX Arbitrary File Upload and Authentication Bypass Vulnerabilities
4149| [46755] Hiawatha HTTP Header Processing Denial Of Service Vulnerability
4150| [46682] Microsoft DirectShow DLL Loading Arbitrary Code Execution Vulnerability
4151| [46678] Microsoft Remote Desktop Connection Client DLL Loading Arbitrary Code Execution Vulnerability
4152| [46541] Python CGIHTTPServer Module Information Disclosure Vulnerability
4153| [46538] Cisco Secure Desktop ActiveX Control (CVE-2011-0925) Arbitrary File Download Vulnerability
4154| [46536] Cisco Secure Desktop ActiveX Control Executable File Arbitrary File Download Vulnerability
4155| [46532] Bo-Blog SQL Injection and Arbitrary File Upload Vulnerabilities
4156| [46516] Multiple Cisco TelePresence Products Arbitrary File Upload Vulnerability
4157| [46499] ProQuiz 'functions.php' Arbitrary File Upload Vulnerability
4158| [46475] Joomla! JCE Component Arbitrary File Upload Vulnerability
4159| [46459] Icy Phoenix HTTP Referrer Header HTML Injection Vulnerability
4160| [46441] PHP-Nuke 'Downloads' Module SQL Injection Vulnerability
4161| [46430] WordPress User Photo 'user-photo.php' Arbitrary File Upload Vulnerability
4162| [46427] GetSimple CMS 'admin/upload-ajax.php' Remote Arbitrary File Upload Vulnerability
4163| [46423] Ruby on Rails 'WEBrick::HTTPRequest' Module HTTP Header Injection Vulnerability
4164| [46388] Oracle Java 'Applet2ClassLoader' Class Unsigned Applet Remote Code Execution Vulnerability
4165| [46374] A1 Website Download 'fwpuclnt.dll' DLL Loading Arbitrary Code Execution Vulnerability
4166| [46341] webERP 'InputSerialItemsFile.php' Arbitrary File Upload Vulnerability
4167| [46308] IDA Pro Mach-O loader Buffer Overflow Vulnerability
4168| [46286] WordPress Enable Media Replace Plugin SQL Injection and Arbitrary File Upload Vulnerabilities
4169| [46255] Adobe Acrobat and Reader CVE-2011-0570 DLL Loading Arbitrary Code Execution Vulnerability
4170| [46254] Adobe Acrobat and Reader CVE-2011-0588 DLL Loading Arbitrary Code Execution Vulnerability
4171| [46252] Adobe Acrobat and Reader CVE-2011-0562 DLL Loading Arbitrary Code Execution Vulnerability
4172| [46240] Media Player Classic 'iacenc.dll' DLL Loading Arbitrary Code Execution Vulnerability
4173| [46239] Cain & Abel 'dagc.dll' DLL Loading Arbitrary Code Execution Vulnerability
4174| [46197] Adobe Flash Player CVE-2011-0575 DLL Loading Arbitrary Code Execution Vulnerability
4175| [46176] JAKCMS 'User-Agent' HTTP Header HTML Injection Vulnerability
4176| [46159] Microsoft Internet Explorer DLL Loading Arbitrary Code Execution Vulnerability
4177| [46109] Xinha Multiple Remote Arbitrary File Upload Vulnerabilities
4178| [46058] SDP Downloader 'Content-Type' Header Remote Buffer Overflow Vulnerability
4179| [46054] Weborf 'get_param_value()' Function HTTP Header Handling Denial Of Service Vulnerability
4180| [46010] WordPress ImageManager Plugin 'manager.php' Arbitrary File Upload Vulnerability
4181| [46002] WordPress Recip.ly 'uploadImage.php' Arbitrary File Upload Vulnerability
4182| [45985] ActiveWeb Professional Arbitrary File Upload Vulnerability
4183| [45984] WordPress Uploader Plugin 'num' Parameter Cross Site Scripting Vulnerability
4184| [45964] Gallery Arbitrary File Upload Vulnerability
4185| [45945] Lunascape DLL Loading Arbitrary Code Execution Vulnerability
4186| [45939] DATEV Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
4187| [45933] PHPCMS 'flash_upload.php' SQL Injection Vulnerability
4188| [45916] MyProxy SSL Certificate Validation Security Bypass Vulnerability
4189| [45848] Oracle Fusion Middleware CVE-2010-4455 Remote Oracle HTTP Server Vulnerability
4190| [45799] LifeType HTTP 'Referer' Header Cross Site Scripting Vulnerability
4191| [45794] Contao 'X_FORWARDED_FOR' HTTP Header Arbitrary Script Injection Vulnerability
4192| [45792] HP LoadRunner 'magentproc.exe' Remote Code Execution Vulnerability
4193| [45782] Joomla! Easy File Uploader Module Arbitrary File Upload Vulnerability
4194| [45689] Quick Notes Plus Multiple DLL Loading Arbitrary Code Execution Vulnerability
4195| [45685] concrete5 'index.php' Arbitrary File Upload and HTML Injection Vulnerabilities
4196| [45675] Ace Video Workshop 'ir50_lcs.dll' DLL Loading Arbitrary Code Execution Vulnerability
4197| [45657] ImgBurn 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4198| [45651] Joomla! 'com_jotloader' Component 'section' Parameter Directory Traversal Vulnerability
4199| [45629] Linux Kernel 'load_mixer_volumes()' Multiple Vulnerabilities
4200| [45619] News Script PHP 'fckeditor' Arbitrary File Upload Vulnerability
4201| [45602] Mongoose 'Content-Length' HTTP Header Remote Denial Of Service Vulnerability
4202| [45599] httpdASM Directory Traversal Vulnerability
4203| [45584] SocialEngine Music Sharing Plugin Arbitrary File Upload Vulnerability
4204| [45573] HttpBlitz Server HTTP Request Remote Denial of Service Vulnerability
4205| [45550] Social Share 'vote.php' HTTP Response Splitting Vulnerability
4206| [45549] Ecava IntegraXor 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4207| [45525] S9Y Serendipity 'manager.php' Arbitrary File Upload Vulnerability
4208| [45494] MH Download Center Multiple SQL Injection Vulnerabilities
4209| [45492] Adobe Photoshop DLL Loading Arbitrary Code Execution Vulnerability
4210| [45483] CubeCart Arbitrary File Upload Vulnerability
4211| [45474] MHP Downloadshop 'view_item.php' SQL Injection Vulnerability
4212| [45471] AttacheCase DLL Loading Arbitrary Code Execution Vulnerability
4213| [45404] Microsoft Windows Remote Access Phonebook Executable Loading Arbitrary Code Execution Vulnerability
4214| [45354] Mozilla Firefox and SeaMonkey Firebug 'XMLHttpRequestSpy' Chrome Privilege Escalation Vulnerability
4215| [45313] JE Messenger 'compose.php' Arbitrary File Upload Vulnerability
4216| [45309] Allegro RomPager UPnP HTTP Request Remote Denial of Service Vulnerability.
4217| [45295] Microsoft Windows BranchCache DLL Loading Arbitrary Code Execution Vulnerability
4218| [45269] Microsoft Windows Kernel NDProxy Local Privilege Escalation Vulnerability
4219| [45265] WWWThreads 'reputation.php' HTTP Response Splitting Vulnerability
4220| [45251] Raven 'register.asp' Arbitrary File Upload Vulnerability
4221| [45248] Altova MapForce 2011 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4222| [45210] AWStats Unspecified 'LoadPlugin' Directory Traversal Vulnerability
4223| [45209] SOOP Portal 'assetman3.asp' Arbitrary File Upload Vulnerability
4224| [45207] Altova Diffdog 2011 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4225| [45205] Altova DatabaseSpy 2011 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4226| [45199] WebEx Meeting Manager WebexUCFObject ActiveX DLL Loading Arbitrary Code Execution Vulnerability
4227| [45198] Intel Threading Building Blocks 'tbbmalloc.dll' DLL Loading Arbitrary Code Execution Vulnerability
4228| [45196] Adobe Pixel Bender Toolkit 'd3d10.dll' DLL Loading Arbitrary Code Execution Vulnerability
4229| [45195] Adobe Device Central DLL Loading Arbitrary Code Execution Vulnerabilities
4230| [45191] WaveMax Sound Editor 'wnaspi32.dll' DLL Loading Arbitrary Code Execution Vulnerability
4231| [45171] Kindle for PC 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
4232| [45144] Perl CGI-Simple 'multipart/x-mixed-replace' MIME Boundary HTTP Response Splitting Vulnerability
4233| [45136] Digitalus CMS 'config.php' Arbitrary File Upload Vulnerability
4234| [45129] OsCSS 'categories.php' Arbitrary File Upload Vulnerability
4235| [45111] Duhok Forum Multiple Remote Arbitrary File Upload Vulnerabilities
4236| [45103] Orbis CMS 'fileman_file_upload.php' Arbitrary File Upload Vulnerability
4237| [45085] Lightweight Rich Text Editor Plugin for jQuery 'uploader.php' Arbitrary File Upload Vulnerability
4238| [45083] AOL Instant Messenger 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4239| [45082] Google Desktop 'schannel.dll' DLL Loading Arbitrary Code Execution Vulnerability
4240| [45080] McAfee VirusScan Enterprise 'traceapp.dll' DLL Loading Arbitrary Code Execution Vulnerability
4241| [45078] MemHT Portal User-Agent HTTP Header HTML Injection Vulnerability
4242| [45044] ImageMagick 'configure.c' Configuration File Loading Local Privilege Escalation Vulnerability
4243| [45017] Acidcat CMS Arbitrary File Upload Vulnerability
4244| [45013] JCMS 'downfile.jsp' Arbitrary File Download Vulnerabilities
4245| [44998] Free Simple Software 'download_id' SQL Injection Vulnerability
4246| [44995] osCommerce 'categories.php' Arbitrary File Upload Vulnerability
4247| [44989] Native Instruments Multiple Products DLL Loading Arbitrary Code Execution Vulnerability
4248| [44917] SystemTap 'Staprun' Module Unloading Local Denial of Service Vulnerability
4249| [44911] Sitefinity ASP.NET CMS Arbitrary File Upload Vulnerability
4250| [44892] Perl CGI.pm 'multipart/x-mixed-replace' MIME Boundary HTTP Response Splitting Vulnerability
4251| [44850] EasyJobPortal 'jobseeker_document.php' Arbitrary File Upload Vulnerability
4252| [44810] Mono 'loader.c' Library Loading Local Privilege Escalation Vulnerability
4253| [44728] FL Studio Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
4254| [44726] Silo 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
4255| [44717] Acoustica 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4256| [44708] WordPress DB Toolkit 'uploadify.php' Arbitrary File Upload Vulnerability
4257| [44671] Adobe Flash Player DLL Loading Arbitrary Code Execution Vulnerability
4258| [44629] NetSupport Manager Gateway HTTP Protocol Information disclosure vulnerability
4259| [44621] eLouai's Force Download Script 'force-download.php' Arbitrary File Download Vulnerability
4260| [44600] Sybase Advantage Data Architect DLL Loading Arbitrary Code Execution Vulnerability
4261| [44594] Douran Portal Arbitrary File Upload and Cross Site Scripting Vulnerabilities
4262| [44588] GVim DLL Loading Arbitrary Code Execution Vulnerability
4263| [44583] HP Insight Control Performance Management CVE-2010-4100 Arbitrary File Download Vulnerability
4264| [44572] ACDSee Canvas DLL Loading Arbitrary Code Execution Vulnerability
4265| [44566] IBM Tivoli Directory Server Proxy Server Use-After-Free Denial of Service Vulnerability
4266| [44559] Joomla! 'com_jfuploader' Arbitrary File Upload Vulnerability
4267| [44546] Webradev Download Protect 'GLOBALS[RootPath]' Parameter Multiple Remote File Include Vulnerabilities
4268| [44542] HP Insight Recovery Arbitrary File Download Vulnerability
4269| [44541] Microsoft Data Access Objects (DAO) 'dao360.dll' DLL Loading Arbitrary Code Execution Vulnerability
4270| [44540] Active! Mail HTTP Header Injection Vulnerability
4271| [44532] HP Insight Managed System Setup Wizard Arbitrary File Download Vulnerability
4272| [44526] eZoneScripts Hot or Not Script 'upload_banners.php' Arbitrary File Upload Vulnerability
4273| [44506] Weborf HTTP Request Denial Of Service Vulnerability
4274| [44487] HP LoadRunner Web Tours Unspecified Denial of Service Vulnerability
4275| [44480] Internet Download Manager 'Schannel.dll' DLL Loading Arbitrary Code Execution Vulnerability
4276| [44477] Orbit Downloader 'schannel.dll' DLL Loading Arbitrary Code Execution Vulnerability
4277| [44474] ACDSee Photo Manager DLL Loading Arbitrary Code Execution Vulnerability
4278| [44472] Nessus 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
4279| [44469] FlipAlbum Vista Pro 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4280| [44439] httpdx FTP Server Multiple Directory Traversal Vulnerabilities
4281| [44428] HP Virtual Server Environment Arbitrary File Download Vulnerability
4282| [44414] Microsoft Windows 'lpksetup.exe' 'oci.dll' DLL Loading Arbitrary Code Execution Vulnerability
4283| [44395] Festival Server 'LD_LIBRARY_PATH' Insecure Library Loading Arbitrary Code Execution Vulnerability
4284| [44394] AutoPlay Media Studio 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4285| [44391] Headlight Software GetRight 'SvcTagLib.dll' DLL Loading Arbitrary Code Execution Vulnerability
4286| [44389] Wondershare DVD Slideshow Builder 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4287| [44387] Wondershare Flash Gallery Factory 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4288| [44386] Photodex ProShow Producer Multiple DLL Loading Arbitrary Code Execution Vulnerability
4289| [44385] Blue Coat ProxyAV Multiple Cross Site Request Forgery Vulnerabilities
4290| [44328] Sleipnir Binary Loading Arbitrary Code Execution Vulnerability
4291| [44327] YokkaSoft Multiple Products Executable Loading Arbitrary Code Execution Vulnerability
4292| [44326] HP Virtual Connect Enterprise Manager Arbitrary File Download Vulnerability
4293| [44302] RealPage Module Upload ActiveX Control Multiple Vulnerabilities
4294| [44286] TeraPad 'atoklib.dll' DLL Loading Arbitrary Code Execution Vulnerability
4295| [44284] Apsaly Executable Loading Arbitrary Code Execution Vulnerability
4296| [44257] Explzh Executable Loading Arbitrary Code Execution Vulnerability
4297| [44250] Mozilla Firefox SeaMonkey and Thunderbird DLL Loading Arbitrary Code Execution Vulnerability
4298| [44244] Archive Decoder 'explorer.exe' Executable Loading Arbitrary Code Execution Vulnerability
4299| [44205] Cool iPhone Ringtone Maker 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4300| [44198] Phoenix Project Manager DLL Loading Arbitrary Code Execution Vulnerability
4301| [44194] Free 3GP Video Converter 'quserex.dll' DLL Loading Arbitrary Code Execution Vulnerability
4302| [44193] PowerDVD 'trigger.dll' DLL Loading Arbitrary Code Execution Vulnerability
4303| [44178] Sahar Money Manager 'unicows.dll' DLL Loading Arbitrary Code Execution Vulnerability
4304| [44177] Holoo Multiple DLL Loading Arbitrary Code Execution Vulnerability
4305| [44171] Accounting Pro 2003 Multiple DLL Loading Arbitrary Code Execution Vulnerability
4306| [44170] Xilisoft Video Converter Multiple DLL Loading Arbitrary Code Execution Vulnerability
4307| [44164] OpenConnect HTTP Status Code Remote Denial of Service Vulnerability
4308| [44163] 1CLICK DVD Converter Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
4309| [44162] PCDJ Karaoki 'saMon2.exe' Executable Loading Arbitrary Code Execution Vulnerability
4310| [44161] Audiotool Ease Jukebox 'wmaudsdk.dll' DLL Loading Arbitrary Code Execution Vulnerability
4311| [44157] Windows Server 2008 Color Control Panel DLL Loading Arbitrary Code Execution Vulnerability
4312| [44156] Blue Coat ProxySG Content Filtering Security Bypass Vulnerability
4313| [44141] httpdx dot Character Remote File Disclosure Vulnerability
4314| [44132] K2Editor DLL Loading Arbitrary Code Execution Vulnerability
4315| [44129] MEO Encryption Software 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4316| [44128] STDU Explorer 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4317| [44127] KCFinder Project Arbitrary File Upload Vulnerability
4318| [44125] XacRett 'explorer.exe' Executable Loading Arbitrary Code Execution Vulnerability
4319| [44121] The Uploader 'download_checker.php' Directory Traversal Vulnerability
4320| [44119] httpdx 'tolog' Function Multiple Remote Format String Vulnerabilities
4321| [44110] Resell Scripts Data/File Upload and Management Arbitrary File Upload Vulnerability
4322| [44106] Ardour 'LD_LIBRARY_PATH' Insecure Library Loading Arbitrary Code Execution Vulnerability
4323| [44098] HP Systems Insight Manager Arbitrary File Download Vulnerability
4324| [44086] curl 'Content-Disposition' HTTP Header Arbitrary File Overwrite Vulnerability
4325| [44054] Torrent DVD Creator 'quserex.dll' DLL Loading Arbitrary Code Execution Vulnerability
4326| [44052] Notepad++ 'libtidy.dll' DLL Loading Arbitrary Code Execution Vulnerability
4327| [44051] e2eSoft VCam DLL Loading Arbitrary Code Execution Vulnerability
4328| [44027] Oracle Java SE and Java for Business CVE-2010-3549 HTTP Response Splitting Vulnerability
4329| [43962] Oracle Fusion Middleware CVE-2010-2413 BI Publisher HTTP Response Splitting Vulnerability
4330| [43925] DiskPulse Server 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
4331| [43922] Lhasa 'explorer.exe' Executable Loading Arbitrary Code Execution Vulnerability
4332| [43921] Lhaplus '7-ZIP32.DLL' DLL Loading Arbitrary Code Execution Vulnerability
4333| [43914] Microsoft Visio 'mfc80esn.dll' DLL Loading Arbitrary Code Execution Vulnerability
4334| [43913] NetStumbler 'mfc71esn.dll' DLL Loading Arbitrary Code Execution Vulnerability
4335| [43912] IsoBuster 'wnaspi32.dll' DLL Loading Arbitrary Code Execution Vulnerability
4336| [43911] Adobe Dreamweaver CS4 'mfc80esn.dll' DLL Loading Arbitrary Code Execution Vulnerability
4337| [43878] Gravy Media Photo Host 'forcedownload.php' Local File Disclosure Vulnerability
4338| [43873] Joomla Community Builder Enhenced Local File Include and Arbitrary File Upload Vulnerabilities
4339| [43863] Dupehunter Professional 'Fwpuclnt.dll' DLL Loading Arbitrary Code Execution Vulnerability
4340| [43859] Feindura File Manager Arbitrary File Upload Vulnerability
4341| [43853] PC4arb pc4uploader 'file' Parameter Local File Disclosure Vulnerability
4342| [43830] Visual Synapse HTTP Server Directory Directory Traversal Vulnerability
4343| [43790] DeDeCMS 'uploads_edit.php' Arbitrary File Upload Vulnerability
4344| [43728] LFTP 'Content-Disposition' HTTP Header Arbitrary File Overwrite Vulnerability
4345| [43675] Blue Coat ProxySG Unspecified Cross Site Scripting Vulnerability
4346| [43672] Qt Creator Insecure Library Loading Arbitrary Code Execution Vulnerability
4347| [43635] Novell iManager 'getMultiPartParameters()' Arbitrary File Upload Vulnerability
4348| [43629] Joomla! JomSocial Component Arbitrary File Upload Vulnerability
4349| [43625] PHP AdminPanel 'download.php' Directory Traversal Vulnerability
4350| [43585] phpCAS Proxy Mode Multiple Security Vulnerabilities
4351| [43583] Traidnt UP 'upload.php' Information Disclosure Vulnerability
4352| [43567] Admin News Tools 'download.php' Remote File Download Vulnerability
4353| [43540] AtomatiCMS 'fckeditor' Multiple Arbitrary File Upload Vulnerabilities
4354| [43539] Nero DLL Loading Arbitrary Code Execution Vulnerability
4355| [43538] Digital Music Pad DLL Loading Arbitrary Code Execution Vulnerability
4356| [43534] Alien Arena 'download' Command Denial of Service Vulnerability
4357| [43533] Siemens SIMATIC Manager Step7 Project Folder DLL Loading Arbitrary Code Execution Vulnerability
4358| [43512] LINDO Systems LINGO Multiple Insecure Library Loading Arbitrary Code Execution Vulnerabilities
4359| [43509] TuneUp Utilities DLL Loading Arbitrary Code Execution Vulnerability
4360| [43506] VirIT eXplorer 'tg-scan.dll' DLL Loading Arbitrary Code Execution Vulnerability
4361| [43492] powerUpload Insecure Cookie Authentication Bypass Vulnerability
4362| [43489] Proxy List Script 'index.php' Cross Site Scripting Vulnerability
4363| [43468] Prof-UIS DLL Loading Arbitrary Code Execution Vulnerability
4364| [43467] Gromada Multimedia Conversion Library DLL Loading Arbitrary Code Execution Vulnerability
4365| [43454] FreePBX System Recordings Menu Arbitrary File Upload Vulnerability
4366| [43427] gmail-lite Arbitrary File Upload Vulnerability
4367| [43417] Sothink SWF Decompiler 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4368| [43416] Easy Office Recovery 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4369| [43414] GreenBrowser 'RSRC32.DLL' DLL Loading Arbitrary Code Execution Vulnerability
4370| [43390] Cisco IOS SSL VPN HTTP Redirect Memory Leak Remote Denial of Service Vulnerability
4371| [43387] Agrin All DVD Ripper 'wnaspi32.dll' DLL Loading Arbitrary Code Execution Vulnerability
4372| [43379] In-Portal Arbitrary File Upload Vulnerability
4373| [43365] PHPSugar PHP Melody 'upload_avatar.php' Arbitrary File Upload Vulnerability
4374| [43363] Qt 'QtCore.dll' DLL Loading Arbitrary Code Execution Vulnerability
4375| [43357] Personal.Net Portal Arbitrary File Upload and HTML Injection Vulnerabilities
4376| [43332] SWiSH Max3 DLL Loading Arbitrary Code Execution Vulnerability
4377| [43328] Fotobook Editor 'Fwpuclnt.dll' DLL Loading Arbitrary Code Execution Vulnerability
4378| [43325] OpenCart 'fckeditor' Arbitrary File Upload Vulnerability
4379| [43308] Ultrize TimeSheet 'downloadFile.php' Directory Traversal Vulnerability
4380| [43269] HP System Management Homepage Unspecified HTTP Response Splitting Vulnerability
4381| [43263] chillyCMS Arbitrary File Upload Vulnerability
4382| [43203] Joomla! Mosets Tree Component Arbitrary File Upload Vulnerability
4383| [43200] gDoc Fusion Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
4384| [43199] Nitro PDF Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
4385| [43198] E-PRESS ONE Multiple DLL Loading Arbitrary Code Execution Vulnerability
4386| [43196] ESTsoft ALShow Multiple DLL Loading Arbitrary Code Execution Vulnerability
4387| [43195] SoMud 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
4388| [43194] ESTsoft ALSee 'patchani.dll' DLL Loading Arbitrary Code Execution Vulnerability
4389| [43193] Luftguitar CMS 'ftb.imagegallery.aspx' Arbitrary File Upload Vulnerability
4390| [43192] ESTsoft ALZip Multiple DLL Loading Arbitrary Code Execution Vulnerability
4391| [43191] osDate 'uploadvideos.php' Arbitrary File Upload Vulnerability
4392| [43190] RETIRED: Apple Quicktime Player Multiple DLL Loading Arbitrary Code Execution Vulnerability
4393| [43189] Microsoft Visual C++ 2008 Redistributable Package DLL Loading Arbitrary Code Execution Vulnerability
4394| [43186] Adobe LiveCycle ES DLL Loading Arbitrary Code Execution Vulnerability
4395| [43185] Sorax Software Sorax Reader 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4396| [43184] Nuance PDF Reader 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4397| [43183] IDM Computer Solutions UltraEdit 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4398| [43181] Kingsoft Office 'plgpf.dll' DLL Loading Arbitrary Code Execution Vulnerability
4399| [43179] NCP Secure Entry Client DLL Loading Arbitrary Code Execution Vulnerabilities
4400| [43172] Celframe Office Suite DLL Loading Arbitrary Code Execution Vulnerability
4401| [43170] IBM Lotus Symphony 'eclipse_1114.dll' DLL Loading Arbitrary Code Execution Vulnerability
4402| [43141] AradBlog Security Bypass and Arbitrary File Upload Vulnerabilities
4403| [43139] BlackBerry Desktop Software DLL Loading Arbitrary Code Execution Vulnerability
4404| [43137] Intuit QuickBooks DLL Loading Arbitrary Code Execution Vulnerability
4405| [43133] RETIRED: ES Simple Download 'download.php' Local File Disclosure Vulnerability
4406| [43130] snom VoIP Phone Web Interface HTTP Request Authentication Bypass Vulnerability
4407| [43127] RETIRED: phplemon MyWeight 'user_photo.php' Arbitrary File Upload Vulnerability
4408| [43124] EnergyScripts ES Simple Download 'file' Parameter Local File Include Vulnerability
4409| [43123] Thomson SpeedTouch 585 'user.ini' Arbitrary File Download Vulnerability
4410| [43104] Multiple Mozilla Products 'XMLHttpRequest' Cross Domain Information Disclosure Vulnerability
4411| [43086] phplemon MyWeight 'user_photo.php' Arbitrary File Upload Vulnerability
4412| [43065] Cisco Wireless LAN Controller HTTP Packet Denial of Service Vulnerability
4413| [43043] Integard Home and Pro 'password' Parameter HTTP POST Request Remote Buffer Overflow Vulnerability
4414| [43018] DynPage 'dynpage_load.php' Local File Disclosure Vulnerability
4415| [43016] Weborf HTTP 'modURL()' Function Directory Traversal Vulnerability
4416| [42994] InterPhoto Image Gallery Arbitrary File Upload and HTML Injection Vulnerabilities
4417| [42982] Squid Proxy String Processing NULL Pointer Dereference Denial Of Service Vulnerability
4418| [42980] IfNuke Arbitrary File Upload and HTML Injection Vulnerabilities
4419| [42962] QxDM 'mfc71enu.dll' DLL Loading Arbitrary Code Execution Vulnerability
4420| [42961] IZArc '.ztv7z.dll' DLL Loading Arbitrary Code Execution Vulnerability
4421| [42960] jetAudio 'wnaspi32.dll' DLL Loading Arbitrary Code Execution Vulnerability
4422| [42958] PhotoImpact Pro 'bwsconst.dll' DLL Loading Arbitrary Code Execution Vulnerability
4423| [42955] L0phtCrack 'mfc90.dll' DLL Loading Arbitrary Code Execution Vulnerability
4424| [42935] Pixia 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
4425| [42931] Moovida Media Player 'libc.dll' and 'quserex.dll' DLL Loading Arbitrary Code Execution Vulnerability
4426| [42929] StivaSoft Ticket Support Script 'ticket.php' Remote File Upload Vulnerability
4427| [42928] Agoko CMS 'editpage-2.php' Multiple Arbitrary File Upload Vulnerabilities
4428| [42918] Toolbar Uninstaller Arbitrary File Download Vulnerability
4429| [42915] Artlantis Studio Multiple DLL Loading Arbitrary Code Execution Vulnerability
4430| [42913] BS Contact 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4431| [42912] HTTrack 'httrack-plugin.dll' DLL Loading Arbitrary Code Execution Vulnerability
4432| [42910] IBM Lotus Notes Multiple DLL Loading Arbitrary Code Execution Vulnerability
4433| [42905] GFI Backup 'ArmAccess.dll' DLL Loading Arbitrary Code Execution Vulnerability
4434| [42903] MPLAB IDE 'mfc71enu.dll' DLL Loading Arbitrary Code Execution Vulnerability
4435| [42899] Pthreads-win32 'quserex.dll' DLL Loading Arbitrary Code Execution Vulnerability
4436| [42893] KeePass 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4437| [42891] Techlogica HTTP Server Remote File Disclosure Vulnerability
4438| [42890] TortoiseSVN 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4439| [42889] Babylon 'besextension.dll' DLL Loading Arbitrary Code Execution Vulnerability
4440| [42886] httpdx 'h_readrequest()' Remote Format String Vulnerability
4441| [42884] Sophos Free Encryption 'pcrypt0406.dll' DLL Loading Arbitrary Code Execution Vulnerability
4442| [42871] WinImage 'wnaspi32.dll' DLL Loading Arbitrary Code Execution Vulnerability
4443| [42866] Kolibri+ HTTP GET Request Buffer Overflow Vulnerability
4444| [42861] Graffiti CMS Arbitrary File Upload Vulnerability
4445| [42858] PDF-XChange Viewer 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
4446| [42857] Virtual DJ 'hdjapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4447| [42856] PGP Desktop DLL Loading Arbitrary Code Execution Vulnerability
4448| [42855] Microsoft Windows Media Encoder 9 DLL Loading Arbitrary Code Execution Vulnerability
4449| [42854] IBM Rational License Key Administrator DLL Loading Arbitrary Code Execution Vulnerability
4450| [42853] Microsoft Remote Desktop Protocol 'ieframe.dll' DLL Loading Arbitrary Code Execution Vulnerability
4451| [42852] Guidance Software EnCase 'rsaenh.dll' DLL Loading Arbitrary Code Execution Vulnerability
4452| [42851] Adobe Captivate 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4453| [42850] Forensic Toolkit 'MFC90DEU.DLL' DLL Loading Arbitrary Code Execution Vulnerability
4454| [42849] Internet Download Manager 'idmmkb.dll' DLL Loading Arbitrary Code Execution Vulnerability
4455| [42848] CDisplay 'trace32.dll' DLL Loading Arbitrary Code Execution Vulnerability
4456| [42846] UltraVNC DLL Loading Arbitrary Code Execution Vulnerability
4457| [42832] Maxthon Browser 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4458| [42829] Notepad++ Multiple DLL Loading Arbitrary Code Execution Vulnerability
4459| [42828] QtWeb Browser 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
4460| [42818] RETIRED: Microsoft Windows Mail 'wab32res.dll' DLL Loading Arbitrary Code Execution Vulnerability
4461| [42816] NetStumbler 'mfc71enu.dll' DLL Loading Arbitrary Code Execution Vulnerability
4462| [42815] MAGIX Music Studio 12 Deluxe 'playripla6.dll' DLL Loading Arbitrary Code Execution Vulnerability
4463| [42814] Gretech GOM Player 'schannel.dll' DLL Loading Arbitrary Code Execution Vulnerability
4464| [42813] Adobe Audition (Cool Edit Pro) Multiple DLL Loading Arbitrary Code Execution Vulnerability
4465| [42812] Microsoft Windows Live Messenger 'msgsres.dll' DLL Loading Arbitrary Code Execution Vulnerability
4466| [42811] Microsoft ATL/MFC Trace Tool 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4467| [42810] Dassault Systemes CATIA 'hzs_lm.dll' DLL Loading Arbitrary Code Execution Vulnerability
4468| [42809] Microsoft Visio 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4469| [42808] TFTPD32 'IPHLPAPI.DLL' DLL Loading Arbitrary Code Execution Vulnerability
4470| [42807] Adobe Flash Player 'schannel.dll' DLL Loading Arbitrary Code Execution Vulnerability
4471| [42805] DivX Plus Player DLL Loading Arbitrary Code Execution Vulnerability
4472| [42804] SiSoftware Sandra 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4473| [42803] Steam 'steamgamesupport.dll' DLL Loading Arbitrary Code Execution Vulnerability
4474| [42802] SMPlayer 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
4475| [42800] Winmerge 'MFC71ESN.DLL' DLL Loading Arbitrary Code Execution Vulnerability
4476| [42799] Nokia PC Suite Applications 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
4477| [42797] UltraISO Premium 'daemon.dll' DLL Loading Arbitrary Code Execution Vulnerability
4478| [42796] Real Networks RealPlayer SP 'wnaspi32.dll' DLL Loading Arbitrary Code Execution Vulnerability
4479| [42794] Joomla! 'com_remository' Component Arbitrary File Upload Vulnerability
4480| [42788] RETIRED: Camtasia Studio DLL Loading Arbitrary Code Execution Vulnerability
4481| [42787] Sony Sound Forge Pro 'MtxParhVegasPreview.dll' DLL Loading Arbitrary Code Execution Vulnerability
4482| [42786] ArchiCAD 'srcsrv.dll' DLL Loading Arbitrary Code Execution Vulnerability
4483| [42777] Anantasoft Gazelle CMS 'frmupload.html' Arbitrary File Upload Vulnerability
4484| [42774] Apple QuickTime Pictureviewer Multiple DLL Loading Arbitrary Code Execution Vulnerability
4485| [42772] Nero 'bcgpoleacc.dll' DLL Loading Arbitrary Code Execution Vulnerability
4486| [42771] Real Networks RealPlayer SP 'rio500.dll' DLL Loading Arbitrary Code Execution Vulnerability
4487| [42770] PKZIP 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4488| [42769] Bentley Microstation Multiple DLL Loading Arbitrary Code Execution Vulnerability
4489| [42768] RETIRED: Mozilla SeaMonkey 'dwmapi.dll DLL Loading Arbitrary Code Execution Vulnerability
4490| [42765] Autodesk Design Review Multiple DLL Loading Arbitrary Code Execution Vulnerability
4491| [42763] Microsoft Windows Backup 'fveapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4492| [42762] Microsoft Windows Internet Communication Settings DLL Loading Arbitrary Code Execution Vulnerability
4493| [42760] Multiple CyberLink Products DLL Loading Arbitrary Code Execution Vulnerability
4494| [42759] Autodesk AutoCAD 'color.dll' DLL Loading Arbitrary Code Execution Vulnerability
4495| [42754] Camtasia Studio DLL Loading Arbitrary Code Execution Vulnerability
4496| [42753] Corel PHOTO-PAINT X3 'crlrib.dll' DLL Loading Arbitrary Code Execution Vulnerability
4497| [42752] DAEMON Tools Lite 'mfc80loc.dll' DLL Loading Arbitrary Code Execution Vulnerability
4498| [42751] Google Earth 'quserex.dll' DLL Loading Arbitrary Code Execution Vulnerability
4499| [42750] CorelDRAW X3 'crlrib.dll' DLL Loading Arbitrary Code Execution Vulnerability
4500| [42749] Adobe ExtendScript Toolkit CS5 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4501| [42747] Nullsoft Winamp 'wnaspi32.dll' DLL Loading Arbitrary Code Execution Vulnerability
4502| [42746] 010 Editor 'wintab32.dlll' DLL Loading Arbitrary Code Execution Vulnerability
4503| [42745] Adobe Extension Manager CS5 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4504| [42744] RETIRED: Mozilla Thunderbird 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4505| [42743] Roxio MyDVD 'HomeUtils9.dll' DLL Loading Arbitrary Code Execution Vulnerability
4506| [42742] Microsoft PowerPoint 2007 Multiple DLL Loading Arbitrary Code Execution Vulnerability
4507| [42738] NVIDIA nView 'nview.dll' DLL Loading Arbitrary Code Execution Vulnerability
4508| [42737] Bloodshed Dev-C++ Multiple EXE Loading Arbitrary Code Execution Vulnerability
4509| [42736] Wing FTP Server HTTP Request Denial Of Service Vulnerability
4510| [42735] Skype 'wab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
4511| [42732] phpBugTracker SQL Injection and Arbitrary File Upload Vulnerabilities
4512| [42731] Microsoft Windows Contacts 'wab32res.dll' DLL Loading Arbitrary Code Execution Vulnerability
4513| [42730] Microsoft Windows Indeo Filter 'iacenc.dll' DLL Loading Arbitrary Code Execution Vulnerability
4514| [42729] TechSmith Snagit 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4515| [42726] Cisco Packet Tracer 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
4516| [42721] Adobe Premier Pro 'ibfs32.dll' DLL Loading Arbitrary Code Execution Vulnerability
4517| [42719] Adobe OnLocation 'ibfs32.dll' DLL Loading Arbitrary Code Execution Vulnerability
4518| [42718] Adobe InDesign 'ibfs32.dll' DLL Loading Arbitrary Code Execution Vulnerability
4519| [42716] InterVideo WinDVD 'cpqdvd.dll' DLL Loading Arbitrary Code Execution Vulnerability
4520| [42715] Adobe Illustrator 'aires.dll' DLL Loading Arbitrary Code Execution Vulnerability
4521| [42714] Apple Safari 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4522| [42713] Microsoft Internet Connection Wizard DLL Loading Arbitrary Code Execution Vulnerability
4523| [42712] Roxio Creator DE 'homeutils9.dll' DLL Loading Arbitrary Code Execution Vulnerability
4524| [42709] Microsoft Windows BitLocker Drive Encryption DLL Loading Arbitrary Code Execution Vulnerability
4525| [42708] Roxio Photosuite 'homeutils9.dll' DLL Loading Arbitrary Code Execution Vulnerability
4526| [42707] VLC Media Player 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
4527| [42706] Adobe Device Central CS5 'qtcf.dll' DLL Loading Arbitrary Code Execution Vulnerability
4528| [42705] Microsoft Windows Program Group Converter DLL Loading Arbitrary Code Execution Vulnerability
4529| [42704] ARC Logics TeamMate 'mfc71enu.dll' DLL Loading Arbitrary Code Execution Vulnerability
4530| [42697] Acunetix Web Vulnerability Scanner DLL Loading Arbitrary Code Execution Vulnerability
4531| [42695] Microsoft Groove 2007 'mso.dll' DLL Loading Arbitrary Code Execution Vulnerability
4532| [42694] Adobe Dreamweaver CS5 'mfc90loc.dll' DLL Loading Arbitrary Code Execution Vulnerability
4533| [42693] Adobe Photoshop 'Wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
4534| [42691] Avast! Antivirus 'mfc90loc.dll' DLL Loading Arbitrary Code Execution Vulnerability
4535| [42690] Adobe Dreamweaver CS4 'ibfs32.dll' DLL Loading Arbitrary Code Execution Vulnerability
4536| [42688] BS.Player 'mfc71loc.dll' DLL Loading Arbitrary Code Execution Vulnerability
4537| [42687] TeamViewer 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4538| [42686] Adobe Photoshop 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4539| [42681] Microsoft Visio 2003 'mfc71enu.dll' DLL Loading Arbitrary Code Execution Vulnerability
4540| [42663] Opera 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4541| [42659] Microsoft Windows Movie Maker 'hhctrl.ocx' DLL Loading Arbitrary Code Execution Vulnerability
4542| [42654] Mozilla Firefox/Thunderbird/SeaMonkey dwmapi.dll DLL Loading Arbitrary Code Execution Vulnerability
4543| [42648] Microsoft Windows Address Book 'wab32res.dll' DLL Loading Arbitrary Code Execution Vulnerability
4544| [42634] Microsoft Windows Live Email 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
4545| [42632] uTorrent Multiple DLL Loading Arbitrary Code Execution Vulnerability
4546| [42630] Wireshark 'airpcap.dll' DLL Loading Arbitrary Code Execution Vulnerability
4547| [42628] Microsoft Office 'pptimpconv.dll' DLL Loading Arbitrary Code Execution Vulnerability
4548| [42625] Oracle MySQL 'LOAD DATA INFILE' Denial Of Service Vulnerability
4549| [42555] QuickDev 4 Php 'download.php' Directory Traversal Vulnerability
4550| [42554] InterPhoto Image Gallery Directory Traversal and Arbitrary File Upload Vulnerabilities
4551| [42541] Apple iTunes DLL Loading Arbitrary Code Execution Vulnerability
4552| [42531] Blue Coat ProxySG Read-Only-Administrator Security Bypass Vulnerability
4553| [42521] KesionCMS Arbitrary File Upload Vulnerability
4554| [42514] PHPCMS2008 'download.php' Information Disclosure Vulnerability
4555| [42495] Uploaderr 'upload.php' Arbitrary File Upload Vulnerability
4556| [42490] Blue Coat ProxySG Privilege Enforcement Remote Security Bypass Vulnerability
4557| [42468] KnowledgeTree 'KTUploadManager.inc.php' Security Bypass Vulnerability
4558| [42465] CMSQLite 'admin/mediaAdmin.php' Arbitrary File Upload Vulnerability
4559| [42378] Cisco ACE 4710 HTTP, RTSP, and SIP Inspection Denial of Service Vulnerability
4560| [42337] RADactive I-Load Multiple Security Vulnerabilities
4561| [42300] Microsoft XML Core Service Msxml2.XMLHTTP.3.0 Response Handling Memory Corruption Vulnerability
4562| [42181] httpdx 'h_handlepeer()' Remote Buffer Overflow Vulnerability
4563| [42160] phpCAS CAS Proxy Mode Cross-Site Scripting Vulnerability
4564| [42153] D-Link WBR-2310 Web Server HTTP GET Request Remote Buffer Overflow Vulnerability
4565| [42104] Akamai Download Manager Arbitrary File Download Vulnerability
4566| [42090] NAS Uploader 'upload_multiple_js.php' Remote File Upload Vulnerability
4567| [42078] Lanai Core 'download.php' Directory Traversal Vulnerability
4568| [42055] WM Downloader '.m3u' File Buffer Overflow Vulnerability
4569| [42021] bozohttpd Security Bypass Vulnerability
4570| [41963] Apache HTTP Server Multiple Remote Denial of Service Vulnerabilities
4571| [41956] OrzHTTPd Remote Format String Vulnerability
4572| [41910] ZEEWAYS ZeeMatri 'uploadsnaps.php' Arbitrary File Upload Vulnerability
4573| [41909] LILDBI 'uploader.php' Remote File Upload Vulnerability
4574| [41908] ZEEWAYS ZeeNetworking 'member_photo.php' Arbitrary File Upload Vulnerability
4575| [41886] EllisLab CodeIgniter 'Upload.php' Arbitrary File Upload Vulnerability
4576| [41844] MultipleFileUpload Arbitrary File Upload Vulnerability
4577| [41838] RapidLeech Arbitrary File Upload Vulnerability
4578| [41820] Uploaderr Arbitrary File Upload Vulnerability
4579| [41795] Novell Teaming 'ajaxUploadImageFile' Remote Code Execution Vulnerability
4580| [41783] BOLDfx eUploader 'admin.php' Multiple Remote Vulnerabilities
4581| [41707] Novell GroupWise WebAccess Proxy Feature Stack Buffer Overflow Vulnerability
4582| [41706] Novell GroupWise Agents HTTP Interfaces Multiple Cross Site Scripting Vulnerabilities
4583| [41705] Novell GroupWise Agents HTTP Interface HTTP Header Injection Vulnerability
4584| [41688] RETIRED: Uploadscript Remote File Upload and Information Disclosure Vulnerabilities
4585| [41671] F5 FirePass Pre-logon Pages Cross Site Scripting Vulnerability
4586| [41670] Element-IT Software Ultimate Uploader Arbitrary File Upload Vulnerability
4587| [41665] F5 FirePass Pre-Login Token Security Bypass Vulnerability
4588| [41618] Oracle Sun Java System Web Proxy Server CVE-2010-2385 Administration Server Remote Vulnerability
4589| [41569] CMS Made Simple Antz Toolkit Module Arbitrary File Upload Vulnerability
4590| [41564] CMS Made Simple Download Manager Module Arbitrary File Upload Vulnerability
4591| [41535] Joomla! 'com_mysms' Component Arbitrary File Upload Vulnerability
4592| [41528] The Uploader Remote File Upload Vulnerability
4593| [41492] Multiple Inout Applications Multiple Arbitrary File Upload Vulnerabilities
4594| [41489] PG Social Networking 'myprofile.php' Arbitrary File Upload Vulnerability
4595| [41473] Podcast Generator 'download.php' Directory Traversal Vulnerability
4596| [41452] MySimpleFileUploader Remote File Upload Vulnerability
4597| [41445] GiantIsland VideoIsland Remote File Upload Vulnerability
4598| [41441] PHP Uploader Downloader 'updown.php' Cross Site Scripting Vulnerability
4599| [41440] phpFK - PHP Forum Script ohne MySQL 'upload.php' Arbitrary File Upload Vulnerability
4600| [41418] kandalf upper 'upper.php' Arbitrary File Upload Vulnerability
4601| [41396] SocialABC NetworX Arbitrary File Upload and Cross Site Scripting Vulnerabilities
4602| [41351] Joomla! Front-End Article Manager System Component Arbitrary File Upload Vulnerability
4603| [41331] Dren's PHP Uploader 'index.php' Remote File Upload Vulnerability
4604| [41328] iScripts SocialWare 'photos.php' Arbitrary File Upload Vulnerability
4605| [41309] Wiki Web Help 'uploadimage.php' Arbitrary File Upload Vulnerability
4606| [41262] EA Battlefield 2 and Battlefield 2142 Multiple Arbitrary File Upload Vulnerabilities
4607| [41258] Joomla! CKForms Component SQL Injection and Arbitrary File Upload Vulnerabilities
4608| [41201] IDA Pro QNX File Loader Denial of Service Vulnerability
4609| [41180] RM Downloader '.m3u' File Buffer Overflow Vulnerability
4610| [41179] Speedy Arbitrary File Upload Vulnerability
4611| [41176] Bilder Upload Script Arbitrary File Upload Vulnerability
4612| [41160] Python Paste 'paste.httpexceptions' Multiple Cross Site Scripting Vulnerabilities
4613| [41159] Cisco Adaptive Security Response HTTP Response Splitting Vulnerability
4614| [41145] WM Downloader '.m3u' File Remote Stack Buffer Overflow Vulnerability
4615| [41133] Big Forum Local File Include and Arbitrary File Upload Vulnerabilities
4616| [41132] Cimy Counter for WordPress HTTP Response Splitting and Cross Site Scripting Vulnerabilities
4617| [41104] Multiple Image Upload Module For Drupal Security Bypass Vulnerability
4618| [41103] Mozilla Firefox/SeaMonkey Attachment With Content-Disposition HTTP Header Bypass Vulnerability
4619| [41081] IBM WebSphere Application Server 'mod_ibm_ssl' HTTP Request Remote Denial Of Service Vulnerability
4620| [41064] Weborf HTTP Header Processing Denial Of Service Vulnerability
4621| [41020] The Uploader 'download_launch.php' Directory Traversal Vulnerability
4622| [40994] Belitsoft E-portfolio Joomla! Component Arbitrary File Upload Vulnerability
4623| [40971] MarketSaz 'fckeditor' Arbitrary File Upload Vulnerability
4624| [40965] H264 WebCam HTTP Server Buffer Overflow Vulnerability
4625| [40954] Spring Framework 'class.classLoader' Code Injection Vulnerability
4626| [40950] Atlassian JIRA HTTPOnly Cookie Flag Information Disclosure Weakness
4627| [40931] Novell Access Manager Administration Console 'getEntry()' Arbitrary File Upload Vulnerability
4628| [40930] Splunk HTTP 'Referer' Header Cross Site Scripting Vulnerability
4629| [40921] Omid Samadbin Software Index Image Upload Remote Arbitrary File Upload Vulnerability
4630| [40857] QuickOffice Malformed HTTP Request Remote Denial Of Service Vulnerability
4631| [40834] Yamamah Photo Gallery 'download.php' Local File Disclosure Vulnerability
4632| [40752] WebKit HTTP URI Clipboard Information Disclosure Vulnerability
4633| [40750] WebKit HTTPS Redirect Information Disclosure Vulnerability
4634| [40732] WebKit HTTP Redirects Information Disclosure Vulnerability
4635| [40712] Bits Video Script Multiple Arbitrary File Upload Vulnerabilities
4636| [40700] BTS-GI Read Excel 'upload.php' Arbitrary File Upload Vulnerability
4637| [40640] Cobra Scripts Greeting Cards Remote Arbitrary File Upload Vulnerability
4638| [40611] Symantec Workspace Streaming Server Authentication Arbitrary File Download Vulnerability
4639| [40607] Ronnie Garcia uploadify Plugin for jQuery Remote File Upload Vulnerability
4640| [40575] Weborf HTTP Ranger Header Denial Of Service Vulnerability
4641| [40555] osCSS Remote File Upload Vulnerability
4642| [40511] TCExam 'admin/code/tce_functions_tcecode_editor.php' Arbitrary File Upload Vulnerability
4643| [40496] Kodak Gallery Easy Upload Manager ActiveX Control Unspecified Security Vulnerability
4644| [40489] EvoCam HTTP GET Request Buffer Overflow Vulnerability
4645| [40465] Websense 'Via' HTTP Header Web Filtering Security Bypass Vulnerability
4646| [40463] x10media Image Hosting Script 'create_image_gallery.php' Arbitrary File Upload Vulnerability
4647| [40456] osCommerce Online Merchant 'file_manager.php' Remote Arbitrary File Upload Vulnerability
4648| [40382] Cisco Network Building Mediator HTTP Communication Remote Information Disclosure Vulnerability
4649| [40358] TinyBrowser Remote File Upload Vulnerability
4650| [40353] Webby HTTP GET Request Buffer Overflow Vulnerability
4651| [40345] Simple:Press Plugin for WordPress Security Bypass and Arbitrary File Upload Vulnerabilities
4652| [40344] Ziproxy Image Parsing Multiple Integer Overflow Vulnerabilities
4653| [40341] DotNetNuke Remote Arbitrary File Upload Vulnerability
4654| [40295] Spaw Editor 'spawfm' Module Arbitrary File Upload Vulnerability
4655| [40275] Drupal download_count Module Cross Site Scripting Vulnerability
4656| [40254] Battle Scrypt 'upload.php' Remote Arbitrary File Upload Vulnerability
4657| [40245] Orbit Downloader Metalink File Directory Traversal Vulnerability
4658| [40227] NPDS Revolution 'download.php' Cross Site Scripting Vulnerability
4659| [40198] SimpleDownload Joomla! Component 'fileid' Parameter Information Disclosure Vulnerability
4660| [40192] SimpleDownload Joomla! Component 'controller' Parameter Local File Include Vulnerability
4661| [40162] SphereCMS 'downloads.php' SQL Injection Vulnerability
4662| [40159] PHP File Uploader Remote File Upload Vulnerability
4663| [40156] NPDS Revolution 'download.php' SQL Injection Vulnerability
4664| [40152] Free Download Manager Metalink File Directory Traversal Vulnerability
4665| [40146] Free Download Manager Multiple Remote Buffer Overflow Vulnerabilities
4666| [40132] Zervit HTTP Server Source Code Information Disclosure Vulnerability
4667| [40068] HP OpenView Network Node Manager (CVE-2010-1552) 'doLoad()' Remote Buffer Overflow Vulnerability
4668| [40062] gdomap Arbitrary Configuration File Line Count 'load_iface()' Integer Overflow Vulnerability
4669| [40033] Xinha Dynamic Configuration Arbitrary File Upload Vulnerability
4670| [40026] Joomla! 'com_articleman' Component Arbitrary File Upload Vulnerability
4671| [40025] Geo++ GNCASTER HTTP Digest Authentication Information Disclosure Vulnerability
4672| [40022] Geo++ GNCASTER HTTP Digest Authentication Nonce Regeneration Replay Security Bypass Vulnerability
4673| [40018] Geo++ GNCASTER HTTP Digest Authentication Bypass Vulnerability
4674| [40012] Basml Okul Scripti 'banneryukle.asp' Remote File Upload Vulnerability
4675| [40009] Geo++ GNCASTER HTTP GET Request Denial Of Service Vulnerability
4676| [40002] Cisco Application Control Engine (ACE) HTTP Parsing Security Weakness
4677| [39967] Multiple Lexmark Laser Printers HTTP 'Authorization' Header Remote Denial of Service Vulnerability
4678| [39965] HP LoadRunner Agent 'magnetproc.exe' Remote Code Execution Vulnerability
4679| [39957] GetSimple CMS 'download.php' Local File Include Vulnerability
4680| [39945] Limny Avatar Arbitrary File Upload Vulnerability
4681| [39888] CH-CMS.ch Multiple Arbitrary File Upload Vulnerabilities
4682| [39877] PHP 'php_dechunk()' HTTP Chunked Encoding Integer Overflow Vulnerability
4683| [39874] OpenTTD Map Download File Descriptor Consumption Remote Denial of Service Vulnerability
4684| [39870] CF Image Hosting Script 'upload.php' Arbitrary File Upload Vulnerability
4685| [39863] Woltlab Burning Board Arbitrary File Upload Vulnerability
4686| [39858] Joomla! DJ-Classifieds Component Arbitrary File Upload Vulnerability
4687| [39822] Internet Download Manager FTP Buffer Overflow Vulnerability
4688| [39809] Google Chrome prior to 4.1.249.1059 HTTP Request Unspecified Security Vulnerability
4689| [39793] TaskFreak! Tirzen Framework 'LoadByKey()' SQL Injection Vulnerability
4690| [39787] iScripts SocialWare Arbitrary File Upload and Cross Site Scripting Vulnerabilities
4691| [39781] WM Downloader '.asx' File Remote Stack Buffer Overflow Vulnerability
4692| [39764] Portaneo Open Source Homepage 'fckeditor' Arbitrary File Upload Vulnerability
4693| [39761] Zyke CMS 'admin/controlpanel.php' Arbitrary File Upload Vulnerability
4694| [39757] OneHTTPD Directory Traversal Vulnerability
4695| [39754] Joomla! JE Section/Property Finder Component Arbitrary File Upload Vulnerability
4696| [39753] Custom CMS Gaming Arbitrary File Upload and Cross Site Scripting Vulnerabilities
4697| [39748] WM Downloader '.pls' File Remote Stack Buffer Overflow Vulnerability
4698| [39744] Wing FTP Server HTTP Request Directory Traversal Vulnerability
4699| [39726] Webessence CMS SQL Injection and Arbitrary File Upload Vulnerabilities
4700| [39714] Auto-Img-Gallery 'upload.cgi' Multiple Cross-Site Scripting Vulnerabilities
4701| [39713] PostNuke modload Module 'sid' Parameter SQL Injection Vulnerability
4702| [39706] iNetScripts Arbitrary File Upload Vulnerability
4703| [39686] PHPegasus 'connectors/php/config.php' Remote File Upload Vulnerability
4704| [39674] Satellite-X 'admin/index.php' Arbitrary File Upload Vulnerability
4705| [39669] Google Chrome 'chrome://downloads' Cross Domain Scripting Vulnerability
4706| [39652] In-Portal 'config.php' Arbitrary File Upload Vulnerability
4707| [39638] Tembria Server Monitor HTTP Request Remote Buffer Overflow Vulnerability
4708| [39618] v2marketplacescript Arbitrary File Upload Vulnerability
4709| [39615] Adobe Download Manager 'gp.ocx' ActiveX Control Buffer Overflow Vulnerability
4710| [39596] Momche YUI Image Upload Script Arbitrary File Upload Vulnerability
4711| [39595] Uploader 0.7 Arbitrary File Upload Vulnerability
4712| [39590] HTTP 1.1 GET Request Directory Traversal Vulnerability
4713| [39568] Flex File Manager Arbitrary File Upload Vulnerability
4714| [39544] HTTP File Server Security Bypass and Denial of Service Vulnerabilities
4715| [39540] e107 Avatar/Photograph Arbitrary File Upload Vulnerability
4716| [39530] Ziggurat Farsi CMS Arbitrary File Upload Vulnerability
4717| [39478] Cisco Secure Desktop ActiveX Control Executable File Arbitrary File Download Vulnerability
4718| [39415] Vana CMS 'filename' Parameter Remote File Download Vulnerability
4719| [39365] Uiga Proxy 'template.php' Remote File Include Vulnerability
4720| [39362] MassMirror Uploader 'MM_ROOT_DIRECTORY' Parameter Multiple Remote File Include Vulnerabilities
4721| [39355] TYPO3 'autoloader' Remote File Include Vulnerability
4722| [39317] Pulse CMS Arbitrary File Upload Vulnerability
4723| [39296] velhost uploader script 'language' Parameter Local File Include Vulnerability
4724| [39294] vel File Uploader Remote File Upload Vulnerability
4725| [39289] Apple Mac OS X Wiki Server File Upload Security Bypass Vulnerability
4726| [39224] LionWiki Remote File Upload Vulnerability
4727| [39218] Free Image Hosting and Free File Hosting Remote File Upload Vulnerability
4728| [39182] uTorrent WebUI HTTP 'Authorization' Header Remote Denial of Service Vulnerability
4729| [39179] Musicbox 'up.php' Arbitrary File Upload Vulnerability
4730| [39124] Mozilla Firefox And SeaMonkey 'XMLHttpRequestSpy' Arbitrary Code Execution Vulnerability
4731| [39099] Snipe Gallery Arbitrary File Upload Vulnerability
4732| [39007] RETIRED: Simple Machines Forum Avatar Upload Arbitrary File Upload Vulnerability
4733| [38986] uHTTP Server GET Request Directory Traversal Vulnerability
4734| [38960] Interchange HTTP Response Splitting Vulnerability
4735| [38927] Mozilla Firefox Image Preloading Content-Policy Check Security Bypass Vulnerability
4736| [38920] Mozilla Firefox Asynchronous HTTP Authorization Prompt Information Disclosure Vulnerability
4737| [38875] Remote Help HTTP GET Request Format String Denial Of Service Vulnerability
4738| [38873] Wazzum Dating Software Arbitrary File Upload Vulnerabilities
4739| [38826] PHP-Nuke Downloads Module 'lid' Parameter SQL Injection Vulnerability
4740| [38744] Subdreamer CMS Image Gallery Remote File Upload Vulnerability
4741| [38741] Joomla! RokDownloads Component 'controller' Parameter Local File Include Vulnerability
4742| [38718] httpdx Multiple Remote Denial Of Service Vulnerabilities
4743| [38705] eZoneScripts Game Room Script Admin Upload Remote File Upload Vulnerability
4744| [38700] dl Download Ticket Service 'index.php' Cross Site Scripting Vulnerability
4745| [38670] lukeonweb.net MRW PHP Upload 'upload.html' Remote File Upload Vulnerability
4746| [38638] httpdx PNG File Handling Remote Denial of Service Vulnerability
4747| [38614] Php Toys Micro Upload 'microUpload.php' Remote File Upload Vulnerability
4748| [38610] wh-em.com upload Insecure Cookie Authentication Bypass Vulnerability
4749| [38600] TopDownloads MP3 Player '.mp3' File Remote Buffer Overflow Vulnerability
4750| [38527] DosyaYukle Scripti Remote File Upload Vulnerability
4751| [38491] Apache mod_proxy_ajp Module Incoming Request Body Denial Of Service Vulnerability
4752| [38488] RCA Digital Cable Modem DCM425 'micro_httpd' Remote Denial Of Service Vulnerability
4753| [38467] Linux Kernel KVM Segment Selector Loading Local Privilege Escalation Vulnerability
4754| [38450] SLAED CMS Remote File Upload Vulnerability
4755| [38443] Nemo Multiple File Attachments Mail Form 'upload.php' Arbitrary File Upload Vulnerability
4756| [38416] JSK Internet WebAdministrator 'download.php' SQL Injection Vulnerability
4757| [38406] PBoard 'upload/index.php' Remote File Upload Vulnerability
4758| [38400] PHP F1 Max's Photo Album 'admin.php' Arbitrary File Upload Vulnerability
4759| [38393] Linux Kernel TSB I-TLB Load Local Privilege Escalation Vulnerability
4760| [38370] WorkSimple 'uploader.php' Remote File Upload Vulnerability
4761| [38313] NOS getPlus Downloader Domain Validation Arbitrary File Download Vulnerability
4762| [38308] PortWise SSL VPN 'reloadFrame' Parameter Cross Site Scripting Vulnerability
4763| [38292] Drupal iTweak Upload Module HTML Injection Vulnerability
4764| [38242] httpdx 'MKD' Command Directory Traversal Vulnerability
4765| [38222] Symantec Client Proxy ActiveX Control Buffer Overflow Vulnerability
4766| [38212] Squid Web Proxy Cache HTCP Request Processing Remote Denial of Service Vulnerability
4767| [38173] Coppermine Photo Gallery 'upload.php' Cross Site Scripting Vulnerability
4768| [38169] Cisco IronPort Encryption Appliance HTTPS Server Unspecified Remote Code Execution Vulnerability
4769| [38143] JDownloader 'JDExternInterface.java' Remote Code Execution Vulnerability
4770| [38135] httpdx 'USER' Command Remote Format String Vulnerability
4771| [38128] odlican.net CMS 'upload.php' Arbitrary File Upload Vulnerability
4772| [38036] lighttpd Slow Request Handling Remote Denial Of Service Vulnerability
4773| [38021] C++ Sockets Library HTTP Headers Remote Denial Of Service Vulnerability
4774| [38008] Maian Greetings Arbitrary File Upload Vulnerability
4775| [37995] Sun Java System Application Server HTTP TRACE Information Disclosure Vulnerability
4776| [37940] boastMachine Arbitrary File Upload Vulnerability
4777| [37908] Windows Live Messenger ActiveX Control 'RichUploadControlContextData' Buffer Overflow Vulnerability
4778| [37902] cPanel and WHM 'failurl' Parameter HTTP Response Splitting Vulnerability
4779| [37860] XOOPS Arbitrary File Deletion and HTTP Header Injection Vulnerabilities
4780| [37840] Joomla! 'com_uploader' Component Arbitrary File Upload Vulnerability
4781| [37772] TYPO3 SB Folderdownload Unspecified Information Disclosure Vulnerability
4782| [37767] NetBSD VFS Filesystem Autoloading Local Denial of Service Vulnerability
4783| [37761] Adobe Reader and Acrobat DLL Loading in 3D Remote Code Execution Vulnerability
4784| [37714] Acme thttpd and mini_httpd Terminal Escape Sequence in Logs Command Injection Vulnerability
4785| [37699] Sun Java System Directory Server 'core_get_proxyauth_dn' Denial of Service Vulnerability
4786| [37648] Sun Java System Web Server HTTP 'TRACE' Heap Buffer Overflow Vulnerability
4787| [37604] Joomla! 'com_cartikads' Component Arbitrary File Upload Vulnerability
4788| [37586] httpdx Space Character Remote File Disclosure Vulnerability
4789| [37549] phpYellow Arbitrary File Upload Vulnerability
4790| [37548] Run Digital Download Component for Joomla! Unspecified Unauthorized Access Vulnerability
4791| [37538] Joomla! 'com_rd_download' Component Directory Traversal Vulnerability
4792| [37533] Avatar Studio PHP-Fusion Module Local File Include and Arbitrary File Upload Vulnerabilities
4793| [37530] I-RATER Basic 'poza.php' Arbitrary File Upload Vulnerability
4794| [37512] Barbo91 'upload.php' Cross Site Scripting Vulnerability
4795| [37496] Memory Book Component for Joomla! SQL Injection and Arbitrary File Upload Vulnerabilities
4796| [37465] Kolab Groupware Server Image Upload Form Unspecified Vulnerability
4797| [37454] CoreHTTP CGI Support Remote Command Execution Vulnerability
4798| [37452] F5 BIG-IP ASM and PSM Remote Buffer Overflow Vulnerability
4799| [37446] ClarkConnect Linux 'proxy.php' Cross Site Scripting Vulnerability
4800| [37436] PHPPhotoalbum 'upload.php' Arbitrary File Upload Vulnerability
4801| [37424] Simplicity oF Upload 'upload.php' Arbitrary File Upload Vulnerability
4802| [37406] Celerondude Uploader 'index.php' Arbitrary File Upload Vulnerability
4803| [37382] IDevSpot PhpLinkExchange 'add_images.php' Arbitrary File Upload Vulnerability
4804| [37377] OSSIM 'repository_attachment.php' Arbitrary File Upload Vulnerability
4805| [37326] Google Chrome DNS Pre-Fetching Proxy Cache Information Disclosure Vulnerability
4806| [37320] DigitalHive 'base.php' Arbitrary File Upload Vulnerability
4807| [37314] Open Flash Chart 'ofc_upload_image.php' Remote PHP Code Execution Vulnerability
4808| [37307] Monkey HTTP Daemon Invalid HTTP 'Connection' Header Denial Of Service Vulnerability
4809| [37237] Corehttp 'src/http.c ' Buffer Overflow Vulnerability
4810| [37226] Polipo Malformed HTTP GET Request Memory Corruption Vulnerability
4811| [37224] LightNEasy fckeditor Arbitrary File Upload Vulnerability
4812| [37219] Achievo Document Types Section Arbitrary File Upload Vulnerability
4813| [37187] Photobox Uploader ActiveX Control URL Parsing Stack Buffer Overflow Vulnerability
4814| [37168] TYPO3 Simple download-system (kk_downloader) Unspecified Information Disclosure Vulnerability
4815| [37110] OpenX Arbitrary File Upload Vulnerability
4816| [37064] Xerver HTTP Response Splitting Vulnerability
4817| [37042] Novell eDirectory '/dhost/httpstk' Multiple Stack Buffer Overflow Vulnerabilities
4818| [37005] WordPress 'wp-admin/includes/file.php' Arbitrary File Upload Vulnerability
4819| [36996] WebKit Resource Load Callback Information Disclosure Weakness
4820| [36990] Apache HTTP TRACE Cross Site Scripting Vulnerability
4821| [36977] Apple Mac OS X Help Viewer Spoofed HTTP Response Remote Code Execution Vulnerability
4822| [36895] RhinoSoft Serv-U Web Client HTTP Request Remote Buffer Overflow Vulnerability
4823| [36867] Mozilla Firefox and SeaMonkey Download Filename Spoofing Vulnerability
4824| [36856] Mozilla Firefox and SeaMonkey Proxy Auto-Configuration File Remote Code Execution Vulnerability
4825| [36852] Mozilla Firefox Download Manager World Writable File Local Privilege Escalation Vulnerability
4826| [36839] nginx 'ngx_http_process_request_headers()' Remote Buffer Overflow Vulnerability
4827| [36817] Microsoft SharePoint Team Services Download Feature Source Code Information Disclosure Vulnerability
4828| [36802] MapServer HTTP Request Processing Integer Overflow Vulnerability
4829| [36656] Acritum Femitter Server HTTP Request Remote File Disclosure Vulnerability
4830| [36622] Microsoft Internet Explorer 'deflate' HTTP Content Encoding Remote Code Execution Vulnerability
4831| [36596] Apache HTTP Server Solaris Event Port Pollset Support Remote Denial Of Service Vulnerability
4832| [36438] nginx Proxy DNS Cache Domain Spoofing Vulnerability
4833| [36431] Drupal Arbitrary File Upload and Session Fixation Vulnerabilities
4834| [36407] BigAnt IM Server HTTP GET Request Buffer Overflow Vulnerability
4835| [36406] Belkin F5D7632-4V6 Wireless G Router Multiple Authentication Bypass Vulnerabilities
4836| [36384] nginx HTTP Request Remote Buffer Overflow Vulnerability
4837| [36348] Nicecoder iDesk 'download.php' SQL Injection Vulnerability
4838| [36346] Symantec Altiris eXpress NS SC Download ActiveX Control Arbitrary File Download Vulnerability
4839| [36301] Novell eDirectory HTTP GET Request Unicode Strings Denial Of Service Vulnerability
4840| [36297] Ipswitch WS_FTP Professional HTTP Server Response Format String Vulnerability
4841| [36295] The Rat CMS 'admin/add_album.php' Arbitrary File Upload Vulnerability
4842| [36260] Apache mod_proxy_ftp Module NULL Pointer Dereference Denial Of Service Vulnerability
4843| [36254] Apache mod_proxy_ftp Remote Command Injection Vulnerability
4844| [36199] VMware Studio Virtual Appliance Web Interface File Upload Directory Traversal Vulnerability
4845| [36197] MailEnable 'MEHTTPS.EXE' Stack-Based Buffer Overflow Vulnerability
4846| [36194] SILC Toolkit HTTP Server Format String Vulnerability
4847| [36180] PHP-Fusion 'Download System mSF' module SQL Injection Vulnerability
4848| [36174] OpenAutoClassifieds Arbitrary File Upload Vulnerability
4849| [36167] PHP-Fusion 'downloads.php' SQL Injection Vulnerability
4850| [36091] Squid Web Proxy Cache Authentication Header Parsing Remote Denial of Service Vulnerability
4851| [36074] ntop HTTP Basic Authentication NULL Pointer Dereference Denial Of Service Vulnerability
4852| [36045] Blue Coat ProxySG Proxy Authentication Bypass Vulnerability
4853| [36006] Papoo Upload Images Arbitrary File Upload Vulnerability
4854| [35943] Sun Java Runtime Environment Proxy Mechanism Implementation Privilege Escalation Vulnerabilities
4855| [35925] Mozilla Firefox SOCKS5 Proxy Response Denial of Service Vulnerability
4856| [35904] Adobe Flash Player and AIR Loader Object Heap Memory Corruption Vulnerability
4857| [35881] TYPO3 Myth download Extension Unspecified SQL Injection Vulnerability
4858| [35840] Apache HTTP Server HTTP-Basic Authentication Bypass Vulnerability
4859| [35825] Automatic Image Upload with Thumbnails for PunBB 'uploadimg.php' Arbitrary File Delete Vulnerability
4860| [35824] MODx Context Policy Loading Unspecified Vulnerability
4861| [35823] Automatic Image Upload with Thumbnails 'uploadimg_view.php' SQL Injection Vulnerability
4862| [35818] Cisco Wireless LAN Controller HTTP/HTTPS Denial of Service Vulnerability
4863| [35805] Cisco Wireless LAN Controller HTTP Authorization Denial of Service Vulnerability
4864| [35784] Joomla! 'com_joomloads' Component 'packageId' Parameter SQL Injection Vulnerability
4865| [35781] RaidenHTTPD Cross Site Scripting and Local File Include Vulnerabilities
4866| [35780] Joomla! Remote File Upload Vulnerability And Information Disclosure Weakness
4867| [35778] Akamai Download Manager ActiveX Control Redswoosh Download Stack Buffer Overflow Vulnerability
4868| [35767] Mozilla Firefox Flash Player Unloading Remote Code Execution Vulnerability
4869| [35757] ZNC File Upload Directory Traversal Vulnerability
4870| [35740] NOS getPlus Download Manager Insecure File Permissions Local Privilege Escalation Vulnerability
4871| [35735] Crysis HTTP/XML-RPC Service Access Violation Remote Denial of Service Vulnerability
4872| [35701] Scriptsez Easy Image Downloader 'id' Parameter Cross Site Scripting Vulnerability
4873| [35688] Oracle Application Server CVE-2009-1976 Remote HTTP Server Vulnerability
4874| [35663] Hitachi Web Server Reverse Proxy Remote Denial of Service Vulnerability
4875| [35653] HP ProCurve Threat Management Services zl Module 'httpd' Denial of Service Vulnerability
4876| [35646] RunCMS 'upload.php' Arbitrary File Upload Vulnerability
4877| [35595] Winds3D Viewer 'GetURL()' Arbitrary File Download Vulnerability
4878| [35579] Ruby on Rails 'http_authentication.rb' Nil Credentials Authentication Bypass Vulnerability
4879| [35565] Apache 'mod_proxy' Remote Denial Of Service Vulnerability
4880| [35555] Apple Safari 'reload()' Denial of Service Vulnerability
4881| [35485] PinME! Joomla! Component Arbitrary File Upload Vulnerability
4882| [35462] Google Chrome HTTP Response Handling Remote Code Execution Vulnerability
4883| [35412] Multiple Browsers Web Proxy Redirect Handling Man In The Middle Vulnerability
4884| [35411] Multiple Browsers Cached Certificate HTTP Site Spoofing Vulnerability
4885| [35403] Multiple Browser HTTP Resource in HTTPS Context Security Bypass Vulnerability
4886| [35361] SugarCRM Email Attachment Arbitrary File Upload Vulnerability
4887| [35347] Apple Safari CFNetwork Downloaded Files Information Disclosure Vulnerability
4888| [35337] Serena Dimensions CM 'DOWNLOAD' Command Security Bypass Vulnerability
4889| [35315] WebKit JavaScript 'onload()' Event Cross Domain Scripting Vulnerability
4890| [35312] F5 Networks FirePass SSL VPN 'password' Field Cross-Site Scripting Vulnerability
4891| [35270] WebKit 'XMLHttpRequest' HTTP Response Splitting Vulnerability
4892| [35236] LogMeIn 'cfgadvanced.html' HTTP Header Injection Vulnerability
4893| [35222] Microsoft Internet Explorer XMLHttpRequest Uninitialized Memory Remote Code Execution Vulnerability
4894| [35217] Sun GlassFish Enterprise Server HTTP Engine/Admin Interface Local Denial of Service Vulnerability
4895| [35216] Hitachi Web Server Reverse Proxy Denial of Service Vulnerability
4896| [35204] Sun Java System Web Server Reverse Proxy Plug-in Cross-Site Scripting Vulnerability
4897| [35180] PHP-Nuke Downloads Module 'query' Parameter Cross Site Scripting Vulnerability
4898| [35177] AlstraSoft Article Manager Pro 'article/register.php' Remote File Upload Vulnerability
4899| [35155] eliteCMS Arbitrary File Upload and Cross Site Scripting Vulnerabilities
4900| [35097] Lighttpd Trailing Slash Information Disclosure Vulnerability
4901| [35078] ZaoCMS 'upload.php' Arbitrary File Upload Vulnerability
4902| [35058] Job Script 'mycv.php' Arbitrary File Upload Vulnerability
4903| [35047] CGI Rescue Web Mailer HTTP Header Injection Vulnerability
4904| [35039] DMXReady Registration Manager 'assetmanager.asp' Arbitrary File Upload Vulnerability
4905| [35026] Namad 'SecureDownloads.aspx' Arbitrary File Download Vulnerability
4906| [35024] VidsharePro Arbitrary File Upload Vulnerability
4907| [35006] httpdx Multiple Commands Remote Buffer Overflow Vulnerabilities
4908| [35004] Pc4Uploader 'code.php' SQL Injection Vulnerability
4909| [34995] Rama Zaiten CMS 'download.php' Local File Disclosure Vulnerability
4910| [34958] Apple Mac OS X CFNetwork HTTP Header Handling Heap Buffer Overflow Vulnerability
4911| [34929] Matt Wright FormMail HTTP Response Splitting and Cross Site Scripting Vulnerabilities
4912| [34913] openWYSIWYG 'addons/imagelibrary/insert_image.php' Arbitrary File Upload Vulnerability
4913| [34887] Battle Blog 'uploadform.asp' Arbitrary File Upload Vulnerability
4914| [34813] eLitius Arbitrary File Upload and Authentication Bypass Vulnerabilities
4915| [34794] RM Downloader '.smi' File Buffer Overflow Vulnerability
4916| [34789] BaoFeng Storm ActiveX Control 'OnBeforeVideoDownload()' Buffer Overflow Vulnerability
4917| [34773] Zubrag Smart File Download 'download.php' File Download Security Bypass Vulnerability
4918| [34747] libmodplug 'load_pat.c' Remote Buffer Overflow Vulnerability
4919| [34712] SDP Downloader 'ASX' File Heap Buffer Overflow Vulnerability
4920| [34681] Xitami HTTP Server Multiple Socket HEAD Request Remote Denial Of Service Vulnerability
4921| [34679] Elkagroup Image Gallery 'upload.php' Arbitrary File Upload Vulnerability
4922| [34663] Apache 'mod_proxy_ajp' Information Disclosure Vulnerability
4923| [34653] Download Center Lite Unspecified Security Vulnerability
4924| [34643] Sun Java System Delegated Administrator HTTP Response Splitting Vulnerability
4925| [34640] CRE Loaded 'product_info.php' SQL Injection Vulnerability
4926| [34637] Zervit HTTP Server Malformed URI Remote Denial Of Service Vulnerability
4927| [34601] Adam Patterson Address Book 'upload-file.php' Arbitrary File Upload Vulnerability
4928| [34600] Multi-lingual E-Commerce System Local File Include and Arbitrary File Upload Vulnerabilities
4929| [34599] Flatnux Arbitrary File Upload and Multiple Local File Include Vulnerabilities
4930| [34590] e-cart 'admin/editor/image.php' Arbitrary File Upload Vulnerability
4931| [34575] SPIP Security Bypass and Arbitrary File Upload Vulnerability
4932| [34570] Zervit HTTP Server Directory Traversal Vulnerability
4933| [34535] Job2C Profile Arbitrary File Upload Vulnerability
4934| [34530] Zervit 'http.c' Remote Buffer Overflow Vulnerability
4935| [34520] Nortel Application Gateway 2000 'adminDownloads.htm' Password Disclosure Vulnerability
4936| [34510] Mongoose HTTP Server Directory Traversal Vulnerability
4937| [34478] Microsoft Internet Explorer File Download Denial of Service Vulnerability
4938| [34437] Microsoft WinHTTP Server Name Mismatch Certificate Validation Security Bypass Vulnerability
4939| [34435] Microsoft WinHTTP Integer Underflow Memory Corruption Remote Code Execution Vulnerability
4940| [34434] Photo-Graffix 'mp3upload.htm' Arbitrary File Upload Vulnerability
4941| [34415] Lanius CMS 'upload.php' Arbitrary File Upload Vulnerability
4942| [34368] Family Connections 'fcms/upload.php' Arbitrary File Upload Vulnerability
4943| [34356] TinyPHPForum Avatar Upload Arbitrary File Upload Vulnerability
4944| [34347] File Thingie '.sql' Extension Arbitrary File Upload Vulnerability
4945| [34277] Squid Proxy Cache ICAP Adaptation Denial of Service Vulnerability
4946| [34255] PHPizabi 'modules/interact/file.php' Arbitrary File Upload Vulnerability
4947| [34254] WeBid 'upldgallery.php' Arbitrary File Upload Vulnerability
4948| [34222] PHP Classifieds Arbitrary File Upload and Cross Site Scripting Vulnerabilities
4949| [34221] ZyXEL G570S Crafted HTTP Requests Multiple Vulnerabilities
4950| [34212] Free Arcade Script SQL Injection and Arbitrary File Upload Vulnerabilities
4951| [34200] Orbit Downloader ActiveX Control 'download()' Method Arbitrary File Delete Vulnerability
4952| [34188] SW-HTTPD Incomplete HTTP Request Remote Denial of Service Vulnerability
4953| [34135] HP OpenView Network Node Manager 'Accept-Language' HTTP Header Heap Buffer Overflow Vulnerability
4954| [34128] PPLive URI Handlers 'LoadModule' Parameter Multiple Remote Code Execution Vulnerabilities
4955| [34119] Rapid Leech Upload Function Multiple Remote Input Validation Vulnerabilities
4956| [34087] Traidnt UP 'uploadcp/files.php' Insecure Cookie Authentication Bypass Vulnerability
4957| [33993] Imera Systems ImeraIEPlugin ActiveX Control Arbitrary File Download Vulnerability
4958| [33964] WikyBlog Arbitrary File Upload Vulnerability
4959| [33962] cURL/libcURL HTTP 'Location:' Redirect Security Bypass Vulnerability
4960| [33956] access2asp 'default_Image.asp' Arbitrary File Upload Vulnerability
4961| [33934] Internet Download Manager Language File Parsing Buffer Overflow Vulnerability
4962| [33924] APC PowerChute Network Shutdown HTTP Response Splitting and Cross Site Scripting Vulnerabilities
4963| [33894] Orbit Downloader 'Connecting' Log Message Creation Remote Buffer Overflow Vulnerability
4964| [33874] M5zn Arbitrary File Upload Vulnerability
4965| [33862] PayPal Download Shop SQL Injection and Arbitrary File Upload Vulnerabilities
4966| [33832] Fujitsu Jasmine2000 Enterprise Edition WebLink HTTP Response Splitting Vulnerability
4967| [33823] Firepack User-Agent HTTP Header PHP Code Injection Vulnerability
4968| [33820] Apple Mac OS X Insecure Downloads Folder Permissions Information Disclosure Vulnerability
4969| [33817] SAS Hotel Management System Arbitrary File Upload Vulnerability
4970| [33804] WebKit XMLHttpRequest Cookie Information Disclosure Vulnerability
4971| [33803] Microsoft XML Core Services XMLHttpRequest 'SetCookie2' Header Information Disclosure Vulnerability
4972| [33773] Google Chrome XMLHttpRequest Cookie Information Disclosure Vulnerability
4973| [33761] Sun Java System Directory Server Directory Proxy Server JDBC Backend Denial Of Service Vulnerability
4974| [33742] SkaDate 'photo' Arbitrary File Upload Vulnerability
4975| [33724] libvirt 'libvirt_proxy.c' Local Privilege Escalation Vulnerability
4976| [33712] Varnish HTTP Request Parsing Denial of Service Vulnerability
4977| [33699] Hedgehog-CMS 'specialacts.php' Arbitrary File Upload Vulnerability
4978| [33691] Taridnt UP Remote File Upload Vulnerability
4979| [33665] Ilch CMS 'HTTP_X_FORWARDED_FOR' SQL Injection Vulnerability
4980| [33663] BlackBerry Application Web Loader ActiveX Control Remote Buffer Overflow Vulnerability
4981| [33647] WikkiTikkiTavi 'upload.php' Arbitrary File Upload Vulnerability
4982| [33625] Cisco IOS HTTP Server Multiple Cross Site Scripting Vulnerabilities
4983| [33591] AJA Portal Rapidshare Module Arbitrary File Upload Vulnerability
4984| [33570] Small HTTP server FTP Directory Traversal Vulnerability
4985| [33559] Novell GroupWise HTTP POST/GET Request Information Disclosure Vulnerability
4986| [33555] Free Download Manager Torrent File Parsing Multiple Remote Buffer Overflow Vulnerabilities
4987| [33554] Free Download Manager Remote Control Server Stack Buffer Overflow Vulnerability
4988| [33542] PHP 'mbstring.func_overload' Webserver Denial Of Service Vulnerability
4989| [33516] Trickle 'LD_PRELOAD' Arbitrary Code Execution Vulnerability
4990| [33514] Coppermine Photo Gallery 'picEditor.php' Remote File Upload Vulnerability
4991| [33476] Flaxweb Article Manager Avatar Arbitrary File Upload Vulnerability
4992| [33450] Simple Machines Forum Package Upload Multiple HTML Injection Vulnerabilities
4993| [33424] MemHT Portal Avatar Upload Arbitrary File Upload Vulnerability
4994| [33410] PHP-Nuke Downloads Module 'url' Parameter SQL Injection Vulnerability
4995| [33374] Microsoft IIS HTTP TRACK Method Information Disclosure Vulnerability
4996| [33328] Multiple AJ Classifieds Scripts 'index.php' Arbitrary File Upload Vulnerability
4997| [33295] DMXReady Billboard Manager 'upload_document.asp' Arbitrary File Upload Vulnerability
4998| [33281] DMXReady SDK Arbitrary File Download Vulnerability
4999| [33260] Cisco IOS HTTP Server Multiple Cross Site Scripting Vulnerabilities
5000| [33255] DMXReady Members Area Manager 'upload_image_security_level.asp' SQL Injection Vulnerability
5001| [33253] DMXReady Multiple Products 'upload_image_category.asp' SQL Injection Vulnerability
5002| [33247] Symantec AppStream Client 'LaunchObj' ActiveX Control Arbitrary File Download Vulnerability
5003| [33225] PWP Wiki Processor 'run.php' Arbitrary File Upload Vulnerability
5004| [33198] Silentum Uploader Arbitrary File Deletion Vulnerability
5005| [33147] HP OpenView Network Node Manager HTTP Request Multiple Buffer Overflow Vulnerabilities
5006| [33094] Built2Go PHP Link Portal 'member.php' Arbitrary File Upload Vulnerability
5007| [33093] Built2Go PHP Rate My Photo 'member.php' Arbitrary File Upload Vulnerability
5008| [33088] MemberKit My Picture Album Arbitrary File Upload Vulnerability
5009| [33057] ThePortal '/admin/galeria.php' Arbitrary File Upload Vulnerability
5010| [33034] Flexphplink Pro 'submitlink.php' Arbitrary File Upload Vulnerability
5011| [33005] doop Administration Page Arbitrary File Upload Vulnerability
5012| [33000] W2B phpEmployment 'auth.php' Arbitrary File Upload Vulnerability
5013| [32998] W2B phpAdBoard 'index.php' Arbitrary File Upload Vulnerability
5014| [32995] W2B phpGreetCards 'index.php' Arbitrary File Upload Vulnerability
5015| [32968] Text Lines Rearrange Script 'download.php' Information Disclosure Vulnerability
5016| [32959] OneOrZero Arbitrary File Upload Vulnerability
5017| [32954] ReVou Arbitrary File Upload Vulnerability
5018| [32953] BLOG 'image_upload.php' Arbitrary File Upload Vulnerability
5019| [32936] Extract Website 'download.php' Local File Include Vulnerability
5020| [32932] Online Keyword Research Tool 'download.php' Local File Include Vulnerability
5021| [32911] 2532designs 2532|Gigs Local File Include and Arbitrary File Upload Vulnerabilities
5022| [32907] Irrlicht B3D loader Buffer Overflow Vulnerability
5023| [32888] K&S Shopsystem 'images.php' Arbitrary File Upload Vulnerability
5024| [32858] Faupload 'download.php' SQL Injection Vulnerability
5025| [32821] Multiple AvailScript Products Arbitrary File Upload Vulnerabilities
5026| [32803] Joomla Live Chat Multiple SQL Injection and Open Proxy Vulnerabilities
5027| [32795] Social Groupie 'create_album.php' Arbitrary File Upload Vulnerability
5028| [32785] PHP Support Tickets New Ticket Arbitrary File Upload Vulnerability
5029| [32760] eZoneScripts Living Local Arbitrary File Upload Vulnerability
5030| [32706] dotnetindex Professional Download Assistant SQL Injection Vulnerability
5031| [32699] Secure Downloads for vBulletin 'fileinfo.php' SQL Injection Vulnerability
5032| [32697] SIU Guarani SQL Injection and Arbitrary File Upload Vulnerabilities
5033| [32696] Neostrada Livebox ADSL Router HTTP Request Denial of Service Vulnerability
5034| [32675] w3blabor Local File Include and Arbitrary File Upload Vulnerabilities
5035| [32661] Tizag Countdown Creater 'index.php' Arbitrary File Upload Vulnerability
5036| [32560] Rumpus FTP Server HTTP Command Remote Denial of Service Vulnerability
5037| [32559] Andy's PHP Knowledgebase 'saa.php' Arbitrary File Upload Vulnerability
5038| [32537] Minimal ABlog SQL Injection and Arbitrary File Upload Vulnerabilities
5039| [32509] Star Articles 'user.modify.profile.php' Arbitrary File Upload Vulnerability
5040| [32452] Quicksilver Forums Local File Include and Arbitrary File Upload Vulnerabilities
5041| [32439] MauryCMS Unspecified Arbitrary File Upload Vulnerability
5042| [32433] getaphpsite.com Real Estate Arbitrary File Upload Vulnerability
5043| [32432] getaphpsite.com Auto Dealers Arbitrary File Upload Vulnerability
5044| [32428] Goople CMS '/win/content/upload.php' Arbitrary File Upload Vulnerability
5045| [32382] SocialEngine HTTP Response Splitting and SQL-injection Vulnerabilities
5046| [32371] 'imlib2' Library 'load()' Function Buffer Overflow Vulnerability
5047| [32367] wPortfolio '/admin/upload_form.php' Arbitrary File Upload Vulnerability
5048| [32359] Ruby on Rails 'redirect_to()' HTTP Header Injection Vulnerability
5049| [32318] GungHo LoadPrgAx ActiveX Control Unspecified Vulnerability
5050| [32293] Multiple Scriptsfeed Scripts Arbitrary File Upload Vulnerability
5051| [32277] AlstraSoft SendIt Pro Arbitrary File Upload Vulnerability
5052| [32275] Belkin F5D8233-4 Wireless N Router Multiple Scripts Authentication Bypass Vulnerabilities
5053| [32273] Belkin F5D8233-4 Wireless N Router IP-Based Authentication Session Hijacking Vulnerability
5054| [32257] Pre Real Estate Listings Seller Logo Arbitrary File Upload Vulnerability
5055| [32247] sISAPILocation HTTP Header Rewrite Security Bypass Vulnerability
5056| [32242] Multiple phpstore.info Scripts Arbitrary File Upload Vulnerability
5057| [32234] rtgdictionary for TYPO3 Arbitrary File Upload Vulnerability
5058| [32225] Zeeways ZEEJOBSITE Arbitrary File Upload Vulnerability
5059| [32224] Zeeways ZEEPROPERTY Arbitrary File Upload and Cross Site Scripting Vulnerabilities
5060| [32211] Multiple 2Wire DSL Routers 'xslt' HTTP Request Denial of Service Vulnerability
5061| [32203] Siemens SpeedStream 5200 HTTP Host Spoofing Authentication Bypass Vulnerability
5062| [32152] BigDump '.sql' Arbitrary File Upload Vulnerability
5063| [32105] NOS Microsystems getPlus Download Manager ActiveX Control Buffer Overflow Vulnerability
5064| [32103] NOS Microsystems getPlus Download Manager Unauthorized Access Vulnerability
5065| [32065] Apartment Search Script Arbitrary File Upload and Cross Site Scripting Vulnerabilities
5066| [32013] ComingChina.com U-Mail 'edit.php' Arbitrary File Upload Vulnerability
5067| [31982] Instinct WP e-Commerce 'image_processing.php' Arbitrary File Upload Vulnerability
5068| [31981] Mambo and Joomla! SimpleBoard 'image_upload.php' Arbitrary File Upload Vulnerability
5069| [31978] 7-Shop 'imageupload.php' Arbitrary File Upload Vulnerability
5070| [31914] BuzzScripts BuzzyWall 'download.php' Directory Traversal Vulnerability
5071| [31909] New Earth Programming Team Image Upload Script Arbitrary File Upload Vulnerability
5072| [31887] Snoopy '_httpsrequest()' Arbitrary Command Execution Vulnerability
5073| [31877] Joomla! ionFiles Component 'download.php' Directory Traversal Vulnerability
5074| [31873] Iamma Nuke Simple Gallery 'upload.php ' Arbitrary File Upload Vulnerability
5075| [31852] Bahar Download Script 'aspkat.asp' SQL Injection Vulnerability
5076| [31812] FCKeditor 'CurrentFolder' Parameter Arbitrary File Upload Vulnerability
5077| [31805] Apache HTTP Server OS Fingerprinting Unspecified Security Vulnerability
5078| [31696] KDE Konqueror JavaScript 'load' Function Denial of Service Vulnerability
5079| [31695] Scriptsez Easy Image Downloader 'main.php' Local File Include Vulnerability
5080| [31691] Sun Java System Web Proxy Server FTP Subsytem Heap Based Buffer Overflow Vulnerability
5081| [31685] Kusaba 'load_receiver.php' Remote Code Execution Vulnerability
5082| [31632] Microsoft PicturePusher 'PipPPush.dll' ActiveX Control Arbitrary File Download Vulnerability
5083| [31603] Internet Download Manager File Parsing Buffer Overflow Vulnerability
5084| [31600] Lighttpd 'mod_userdir' Case Sensitive Comparison Security Bypass Vulnerability
5085| [31599] Lighttpd URI Rewrite/Redirect Information Disclosure Vulnerability
5086| [31594] Simple Machines Forum HTTP POST Request Filter Security Bypass Vulnerability
5087| [31577] OpenNMS HTTP Response Splitting Vulnerability
5088| [31574] FOSS Gallery Arbitrary File Upload Vulnerability
5089| [31568] Kwalbum 'UploadItems' Parameter Arbitrary File Upload Vulnerability
5090| [31491] eFront Multiple Arbitrary File Upload Vulnerabilities
5091| [31487] Autodesk DWF Viewer Control 'AdView.dll' Arbitrary File Download Vulnerability
5092| [31456] Camera Life Arbitrary File Upload Vulnerability
5093| [31445] E-Uploader PRO 'id' Parameter Multiple SQL Injection Vulnerabilities
5094| [31434] Lighttpd Duplicate Request Header Denial of Service Vulnerability
5095| [31406] Mass Downloader Malformed Executable Denial Of Service Vulnerability
5096| [31393] Vikingboard 'upload/index.php' Local File Include Vulnerability
5097| [31354] Cisco IOS AIC HTTP Transit Packet Remote Denial of Service Vulnerability
5098| [31351] osCMax 'test.html' Arbitrary File Upload Vulnerability
5099| [31297] AvailScript Job Portal Script Remote File Upload Vulnerability
5100| [31265] fhttpd Basic Authorization Remote Denial Of Service Vulnerability
5101| [31171] phsdev phsBlog 'upload/index.php' SQL Injection Vulnerability
5102| [31156] WebPortal CMS 'download.php' SQL Injection Vulnerability
5103| [31127] minb Multiple Arbitrary File Upload Vulnerabilities
5104| [31122] Ananta 'connectors.php' Arbitrary File Upload Vulnerability
5105| [31106] Red Hat Fedora Directory Server HTTP Unescaping Functions Buffer Overflow Vulnerability
5106| [31047] Samsung DVR SHR-2040 HTTPD Denial of Service Vulnerability
5107| [31035] Google Chrome Malformed 'view-source' HTTP Header Remote Denial of Service Vulnerability
5108| [31028] eZoneScripts Dating Website Remote File Upload Vulnerability
5109| [31010] Celerondude Uploader 'account.php' Cross-Site Scripting Vulnerability
5110| [31000] Google Chrome Arbitrary File Download Vulnerability
5111| [30988] 3Com Wireless 8760 Dual-Radio 11a/b/g PoE HTTP POST Request Denial of Service Vulnerability
5112| [30950] WeBid 'config.php' Arbitrary File Upload Vulnerability
5113| [30869] Red Hat Directory Server Accept Language HTTP Headers Buffer Overflow Vulnerability
5114| [30867] Mono 'System.Web' HTTP Header Injection Vulnerability
5115| [30839] Kolifa.net Download Script 'indir.php' SQL Injection Vulnerability
5116| [30754] GE Fanuc Proficy Information Portal HTTP Basic Authentication Information Disclosure Vulnerability
5117| [30721] VidiScript Remote File Upload Vulnerability
5118| [30677] Cardinal CMS 'upload.php' Arbitrary File Upload Vulnerability
5119| [30671] Sun Java System Web Proxy Server FTP Subsystem Denial of Service Vulnerability
5120| [30662] Amarok 'MagnatuneBrowser::listDownloadComplete()' Insecure Temporary File Creation Vulnerability
5121| [30652] Alcatel-Lucent OmniSwitch Products HTTP Header Remote Buffer Overflow Vulnerability
5122| [30620] RMSOFT Downloads Plus Multiple Cross-Site Scripting Vulnerabilities
5123| [30601] e107 CMS 'download.php' Arbitrary Variable Overwrite Vulnerability
5124| [30560] Apache 'mod_proxy_ftp' Wildcard Characters Cross-Site Scripting Vulnerability
5125| [30548] Aurigma Image Uploader Multiple ActiveX Controls Multiple Unspecified Security Vulnerabilities
5126| [30526] moziloCMS 'download.php' File Disclosure Vulnerability
5127| [30515] Max File Upload File Extension Arbitrary File Upload Vulnerability
5128| [30496] Apache Tomcat 'HttpServletResponse.sendError()' Cross Site Scripting Vulnerability
5129| [30464] Blue Coat K9 Web Protection Centralized Server HTTP Responses Buffer Overflow Vulnerability
5130| [30365] WordPress Wp Downloads Manager Module 'upload.php' Arbitrary File Upload Vulnerability
5131| [30362] ibase 'download.php' Local File Include Vulnerability
5132| [30338] Ceica Groupware Multiple Remote File Upload Vulnerabilities
5133| [30336] AtomatiCMS 'upload.php' Arbitrary File Upload Vulnerability
5134| [30311] EZWebAlbum 'download.php' Local File Include Vulnerability
5135| [30283] LunarNight Laboratory WebProxy Cross Site Scripting Vulnerability
5136| [30273] Oracle mod_wl HTTP POST Request Remote Buffer Overflow Vulnerability
5137| [30265] Citrix XenServer XenAPI HTTP Interfaces Cross-Site Scripting Vulnerability
5138| [30261] Velocity Security Management System HTTP Server Directory Traversal Vulnerability
5139| [30249] PhotoPost vBGallery 'upload.php' Arbitrary File Upload Vulnerability
5140| [30223] Sina DLoader Class ActiveX Control 'DonwloadAndInstall' Method Arbitrary File Download Vulnerability
5141| [30220] Edit-Point 'upload.php' Arbitrary File Upload Vulnerability
5142| [30210] Maian Uploader 'uploader_cookie' Authentication Bypass Vulnerability
5143| [30193] Apple Safari HTTPS to HTTPS Referer Information Disclosure Vulnerability
5144| [30182] File Store PRO 'download.php' SQL Injection Vulnerability
5145| [30138] Download Accelerator Plus '.m3u' File Buffer Overflow Vulnerability
5146| [30117] WebXell Editor 'upload_pictures.php' Arbitrary File Upload Vulnerability
5147| [30114] Snapshot Viewer for Microsoft Access ActiveX Control Arbitrary File Download Vulnerability
5148| [30105] BlueZ SDP Payload Processing Multiple Buffer Overflow Vulnerabilities
5149| [30100] ImperialBB Remote File Upload Vulnerability
5150| [30094] THELIA Arbitrary File Upload and Authentication Bypass Vulnerabilities
5151| [30090] F5 FirePass SSL VPN SNMP Daemon Remote Denial of Service Vulnerability
5152| [29982] Seagull Arbitrary File Upload Vulnerability
5153| [29963] UUSee UUUpgrade ActiveX Control 'Update' Method Arbitrary File Download Vulnerability
5154| [29949] RETIRED: PHPmotion SQL Injection and Arbitrary File Upload Vulnerabilities
5155| [29946] Google Talk 'http' and 'mailto' Remote Script Code Injection Vulnerability
5156| [29929] Page Manager 'upload.php' Arbitrary File Upload Vulnerability
5157| [29917] Php F1 Max's Image Uploader 'index.php' Arbitrary File Upload Vulnerability
5158| [29914] cmsWorks 'config.php' Arbitrary File Upload Vulnerability
5159| [29892] emuCMS 'upload.php' Arbitrary File Upload Vulnerability
5160| [29867] le.cms 'admin/upload.php' Arbitrary File Upload Vulnerability
5161| [29849] GL-SH Deaf Forum Cross-Site Scripting Vulnerability and Arbitrary File Upload Vulnerability
5162| [29825] TYPO3 Download system Extension SQL Injection Vulnerability
5163| [29809] OFFSystem HTTP Headers Remote Buffer Overflow Vulnerability
5164| [29795] aspWebCalendar 'calendar_admin.asp' Arbitrary File Upload Vulnerability
5165| [29786] CRE Loaded Multiple HTML Injection Vulnerabilities
5166| [29759] Crysis HTTP/XML-RPC Service Remote Denial of Service Vulnerability
5167| [29734] Simple Machines Forum 'load.php' SQL Injection Vulnerability
5168| [29707] Easy-Clanpage Arbitrary File Upload and Local File Include Vulnerabilities
5169| [29698] X-Poll 'admin/images/index.php' Arbitrary File Upload Vulnerability
5170| [29661] uTorrent and BitTorrent HTTP 'Range' Header Remote Denial of Service Vulnerability
5171| [29657] TYPO3 Cross-Site Scripting Vulnerability and File Upload Vulnerability
5172| [29621] Achievo 'config.php' Arbitrary File Upload Vulnerability
5173| [29618] Flux CMS 'loadsave.php' Arbitrary File Overwrite Vulnerability
5174| [29600] XOOPS Uploader Module 'filename' Parameter Directory Traversal Vulnerability
5175| [29577] Black Ice Multiple Applications 'BiDib.dll' ActiveX Control Arbitrary File Download Vulnerability
5176| [29574] F5 FirePass SSL VPN Multiple Cross-Site Request Forgery Vulnerabilities
5177| [29570] Linksys WRH54G Wireless-G Router Malformed HTTP Request Denial of Service Vulnerability
5178| [29554] Joomla! and Mambo JotLoader Component 'cid' Parameter SQL Injection Vulnerability
5179| [29530] HP Instant Support 'HPISDataManager.dll' ActiveX Control Arbitrary File Download Vulnerability
5180| [29519] C6 Messenger Installation URL Downloader ActiveX Control Arbitrary File Download Vulnerability
5181| [29497] RETIRED: SiteXS CMS 'adm/visual/upload.php' Arbitrary File Upload Vulnerability
5182| [29476] Kaya CGI Framework HTTP Header Cross Site Scripting Vulnerability
5183| [29438] PHP Booking Calendar 'upload.php' Arbitrary File Upload Vulnerability
5184| [29434] CMS from Scratch 'image.php' Directory Traversal and Arbitrary File Upload Vulnerabilities
5185| [29431] CMS from Scratch 'upload.php' Arbitrary File Upload Vulnerability
5186| [29422] SyntaxCMS 'upload.php' Arbitrary File Upload Vulnerability
5187| [29419] FlashBlog 'imgupload.php' Arbitrary File Upload Vulnerability
5188| [29390] trombyn 'demoupload.php' Arbitrary File Upload Vulnerability
5189| [29374] OneCMS 'load' Parameter Local File Include Vulnerability
5190| [29372] ClassSystem Multiple SQL Injection Vulnerabilities and Arbitrary File Upload Vulnerability
5191| [29352] WordPress Upload File Plugin 'wp-uploadfile.php' SQL Injection Vulnerability
5192| [29341] WWW File Share Pro Unspecified Arbitrary File Upload Vulnerability
5193| [29334] Interchange Unspecified HTTP POST Request Denial Of Service Vulnerability
5194| [29310] IBM Lotus Domino Web Server 'Accept Language' HTTP Header Buffer Overflow Vulnerability
5195| [29279] PhotoStockPlus Uploader Tool ActiveX Control Multiple Stack Based Buffer Overflow Vulnerabilities
5196| [29276] RETIRED: WordPress 'Blog' Module 'Write Tab' Arbitrary File Upload Vulnerability
5197| [29222] Cisco Unified Presence SIP Proxy Denial of Service Vulnerability
5198| [29216] Cisco Content Switching Module Layer 7 Load Balancing Denial of Service Vulnerability
5199| [29170] CMS Made Simple 'modules/FileManager/postlet/javaUpload.php' Arbitrary File Upload Vulnerability
5200| [29121] Microsoft Outlook Web Access 'no-store' HTTP Directive Information Disclosure Weakness
5201| [29112] Microsoft Internet Explorer UTF-7 HTTP Response Handling Weakness
5202| [29110] ZyWALL 100 HTTP Referer Header Cross Site Scripting Vulnerability
5203| [29072] QTO File Manager 'qtofm.php' Arbitrary File Upload Vulnerability
5204| [29051] Maian Uploader Multiple Cross Site Scripting Vulnerabilities
5205| [29029] SiteXS CMS 'upload.php' Arbitrary File Upload Vulnerability
5206| [28993] Akamai Download Manager ActiveX Control Remote Code Execution Vulnerability
5207| [28975] WordPress Download Monitor Plugin 'id' Parameter SQL Injection Vulnerability
5208| [28955] PHPG Upload 'form_upload.php' Arbitrary File Upload Vulnerability
5209| [28941] Sun Java System Directory Proxy Server Remote Unauthorized Access Vulnerability
5210| [28937] KDE KHTML PNGLoader Heap Buffer Overflow Vulnerability
5211| [28922] PHCDownload Multiple SQL Injection and Cross-Site Scripting Vulnerabilities
5212| [28919] PHP-Nuke DownloadsPlus Module Arbitrary File Upload Vulnerability
5213| [28902] F5 Networks FirePass 4100 SSL VPN 'installControl.php3' Cross-Site Scripting Vulnerability
5214| [28887] EncapsGallery Cross-Site Scripting Vulnerability and File Upload Vulnerability
5215| [28817] eGroupWare Unspecified Arbitrary File Upload Vulnerability
5216| [28813] Apple Safari File Download Remote Memory Corruption Vulnerability
5217| [28795] BigAnt IM Server HTTP GET Request Remote Buffer Overflow Vulnerability
5218| [28788] KwsPHP Eskuel Module Arbitrary File Upload Vulnerability
5219| [28787] Dotclear 'ecrire/images.php' Arbitrary File Upload Vulnerability
5220| [28766] Coppermine Photo Gallery 'upload.php' SQL Injection Vulnerability
5221| [28757] Novell eDirectory HTTP 'Connection' Header Denial Of Service Vulnerability
5222| [28718] ARWScripts Gallery Script Lite 'download.html' File Disclosure Vulnerability
5223| [28696] Adobe Flash Player Arbitrary Cross Domain HTTP Request Headers Security Vulnerability
5224| [28693] Squid Web Proxy Cache 'arrayShrink()' Remote Denial of Service Vulnerability
5225| [28685] phpTournois Avatar Arbitrary File Upload Vulnerability
5226| [28670] iScripts SocialWare Arbitrary File Upload Vulnerability
5227| [28666] CDNetworks Nefficient Download 'NeffyLauncher.dll' ActiveX Control Multiple Vulnerabilities
5228| [28656] Drake CMS HTTP 'Via' Header SQL Injection Vulnerability
5229| [28646] Pixel Motion Blog Arbitrary File Upload Vulnerability
5230| [28639] F5 BIG-IP Web Management Interface 'NEW_VALUE' Parameter Remote Code Injection Vulnerability
5231| [28610] SmarterTools SmarterMail HTTP Request Handling Denial Of Service Vulnerability
5232| [28578] Nuked-Klan HTTP Referer Header SQL Injection Vulnerability
5233| [28572] Novell eDirectory HTTP HEAD Request Handling Denial Of Service Vulnerability
5234| [28546] Chilkat HTTP 'ChilkatHttp.dll' ActiveX Control Insecure Method Vulnerabilities
5235| [28541] Orbit Downloader 'Download Failed' Remote Buffer Overflow Vulnerability
5236| [28516] WordPress 'wp-download' Plugin 'dl_id' Parameter SQL Injection Vulnerability
5237| [28491] Perlbal Buffered Upload Remote Denial Of Service Vulnerability
5238| [28490] Siemens SpeedStream 6520 HTTP Request Remote Denial Of Service Vulnerability
5239| [28489] Lighttpd SSL Error Denial of Service Vulnerability
5240| [28440] e107 My_Gallery Plugin 'dload.php' Arbitrary File Download Vulnerability
5241| [28428] Joomla! and Mambo Download3000 Component 'id' Parameter SQL Injection Vulnerability
5242| [28416] F5 Big-IP Web Management Audit Log HTML Injection Vulnerability
5243| [28404] Apple Safari File Download Remote Denial of Service Vulnerability
5244| [28394] ASUS Remote Console DPC Proxy Buffer Overflow Vulnerability
5245| [28355] Yehe 'envoyer' Arbitrary File Upload Vulnerability
5246| [28354] Piczo Fast Picture Uploader 'ImageUploader4.ocx' ActiveX Control Buffer Overflow Vulnerability
5247| [28346] PEEL Multiple SQL Injection Vulnerabilities and Arbitrary File Upload Vulnerability
5248| [28322] Belkin F5D7230-4 Wireless G Router 'setup_virtualserver.exe' Denial of Service Vulnerability
5249| [28319] Belkin F5D7230-4 Wireless G Router 'setup_dns.exe' Authentication Vulnerability
5250| [28317] Belkin F5D7230-4 Wireless G Router IP-Based Authentication State Authentication Bypass Vulnerability
5251| [28316] Asterisk Predictable HTTP Manager Session ID Security Bypass Vulnerability
5252| [28308] Asterisk RTP Codec Payload Handling Multiple Buffer Overflow Vulnerabilities
5253| [28257] AuraCMS 'HTTP_X_FORWARDED_FOR' SQL Injection Vulnerability
5254| [28226] Lighttpd mod_userdir Information Disclosure Vulnerability
5255| [28219] Download Center Multiple Cross Site Scripting Vulnerabilities
5256| [28199] RemotelyAnywhere HTTP Service Cross-Site Scripting Vulnerability
5257| [28151] F5 BIG-IP Web Management Interface Console HTML Injection Vulnerability
5258| [28129] SmartFactory WF-Downloads XOOPS Module 'viewcat.php' SQL Injection Vulnerability
5259| [28100] Lighttpd 'mod_cgi' Information Disclosure Vulnerability
5260| [28081] Timbuktu Pro File Upload and Log Input Manipulation Vulnerabilities
5261| [28051] netOffice Dwins Authentication Bypass Vulnerability and Arbitrary File Upload Vulnerability
5262| [27981] MyServer Mutltiple HTTP Methods '204 Not Content' Error Remote Denial of Service Vulnerabilities
5263| [27961] LWS php Download Manager 'body.inc.php' Local File Include Vulnerability
5264| [27943] Lighttpd File Descriptor Array Remote Denial of Service Vulnerability
5265| [27932] PHP-Nuke Downloads Module 'sid' Parameter SQL Injection Vulnerability
5266| [27877] Google Hack Honeypot File Upload Manager 'delall' Unauthorized File Access Vulnerability
5267| [27860] Joomla! and Mambo com_downloads Component 'cat' Parameter SQL Injection Vulnerability
5268| [27847] PHPizabi 'image.php' Arbitrary File Upload Vulnerability
5269| [27839] TRUC Tracking Requirements & Use Cases 'download.php' File Disclosure Vulnerability
5270| [27838] XPWeb 'Download.php' File Disclosure Vulnerability
5271| [27792] Dokeos Multiple SQL Injection, HTML Injection, Cross-Site Scripting, and File Upload Vulnerabilities
5272| [27788] ITheora 'download.php' Information Disclosure Vulnerability
5273| [27780] Joomla! User Home Pages Component 'com_uhp' Arbitrary File Upload Vulnerability
5274| [27756] Facebook Photo Uploader 'ImageUploader4.1.ocx' FileMask Method ActiveX Buffer Overflow Vulnerability
5275| [27747] Counter Strike Portals 'download' SQL Injection Vulnerability
5276| [27737] AliBOARD Arbitrary File Upload Vulnerability
5277| [27720] F5 BIG-IP Web Management Interface Cross-Site Request Forgery Vulnerability
5278| [27715] Sony ImageStation 'AxRUploadServer.dll' ActiveX Control Remote Buffer Overflow Vulnerability
5279| [27708] Spam Board Arbitrary File Upload Vulnerability
5280| [27701] Multiple IEA Software Products HTTP POST Request Denial of Service Vulnerability
5281| [27665] IBM WebSphere Edge Server Caching Proxy Cross-Site Scripting Vulnerability
5282| [27648] Joomla! and Mambo com_downloads Component 'filecatid' Parameter SQL Injection Vulnerability
5283| [27628] RaidenHTTPD Prior to 2.0.22 Unspecified Cross Site Scripting Vulnerability
5284| [27618] Download Management for PHP-Fusion Multiple Local File Include Vulnerabilities
5285| [27598] HispaH Youtube Clone 'load_message.php' Cross-Site Scripting Vulnerability
5286| [27595] IBM OS/400 HTTP Server Expect Header Cross-Site Scripting Vulnerability
5287| [27593] Anon Proxy Server Remote Authentication Buffer Overflow Vulnerability
5288| [27577] Aurigma Image Uploader ActiveX Controls 'ExtractIptc/ExtractExif' Buffer Overflow Vulnerabilities
5289| [27576] Facebook Photo Uploader 4 ActiveX Control 'ExtractIptc/ExtractExif' Buffer Overflow Vulnerabilities
5290| [27562] LightBlog 'cp_upload_image.php' Arbitrary File Upload Vulnerability
5291| [27550] Liferay Enterprise Portal 'User-Agent' HTTP Header Script Injection Vulnerability
5292| [27547] Liferay Enterprise Portal User-Agent HTTP Header Cross Site Scripting Vulnerability
5293| [27544] Drupal Comment Upload Module Upload Validation Function Arbitrary File Upload Vulnerability
5294| [27539] Aurigma Image Uploader 'ImageUploader4.ocx' ActiveX Control Buffer Overflow Vulnerability
5295| [27534] Facebook Photo Uploader 4 'ImageUploader4.1.ocx' ActiveX Control Buffer Overflow Vulnerability
5296| [27533] MySpace Uploader 'MySpaceUploader.ocx' ActiveX Control Buffer Overflow Vulnerability
5297| [27487] Symantec Backup Exec System Recovery Manager FileUpload Class Unauthorized File Upload Vulnerability
5298| [27472] Mambo MOStlyCE Module Image Manager Utility Arbitrary File Upload Vulnerability
5299| [27462] F5 BIG-IP Application Security Manager 'report_type' Cross-Site Scripting Vulnerability
5300| [27456] Persits Software XUpload 'AddFile()' Method ActiveX Control Remote Buffer Overflow Vulnerability
5301| [27423] HFS HTTP File Server Multiple Security Vulnerabilities
5302| [27411] Lycos File Upload Component 'FileUploader.dll' ActiveX Control Buffer Overflow Vulnerability
5303| [27409] Apache 'mod_negotiation' HTML Injection and HTTP Response Splitting Vulnerability
5304| [27391] Fujitsu Interstage HTTP Server Multiple Unspecified Denial Of Service Vulnerabilities
5305| [27379] IDMOS CMS 'download.php' Local File Include Vulnerability
5306| [27373] Numara FootPrints 'MRchat.pl' and 'MRABLoad2.pl' Multiple Remote Command Execution Vulnerabilities
5307| [27368] MegaBBS 'upload.asp' Cross-Site Scripting Vulnerability
5308| [27366] Galaxy Scripts Mini File Host 'upload.php' POST Parameter Local File Include Vulnerability
5309| [27358] BitDefender Products Update Server HTTP Daemon Directory Traversal Vulnerability
5310| [27348] Mahara HTML Arbitrary File Upload Vulnerability
5311| [27327] GalaxyScripts Mini File Host 'upload.php' Local File Include Vulnerability
5312| [27312] MailBee WebMail Pro 'download_view_attachment.aspx' Local File Include Vulnerability
5313| [27285] PHP F1 Max's File Uploader 'index.php' Arbitrary File Upload Vulnerability
5314| [27279] Macrovision FLEXnet Connect ActiveX Control Multiple Arbitrary File Download Vulnerabilities
5315| [27272] F5 BIG-IP 'SearchString' Multiple Cross-Site Scripting Vulnerabilities
5316| [27247] StreamAudio ProxyManager 'InternalTuneIn()' ActiveX Control Buffer Overflow Vulnerability
5317| [27237] Apache HTTP Server 2.2.6, 2.0.61 and 1.3.39 'mod_status' Cross-Site Scripting Vulnerability
5318| [27234] Apache 'mod_proxy_ftp' Undefined Charset UTF-7 Cross-Site Scripting Vulnerability
5319| [27203] UploadScript and UploadImage 'admin.php' Unauthorized Access Vulnerability
5320| [27186] Zero CMS Arbitrary File Upload Vulnerability and Multiple SQL-Injection Vulnerabilities
5321| [27166] ekinboard Multiple Authentication Bypass And Arbitrary File Upload Vulnerabilities
5322| [27158] OneCMS Arbitrary File Upload Vulnerability and Multiple SQL-injection Vulnerabilities
5323| [27151] WordPress Plugin Wp-FileManager 'ajaxfilemanager.php' Arbitrary File Upload Vulnerability
5324| [27128] ExpressionEngine HTTP Response Splitting and Cross Site Scripting Vulnerabilities
5325| [27107] Camtasia Studio 'csPreloader' Remote Code Execution Vulnerability
5326| [27106] DivX Web Player 'npUpload.dll' ActiveX Control Remote Denial of Service Vulnerability
5327| [27092] AGENCY4NET WEBFTP 'download2.php' Local File Include Vulnerability
5328| [27079] Bitweaver 'upload.php' Arbitrary File Upload Vulnerability
5329| [27076] Mihalism Multi Host 'download.php' Directory Traversal Vulnerability
5330| [27066] PHCDownload 'search.php' SQL Injection and Cross-Site Scripting Vulnerability
5331| [27062] MySpace Content Zone 'uploadgames.php' Arbitrary File Upload Vulnerability
5332| [27060] XCMS Multiple Local File Include Vulnerabilities and Arbitrary File Upload Vulnerability
5333| [27047] Extended Module Player (xmp) 'oxm.c' And 'dtt_load.c' Multiple Local Buffer Overflow Vulnerabilities
5334| [27025] Persits Software XUpload ActiveX Control Remote Buffer Overflow Vulnerability
5335| [26998] Agares Media ThemeSiteScript 'loadadminpage' Parameter Remote File Include Vulnerability
5336| [26991] PHCDownload Username HTML Injection Vulnerability
5337| [26978] Sun Java Web Proxy Server and Sun Java Web Server Multiple Cross-Site Scripting Vulnerabilities
5338| [26969] Adobe Flash Player HTTP Response Splitting Vulnerability
5339| [26940] Dokeos 'My production' Arbitrary File Upload Vulnerability
5340| [26939] Apache HTTP Server Windows Share PHP File Extension Mapping Information Disclosure Vulnerability
5341| [26925] Automatic Image Upload with Thumbnails for PunBB 'uploadimg.php' Arbitrary File Upload Vulnerability
5342| [26907] Uber-Uploader Multiple Arbitrary File Upload Vulnerabilities
5343| [26903] RaidenHTTPD 'workspace.php' Directory Traversal Vulnerability
5344| [26899] PeerCast HandshakeHTTP Multiple Buffer Overflow Vulnerabilities
5345| [26882] Anon Proxy Server Remote Shell Command Execution Vulnerabilities
5346| [26851] Kerio WinRoute Firewall Unspecified Proxy Authentication Bypass Weakness
5347| [26849] xml2owl 'filedownload.php' Directory Traversal Vulnerability
5348| [26827] ES Simple Uploader Arbitrary File Upload Vulnerability
5349| [26813] Simple HTTPD Aux Remote Denial of Service Vulnerability
5350| [26810] KLab HttpLogger Unspecified Cross Site Scripting Vulnerability
5351| [26775] PolDoc Document Management System Download_File.PHP Directory Traversal Vulnerability
5352| [26768] SHTTPD Multiple File Access And Directory Traversal Vulnerabilities
5353| [26740] RETIRED: phpBB .PNG and .RAR Multiple Arbitrary File Upload Vulnerabilities
5354| [26700] Apple Mac OS X Mach_Loader.C Local Denial of Service Vulnerability
5355| [26696] Jetty Unspecified HTTP Response Splitting Vulnerability
5356| [26687] Squid Proxy Cache Update Reply Processing Remote Denial of Service Vulnerability
5357| [26686] Microsoft Web Proxy Auto-Discovery Proxy Spoofing Vulnerability
5358| [26663] Apache HTTP Server 413 Error HTTP Request Method Cross-Site Scripting Weakness
5359| [26659] F5 Networks FirePass 4100 SSL VPN My.Logon.PHP3 Cross-Site Scripting Vulnerability
5360| [26651] LearnLoop File_download.PHP Remote File Include Vulnerability
5361| [26589] Mozilla Firefox and SeaMonkey Windows.Location Property HTTP Referer Header Spoofing Weakness
5362| [26559] PBLang NTopic.PHP Arbitrary File Upload Vulnerability
5363| [26537] Aurigma Image Uploader ActiveX Control Multiple Remote Stack Buffer Overflow Vulnerabilities
5364| [26483] IceBB HTTP_X_FORWARDED_FOR SQL Injection Vulnerability
5365| [26457] IBM WebSphere Application Server WebContainer HTTP Request Header Security Weakness
5366| [26361] C++ Sockets Library HTTPSocket Class Remote Denial Of Service Vulnerability
5367| [26329] Galmeta Post Upload_Config.PHP Remote File Include Vulnerability
5368| [26286] Blue Coat ProxySG Management Console URI Handler Multiple Cross-Site Scripting Vulnerabilities
5369| [26278] RETIRED: phpMyConferences PageTraiteDownload.PHP Local File Include Vulnerability
5370| [26277] ISPworker Download.PHP Multiple Directory Traversal Vulnerabilities
5371| [26242] ProfileCMS Profile Creation Arbitrary File Upload Vulnerability
5372| [26212] Shttp Remote Directory Traversal Vulnerability
5373| [26186] FCKeditor Unspecified Arbitrary File Upload Vulnerability
5374| [26184] efileman Arbitrary File Upload And Access Validation Vulnerabilities
5375| [26180] 3proxy FTP Proxy Double Free Memory Corruption Vulnerability
5376| [26179] Japanese PHP Gallery Hosting Arbitrary File Upload Vulnerability
5377| [26171] Jeebles Technology Jeebles Directory Download.PHP Local File Include Vulnerability
5378| [26143] ReloadCMS Index.PHP Local File Include Vulnerability
5379| [26062] Microsoft Internet Explorer Extension Filter Bypass Arbitrary File Download Vulnerability
5380| [26044] Joomla! Flash Uploader mosConfig_Absolute_Path Multiple Remote File Include Vulnerabilities
5381| [26024] PHP ionCube Loader Extension Safe_Mode and Disable_Functions Restriction Bypass Vulnerability
5382| [25990] LightBlog Privilege Escalation and Arbitrary File Upload Vulnerabilities
5383| [25975] TYPOlight webCMS preview.php Arbitrary File Download Vulnerability
5384| [25928] Cart32 GetImage Arbitrary File Download Vulnerability
5385| [25903] Altnet Download Manager ADM4 ActiveX Buffer Overflow Vulnerability
5386| [25892] EDraw Office Viewer Component FtpDownloadFile ActiveX Buffer Overflow Vulnerability
5387| [25878] XOOPS Uploader Class Arbitrary File Upload Vulnerability
5388| [25861] Zomplog admin/upload_files.php Unauthorized Access Vulnerability
5389| [25847] Ruby Net::HTTP SSL Insecure Certificate Validation Weakness
5390| [25836] Microsoft Internet Explorer File Upload Vulnerability
5391| [25799] ELinks HTTPS POST Request Information Disclosure Weakness
5392| [25753] Microsoft ISA Server SOCKS4 Proxy Connection Remote Information Disclosure Vulnerability
5393| [25747] SimplePHPBlog img_upload_cgi.php Arbitrary File Upload Vulnerability
5394| [25727] Yahoo! Messenger CYFT FT60.DLL ActiveX Control GetFile Method Arbitrary File Upload Vulnerability
5395| [25685] PhotoChannel Networks Photo Upload Plugin ActiveX Control Multiple Buffer Overflow Vulnerabilities
5396| [25681] Chupix CMS download.php Arbitrary File Download Vulnerability
5397| [25622] Lighttpd Mod_FastCGI Request Headers Remote Header Overflow Vulnerability
5398| [25621] AuraCMS mod/contak.php Arbitrary File Upload Vulnerability
5399| [25618] QGit DataLoader::doStart Function Local Privilege Escalation Vulnerability
5400| [25617] SisfoKampus dwoprn.php Arbitrary File Download Vulnerability
5401| [25613] Proxy Anket anket.asp SQL Injection Vulnerability
5402| [25612] Joomla! Comp Restaurante Component Index.PHP Arbitrary File Upload Vulnerability
5403| [25589] RW::Download Index.PHP Multiple SQL Injection Vulnerabilities
5404| [25551] Barbo91 upload.php Arbitrary File Upload Vulnerability
5405| [25509] RETIRED: Olate Download Arbitrary File Upload Vulnerability
5406| [25491] Pakupaku CMS Index.PHP Arbitrary File Upload Vulnerability
5407| [25487] Our Space UploadMedia.CGI Arbitrary File Upload Vulnerability
5408| [25455] Dale Mooney Moon Gallery Upload.PHP Arbitrary File Upload Vulnerability
5409| [25412] Olate Download FLDM.PHP Cross-Site Scripting Vulnerability
5410| [25410] Olate Download Download.PHP Multiple SQL Injection Vulnerabilities
5411| [25405] phUploader 'phUploader.php' Arbitrary File Upload Vulnerability
5412| [25404] American Financing eMail Image Upload Output.PHP Arbitrary File Upload Vulnerability
5413| [25384] Olate Download Admin.PHP SQL Injection Vulnerability
5414| [25356] Olate Download Environment.PHP Arbitrary Script Code Execution Vulnerability
5415| [25343] Olate Download Admin.PHP Remote Authentication Bypass Vulnerability
5416| [25293] Szymon Kosok Best Top List Banner-Upload.PHP Arbitrary File Upload Vulnerability
5417| [25278] Streamripper HTTP Header Parsing Buffer Overflow Vulnerabilities
5418| [25253] Mapos-Scripts.de File Uploader Multiple Remote File Include Vulnerabilities
5419| [25192] Xunlei Web Thunder ThunderServer.webThunder.1 ActiveX AddCategory File Download Vulnerability
5420| [25190] Sun Java System Web Server Multiple HTTP Redirect Vulnerabilities
5421| [25164] WikiWebWeaver Index.PHP Arbitrary File Upload Vulnerability
5422| [25158] WordPress Upload.PHP Cross-Site Scripting Vulnerability
5423| [25142] Mozilla Firefox/Thunderbird/SeaMonkey Chrome-Loaded About:Blank Script Execution Vulnerability
5424| [25137] RETIRED: Holotech Phorm FileUpload.PHP Arbitrary File Upload Vulnerability
5425| [25130] Neocrome Seditio PFS.PHP Arbitrary File Upload Vulnerability
5426| [25120] CoreHTTP Http.C Buffer Overflow Vulnerability
5427| [25084] IBM AIX Pioout Arbitrary Library Loading Code Execution Vulnerability
5428| [25070] Sun Solaris Low Bandwidth X Proxy Information Disclosure Vulnerability
5429| [25063] Clever Internet ActiveX Suite CLINetSuiteX6.OCX Arbitrary File Download Or Overwrite Vulnerability
5430| [25030] xserver HTTP Post Request Buffer Overflow Vulnerability
5431| [25028] StatCounter HTTP Referrer Field HTML Injection Vulnerability
5432| [24967] Lighttpd Multiple Code Execution, Denial of Service and Information Disclosure Vulnerabilities
5433| [24958] Joomla Expose Component Uploadimg.PHP Arbitrary File Upload Vulnerability
5434| [24911] Microsoft Internet Explorer OnBeforeUnload Javascript Browser Entrapment Vulnerability
5435| [24778] Microsoft .NET Framework PE Loader Remote Buffer Overflow Vulnerability
5436| [24773] SAP DB Web Server WAHTTP.EXE Multiple Buffer Overflow Vulnerabilities
5437| [24764] FarsiNews Admin.PHP Arbitrary File Upload Vulnerability
5438| [24758] GNU GLibC LD.SO Mask Dynamic Loader Integer Overflow Vulnerability
5439| [24752] LightBlog Main.PHP Arbitrary File Upload Vulnerability
5440| [24750] ImLib BMP Image _LoadBMP Function Denial of Service Vulnerability
5441| [24725] Mozilla Firefox OnKeyDown Event File Upload Vulnerability
5442| [24683] SHTTPd Unspecified Cross Site Scripting Vulnerability
5443| [24649] Apache HTTP Server Mod_Cache Denial of Service Vulnerability
5444| [24648] SlackRoll GnuPG And HTTP Codes Signature Validation Bypass Vulnerability And Weakness
5445| [24645] Apache HTTP Server Mod_Status Cross-Site Scripting Vulnerability
5446| [24642] WordPress Custom Field Arbitrary File Upload Vulnerability
5447| [24639] Dreamlog Upload.PHP Arbitrary File Upload Vulnerability
5448| [24618] SHTTPD Filename Parse Error Information Disclosure Vulnerability
5449| [24609] E107 Signup.PHP Arbitrary File Upload Vulnerability
5450| [24598] Apple WebCore XMLHTTPRequest Cross-Site Scripting Vulnerability
5451| [24589] POWL Load_Lang.PHP Remote File Include Vulnerability
5452| [24581] SerWeb Load_Lang.PHP Remote File Include Vulnerability
5453| [24576] HTTP Server Request Handling Remote Denial Of Service Vulenrability
5454| [24568] RaidenHTTPD Unspecified Cross Site Scripting Vulnerability
5455| [24566] BugHunter HTTP Server Parse Error Information Disclosure Vulnerability
5456| [24552] Xunlei Web Thunder ThunderServer.webThunder.1 ActiveX Control Arbitrary File Download Vulnerability
5457| [24510] FCKeditor Alternative Data Stream Arbitrary File Upload Vulnerability
5458| [24492] Astaro Up2Date Secure Gateway SMTP Proxy Malformed Email Remote Denial of Service Vulnerability
5459| [24483] Microsoft Internet Explorer 7 HTTP Authentication International Domain Name Spoofing Weakness
5460| [24475] Apache Tomcat Manager and Host Manager Upload Script Cross-Site Scripting Vulnerability
5461| [24456] Mbedthis AppWeb HTTP TRACE Information Disclosure Vulnerability
5462| [24408] Link Request Contact Form Arbitrary File Upload Vulnerability
5463| [24404] GeometriX Download Portal Down_Indir.ASP SQL Injection Vulnerability
5464| [24400] Internet Download Accelerator ActiveX Control Buffer Overflow Vulnerability
5465| [24375] MiniWeb HTTP POST Headers Remote Denial of Service Vulnerability
5466| [24354] Yahoo! Messenger Webcam Upload ActiveX Control Buffer Overflow Vulnerability
5467| [24345] ASP Folder Gallery Download_Script.ASP Arbitrary File Download Vulnerability
5468| [24306] F5 FirePass 4100 SSL VPN My.Activiation.PHP3 Remote Command Injection Vulnerability
5469| [24268] PHP EXT/Session HTTP Response Header Injection Vulnerability
5470| [24228] FileCloset Unspecified Arbitrary File Upload Vulnerability
5471| [24215] Apache HTTP Server Worker Process Multiple Denial of Service Vulnerabilities
5472| [24172] Ademco ATNBaseLoader100 ActiveX Control Buffer Overflow Vulnerability
5473| [24165] Sun Java Web Proxy Server Multiple Buffer Overflow Vulnerabilities
5474| [24074] FreeType TT_Load_Simple_Glyph() TTF File Integer Overflow Vulnerability
5475| [24034] PHP Soap Engine Make_HTTP_Soap_Request Weak Nonce HTTP Authentication Weakness
5476| [23996] Jetbox CMS Arbitrary File Upload Vulnerability
5477| [23975] W2Box Arbitrary File Upload Vulnerability
5478| [23962] Webdesproxy GET Request Buffer Overflow Vulnerability
5479| [23932] Interchange HTTP POST Requests Denial Of Service Vulnerability
5480| [23927] LibEXIF Exif_Data_Load_Data_Entry Remote Integer Overflow Vulnerability
5481| [23852] CubeCart Multiple HTTP Response Splitting Vulnerabilities
5482| [23851] Drake CMS Index.PHP HTTP Response Splitting Vulnerability
5483| [23840] Nuked-Klan Upload.PHP Arbitrary File Upload Vulnerability
5484| [23818] PHP FTP_Putcmd Function HTTP Response Splitting Vulnerability
5485| [23774] 1024 CMS Upload Manager Download.PHP Directory Traversal Vulnerability
5486| [23757] Motobit ASP Upload Manager Download.ASP Directory Traversal Vulnerability
5487| [23739] Psi-labs Photo Upload Share Script SQL Injection and Unauthorized Access Vulnerability
5488| [23714] Gazi Download Portal Down_Indir.ASP SQL Injection Vulnerability
5489| [23713] Pi3Web Overly Long HTTP Request Denial Of Service Vulnerability
5490| [23668] Multiple Web Browsers Digest Authentication HTTP Response Splitting Vulnerability
5491| [23643] Ext Feed-Proxy.PHP Directory Traversal Vulnerability
5492| [23636] Wavewoo Loading.PHP Remote File Include Vulnerability
5493| [23632] USP FOSS Distribution Download.PHP Directory Traversal Vulnerability
5494| [23628] DMCMS Upload_File.PHP Arbitrary File Upload Vulnerability
5495| [23614] Maran PHP Forum Forum_write.PHP Arbitrary File Upload Vulnerability
5496| [23595] Microgaming Download Helper ActiveX Control Remote Buffer Overflow Vulnerability
5497| [23553] Zomplog 'upload/force_download.php' Directory Traversal Vulnerability
5498| [23522] Akamai Download Manager ActiveX Control Multiple Buffer Overflow Vulnerabilities
5499| [23515] Lighttpd Multiple Remote Denial of Service Vulnerabilities
5500| [23480] Openads Max Media Manager CK.PHP HTTP Response Splitting Vulnerability
5501| [23463] Ice Download Gallery Arbitrary File Upload Vulnerability
5502| [23453] ToendaCMS HTTP Get And Post Forms HTML Injection Vulnerability
5503| [23445] KarjaSoft Sami HTTP Server Request Remote Denial of Service Vulnerabilities
5504| [23442] Openads Adclick.PHP HTTP Response Splitting Vulnerability
5505| [23438] Apache HTTPD suEXEC Local Multiple Privilege Escalation Weaknesses
5506| [23387] Xrousse Beryo Downloadpic.PHP Arbitrary File Download Vulnerability
5507| [23341] Wserve HTTP Server GET Request Buffer Overflow Vulnerability
5508| [23320] XOOPS Rha7 Downloads Module Visit.PHP SQL Injection Vulnerability
5509| [23290] SolidWorks SLDimdownload ActiveX Control Arbitrary Code Execution Vulnerability
5510| [23243] DProxy DNS_Decode_Reverse_Name Buffer-Overflow Vulnerability
5511| [23201] IBM Lotus SameTime STJNILoader.OCX ActiveX Control LoadLibrary Input Validation Vulnerability
5512| [23166] JBrowser Upload.PHP3 Arbitrary File Upload Vulnerability
5513| [23158] IceBB Avatar Upload Index.PHP SQL Injection Vulnerability
5514| [23151] IceBB Avatar Upload Remote PHP Code Execution Vulnerability
5515| [23132] Image_Upload Script Multiple Remote File Include Vulnerabilities
5516| [23112] DProxy Stack-Based Buffer-Overflow Vulnerability
5517| [23086] IBM WebSphere Application Server Unspecified HTTP Response Splitting Vulnerability
5518| [23085] Squid Proxy TRACE Request Remote Denial of Service Vulnerability
5519| [23084] Zope HTTP Get Request HTML Injection Vulnerability
5520| [23055] W-Agora Multiple Arbitrary File Upload Vulnerabilities
5521| [23032] MetaForum Arbitrary File Upload Vulnerability
5522| [22989] McGallery Download.PHP Information Disclosure Vulnerability
5523| [22960] Apache HTTP Server Tomcat Directory Traversal Vulnerability
5524| [22956] PHProjekt Arbitrary File Upload Vulnerability
5525| [22933] Xine DirectShow Loader Remote Buffer Overflow Vulnerability
5526| [22888] Trac Download Function Cross-Site Scripting Vulnerability
5527| [22763] Wiclear Upload Tool Unspecified Vulnerability
5528| [22741] NetProxy Security Restriction Bypass Vulnerability
5529| [22723] STWC-Counter Downloadcounter.PHP Remote File Include Vulnerability
5530| [22703] Pickle Download.PHP Local File Include Vulnerability
5531| [22688] Mozilla Firefox OnUnload Javascript Browser Entrapment Vulnerability
5532| [22686] Novell Zenworks Desktop Management Image Upload Security Bypass Vulnerability
5533| [22680] Microsoft Internet Explorer OnUnload Javascript Browser Entrapment Vulnerability
5534| [22679] Mozilla Firefox OnUnload Memory Corruption Vulnerability
5535| [22678] Microsoft Internet Explorer OnUnload Null Pointer Dereference Vulnerability
5536| [22527] RETIRED: LightTPD Search.PHP Cross-Site Scripting Vulnerability
5537| [22498] eXtreme File Hosting Arbitrary RAR File Upload Vulnerability
5538| [22445] FreeProxy Proxy Request Denial of Service Vulnerability
5539| [22393] Blue Coat Systems WinProxy Connect Remote Heap Overflow Vulnerability
5540| [22382] Ublog Reload HTML Injection and SQL Injection Vulnerabilities
5541| [22349] Gentoo Linux Acme Thttpd File Access Information Dislosure Vulnerability
5542| [22327] Modx FileDownload Snippet Arbitrary File Download Vulnerability
5543| [22298] HTTP Commander Multiple Cross-Site Scripting Vulnerabilities
5544| [22274] MPG123 HTTP_Open() Connection Handling Denial of Service Vulnerability
5545| [22255] PHProxy Index.Inc.PHP HTML Injection Vulnerability
5546| [22249] Apple CFNetwork HTTP NULL Pointer Dereference Denial of Service Vulnerability
5547| [22236] DokuWiki Fetch.PHP HTTP Response Splitting Vulnerability
5548| [22209] GTK2 GDKPixBufLoader Remote Denial of Service Vulnerability
5549| [22189] Bild Bearbeiten Online Upload Service Top.PHP Remote File Include Vulnerability
5550| [22185] Atozed Software Intraweb Component HTTP Request Handling Remote Denial of Service Vulnerability
5551| [22159] KarjaSoft Sami HTTP Server Request Remote Denial of Service Vulnerability
5552| [22150] Upload Service Top.PHP Remote File Include Vulnerability
5553| [22079] Squid Proxy FTP URI Remote Denial of Service Vulnerability
5554| [22034] LibSoup Library HTTP Headers Remote Denial of Service Vulnerability
5555| [21957] F5 Firepass Multiple Input Validation Vulnerabilities
5556| [21889] Kolayindir Download Down.ASP SQL Injection Vulnerability
5557| [21831] Rediff Bol Downloader ActiveX Control Remote Code Execution Vulnerability
5558| [21827] IMGallery Start.PHP Arbitrary File Upload Vulnerability
5559| [21816] AIDeX Mini-Webserver HTTP Request Remote Denial of Service Vulnerability
5560| [21789] PHP-Update Admin Upload.PHP Arbitrary File Upload Vulnerability
5561| [21754] Mxmania File Upload Manager Detail.ASP SQL Injection Vulnerability
5562| [21743] Logahead UNU Edition _Widged.PHP Arbitrary File Upload Vulnerability
5563| [21712] HTTP Explorer Web Server Directory Traversal Vulnerability
5564| [21696] PgmReloaded Multiple Remote File Include Vulnerabilities
5565| [21686] Oracle Portal Calendar.JSP Multiple HTTP Response Splitting Vulnerabilities
5566| [21679] Ozeki HTTP-SMS Gateway Password Information Disclosure Vulnerability
5567| [21676] Burak Yilmaz Download Portal Down.ASP SQL Injection Vulnerability
5568| [21648] Upload_download_de_fichiers Administre2.PHP SQL Injection Vulnerability
5569| [21639] EyeOS Aplic.PHP Arbitrary File Upload Vulnerability
5570| [21528] DadaIMC Default .HTAccess Configuration Arbitrary File Upload Vulnerability
5571| [21525] TorrentFlux Downloaddetails.PHP Directory Traversal Vulnerability
5572| [21473] Novell ZENworks Patch Management Downloadreport.ASP SQL Injection Vulnerability
5573| [21453] Adobe Download Manager AOM Buffer Overflow Vulnerability
5574| [21421] PHPMyAdmin Multiple HTTP Response Splitting Vulnerabilities
5575| [21417] PHP Upload Progress Meter UploadProgress.C Remote Buffer Overflow Vulnerability
5576| [21412] PHP Upload Center Remote File Include Vulnerability
5577| [21389] DZCP Clanportal Index.PHP Arbitrary File Upload Vulnerability
5578| [21344] P-News Profile Editory Arbitrary File Upload Vulnerability
5579| [21291] Apple Mac OS X Mach-O Binary Loading Integer Overflow Vulnerability
5580| [21272] Apple Mac OS X Mach-O Binary Loading Privilege Escalation Vulnerability
5581| [21179] PHP Easy Download Remote Code Execution Vulnerability
5582| [21150] PHP Upload Tool Arbitrary File Upload and Directory Traversal Vulnerabilities
5583| [21130] Bloo Googlespell_Proxy.PHP Cross-Site Scripting Vulnerability
5584| [21120] Verity Ultraseek Information Disclosure and Request Proxying Vulnerabilities
5585| [20950] GreenBeast CMS Up_Loader.PHP Arbitrary File Upload Vulnerability
5586| [20915] Microsoft XML Core Service XMLHTTP ActiveX Control Remote Code Execution Vulnerability
5587| [20896] RapidKill Arbitrary File Upload Vulnerability
5588| [20891] Acme Thttpd Insecure Temporary Logfile Creation Vulnerability
5589| [20881] ELOG Nonexistent File Download Cross-Site Scripting Vulnerability
5590| [20874] RunCMS Avatar Arbitrary File Upload Vulnerability
5591| [20784] Aktueldownload Haber Scripti HaberDetay.ASP SQL Injection Vulnerability
5592| [20754] MAXdev MD-Pro Multiple HTTP Response Splitting Vulnerabilities
5593| [20747] AOL YGPPDownload AddPictureNoAlbum ActiveX Controls Buffer Overflow Vulnerability
5594| [20745] AOL YGGPDownload DownloadFileDirectory ActiveX Controls Buffer Overflow Vulnerability
5595| [20743] MiniHTTPServer Web Forum and File Sharing Server Add User Authentication Bypass Vulnerability
5596| [20685] Shop-Script Multiple HTTP Response Splitting Vulnerabilities
5597| [20655] Novell eDirectory iMonitor HTTPSTK Buffer Overflow Vulnerability
5598| [20616] PHP-Post Avatar Arbitrary File Upload Vulnerability
5599| [20593] RETIRED: Adobe Flash Player Plugin Multiple HTTP Response Splitting Vulnerabilities
5600| [20592] Adobe Flash Player Plugin HTTP Header Injection Weakness
5601| [20586] WSN Forum Avatar Upload PHP Code Execution Vulnerability
5602| [20583] F5 FirePass 1000 SSL VPN My.AccTab.PHP3 Cross-Site Scripting Vulnerability
5603| [20500] Alex DownloadEngine Spaw_Root Remote File Include Vulnerability
5604| [20494] FreeWPS Upload.PHP Remote Command Execution Vulnerability
5605| [20481] E-Uploader Pro Config.PHP Remote File Include Vulnerability
5606| [20466] FlatNuke Index.PHP Arbitrary File Upload Vulnerability
5607| [20393] SHTTPD Remote Buffer Overflow Vulnerability
5608| [20351] PolyCom IP-301 VoIP Desktop Phone HTTP Server Denial Of Service Vulnerabilities
5609| [20346] Linksys SPA921 VoIP Phone HTTP Server Denial Of Service Vulnerabilities
5610| [20288] McAfee EPolicy Orchestrator and ProtectionPilot HTTP Server Remote Buffer Overflow Vulnerability
5611| [20278] OlateDownload Multiple Input Validation Vulnerabilities
5612| [20174] Opial AV Download Management Index.PHP Cross-Site Scripting Vulnerability
5613| [20151] Simple HTTP Scanner Multiple Unspecified Vulnerabilities
5614| [20098] OSU HTTP Server Multiple Information Disclosure Vulnerabilities
5615| [20077] Mambo Hotornot Component Uploadfile.PHP Arbitrary File Upload Vulnerability
5616| [20067] BusyBox HTTPD Directory Traversal Vulnerability
5617| [20044] Limbo CMS Frontpage Arbitrary File Upload Vulnerability
5618| [20034] Apple Mac OS X KExtLoad Buffer Overflow Weakness
5619| [20031] Apple Mac OS X KExtLoad Format String Weakness
5620| [20011] NX5Linkx Links.PHP HTTP Response Splitting Vulnerability
5621| [19987] Microsoft Internet Explorer HTTP 1.1 and Compression Long URI Buffer Overflow Variant Vulnerability
5622| [19952] OPENi-CMS Fileloader.PHP Remote File Include Vulnerability
5623| [19918] RaidenHTTPD Check.PHP Remote File Include Vulnerability
5624| [19890] PHP-Nuke Book Catalog Module 'upload.php' Arbitrary File Upload Vulnerability
5625| [19872] PHP Download Download.PHP Directory Traversal Vulnerability
5626| [19867] SZEWO PhpCommander Download.PHP Local File Include Vulnerability
5627| [19810] Retro64 CR64Loader ActiveX Remote Buffer Overflow Vulnerability
5628| [19716] Fuji Xerox Printing Systems Embedded HTTP Server Multiple Vulnerabilities
5629| [19707] Streamripper HTTP Header Parsing Buffer Overflow Vulnerability
5630| [19667] Microsoft Internet Explorer HTTP 1.1 and Compression Long URI Buffer Overflow Vulnerability
5631| [19661] Apache HTTP Server Arbitrary HTTP Request Headers Security Weakness
5632| [19545] Anti-Spam SMTP Proxy Server Unauthorized File Access Vulnerability
5633| [19539] Mensajeitor HTTP CLIENT IP HTML Injection Vulnerability
5634| [19537] WikiWebWeaver Index.PHP Arbitrary File Upload Vulnerability
5635| [19433] Comet WebFileManager CheckUpload.PHP Remote File Include Vulnerability
5636| [19380] The Address Book Reloaded Unspecified Multiple SQL Injection Vulnerabilities
5637| [19344] ChaosSoft CounterChaos HTTP_Referer SQL Injection Vulnerability
5638| [19336] ME Download System Header.PHP Remote File Include Vulnerability
5639| [19334] VBulletin Arbitrary File Upload Vulnerability
5640| [19270] Knusperleicht FileManager DWL_Download Remote File Include Vulnerability
5641| [19175] EzUpload Multiple Unauthorized Access Vulnerabilities
5642| [19157] Etomite CMS Rfiles.PHP Arbitrary File Upload Vulnerability
5643| [19115] Cheese Tracker XM Loader Buffer Overflow Vulnerability
5644| [19091] PlanetGallery Gallery_Admin.PHP Arbitrary File Upload Vulnerability
5645| [19072] ToendaCMS Connector.PHP Arbitrary File Upload Vulnerability
5646| [18901] RW::Download Stats.PHP Remote File Include Vulnerability
5647| [18877] Gimp XCF_load_vector Function Buffer Overflow Vulnerability
5648| [18854] TWiki Arbitrary File Upload Vulnerability
5649| [18799] F5 Firepass 4100 SSL VPN Multiple Unspecified Cross-Site Scripting Vulnerabilities
5650| [18768] PHPFormGenerator Arbitrary File Upload Vulnerability
5651| [18767] Geeklog Connector.PHP Arbitrary File Upload Vulnerability
5652| [18764] SturGeoN Upload Arbitrary File Upload Vulnerability
5653| [18723] PatchLink Update Server Proxyreg.ASP Authentication Bypass Vulnerability
5654| [18570] Fortinet FortiGate FTP Proxy Antivirus Engine Bypass Vulnerability
5655| [18499] Eduha Meeting Index.PHP Arbitrary File Upload Vulnerability
5656| [18496] Easy CMS Choose_file.PHP Arbitrary File Upload Vulnerability
5657| [18465] Zeroboard Arbitrary File Upload Vulnerability
5658| [18449] Cisco Secure ACS LoginProxy.CGI Cross-Site Scripting Vulnerability
5659| [18312] Qbik WinGate Remote HTTP Request Buffer Overflow Vulnerability
5660| [18301] TIBCO Rendezvous HTTP Interface Remote Buffer Overflow Vulnerability
5661| [18293] Alex DownloadEngine Comments.PHP SQL Injection Vulnerability
5662| [18279] ESTsoft InternetDisk Arbitrary File Upload and Script Execution Vulnerability
5663| [18271] Quake 3 Engine CL_ParseDownload Remote Buffer Overflow Vulnerability
5664| [18187] Xine-Lib HTTP Response Buffer Overflow Vulnerability
5665| [18174] Linux Kernel ELF Loader Mismatched Architecture Local Denial of Service Vulnerability
5666| [18135] EZUpload Path Parameter Multiple Remote File Include Vulnerabilities
5667| [18130] Seditio Referer HTTP Header HTML Injection Vulnerability
5668| [18089] Russcom PHPImages Arbitrary File Upload Vulnerability
5669| [18041] JemWeb DownloadControl DC.PHP SQL Injection Vulnerability
5670| [18038] Skype Technologies Skype URI Handling Remote File Download Vulnerability
5671| [18029] FCKeditor Arbitrary File Upload Vulnerability
5672| [18014] Snitz Forums Avatar Mod Arbitrary File Upload Vulnerability
5673| [17993] DUware DUbanner Arbitrary File Upload Vulnerability
5674| [17946] Ozzywork Galeri Arbitrary File Upload Vulnerability
5675| [17937] Cisco Application Velocity System Open TCP Proxy Vulnerability
5676| [17814] zawhttpd Remote HTTP GET Denial Of Service Vulnerability
5677| [17749] PHPNuke Downloads Module SQL Injection Vulnerability
5678| [17431] SIRE Arbitrary File Upload Vulnerability
5679| [17430] Shadowed Portal Load.PHP Cross-Site Scripting Vulnerability
5680| [17383] Cisco 11500 Content Services Switch HTTP Compression Remote Denial of Service Vulnerability
5681| [17372] Kaffeine Remote HTTP_Peek Buffer Overflow Vulnerability
5682| [17371] AngelineCMS Loadkernel.PHP Remote File Include Vulnerability
5683| [17353] ReloadCMS User-Agent HTML Injection Vulnerability
5684| [17350] AN HTTPD Source Disclosure Vulnerability
5685| [17271] Noah Grey Greymatter Arbitrary File Upload Vulnerability
5686| [17175] F5 Firepass 4100 SSL VPN Cross-Site Scripting Vulnerability
5687| [17163] BEA WebLogic Server and WebLogic Express HTTP Response Splitting Vulnerability
5688| [17156] Skull-Splitter Download Counter for Wallpapers Count.PHP SQL Injection Vulnerability
5689| [17129] php iCalendar Arbitrary File Upload Vulnerability
5690| [17123] Dwarf HTTP Server Multiple Input Validation Vulnerabilities
5691| [17116] DSDownload Multiple SQL-Injection Vulnerabilities
5692| [16972] Acme Labs thttpd HTPasswd Multiple Vulnerabilities
5693| [16934] RaidenHTTPD Remote Script Disclosure Vulnerability
5694| [16893] Lighttpd Remote Script Disclosure Vulnerability
5695| [16823] FreeHostShop Website Generator Arbitrary File Upload Vulnerability
5696| [16796] CubeCart Arbitrary File Upload Vulnerability
5697| [16690] D-Link DWL-G700AP HTTPD Denial Of Service Vulnerability
5698| [16509] PHPBB HTTP Referer Information Disclosure Vulnerability
5699| [16415] CRE Loaded Files.PHP Access Validation Vulnerability
5700| [16394] Cisco VPN 3000 Concentrator Malformed HTTP/TCP Packet Remote Denial of Service Vulnerability
5701| [16377] PMachine ExpressionEngine HTTP Referrer HTML Injection Vulnerability
5702| [16331] Rockliffe MailSite HTTP Mail Management Agent Denial Of Service Vulnerability
5703| [16330] Rockliffe MailSite HTTP Mail Management Cross-Site Scripting Vulnerability
5704| [16317] Ecartis PantoMIME Arbitrary Attachment Upload Vulnerability
5705| [16291] Cisco IOS HTTP Service CDP Status Page HTML Injection Vulnerability
5706| [16265] Widexl Download Tracker Down.PL Cross-Site Scripting Vulnerability
5707| [16236] Toshiba Bluetooth Stack Object Push Service File Upload Directory Traversal Vulnerability
5708| [16226] SuSE Open Enterprise Server Novell Remote Manager HTTP Request Header Heap Overflow Vulnerability
5709| [16208] MyPhPim Addresses.PHP3 Arbitrary File Upload Vulnerability
5710| [16149] Blue Coat Systems WinProxy Telnet Remote Denial Of Service Vulnerability
5711| [16148] Blue Coat Systems WinProxy Remote Denial Of Service Vulnerability
5712| [16147] Blue Coat Systems WinProxy Remote Host Header Buffer Overflow Vulnerability
5713| [16097] MyBB File Upload SQL Injection Vulnerability
5714| [16031] Httprint HTTP Response Handling Multiple Vulnerabilities
5715| [16025] Cisco Downloadable RADIUS Policies Information Disclosure Vulnerability
5716| [16001] Interaction SIP Proxy Remote Heap Corruption Denial Of Service Vulnerability
5717| [15981] Blender BlenLoader File Processing Integer Overflow Vulnerability
5718| [15919] EZUpload SQL Injection Vulnerability
5719| [15918] EZUpload Remote File Include Vulnerability
5720| [15835] Opera Web Browser Download Dialog Manipulation File Execution Vulnerability
5721| [15814] Blackboard Academic Suite Frameset.JSP Cross-Domain Frameset Loading Vulnerability
5722| [15810] Horde Application Framework CSV File Upload Code Execution Vulnerability
5723| [15788] Lyris Listmanager TCLHTTPd Service Multiple Information Disclosure Vulnerabilities
5724| [15772] Sun Solaris Sun Update Connection Web Proxy Password Disclosure Vulnerability
5725| [15744] DoceboLMS Arbitrary File Upload Vulnerability
5726| [15728] Sun Java System Application Server Reverse SSL Proxy Plug-in Man In The Middle Vulnerability
5727| [15673] WebCalendar Layers_Toggle.PHP HTTP Response Splitting Vulnerability
5728| [15663] Drupal Image Upload HTML Injection Vulnerability
5729| [15626] PHP Upload Center Directory Traversal Vulnerability
5730| [15621] PHP Upload Center Index.PHP Directory Traversal Vulnerability
5731| [15602] Cisco IOS HTTP Service HTML Injection Vulnerability
5732| [15517] PHP Download Manager Files.PHP SQL Injection Vulnerability
5733| [15509] Google Search Appliance ProxyStyleSheet Multiple Remote Vulnerabilities
5734| [15484] Revize CMS HTTPTranslatorServlet Cross-Site Scripting Vulnerability
5735| [15470] PHP Easy Download Edit.PHP Authentication Bypass Vulnerability
5736| [15422] PHPMyAdmin Header_HTTP_Inc.PHP HTTP Response Splitting Vulnerability
5737| [15399] PHPWebThings Download.PHP File Parameter SQL Injection Vulnerability
5738| [15391] Exponent CMS Image Upload Arbitrary Script Execution Vulnerability
5739| [15368] YaBB Image Upload HTML Injection Vulnerability
5740| [15360] SAP Web Application Server HTTP Response Splitting Vulnerability
5741| [15351] toendaCMS Remote File Upload Vulnerability
5742| [15335] PHPFM Arbitrary File Upload Vulnerability
5743| [15322] PunBB/Blog:CMS Image Upload HTML Injection Vulnerability
5744| [15320] Acme Thttpd Insecure Temporary File Creation Vulnerability
5745| [15301] PHP Handicapper Process_signup.PHP HTTP Response Splitting Vulnerability
5746| [15296] vBulletin Image Upload HTML Injection Vulnerability
5747| [15286] Invision Gallery Image Upload HTML Injection Vulnerability
5748| [15269] Cisco Management Center for IPS Sensors Configuration Download Weakness
5749| [15250] PHP File Upload GLOBAL Variable Overwrite Vulnerability
5750| [15230] Rockliffe MailSite Express Arbitrary Script File Upload Vulnerability
5751| [15225] Hasbani Web Server Malformed HTTP GET Request Remote Denial of Service Vulnerability
5752| [15222] Sun Solaris Management Console HTTP TRACE Information Disclosure Vulnerability
5753| [15170] phpBB Avatar Upload HTML Injection Vulnerability
5754| [15165] SUSE Linux Squid Proxy SSL Handling Denial of Service Vulnerability
5755| [15163] Oracle Application Server HTTP Response Splitting Vulnerability
5756| [15129] Rockliffe MailSite Express Arbitrary File Upload Vulnerability
5757| [15074] PHP Advanced Transfer Manager Arbitrary File Upload Vulnerability
5758| [15051] XLoadImage Multiple Remote Buffer Overflow Vulnerabilities
5759| [15048] Up-IMAPProxy Multiple Unspecified Remote Format String Vulnerabilities
5760| [15025] Computer Associates Multiple Product HTTP Request Remote Buffer Overflow Vulnerability
5761| [15019] Debian Linux Mason Init.d Firewall Loading Failure Vulnerability
5762| [14979] NTLM Authorization Proxy Server Insecure Configuration File Permissions Vulnerability
5763| [14977] Squid Proxy Client NTLM Authentication Denial Of Service Vulnerability
5764| [14974] NateOn Messenger Arbitrary File Download And Buffer Overflow Vulnerabilities
5765| [14969] Microsoft Internet Explorer XmlHttpRequest Parameter Validation Weakness
5766| [14926] JPortal Download.PHP SQL Injection Vulnerability
5767| [14924] Multiple Browser Proxy Auto-Config Script Handling Remote Denial of Service Vulnerability
5768| [14923] Mozilla Browser/Firefox Arbitrary HTTP Request Injection Vulnerability
5769| [14920] Mozilla Browser/Firefox Chrome Page Loading Restriction Bypass Privilege Escalation Weakness
5770| [14884] Opera Web Browser Unspecified Drag And Drop File Upload Vulnerability
5771| [14821] Mail-it Now! Upload2Server Arbitrary File Upload Vulnerability
5772| [14814] PHPTagCool HTTP Header SQL Injection Vulnerability
5773| [14788] Sun Java System Web Proxy Server Unspecified Remote Denial Of Service Vulnerability
5774| [14770] Cisco IOS Firewall Authentication Proxy Buffer Overflow Vulnerability
5775| [14764] Microsoft IIS WebDAV HTTP Request Source Code Disclosure Vulnerability
5776| [14761] Squid Proxy Aborted Requests Remote Denial Of Service Vulnerability
5777| [14750] MAXdev MD-Pro Arbitrary Remote File Upload Vulnerability
5778| [14731] Squid Proxy SSLConnectTimeout Remote Denial Of Service Vulnerability
5779| [14678] FUDforum Avatar Upload Arbitrary Script Upload Vulnerability
5780| [14667] Simple PHP Blog Remote Arbitrary File Upload Vulnerability
5781| [14666] Simpleproxy Remote Syslog() Format String Vulnerability
5782| [14665] Astaro Security Linux HTTP CONNECT Unauthorized Access Weakness
5783| [14645] ZipTorrent Proxy Server Password Disclosure Vulnerability
5784| [14636] PostNuke DL-viewdownload.PHP SQL Injection Vulnerability
5785| [14577] CPaint xmlhttp Request Input Validation Vulnerability
5786| [14571] HP Ignite-UX TFTP File Upload Vulnerability
5787| [14564] Discuz! Arbitrary File Upload Vulnerability
5788| [14551] Veritas Backup Exec For Windows And NetWare Arbitrary File Download Vulnerability
5789| [14534] EZUpload Multiple Remote File Include Vulnerabilities
5790| [14479] Comdev eCommerce WCE.Download.PHP Directory Traversal Vulnerability
5791| [14424] Simplicity oF Upload Download.PHP Remote File Include Vulnerability
5792| [14406] Website Baker Arbitrary File Upload Vulnerability
5793| [14402] Opera Web Browser Content-Disposition Header Download Dialog File Extension Spoofing Vulnerability
5794| [14277] Oracle HTTP Server MOD_ORADAV ORAALTPASSWORD Obfuscation Weakness
5795| [14273] Oracle HTTP Server MOD_OSSO Partner Application Cookie Expiration Weakness
5796| [14272] Oracle HTTP Server Unspecified Malformed Request Denial Of Service Vulnerability
5797| [14215] F5 BIG-IP Unspecified SSL Authentication Bypass Vulnerability
5798| [14211] DownloadProtect Download.PHP Directory Traversal Vulnerability
5799| [14176] eRoom Plug-In Insecure File Download Handling Vulnerability
5800| [14159] Internet Download Manager Buffer Overflow Vulnerability
5801| [14132] SlimServe HTTPD Directory Traversal Vulnerability
5802| [14106] Apache HTTP Request Smuggling Vulnerability
5803| [14070] ASPPlayground.NET Remote Arbitrary File Upload Vulnerability
5804| [14063] ASPNuke Language_Select.ASP HTTP Response Splitting Vulnerability
5805| [14053] UBBCentral UBB.Threads Multiple HTTP Response Splitting Vulnerabilities
5806| [14032] HP VCRM Proxy Server Potential Password Disclosure Vulnerability
5807| [13994] Uapplication Ublog Reload Trackback.ASP Cross-Site Scripting Vulnerability
5808| [13991] Uapplication Ublog Reload Multiple SQL Injection Vulnerabilities
5809| [13990] Edgewall Software Trac Unauthorized File Upload/Download Vulnerability
5810| [13985] JBoss Malformed HTTP Request Remote Information Disclosure Vulnerability
5811| [13979] osCommerce Multiple HTTP Response Splitting Vulnerabilities
5812| [13970] Opera Web Browser XMLHttpRequest Object Cross-Domain Access Vulnerability
5813| [13956] Microsoft ISA Server HTTP Request Smuggling Vulnerability
5814| [13955] Microsoft ISA Server HTTP/HTTPS Service Basic Auth Information Disclosure Vulnerability
5815| [13936] RedHat Linux SysReport Proxy Information Disclosure Vulnerability
5816| [13931] Gaim Yahoo! Protocol Support File Download Denial of Service Vulnerability
5817| [13900] Loki Download Manager Catinfo.ASP SQL Injection Vulnerability
5818| [13898] Loki Download Manager Default.ASP SQL Injection Vulnerability
5819| [13877] YaPiG Upload.PHP Directory Traversal Vulnerability
5820| [13873] Multiple Vendor Multiple HTTP Request Smuggling Vulnerabilities
5821| [13871] YaPiG Upload.PHP Remote Arbitrary File Upload Vulnerability
5822| [13833] JiRo's Upload System Login.ASP SQL Injection Vulnerability
5823| [13822] PowerDownload IncDir Remote File Include Vulnerability
5824| [13799] Microsoft Internet Explorer JavaScript OnLoad Handler Remote Code Execution Vulnerability
5825| [13694] Apple Mac OS X Safari Dashboard Widget Download Validation Bypass Vulnerability
5826| [13630] Keyvan1 ImageGallery Database Download Vulnerability
5827| [13600] BoastMachine Remote Arbitrary File Upload Vulnerability
5828| [13592] Squid Proxy Unspecified DNS Spoofing Vulnerability
5829| [13562] IETF IPSEC Protocol Encapsulating Security Payload Vulnerability
5830| [13549] Orenosv HTTP/FTP Server CGISSI.EXE Remote Buffer Overflow Vulnerability
5831| [13546] Orenosv HTTP/FTP Server FTP Commands Remote Buffer Overflow Vulnerability
5832| [13542] PHP Advanced Transfer Manager Arbitrary File Upload Vulnerability
5833| [13450] DotText HTTP Referer HTML Injection Vulnerability
5834| [13434] Squid Proxy Synchronization Remote Cache Poisoning Vulnerability
5835| [13428] Just William's Amazon Webstore HTTP Response Splitting Vulnerability
5836| [13418] Oracle Application Server HTTP Service Mod_Access Restriction Bypass Vulnerability
5837| [13374] SQWebmail HTTP Response Splitting Vulnerability
5838| [13368] MySQL MaxDB HTTP GET Request Remote Buffer Overflow Vulnerability
5839| [13350] MailEnable HTTP Authorization Buffer Overflow Vulnerability
5840| [13348] SNMPPD SNMP Proxy Daemon Remote Format String Vulnerability
5841| [13314] MailEnable HTTPMail Connector Unspecified Security Vulnerability
5842| [13289] Coppermine Photo Gallery ZipDownload.PHP SQL Injection Vulnerability
5843| [13268] Sun Java System Web Proxy Server Multiple Unspecified Remote Buffer Overflow Vulnerabilities
5844| [13261] CityPost Simple PHP Upload Simple-upload-53.PHP Cross-Site Scripting Vulnerability
5845| [13240] F5 BIG-IP User Interface Login Credential Caching Vulnerability
5846| [13202] Apple WebCore Framework XMLHttpRequests Remote Code Execution Vulnerability
5847| [13201] PHP-Nuke Surveys Module HTTP Response Splitting Vulnerability
5848| [13188] Monkey HTTP Daemon Zero Length File Request Denial Of Service Vulnerability
5849| [13187] Monkey HTTP Daemon CGI Processor Format String Vulnerability
5850| [13172] Oops! Proxy Server Auth Remote Format String Vulnerability
5851| [13166] Squid Proxy Aborted Connection Remote Denial Of Service Vulnerability
5852| [13088] DC++ Unspecified Download Drive File Appending Vulnerability
5853| [13084] File Upload Script PHPBB Module Arbitrary Script Upload Vulnerability
5854| [13069] AN HTTPD Arbitrary Log Content Injection Vulnerability
5855| [13066] AN HTTPD CMDIS.DLL Remote Buffer Overflow Vulnerability
5856| [13061] PHP-Nuke Downloads Module Multiple SQL Injection Vulnerabilities
5857| [13059] Axel HTTP Redirection Buffer Overflow Vulnerability
5858| [13027] RunCMS Remote Arbitrary File Upload Vulnerability
5859| [13011] PHP-Nuke Downloads Module Lid Parameter Cross-Site Scripting Vulnerability
5860| [12989] Adobe Acrobat Reader ActiveX Control LoadFile Information Disclosure Vulnerability
5861| [12961] BlueSoleil Object Push Service Bluetooth File Upload Directory Traversal Vulnerability
5862| [12935] Linux Kernel Elf Binary Loading Local Denial of Service Vulnerability
5863| [12890] Cerulean Studios Trillian Multiple Remote HTTP Response Buffer Overflow Vulnerabilities
5864| [12885] Mozilla Browser Remote Insecure XUL Start Up Script Loading Vulnerability
5865| [12869] Phorum HTTP Response Splitting Vulnerability
5866| [12866] NetWin SurgeMail Multiple Remote HTML Injection and File Upload Vulnerabilities
5867| [12769] KDE Konqueror Remote Download Dialog Box Source URI Spoofing Vulnerability
5868| [12754] Xoops Custom Avatar Remote Arbitrary PHP File Upload Vulnerability
5869| [12728] Mozilla Suite/Firefox HTTP Authentication Dialogs Tab Focus Vulnerability
5870| [12726] Stadtaus.Com Download Center Lite Arbitrary Remote PHP File Include Vulnerability
5871| [12722] Computalynx CProxy Directory Traversal Vulnerability
5872| [12716] Squid Proxy Set-Cookie Headers Information Disclosure Vulnerability
5873| [12712] XLoadImage Compressed Image Command Execution Vulnerability
5874| [12688] RaidenHTTPD Multiple Remote Vulnerabilities
5875| [12685] PostNuke Phoenix Download Module Multiple Cross-Site Scripting Vulnerabilities
5876| [12676] FCKeditor For PHP-Nuke Arbitrary File Upload Vulnerability
5877| [12667] Gaim File Download Denial of Service Vulnerability
5878| [12653] PHPWebSite Image File Processing Remote Arbitrary PHP File Upload Vulnerability
5879| [12632] ArGoSoft FTP Server Site Copy Shortcut File Upload Vulnerability
5880| [12587] Yahoo! Messenger Download Dialogue Box File Name Spoofing Vulnerability
5881| [12567] Lighttpd Remote CGI Script Disclosure Vulnerability
5882| [12566] HP HTTP Server Remote Unspecified Buffer Overflow Vulnerability
5883| [12559] KarjaSoft Sami HTTP Server Multiple Remote Vulnerabilities
5884| [12557] CitrusDB CSV File Upload Access Validation Vulnerability
5885| [12551] Squid Proxy DNS Name Resolver Remote Denial Of Service Vulnerability
5886| [12495] Software602 602 Lan Suite Arbitrary File Upload Vulnerability
5887| [12451] RaidenHTTPD Remote File Disclosure Vulnerability
5888| [12443] Linksys PSUS4 PrintServer Malformed HTTP POST Request Denial Of Service
5889| [12432] Squid Proxy WCCP recvfrom() Buffer Overflow Vulnerability
5890| [12431] Squid Proxy squid_ldap_auth Authentication Bypass Vulnerability
5891| [12411] PostgreSQL LOAD Extension Local Privilege Escalation Vulnerability
5892| [12398] phpPGAds HTTP Response Splitting Vulnerability
5893| [12394] WebWasher Classic HTTP CONNECT Unauthorized Access Weakness
5894| [12374] BNC IRC Server Proxy select() Bit-Array Remote Buffer Overflow Vulnerability
5895| [12351] 3proxy select() Bitmap Remote Buffer Overflow Vulnerability
5896| [12339] Help Desk Reloaded Unspecified Remote Vulnerability
5897| [12324] Squid Proxy NTLM Fakeauth_Auth Memory Leak Remote Denial Of Service Vulnerability
5898| [12276] Squid Proxy Gopher To HTML Remote Buffer Overflow Vulnerability
5899| [12275] Squid Proxy Web Cache Communication Protocol Denial Of Service Vulnerability
5900| [12264] Microsoft Internet Explorer Dynamic IFRAME File Download Security Warning Bypass Weakness
5901| [12251] OpenBSD HTTPD mod_include Local Buffer Overflow Vulnerability
5902| [12220] Squid Proxy Malformed NTLM Type 3 Message Remote Denial of Service Vulnerability
5903| [12200] Easy Software Products CUPS HTTP GET Denial Of Service Vulnerability
5904| [12153] Mozilla/Firefox File Download Dialog Spoofing Vulnerability
5905| [12149] SIR GNUBoard File Upload Extension Restriction Bypass Vulnerability
5906| [12141] Microsoft FrontPage 2000 Internet Publishing Service Provider DAV File Upload Vulnerability
5907| [12137] Macallan Mail Solution HTTP GET Request Buffer Overflow Vulnerability
5908| [12115] PHProxy Error Parameter Cross-Site Scripting Vulnerability
5909| [12111] E107 Image Manager Unauthorized File Upload Vulnerability
5910| [12110] TikiWiki Unauthorized File Upload Vulnerability
5911| [12101] Linux Kernel ELF Binary Loading Denial Of Service Vulnerability
5912| [12095] Microsoft Windows LoadImage API Function Integer Overflow Vulnerability
5913| [12040] IMG2ASCII Unauthorized File Upload Vulnerability
5914| [12011] Junkie FTP Client Server Response Download Filename File Corruption Vulnerability
5915| [11985] MediaWiki Remote Arbitrary Script Upload Vulnerability
5916| [11983] JSBoard Remote Arbitrary Script Upload Vulnerability
5917| [11978] Junkie FTP Client Server Response Download Filename Command Execution Vulnerability
5918| [11975] Yanf HTTP Response Buffer Overflow Vulnerability
5919| [11961] IglooFTP File Upload Insecure Temporary File Vulnerability
5920| [11960] IglooFTP Server Response Download Filename File Corruption Vulnerability
5921| [11897] MediaWiki Images Directory Arbitrary Script Upload and Execution Vulnerability
5922| [11883] Opera Web Browser Download Dialogue Box File Name Spoofing Vulnerability
5923| [11877] OpenText FirstClass HTTP Daemon Search Function Remote Denial Of Service Vulnerability
5924| [11865] Squid Proxy Failed DNS Lookup Random Error Messages Information Disclosure Vulnerability
5925| [11843] MySQL MaxDB WAHTTP Server Remote Denial Of Service Vulnerability
5926| [11839] Blog Torrent BTDownload.PHP Cross-Site Scripting Vulnerability
5927| [11786] ACPID Proxy Unspecified Local Denial Of Service Vulnerability
5928| [11779] IPCop Web Administration Interface Proxy Log HTML Injection Vulnerability
5929| [11768] Microsoft Internet Explorer Image Download Filename Extension Spoofing Vulnerability
5930| [11723] ZyXEL Prestige Router HTTP Remote Administration Configuration Reset Vulnerability
5931| [11686] Microsoft Internet Explorer File Download Security Warning Bypass Vulnerability
5932| [11673] PHPWebSite User Module HTTP Response Splitting Vulnerability
5933| [11666] Youngzsoft CCProxy Logging Function Unspecified Remote Buffer Overflow Vulnerability
5934| [11650] BNC IRC Server Proxy Authentication Bypass Vulnerability
5935| [11646] Linux Kernel BINFMT_ELF Loader Local Privilege Escalation Vulnerabilities
5936| [11643] Mozilla Firefox Download Dialogue Box File Name Spoofing Vulnerability
5937| [11630] Up-IMAPProxy Multiple Remote Vulnerabilities
5938| [11605] Microsoft ISA and Proxy Server Web Site Spoofing Vulnerability
5939| [11604] Sun Java System Application Server HTTP TRACE Information Disclosure Vulnerability
5940| [11592] Proxytunnel Remote Format String Vulnerability
5941| [11589] ArGoSoft FTP Server Shortcut File Upload Vulnerability
5942| [11585] Minihttp Forum Web Server Plain Text Password Storage Vulnerability
5943| [11574] Cherokee HTTPD Auth_Pam Authentication Remote Format String Vulnerability
5944| [11566] Sun Java System Web Proxy Server Multiple Unspecified Buffer Overflow Vulnerabilities
5945| [11547] Mega Upload Progress Bar Unspecified File Upload Vulnerability
5946| [11514] OpenWFE Remote Cross-Site Scripting And Connection Proxy Vulnerabilities
5947| [11497] Serendipity Exit.PHP HTTP Response Splitting Vulnerability
5948| [11486] DokuWiki Remote Arbitrary File Upload Vulnerability
5949| [11413] Macromedia JRun Session ID Cookie HTTP Response Splitting Vulnerability
5950| [11385] Squid Proxy SNMP ASN.1 Parser Denial Of Service Vulnerability
5951| [11348] Wordpress Wp-login.PHP HTTP Response Splitting Vulnerability
5952| [11340] DCP-Portal Calendar.PHP HTTP Response Splitting Vulnerability
5953| [11299] Proxytunnel Local Proxy Credential Disclosure Vulnerability
5954| [11271] Icecast Server HTTP Header Buffer Overflow Vulnerability
5955| [11201] Snitz Forums Down.ASP HTTP Response Splitting Vulnerability
5956| [11190] PHP Remote Arbitrary Location File Upload Vulnerability
5957| [11180] SnipSnap HTTP Response Splitting Vulnerability
5958| [11140] Apple Safari Cross-Domain Frame Loading Vulnerability
5959| [11099] Oracle Database Server ctxsys.driload Access Validation Vulnerability
5960| [11098] Squid Proxy NTLM Authentication Denial Of Service Vulnerability
5961| [11087] TorrentTrader Download.PHP SQL Injection Vulnerability
5962| [11085] Cerb\xC3\xA8re Proxy Server Long Host Header Field Remote Denial of Service Vulnerability
5963| [11083] Comersus Cart HTTP Response Splitting Vulnerability
5964| [11030] Working Resources BadBlue Unauthorized Proxy Relay Vulnerability
5965| [11024] SWsoft Plesk Reloaded Login_name Parameter Cross-Site Scripting Vulnerability
5966| [11017] Gadu-Gadu File Download Filename Obfuscation Weakness
5967| [11006] Music Daemon LOAD Command File Disclosure Vulnerability
5968| [10999] Safari/WebCore HTTP Content Filtering Bypass Vulnerability
5969| [10936] Kerio Mailserver Embedded HTTP Server Multiple Unspecified Vulnerabilities
5970| [10921] KDE Konqueror Cross-Domain Frame Loading Vulnerability
5971| [10902] Microsoft Exchange Outlook Web Access HTTP Response Splitting Vulnerability
5972| [10877] Mozilla Cross-Domain Frame Loading Vulnerability
5973| [10862] Acme thttpd Directory Traversal Vulnerability
5974| [10812] RiSearch/RiSearch Pro Open Proxy Vulnerability
5975| [10788] Sun Java System Calendar Server Authentication Proxy Privilege Escalation Vulnerability
5976| [10765] Lexmark Network Printer HTTP Server Denial Of Service Vulnerability
5977| [10763] Opera Web Browser Cross-Domain Frame Loading Vulnerability
5978| [10753] PHPBB Multiple HTTP Response Splitting Vulnerabilities
5979| [10679] Opera Web Browser IFrame OnLoad Address Bar URL Obfuscation Weakness
5980| [10673] Mbedthis Software AppWeb HTTP Server Multiple Vulnerabilities
5981| [10627] Microsoft Internet Explorer Cross-Domain Frame Loading Vulnerability
5982| [10604] giFT-FastTrack HTTP Header Parser Remote Denial Of Service Vulnerability
5983| [10592] ArbitroWeb PHP Proxy Cross-Site Scripting Vulnerability
5984| [10550] Thy HTTP Daemon Null Pointer Exception Denial Of Service Vulnerability
5985| [10515] Blackboard Learning System Dropbox File Download Vulnerability
5986| [10509] SMTP.Proxy Remote Format String Vulnerability
5987| [10508] Apache Mod_Proxy Remote Negative Content-Length Buffer Overflow Vulnerability
5988| [10500] Squid Proxy NTLM Authentication Buffer Overflow Vulnerability
5989| [10496] OpenBSD ISAKMPD Security Association Piggyback Delete Payload Denial Of Service Vulnerability
5990| [10482] Microsoft ISA Server Redirect URI Handler Web Proxy Service Remote Denial Of Service Vulnerability
5991| [10481] Microsoft ISA Server HTTP Authentication Scheme Vulnerability
5992| [10477] Microsoft ISA Server Web Proxy Malformed SSL Packet Remote Denial of Service Vulnerability
5993| [10420] Orenosv HTTP/FTP Server HTTP GET Denial Of Service Vulnerability
5994| [10418] IRIX Checkpoint and Restart libcpr Library Loading Privilege Escalation Vulnerability
5995| [10376] Omnicron OmniHTTPD Get Request Buffer Overflow Vulnerability
5996| [10351] Microsoft Internet Explorer http-equiv Meta Tag Denial of Service Vulnerability
5997| [10315] National Science Foundation Squid Proxy Internet Access Control Bypass Vulnerability
5998| [10312] MailEnable Mail Server HTTPMail Remote Heap Overflow Vulnerability
5999| [10303] MyWeb HTTP Server GET Request Buffer Overflow Vulnerability
6000| [10292] Microsoft ASP.NET Malformed HTTP Request Information Disclosure Vulnerability
6001| [10256] Sambar Open Proxy and Authentication Bypass Vulnerability
6002| [10249] Rosiello Security Sphiro HTTPD Remote Heap Buffer Overflow Vulnerability
6003| [10218] OpenBB Arbitrary Avatar File Upload Vulnerability
6004| [10174] Softwin BitDefender AvxScanOnlineCtrl COM Object Remote File Upload And Execution Vulnerability
6005| [10158] Macromedia ColdFusion MX File Upload Denial Of Service Vulnerability
6006| [10123] Microsoft Windows COM Internet Service/RPC Over HTTP Remote Denial Of Service Vulnerability
6007| [10091] IBM HTTP Server PQ86671 and PQ85834 Fixes Released - Multiple Vulnerabilities Fixed
6008| [10031] OpenBSD ISAKMPD Delete Payload Denial Of Service Vulnerability
6009| [10030] OpenBSD ISAKMPD Malformed CERT Request Payload Denial Of Service Vulnerability
6010| [10029] OpenBSD ISAKMPD Malformed IPSEC SA Payload Denial Of Service Vulnerability
6011| [10028] OpenBSD ISAKMPD Zero Payload Length Denial Of Service Vulnerability
6012| [10027] ADA IMGSVR Remote File Download Vulnerability
6013| [10014] Cisco IOS HTTP Router Management Service Malformed Request Denial Of Service Vulnerability
6014| [10008] MPlayer Remote HTTP Header Buffer Overflow Vulnerability
6015| [10004] TCPDump ISAKMP Identification Payload Integer Underflow Vulnerability
6016| [10003] TCPDump ISAKMP Delete Payload Buffer Overrun Vulnerability
6017| [9971] HP Web Jetadmin Printer Firmware Update Script Arbitrary File Upload Weakness
6018| [9964] Kerio WinRoute Firewall Unspecified Malformed HTTP Header Denial of Service Vulnerability
6019| [9950] Centrinity FirstClass HTTP Server TargetName Parameter Cross-Site Scripting Vulnerability
6020| [9948] PHP-Nuke MS-Analysis Module HTTP Referrer Field SQL Injection Vulnerability
6021| [9901] IBM Lotus Domino HTTP webadmin.nsf Quick Console Cross-Site Scripting Vulnerability
6022| [9900] IBM Lotus Domino HTTP webadmin.nsf Directory Traversal Vulnerability
6023| [9868] Oracle Application Server Web Cache HTTP Request Method Heap Overrun Vulnerability
6024| [9867] OpenBSD httpd Access Rule Bypass Vulnerability
6025| [9859] HP HTTP Server Trusted Certificate Compromise Vulnerability
6026| [9846] GNU MyProxy Cross-Site Scripting Vulnerability
6027| [9826] Apache Mod_SSL HTTP Request Remote Denial Of Service Vulnerability
6028| [9804] Multiple Vendor HTTP Response Splitting Vulnerability
6029| [9778] Squid Proxy NULL URL Character Unauthorized Access Vulnerability
6030| [9742] GWeb HTTP Server Directory Traversal Vulnerability
6031| [9724] Platform Load Sharing Facility EAuth Privilege Escalation Vulnerability
6032| [9723] Avirt Soho Web Service HTTP GET Buffer Overrun Vulnerability
6033| [9722] Avirt Soho Server HTTP GET Buffer Overrun Vulnerability
6034| [9721] Avirt Voice HTTP GET Remote Buffer Overrun Vulnerability
6035| [9719] Platform Load Sharing Facility EAuth Component Buffer Overflow Vulnerability
6036| [9716] Proxy-Pro Professional GateKeeper Web Proxy Buffer Overrun Vulnerability
6037| [9706] PSOProxy Remote Buffer Overflow Vulnerability
6038| [9679] KarjaSoft Sami HTTP Server GET Request Buffer Overflow Vulnerability
6039| [9642] Monkey HTTP Daemon Missing Host Field Denial Of Service Vulnerability
6040| [9611] Microsoft Internet Explorer LoadPicture File Enumeration Weakness
6041| [9608] Shaun2k2 Palmhttpd Server Remote Denial of Service Vulnerability
6042| [9591] Joe Lumbroso Jack's Formmail.php Unauthorized Remote File Upload Vulnerability
6043| [9582] Check Point VPN-1/SecuRemote ISAKMP Large Certificate Request Payload Buffer Overflow Vulnerability
6044| [9581] Multiple Check Point Firewall-1 HTTP Security Server Remote Format String Vulnerabilities
6045| [9561] Sun ONE/iPlanet Web Server HTTP TRACE Credential Theft Vulnerability
6046| [9545] MiniHTTPServer WebForums Forum HTML Injection Vulnerability
6047| [9528] Bodington Uploaded File Disclosure Vulnerability
6048| [9519] Loom Software SurfNow Remote HTTP GET Request Denial Of Service Vulnerability
6049| [9506] WebLogic Server and Express HTTP TRACE Credential Theft Vulnerability
6050| [9500] InternetNow ProxyNow Multiple Stack and Heap Overflow Vulnerabilities
6051| [9494] Mbedthis Software AppWeb HTTP Server Empty Options Request Denial Of Service Vulnerability
6052| [9484] Oracle HTTP Server isqlplus Cross-Site Scripting Vulnerability
6053| [9478] Finjan SurfinGate FHTTP Restart Command Execution Vulnerability
6054| [9477] Sun Solaris modload() Unauthorized Kernel Module Loading Vulnerability
6055| [9476] McAfee ePolicy Orchestrator Agent HTTP POST Buffer Mismanagement Vulnerability
6056| [9475] Netbus Directory Listings Disclosure and File Upload Vulnerability
6057| [9474] Acme thttpd CGI Test Script Cross-Site Scripting Vulnerability
6058| [9470] Mephistoles HTTPD Cross-Site Scripting Vulnerability
6059| [9421] Real Networks Helix Server/Gateway Administration Service HTTP Post System Compromise Vulnerability
6060| [9390] Hand-Crafted Software FreeProxy FreeWeb CreateFile Function Denial of Service Vulnerability
6061| [9388] Hand-Crafted Software FreeProxy FreeWeb Directory Traversal Vulnerability
6062| [9345] Cherokee HTTP Post Remote Content Length Denial Of Service Vulnerability
6063| [9326] Mozilla Browser Proxy Server Authentication Credential Disclosure Vulnerability
6064| [9299] Surfboard httpd Remote Buffer Overflow Vulnerability
6065| [9295] Microsoft Internet Explorer HTTP Referer Information Disclosure Vulnerability
6066| [9278] Microsoft Internet Explorer File Download Warning Bypass Vulnerability
6067| [9218] MVDSV Quake Server Download Buffer Overrun Vulnerability
6068| [9210] lftp Try_Netscape_Proxy Buffer Overflow Vulnerability
6069| [9172] MyServer HTTP File Name Request Handler Remote Denial Of Service Vulnerability
6070| [9167] EZMeeting EZNet.EXE Long HTTP Request Remote Buffer Overflow Vulnerability
6071| [9152] Linksys WRT54G Router Blank HTTP GET Request Denial Of Service Vulnerability
6072| [9121] Bitfolge Snif Downloads Directory Traversal Vulnerability
6073| [9099] Monit Overly Long HTTP Request Buffer Overrun Vulnerability
6074| [9098] Monit HTTP Content-Length Parameter Denial of Service Vulnerability
6075| [9055] PostMaster Proxy Service Cross-Site Scripting Vulnerability
6076| [9020] Nokia IPSO Voyager HTTPDAccessLog.TCL Remote Script injection Vulnerability
6077| [8964] OpenBSD isakmpd Multiple IKE Payload Handling Security Weaknesses
6078| [8949] HTTP Commander Path Disclosure Vulnerability
6079| [8948] HTTP Commander Directory Traversal Vulnerability
6080| [8947] BRS WebWeaver httpd `User-Agent` Remote Denial of Service Vulnerability
6081| [8927] Multiple Vendor HTTP Server IPv6 Socket IPv4 Mapped Address Handling Vulnerability
6082| [8925] TelCondex SimpleWebserver HTTP Referer Remote Buffer Overflow Vulnerability
6083| [8924] Acme thttpd/mini_httpd Virtual Hosting File Disclosure Vulnerability
6084| [8920] Centrinity FirstClass HTTP Server Directory Disclosure Vulnerability
6085| [8906] thttpd defang Remote Buffer Overflow Vulnerability
6086| [8897] SH-HTTPD Character Filtering Remote Information Disclosure Vulnerability
6087| [8858] Gast Arbeiter File Upload Validation Vulnerability
6088| [8854] Emule Web Control Panel HTTP Login Long Password Denial of Service Vulnerability
6089| [8841] Bajie HTTP Server Example Scripts And Servlets Cross-Site Scripting Vulnerability
6090| [8824] Apache Tomcat Non-HTTP Request Denial Of Service Vulnerability
6091| [8793] Centrinity FirstClass HTTP Server Long Version Field Denial Of Service Vulnerability
6092| [8782] MiniHTTPServer WebForums Forum HTML Injection Vulnerability
6093| [8781] MiniHTTPServer File-Sharing for NET Forum HTML Injection Vulnerability
6094| [8764] PHP-Nuke mailattach.php Remote File Upload Vulnerability
6095| [8742] IBM DB2 Remote LOAD Command Buffer Overrun Vulnerability
6096| [8724] Webfs HTTP Server Information Disclosure Vulnerability
6097| [8709] Athttpd Remote GET Request Buffer Overrun Vulnerability
6098| [8697] NullLogic Null HTTPd Remote Denial Of Service Vulnerability
6099| [8695] NullLogic Null HTTPd Error Page Long HTTP Request Cross-Site Scripting Vulnerablity
6100| [8688] TCLHttpd Multiple Cross-Site Scripting Vulnerabilities
6101| [8687] TCLhttpd Directory Listing Disclosure Vulnerability
6102| [8633] MiniHTTPServer WebForum Server Unauthorized Administrative Access Vulnerability
6103| [8620] MiniHTTPServer WebForums Server Default Password Vulnerability
6104| [8619] MiniHTTPServer WebForums/File-Sharing for NET Servers Directory Traversal Vulnerability
6105| [8617] WideChapter HTTP Request Buffer Overflow Vulnerability
6106| [8564] Kukol E.V. HTTP & FTP Server Suite File Disclosure Vulnerability
6107| [8487] AnalogX Proxy DNS Lookup Error Page Cross-Site Scripting Vulnerability
6108| [8471] Avant Browser Long HTTP Request Buffer Overflow Vulnerability
6109| [8438] DWebPro Http.ini Plaintext Password Storage Vulnerability
6110| [8432] cURL Proxy Authentication Header Information Leakage Vulnerability
6111| [8408] SurgeLDAP HTTP GET Denial Of Service Vulnerability
6112| [8375] Multiple Oracle XDB FTP / HTTP Services Buffer Overflow Vulnerabilities
6113| [8374] PostNuke Downloads / Web_Links Modules TTitle Cross-site Scripting Vulnerability
6114| [8373] Cisco IOS 2GB HTTP GET Buffer Overflow Vulnerability
6115| [8363] MiniHTTPServer WebForums Server Null Default Password Vulnerability
6116| [8361] Postfix Connection Proxying Vulnerability
6117| [8305] Sun Solaris Runtime Linker LD_PRELOAD Local Buffer Overflow Vulnerability
6118| [8297] KDE Konqueror HTTP REFERER Authentication Credential Leak Vulnerability
6119| [8290] Cisco Aironet AP1x00 Malformed HTTP GET Denial Of Service Vulnerability
6120| [8271] PHP Arena paFileDB Arbitrary File Upload And Execution Vulnerability
6121| [8226] Apache HTTP Server Multiple Vulnerabilities
6122| [8222] WatchGuard ServerLock Unauthorized Kernel Module Loading Vulnerability
6123| [8197] NetSuite HTTP Server Directory Traversal Vulnerability
6124| [8166] Mabry Software HTTPServer/X File Disclosure Vulnerability
6125| [8155] ChangshinSoft EZTrans Server Download.PHP Directory Traversal Vulnerability
6126| [8135] Apache Web Server FTP Proxy IPV6 Denial Of Service Vulnerability
6127| [8121] Canon GP300 Remote Malformed HTTP Get Denial Of Service Vulnerability
6128| [8064] Abyss Web Server HTTP Header Injection Vulnerability
6129| [8062] Abyss Web Server HTTP GET Heap Overrun Vulnerability
6130| [8061] GTKSee PNG Image Loading Heap Corruption Vulnerability
6131| [8048] iXmail Arbitrary File Upload Vulnerability
6132| [8043] MoreGroupWare Arbitrary File Upload Vulnerability
6133| [8012] Tutos File_New Arbitrary File Upload Vulnerability
6134| [7998] Zope Empty Upload Information DisclosureVulnerability
6135| [7955] MiniHTTPServer WebForums Server Remote Directory Traversal Vulnerability
6136| [7954] Proxomitron Proxy Server Long Get Request Remote Denial Of Service Vulnerability
6137| [7945] Dune HTTP Get Remote Buffer Overrun Vulnerability
6138| [7944] MyServer HTTP Server Directory Traversal Vulnerability
6139| [7939] Microsoft Internet Explorer Custom HTTP Error HTML Injection Vulnerability
6140| [7851] Sun Microsystems JRE HTTP Property Access Vulnerability
6141| [7841] Novell HTTPSTK.NLM Remote Abend Vulnerability
6142| [7830] Monkey HTTP Daemon Sample Script Cross-Site Scripting Vulnerability
6143| [7818] AdSubtract Proxy ACL Bypass Connection Proxying Vulnerability
6144| [7809] Computer Associates Unicenter TNG File_Upload.PL Command Execution Vulnerability
6145| [7802] MegaBrowser HTTP Directory Traversal File Disclosure Vulnerability
6146| [7770] myServer HTTP GET Argument Buffer Overflow Vulnerability
6147| [7765] iisCart2000 Arbitrary File Upload Vulnerability
6148| [7744] Geeklog Image Upload Extension Validation Vulnerability
6149| [7701] BNC IRC Proxy Multiple Session Denial of Service Vulnerability
6150| [7681] AnalogX Proxy URI Buffer Overflow Vulnerability
6151| [7670] EServ Unauthorized Proxy Access Vulnerability
6152| [7655] Platform Load Sharing Facility LSF_ENVDIR Local Command Execution Vulnerability
6153| [7652] Axis Network Camera HTTP Authentication Bypass Vulnerability
6154| [7640] Microsoft Windows Media Player Automatic File Download and Execution Vulnerability
6155| [7620] Venturi Client Unauthorized Connection Proxying Vulnerability
6156| [7619] Snowblind Web Server HTTP GET Request Buffer Overflow Vulnerability
6157| [7617] Snowblind Web Server Malformed HTTP Request Denial Of Service Vulnerability
6158| [7588] PHP-Nuke Multiple Downloads Module SQL Injection Vulnerabilities
6159| [7583] Phorum Login.PHP Connection Proxying Vulnerability
6160| [7581] Phorum Register.PHP Connection Proxying Vulnerability
6161| [7569] Phorum Download File Disclosure Vulnerability
6162| [7479] MDG Web Server 4D HTTP Command Buffer Overflow Vulnerability
6163| [7469] Microsoft BizTalk Server 2002 HTTP Receiver Buffer Overflow Vulnerability
6164| [7435] SonicWALL Pro Large HTTP POST Denial of Service Vulnerability
6165| [7420] Microsoft Internet Explorer Plugin.OCX Load() Method Buffer Overflow Vulnerability
6166| [7397] AN HTTPD Count.pl Directory Traversal Vulnerability
6167| [7314] Microsoft Winsock Proxy Service Remote Denial Of Service Vulnerability
6168| [7287] Abyss Web Server Incomplete HTTP Request Denial Of Service Vulnerability
6169| [7245] Kerio WinRoute Firewall Malformed HTTP GET Request Denial of Service Vulnerability
6170| [7238] CCLog HTTP Header HTML Injection Vulnerability
6171| [7203] Multitech ProxyServer Default NULL Password Vulnerability
6172| [7202] Monkey HTTP Daemon Excessive POST Data Buffer Overflow Vulnerability
6173| [7201] Monkey HTTP Daemon Missing Content-Type Field Denial Of Service Vulnerability
6174| [7196] Symantec Enterprise Firewall HTTP Pattern Matching Evasion Weakness
6175| [7143] Siteframe Download.php Information Disclosure Vulnerability
6176| [7111] McAfee ePolicy Orchestrator HTTP GET Request Format String Vulnerability
6177| [7056] Opera Long Filename Download Buffer Overrun Vulnerability
6178| [7051] Upload Lite Arbitrary File Upload Vulnerability
6179| [7015] WebLog Expert HTTP Header Code Injection Vulnerability
6180| [7010] Logan Pro HTTP Header Code Injection Vulnerability
6181| [6980] Axis Communications HTTP Server Messages Information Disclosure Vulnerability
6182| [6951] IBM Lotus Domino Web Server HTTP POST Denial Of Service Vulnerability
6183| [6876] Syslinux Boot Loader SetUID Installation Vulnerability
6184| [6870] IBM Lotus Domino HTTP Redirect Buffer Overflow Vulnerability
6185| [6839] IBM AIX Loadable Authentication Module Unauthorized Access Vulnerability
6186| [6813] Linked Eggdrop IRC Bot Unauthorized Proxy Vulnerability
6187| [6792] Netscape Enterprise Server HTTP Method Name Buffer Overflow Vulnerability
6188| [6789] Microsoft IIS Malformed HTTP Get Request Denial Of Service Vulnerability
6189| [6782] UMN GopherD Unauthorized Proxy Vulnerability
6190| [6760] DCGUI Remote Directory Parsing File Download Vulnerability
6191| [6752] NCSA Post-query CGI HTTP POST Buffer Overflow Vulnerability
6192| [6740] IlohaMail Arbitrary File Attachment Upload Path Vulnerability
6193| [6734] 3ware Disk Managment Malformed HTTP Request DoS Vulnerability
6194| [6708] Replicom ProxyView Default Password Vulnerability
6195| [6660] Apache Web Server Illegal Character HTTP Request File Disclosure Vulnerability
6196| [6646] Lotus Domino HTTP Authentication Logging Buffer Overflow Vulnerability
6197| [6644] MyRoom save_item.php Arbitrary File Upload Vulnerability
6198| [6572] Mambo Site Server Arbitrary File Upload Vulnerability
6199| [6531] HTTP Fetcher Library Multiple Buffer Overflow Vulnerabilities
6200| [6529] AN HTTPD Cross Site Scripting Vulnerability
6201| [6528] AN HTTPD HTTP Request Buffer Overflow Vulnerability
6202| [6505] iCal Malformed HTTP Request Denial Of Service Vulnerability
6203| [6497] Perl-HTTPd File Disclosure Vulnerability
6204| [6471] Internet Junkbuster Proxy Unauthorized Connections Vulnerability
6205| [6458] RealNetworks Helix Universal Server Long URI Dual HTTP Request Buffer Overflow Vulnerability
6206| [6437] CUPS Negative Length HTTP Header Vulnerability
6207| [6433] CUPS HTTP Interface Integer Overflow Vulnerability
6208| [6424] SuSE gfxmenu GRUB Boot Loader Password Bypassing Vulnerability
6209| [6389] Symantec Enterprise Firewall RealAudio Proxy Buffer Overflow Vulnerability
6210| [6343] Ikonboard X-Forwarded-For: Proxy Header Field HTML Injection Vulnerability
6211| [6340] apt-www-proxy Format String Vulnerability
6212| [6321] Trend Micro InterScan VirusWall Unauthorized Proxy Connections Vulnerability
6213| [6308] Zeroo HTTP Server Directory Traversal Vulnerability
6214| [6292] Webster HTTP Server Cross Site Scripting Vulnerability
6215| [6291] Webster HTTP Server File Disclosure Vulnerability
6216| [6289] Webster HTTP Server Long Request Buffer Overrun Vulnerability
6217| [6287] Pserv HTTP Request Parsing Buffer Overflow
6218| [6286] Pserv User-Agent HTTP Header Buffer Overflow Vulnerability
6219| [6285] Pserv HTTP Version Specifier Buffer Overflow Vulnerability
6220| [6259] AOL Instant Messenger Forced File Download Vulnerability
6221| [6255] Null HTTPD Remote Heap Corruption Vulnerability
6222| [6242] Pserv HTTP POST Request Buffer Overflow Vulnerability
6223| [6236] acFreeProxy Cross Site Scripting Vulnerability
6224| [6230] RealPlayer RealFlash Source Loading Buffer Overflow Vulnerability
6225| [6198] TFTPD32 Arbitrary File Download/Upload Vulnerability
6226| [6190] Lonerunner Zeroo HTTP Server Remote Buffer Overflow Vulnerability
6227| [6181] IBM HTTP Server Information Disclosure Vulnerability
6228| [6172] LibHTTPD POST Buffer Overflow Vulnerability
6229| [6162] Light HTTPD GET Request Buffer Overflow Vulnerability
6230| [6158] TinyHTTPD Input Validation Vulnerability
6231| [6153] EZ Systems HTTPBench Information Disclosure Vulnerability
6232| [6137] Microsoft JVM CAB File Loading Vulnerability
6233| [6134] Microsoft JVM Class Loader Buffer Overrun Vulnerability
6234| [6096] Monkey HTTP Server Invalid POST Request Denial Of Service Vulnerability
6235| [6090] Multiple Vendor Access Point Embedded HTTP Server Denial of Service Vulnerability
6236| [6082] Cisco ONS15454/ONS15327 Optical Transport Platforms HTTP Request Denial of Service Vulnerability
6237| [6071] Microsoft IIS Script Source Access File Upload Vulnerability
6238| [6054] AN HTTPD Error Page Cross Site Scripting Vulnerability
6239| [6020] PHP Arena PAFileDB Download Cross-Site Scripting Vulnerability
6240| [6012] AN HTTPD Malformed SOCKS4 Request Buffer Overflow Vulnerability
6241| [6010] IPFilter FTP Proxy Unauthorized Access Vulnerability
6242| [6002] IBM Websphere Caching Proxy Denial Of Service Vulnerability
6243| [6001] IBM Websphere Edge Server HTTP Header Injection Vulnerability
6244| [5976] Cisco CatOS CiscoView HTTP Server Buffer Overflow Vulnerability
6245| [5960] ghttpd Log() Function Buffer Overflow Vulnerability
6246| [5956] ATP httpd Single Byte Buffer Overflow Vulnerability
6247| [5938] Nylon Proxy Receive Function Denial Of Service Vulnerability
6248| [5931] SurfControl SuperScout Email Filter Incomplete HTTP Request DoS Vulnerability
6249| [5930] SurfControl SuperScout Email Filter Missing Content-Length HTTP Header Field DoS Vulnerability
6250| [5926] VBZoom Arbitrary File Upload Vulnerability
6251| [5907] Microsoft IIS Malformed HTTP HOST Header Field Denial Of Service Vulnerability
6252| [5855] Midicart PHP Arbitrary File Upload Vulnerability
6253| [5829] Monkey HTTP Server Multiple Cross Site Scripting Vulnerabilities
6254| [5819] BEA WebLogic Server and Express HTTP Response Information Disclosure Vulnerability
6255| [5811] Multiple OpenVMS WASD HTTP Server Vulnerabilities
6256| [5792] Monkey HTTP Server File Disclosure Vulnerability
6257| [5774] Null HTTPd Remote Heap Overflow Vulnerability
6258| [5757] Mozilla Browser HTTP/HTTPS Redirection Weakness
6259| [5753] Mozilla Browser Large HTTP Header Buffer Overflow Vulnerability
6260| [5749] IBM WebSphere Large HTTP Header Buffer Overflow Vulnerability
6261| [5738] ISS Internet Scanner HTTP Banner Text Parsing Buffer Overflow Vulnerability
6262| [5725] DB4Web Connection Proxy Vulnerability
6263| [5697] Trend Micro InterScan VirusWall HTTP 1.1 Transfer-Encoding Bypass Vulnerability
6264| [5694] Mozilla OnUnload Referer Information Leakage Vulnerability
6265| [5692] Norton Antivirus 2001 Poproxy Username Local Denial of Service Vulnerability
6266| [5678] Oracle TNS Listener Service_CurLoad Remote Denial Of Service Vulnerability
6267| [5668] Netscreen-Remote VPN Client IKE Packet Excessive Payloads Vulnerability
6268| [5624] Cisco VPN Concentrator HTTP Error Page Device Information Leakage Vulnerability
6269| [5615] Cisco HTTP Interface Long Request Denial Of Service Vulnerability
6270| [5603] NullLogic Null HTTPd Error Page Cross-Site Scripting Vulnerability
6271| [5589] OpenBSD isakmpd IKE Payloads Denial Of Service Vulnerability
6272| [5572] OmniHTTPD Sample Application URL Encoded Newline HTML Injection Vulnerability
6273| [5571] Belkin F5D6130 Wireless Network Access Point SNMP Request Denial Of Service Vulnerability
6274| [5568] OmniHTTPD Sample Scripts Cross Site Scripting Vulnerabilities
6275| [5559] Microsoft Internet Explorer Download Dialogue File Source Obfuscation Vulnerability
6276| [5549] Abyss Web Server Malicious HTTP Request Information Disclosure Vulnerability
6277| [5520] Novell NetWare HTTP Post Arbitrary Perl Code Execution Vulnerability
6278| [5512] Microsoft File Transfer Manager Arbitrary File Upload/Download Vulnerability
6279| [5506] W3C Jigsaw Proxy Server Cross-Site Scripting Vulnerability
6280| [5494] Tomahawk Technologies SteelArrow Cookie HTTP Header Buffer Overflow Vulnerability
6281| [5470] MyWebServer Long HTTP Request HTML Injection Vulnerability
6282| [5443] Cisco VPN Client IKE Packet Excessive Payloads Vulnerability
6283| [5441] Cisco VPN Client IKE Security Parameter Index Payload Buffer Overflow Vulnerability
6284| [5421] Microsoft Content Management Server 2001 Arbitrary Upload Location Vulnerability
6285| [5416] 602Pro LAN SUITE 2002 Telnet Proxy Localhost Denial Of Service Vulnerability
6286| [5384] Inso DynaWeb httpd Format String Vulnerability
6287| [5369] Frederic Tyndiuk Eupload Plain Text Password Storage Vulnerability
6288| [5345] Abyss Web Server HTTP GET Request Directory Contents Disclosure Vulnerability
6289| [5334] HP ChaiVM EZLoader Arbitrary JAR Loading Vulnerability
6290| [5333] Lucent Access Point IP Services Router Long HTTP Request Denial Of Service Vulnerability
6291| [5323] IPSwitch IMail Web Messaging HTTP Get Buffer Overflow Vulnerability
6292| [5321] T. Hauck Jana Server SOCKS5 Proxy Server Authentication Buffer Overflow Vulnerability
6293| [5319] T. Hauck Jana Server HTTP Server Request Logging Buffer Overflow Vulnerability
6294| [5316] StatsPlus HTTP Header HTML Injection Vulnerability
6295| [5278] PHP HTTP POST Incorrect MIME Header Parsing Vulnerability
6296| [5275] Working Resources BadBlue HTTP 302 Message Cross-Site Scrpting Vulnerability
6297| [5256] Apache httpd 2.0 CGI Error Path Disclosure Vulnerability
6298| [5215] ATPhttpd Buffer Overflow Vulnerabilities
6299| [5211] Summit Computer Networks Lil' HTTP Server pbcgi.cgi Cross Site Scripting Vulnerability
6300| [5183] NcFTP Client PORT Allowed With Proxy Server Weakness
6301| [5158] Squid FTP Proxy Data Channel Vulnerabilities
6302| [5157] Squid Gopher Proxy Buffer Overflow Vulnerability
6303| [5154] Squid Proxy Authentication Credential Forwarding Information Disclosure Vulnerability
6304| [5139] AnalogX Proxy Web Proxy Buffer Overflow Vulnerability
6305| [5138] AnalogX Proxy Socks4A Buffer Overflow Vulnerability
6306| [5136] OmniHTTPD Long Request Buffer Overflow Vulnerability
6307| [5115] Summit Computer Networks Lil' HTTP Server URLCount.CGI HTML Injection Vulnerability
6308| [5080] GameCheats Advanced Web Server Malformed HTTP Request Denial Of Service Vulnerability
6309| [5045] 4D WebServer Long HTTP Request Buffer Overflow Vulnerability
6310| [4982] Belkin F5D5230-4 Router Internal Web Traffic Origin Obfuscation Vulnerability
6311| [4922] Core APM File Upload Execution Vulnerability
6312| [4751] Cisco Cache Engine Default Configuration Arbitrary User Proxy Vulnerability
6313| [4747] Cisco Content Service Switch HTTPS Post Denial Of Service Vulnerability
6314| [4711] Cisco ATA-186 HTTP Device Configuration Disclosure Vulnerability
6315| [4698] Novell BorderManager RTSP Proxy Denial Of Service Vulnerability
6316| [4696] Novell BorderManager FTP-Proxy Denial Of Service Vulnerability
6317| [4657] Snapgear Lite+ Firewall HTTP Denial of Service Vulnerability
6318| [4633] Solaris LBXProxy Display Name Buffer Overflow Vulnerability
6319| [4628] Mozilla / Netscape 6 XMLHttpRequest File Disclosure Vulnerability
6320| [4601] ACME Labs thttpd Cross-Site Scripting Vulnerability
6321| [4577] National Instruments LabVIEW HTTP Request Denial of Service Vulnerability
6322| [4576] Summit Computer Networks Lil' HTTP Server Directory Traversal Vulnerability
6323| [4487] Microsoft IIS HTTP Redirect Cross Site Scripting Vulnerability
6324| [4486] Microsoft IIS HTTP Error Page Cross Site Scripting Vulnerability
6325| [4476] Microsoft IIS HTTP Header Field Delimiter Buffer Overflow Vulnerability
6326| [4460] Funk Software Proxy Named Pipe Weak Permissions Arbitrary Access Vulnerability
6327| [4459] Funk Software Proxy Weak Password Storage Vulnerability
6328| [4458] Funk Proxy Weak Default Installation Permissions Vulnerability
6329| [4345] VNC HTTP Server Denial Of Service Vulnerability
6330| [4342] HP Praesidium Webproxy Unauthorized Access Vulnerability
6331| [4325] PHP Move_Uploaded_File Open_Basedir Circumvention Vulnerability
6332| [4286] Foundry Networks ServerIron Encoded URI Load Balancing Bypass Weakness
6333| [4252] Cobalt RaQ XTR MultiFileUpload.php Authentication Bypass Vulnerability
6334| [4229] Zope Proxy Role Elevated Object Access Vulnerability
6335| [4209] Sun Cobalt RaQ Service.CGI HTTP Server Denial of Service Vulnerablity
6336| [4199] Multiple Vendor MacOS Browser Arbitrary Program Download Vulnerability
6337| [4198] BPM Studio Pro HTTPD Directory Traversal Vulnerability
6338| [4183] PHP Post File Upload Buffer Overflow Vulnerabilities
6339| [4153] Summit Computer Networks Lil' HTTP Server Directory Disclosure Vulnerability
6340| [4148] Squid Cache FTP Proxy URL Buffer Overflow Vulnerability
6341| [4143] CacheFlow CacheOS HTTP CONNECT TCP Tunnel Vulnerability
6342| [4141] Symantec Enterprise Firewall SMTP Proxy Information Leak Vulnerability
6343| [4131] Multiple Vendor HTTP CONNECT TCP Tunnel Vulnerability
6344| [4055] Delegate POP Proxy USER Buffer Overflow Vulnerability
6345| [4002] Microsoft Site Server 3.0 Content Upload Denial of Service Vulnerability
6346| [3993] UBBThreads/WWWThreads Arbitrary File Upload Vulnerability
6347| [3964] Alteon AceDirector Half-Closed HTTP Request IP Address Revealing Vulnerabililty
6348| [3954] FormMail HTTP_Referer Spoofing Vulnerability
6349| [3937] CHUID Upload Directory Escaping File Owner Changing Vulnerability
6350| [3917] Working Resources BadBlue Enterprise Edition File Upload Vulnerability
6351| [3905] Avirt Gateway Suite Telnet Proxy Remote Buffer Overflow Vulnerability
6352| [3901] Avirt Gateway Suite Telnet Proxy Remote SYSTEM Access Vulnerability
6353| [3835] LIDS Capability Leakage via LD_PRELOAD Vulnerability
6354| [3814] Anti-Web HTTPD Script Engine Heap Overflow Vulnerability
6355| [3811] Hosting Controller Unauthorized File Access and Upload Vulnerability
6356| [3796] Apache HTTP Request Unexpected Behavior Vulnerability
6357| [3782] Anti-Web HTTPD Script Engine File Opening Denial Of Service Vulnerability
6358| [3773] Cherokee HTTPD Remote Command Execution Vulnerability
6359| [3772] Cherokee HTTPD Directory Traversal Vulnerability
6360| [3771] Cherokee HTTPD Insecure Privilege Release Vulnerability
6361| [3765] Oracle Oracle9iAS Web Cache HTTP Header DoS Vulnerability
6362| [3744] PHPFileExchange File Upload Vulnerability
6363| [3699] Microsoft Internet Explorer XMLHTTP File Disclosure Vulnerability
6364| [3608] Persits AspUpload Default Scripts Exploitable Vulnerability
6365| [3568] Oracle9iAS Web Cache HTTP Content Header Denial Of Service Vulnerability
6366| [3562] thttpd Basic Authentication Buffer Overflow Vulnerability
6367| [3528] Acme THTTPD/Mini_HTTPD File Disclosure Vulnerability
6368| [3523] Rational ClearCase DB Loader TERM Environment Variable Buffer Overflow Vulnerability
6369| [3518] IBM HTTP Server Source Code Disclosure Vulnerability
6370| [3506] Red Hat TUX HTTP Server Oversized Host Denial of Service Vulnerability
6371| [3471] Microsoft IE 5.1 for Mac OS X 10.1 Download Execution Vulnerability
6372| [3421] Microsoft Internet Explorer HTTP Request Encoding Vulnerability
6373| [3354] Squid Web Proxy Cache Denial of Service Vulnerabilty
6374| [3202] Nudester Unauthorized Arbitrary File Upload and Download Vulnerability
6375| [3197] Microsoft ISA Server Proxy Service Memory Leak Denial of Service Vulnerability
6376| [3158] NCSA HTTPd Buffer Overflow Vulnerability
6377| [3074] Multiple Linux Vendor Expect Insecure Library Loading Vulnerability
6378| [3069] HP-UX Dynamically Loadable Kernel Modules Vulnerability
6379| [3062] Squid Web Proxy Reverse Proxy Vulnerability
6380| [3059] Squid Web Proxy Cross-Site Scripting Vulnerability
6381| [3006] xloadimage Buffer Overflow Vulnerability
6382| [2980] SmallHTTP Server Long URL Denial of Service Vulnerability
6383| [2963] BisonFTP BDL File Upload Directory Traversal Vulnerability
6384| [2959] Trend Micro InterScan WebManager HttpSave.dll Buffer Overflow Vulnerability
6385| [2936] Cisco IOS HTTP Configuration Arbitrary Administrative Access Vulnerability
6386| [2879] ghttpd Daemon Buffer Overflow Vulnerability
6387| [2855] WatchGuard Firebox SMTP Proxy Attachment Bypassing Vulnerability
6388| [2804] Cisco IOS Router Scan Software Reloading Vulnerability
6389| [2788] Omnicron OmniHTTPD File Source Disclosure Vulnerability
6390| [2783] Omnicron OmniHTTPD PHP Denial of Service Vulnerability
6391| [2775] Beck GmbH IPC@CHIP HTTPD File Disclosure Vulnerability
6392| [2774] Beck IPC GmbH IPC@CHIP HTTP DoS Vulnerability
6393| [2740] Apache Web Server HTTP Request Denial of Service Vulnerability
6394| [2730] Omnicron Technologies OmniHTTPd Pro POST DoS Vulnerability
6395| [2721] 3COM OfficeConnect HTTP Port Router Denial of Service Vulnerability
6396| [2697] Michael Lamont Savant HTTP Server Directory Traversal Vulnerability
6397| [2649] Small HTTP Server MS-DOS Device Name DoS Vulnerability
6398| [2615] Netscape SmartDownload 1.3 Buffer Overflow Vulnerability
6399| [2600] Microsoft ISA Server Web Proxy DoS Vulnerability
6400| [2598] Lotus Domino R5 Server HTTP DoS Vulnerability
6401| [2565] Lotus Domino Web Server HTTP Header DoS Vulnerability
6402| [2543] 602Pro Lan Suite Long HTTP Request Denial of Service Vulnerability
6403| [2511] SurfControl SuperScout for MS Proxy Site Filtering Vulnerability
6404| [2500] Compaq Management Software Proxy Vulnerability
6405| [2451] WhitSoft SlimServe HTTPD Get Denial of Service Vulnerability
6406| [2436] Robin Twombly A1 HTTP Server Directory Traversal Vulnerability
6407| [2435] Robin Twombly A1 HTTP Server Denial of Service Vulnerability
6408| [2413] SEDUM HTTP Webserver Denial of Service Vulnerability
6409| [2335] Guido Frassetto SEDUM HTTP Server Directory Traversal Vulnerability
6410| [2318] Whitsoft SlimServe HTTPd Server DoS Vulnerability
6411| [2300] NCSA/Apache httpd ScriptAlias Source Retrieval Vulnerability
6412| [2223] glibc LD_PRELOAD File Overwriting Vulnerability
6413| [2217] Tinyproxy Heap Overflow Vulnerability
6414| [2211] OmniHTTPD File Corruption and Command Execution Vulnerability
6415| [2175] IBM HTTP Server AfpaCache/WebSphereNet.Data DoS Vulnerability
6416| [2165] GTK+ Arbitrary Loadable Module Execution Vulnerability
6417| [2119] Watchguard SOHO Firewall HTTP Request Vulnerability
6418| [2099] Multiple Oops Proxy Server Buffer Overflow Vulnerabilities
6419| [2090] KTH Kerberos 4 Arbitrary Proxy Usage Vulnerability
6420| [2051] Sun JDK/JRE Disallowed Class Loading Vulnerability
6421| [2027] AnalogX Proxy Server DoS Vulnerability
6422| [2026] GlimpseHTTP and WebGlimpse Piped Command Vulnerability
6423| [1988] IBM HTTP Server Denial of Service Vulnerability
6424| [1975] NCSA HTTPd campas sample script Vulnerability
6425| [1953] Watchguard Firebox II FTP Proxy DoS Vulnerability
6426| [1942] Small HTTP Server Incomplete Request Denial of Service Vulnerability
6427| [1941] Small HTTP Server Non-Existent File DoS Vulnerability
6428| [1927] BNC IRC Proxy Buffer Overflow Vulnerability
6429| [1876] Unify eWave ServletExec File Upload Vulnerability
6430| [1838] Cisco IOS Software ?/ HTTP Request DoS Vulnerability
6431| [1811] Microsoft Site Server 2.0 with IIS 4.0 Malicious File Upload Vulnerability
6432| [1808] OmniHTTPD visiadmin.exe Denial of Service Vulnerability
6433| [1737] Acme thttpd Arbitrary World-Readable File Disclosure Vulnerability
6434| [1717] Unixware SCOhelp HTTP Server Format String Vulnerability
6435| [1695] Microsoft Proxy 2.0 FTP Permissions Bypass Vulnerability
6436| [1692] Microsoft Proxy 2.0 Internal Network Access Vulnerability
6437| [1678] Mandrake /perl http Directory Disclosure Vulnerability
6438| [1649] PHP Upload Arbitrary File Disclosure Vulnerability
6439| [1626] Worm httpd Directory Traversal Vulnerability
6440| [1570] BEA Weblogic Proxy Multiple Buffer Overflow Vulnerabilities
6441| [1504] AnalogX Proxy DoS Vulnerability
6442| [1497] WEBactive HTTP Server Default Log Vulnerability
6443| [1470] WEBactive HTTP Server Long GET Request Vulnerability
6444| [1423] LocalWEB HTTP Buffer Overflow Vulnerability
6445| [1415] Microsoft Windows 2000 Remote CPU-overload Vulnerability
6446| [1400] SapporoWorks WinProxy Buffer Overflow Vulnerability
6447| [1395] Fortech Proxy+ Telnet Gateway Vulnerability
6448| [1355] Small HTTP Server Buffer Overflow Vulnerability
6449| [1339] Microsoft Internet Explorer for Macintosh getImage and classloader Vulnerabilities
6450| [1337] Multiple Vendors HTTP Redirect Java Applet Vulnerability
6451| [1284] Apache HTTP Server (win32) Root Directory Access Vulnerability
6452| [1248] thttpd tdate_parse() Stack Overflow Vulnerability
6453| [1226] Fortech Proxy+ 2.30 Remote Administration Vulnerability
6454| [1213] CProxy 3.3 SP2 Buffer Overflow DoS Vulnerability
6455| [1196] NTMail Server 5.x Proxy Access Vulnerability
6456| [1154] Cisco IOS HTTP %% Vulnerability
6457| [1105] Microsoft NT 4.0 OffloadModExpo Registry Permissions Vulnerability
6458| [980] Internet Anywhere Mail Server Connection Overload Vulnerability
6459| [976] Novell Border Manager Audit Trail Proxy DoS Vulnerability
6460| [936] W3C httpd (Formerly 'CERN httpd') Path Revealing Vulnerability
6461| [883] Microsoft Outlook Express for MacOS HTML Attachment Automatic Download Vulnerability
6462| [877] Norton Antivirus 2000 POProxy USER Vulnerability
6463| [815] Microsoft IE5 XML HTTP Redirect Vulnerability
6464| [800] Microsoft Outlook Express For Mac Download Vulnerability
6465| [778] BigIP Config UI Vulnerabilities
6466| [762] AN-HTTPd CGI Vulnerabilities
6467| [741] Squid Web Proxy Authentication Failure Vulnerability
6468| [739] OmniHTTPD Buffer Overflow Vulnerability
6469| [705] Cisco Catalyst Supervisor Remote Reload
6470| [674] Microsoft IE5 Download Behavior Vulnerability
6471| [592] Persits AspUpload Buffer Overflow Vulnerability
6472| [579] NT IIS Malformed HTTP Request Header DoS Vulnerability
6473| [318] Debian Linux httpd Vulnerability
6474| [306] MacOS X Server Overload Vulnerability
6475| [164] Malicious Java applet security flaw in ClassLoader Vulnerability
6476| [115] Allaire ColdFusion Remote File Display, Deletion, Upload and Execution Vulnerability
6477| [33] OpenWindows loadmodule Vulnerability
6478|
6479| IBM X-Force - https://exchange.xforce.ibmcloud.com:
6480| [39612] Apache HTTP Server mod_proxy_balancer buffer overflow
6481| [39474] Apache HTTP Server mod_proxy_balancer cross-site scripting
6482| [85605] Stage File Proxy module for Drupal repeated HTTP request denial of service
6483| [83284] WP-DownloadManager plugin for WordPress HTTP request cross-site request forgery
6484| [80726] Load Balancer multiple scripts cross-site scripting
6485| [80575] TVMOBiLi CHTTPServerTransaction::LoadFile() buffer overflow
6486| [80574] TVMOBiLi CHTTPServerTransaction::LoadResource() denial of service
6487| [79250] libproxy px_pac_reload() buffer overflow
6488| [79236] Zen Load Balancer content2-2.cgi command execution
6489| [78808] Cisco Application Control Engine Load Balancer denial of service
6490| [78769] Zen Load Balancer backup directory information disclosure
6491| [78768] Zen Load Balancer information disclosure
6492| [77913] Apache HTTP Server mod_proxy_ajp information disclosure
6493| [76095] SEIL routers HTTP-Proxy/Gateway security bypass
6494| [71617] Apache HTTP Server mod_proxy module information disclosure
6495| [71445] Apache HTTP Server mod_proxy security bypass
6496| [70336] Apache HTTP Server mod_proxy information disclosure
6497| [69804] Apache HTTP Server mod_proxy_ajp denial of service
6498| [66640] Apache HttpComponents HttpClient Proxy-Authorization information disclosure
6499| [65006] Caedo HTTPd Server file download
6500| [64958] HTTP request with large content payload
6501| [63651] Google Chrome HTTP proxy authentication denial of service
6502| [60883] Apache mod_proxy_http information disclosure
6503| [59413] Apache mod_proxy_http timeout information disclosure
6504| [56623] Apache HTTP Server mod_proxy_ajp denial of service
6505| [53453] Cisco IOS Authentication Proxy for HTTP security bypass
6506| [53124] mod_proxy_ftp module for Apache HTTP header security bypass
6507| [52604] HTTP request forwarding (Web Proxy) detected
6508| [51532] mod_proxy module for the Apache HTTP Server stream_reqbody_cl denial of service
6509| [50716] IPFilter load_http.c buffer overflow
6510| [48796] Barracuda Load Balancer index.cgi cross-site scripting
6511| [47935] EDraw Office Viewer ActiveX control HttpDownloadFile file overwrite
6512| [47898] Excel Viewer OCX ActiveX control HttpDownloadFile() file download
6513| [47305] Live Chat component for Joomla! xmlhttp.php open proxy
6514| [44467] HTTP Anti Virus Proxy (HAVP) sockethandler.cpp denial of service
6515| [44223] Apache HTTP Server mod_proxy_ftp cross-site scripting
6516| [42987] Apache HTTP Server mod_proxy module denial of service
6517| [41258] HTTP File Upload ActiveX control file delete
6518| [40694] BEA WebLogic Server and WebLogic Express HttpClusterServlet and HttpProxyServlet privilege escalation
6519| [39615] Apache HTTP Server mod_proxy_ftp.c UTF-7 cross-site scripting
6520| [39608] Apache HTTP Server balancer manager cross-site request forgery
6521| [39476] Apache mod_proxy_balancer balancer_handler function denial of service
6522| [38901] HFS (HTTP File Server) upload directory traversal
6523| [38439] F5 Networks FirePass 4100 SSL VPN download_plugin.php3 cross-site scripting
6524| [37405] DeleGate HTTP cache proxy denial of service
6525| [36354] Apache HTTP Server mod_proxy module denial of service
6526| [36352] Apache HTTP Server ap_proxy_date_canon() denial of service
6527| [34884] Astaro Secure Gateway HTTP proxy denial of service
6528| [34282] BEA WebLogic Server and WebLogic Express HttpProxyServlet and HttpClusterServlet unauthorized access
6529| [34123] VersalSoft HTTP File Uploader (UFileUploaderD.dll) ActiveX control buffer overflow
6530| [28367] libmusicbrainz MBHttp::Download buffer overflow
6531| [26970] WinGate HTTP proxy buffer overflow
6532| [26370] Symantec Enterprise Firewall HTTP proxy internal IP disclosure
6533| [23997] Blue Coat WinProxy SecureSuite HTTP request denial of service
6534| [23451] Microsoft Internet Explorer HTTPS proxy authentication information disclosure
6535| [22016] Simpleproxy HTTP Proxy reply format string
6536| [20391] Apple Mac OS X HTTP proxy service security bypass
6537| [20339] Squid Web Proxy Cache HTTP header cache poisoning
6538| [20334] Squid Web Proxy Cache httpProcessReplyHeader security bypass
6539| [19868] HTTP Anti Virus Proxy cab and zip files bypass filtering
6540| [19060] Squid Web Proxy Cache HTTP header cache poisoning
6541| [18308] Jana Server http-server and pna-proxy denial of service
6542| [16751] AnomicHTTPProxy "
6543| [16750] AnomicHTTPProxy allows elevated privileges
6544| [16749] AnomicHTTPProxy administration interface denial of service
6545| [16387] Apache HTTP Server mod_proxy Content-Length buffer overflow
6546| [15952] proxy server using the HTTP CONNECT directive has been detected
6547| [15466] HP Web-enabled Management Software HTTP Server unauthorized certificate upload
6548| [15277] Proxy-Pro GateKeeper Pro long HTTP GET buffer overflow
6549| [15275] PSOProxy long HTTP GET request buffer overflow
6550| [14955] ProxyNow! HTTP GET stack based buffer overflow or heap-based buffer overflow
6551| [14947] Gaim HTTP proxy buffer overflow
6552| [13663] Apache HTTP Server CGI support modules loaded
6553| [12681] Apache HTTP Server mod_proxy could allow mail relaying
6554| [12552] Apache HTTP Server FTP proxy server denial of service
6555| [11143] Astaro Security Linux HTTP Proxy can be used to make unauthorized TCP connections
6556| [10139] Check Point FireWall-1 HTTP proxy could allow HTTPS and FTP traffic to bypass the firewall
6557| [9914] Jigsaw HTTP Proxy server cross-site scripting
6558| [9834] CERN HTTPD proxy server cross-site scripting
6559| [9683] Jana Server HTTP GET proxy buffer overflow
6560| [9579] Symantec Norton Personal Firewall and Norton Internet Security HTTP proxy buffer overflow
6561| [9455] AnalogX Proxy malformed HTTP request buffer overflow
6562| [8425] Trend Micro InterScan VirusWall could allow virus infected Web pages to bypass the HTTP proxy filtering
6563| [8281] PHP multiple HTTP POST file upload overflows
6564| [7964] BlackJumboDog HTTP proxy buffer overflow
6565| [7916] Avirt SOHO, Gateway, and Gateway Suite HTTP proxy buffer overflow
6566| [4460] CProxy proxy server HTTP port denial of service
6567| [4252] HTTP PUT method allows clients to upload files to a Web server
6568| [153] HTTP proxy penetrated
6569| [60] HTTP proxy detected
6570|
6571| Exploit-DB - https://www.exploit-db.com:
6572| [30850] HFS HTTP File Server 2.2/2.3 Arbitrary File Upload Vulnerability
6573| [30834] F5 Networks FirePass 4100 SSL VPN Download_Plugin.PHP3 Cross-Site Scripting Vulnerability
6574| [30755] F5 FirePass 4100 SSL VPN Download_Plugin.PHP3 Cross-Site Scripting Vulnerability
6575| [27863] PHPBB 2.0.20 Unauthorized HTTP Proxy Vulnerability
6576| [27852] Symantec Enterprise Firewall / Gateway Security HTTP Proxy Internal IP Leakage Weakness
6577| [23499] Enterpriser16 Load Balancer 7.1 - Multiple XSS Vulnerabilities
6578| [23137] CacheFlow CacheOS 4.1.10016 HTTP HOST Proxy Vulnerability
6579| [21849] ZEN Load Balancer Filelog Command Execution
6580| [21704] W3C CERN httpd 3.0 Proxy Cross-Site Scripting Vulnerability
6581| [21214] SapporoWorks Black JumboDog 2.6.4/2.6.5 HTTP Proxy Buffer Overflow Vulnerability
6582| [16598] Persits XUpload ActiveX MakeHttpRequest Directory Traversal
6583| [16526] Windows ANI LoadAniIcon() Chunk Size Stack Buffer Overflow (HTTP)
6584| [16513] Ultra Shareware Office Control ActiveX HttpUpload Buffer Overflow
6585| [16078] SDP Downloader 2.3.0 (http_response) Remote Buffer Overflow Exploit
6586| [16075] Caedo HTTPd Server 0.5.1 ALPHA - Remote File Download
6587| [13380] linux/x86 HTTP/1.x GET, Downloads and JMP - 68 bytes+
6588| [13355] linux/x86 HTTP/1.x GET, Downloads and execve() 111 bytes+
6589| [7762] EDraw Office Viewer 5.4 HttpDownloadFile() Insecure Method Vuln
6590| [4290] EDraw Office Viewer Component 5.1 HttpDownloadFile() Insecure Method
6591| [4200] Versalsoft HTTP File Uploader AddFile() Remote Buffer Overflow Exploit
6592| [3866] Versalsoft HTTP File Upload ActiveX 6.36 (AddFile) Remote DoS Exploit
6593| [2791] HTTP Upload Tool (download.php) Information Disclosure Vulnerability
6594| [31133] F5 BIG-IP 9.4.3 Web Management Interface Cross-Site Request Forgery Vulnerability
6595| [31128] Multiple IEA Software Products HTTP POST Request Denial of Service Vulnerability
6596| [31111] Download Management 1.00 for PHP-Fusion Multiple Local File Include Vulnerabilities
6597| [31101] HispaH Youtube Clone 'load_message.php' Cross-Site Scripting Vulnerability
6598| [31100] Anon Proxy Server 0.100/0.102 Remote Authentication Buffer Overflow Vulnerability
6599| [31082] Liferay Enterprise Portal 4.3.6 User-Agent HTTP Header Cross Site Scripting Vulnerability
6600| [31072] Symantec Backup Exec System Recovery Manager 7.0 FileUpload Class Unauthorized File Upload Vulnerability
6601| [31068] Mambo MOStlyCE Module 2.4 Image Manager Utility Arbitrary File Upload Vulnerability
6602| [31065] F5 BIG-IP Application Security Manager 9.4.3 'report_type' Cross-Site Scripting Vulnerability
6603| [31056] HFS HTTP File Server 1.5/2.x Multiple Security Vulnerabilities
6604| [31052] Apache <= 2.2.6 'mod_negotiation' HTML Injection and HTTP Response Splitting Vulnerability
6605| [31042] MegaBBS 1.5.14b 'upload.asp' Cross-Site Scripting Vulnerability
6606| [31039] BitDefender Products Update Server HTTP Daemon Directory Traversal Vulnerability
6607| [31037] phpAutoVideo 2.21 sidebar.php loadpage Parameter Remote File Inclusion
6608| [31024] F5 BIG-IP <= 9.4.3 'SearchString' Multiple Cross-Site Scripting Vulnerabilities
6609| [30983] ExpressionEngine 1.2.1 HTTP Response Splitting and Cross Site Scripting Vulnerabilities
6610| [30972] Camtasia Studio 4.0.2 'csPreloader' Remote Code Execution Vulnerability
6611| [30958] PHCDownload 1.1 search.php string Parameter XSS
6612| [30957] PHCDownload 1.1 search.php string Parameter SQL Injection
6613| [30942] Extended Module Player (xmp) 2.5.1 'oxm.c' And 'dtt_load.c' Multiple Local Buffer Overflow Vulnerabilities
6614| [30927] Agares Media ThemeSiteScript 1.0 'loadadminpage' Parameter Remote File Include Vulnerability
6615| [30926] Dokeos 1.x work/work.php display_upload_form Action origin Parameter XSS
6616| [30901] Apache HTTP Server 2.2.6 Windows Share PHP File Extension Mapping Information Disclosure Vulnerability
6617| [30894] PeerCast 0.12 HandshakeHTTP Multiple Buffer Overflow Vulnerabilities
6618| [30863] E-Xoops 1.0.5/1.0.8 mydownloads/ratefile.php lid Parameter SQL Injection
6619| [30835] Apache HTTP Server <= 2.2.4 413 Error HTTP Request Method Cross-Site Scripting Weakness
6620| [30833] F5 Networks FirePass 4100 SSL VPN My.Logon.PHP3 Cross-Site Scripting Vulnerability
6621| [30830] Ossigeno CMS 2.2_pre1 upload/xax/ossigeno/admin/uninstall_module.php level Parameter Remote File Inclusion
6622| [30829] Ossigeno CMS 2.2_pre1 upload/xax/ossigeno/admin/install_module.php level Parameter Remote File Inclusion
6623| [30828] Ossigeno CMS 2.2_pre1 upload/xax/admin/patch/index.php level Parameter Remote File Inclusion
6624| [30827] Ossigeno CMS 2.2_pre1 upload/xax/admin/modules/uninstall_module.php level Parameter Remote File Inclusion
6625| [30826] Ossigeno CMS 2.2_pre1 upload/xax/admin/modules/install_module.php level Parameter Remote File Inclusion
6626| [30797] Aurigma Image Uploader 4.x ActiveX Control Multiple Remote Stack Buffer Overflow Vulnerabilities
6627| [30787] vTiger CRM SOAP AddEmailAttachment - Arbitrary File Upload
6628| [30783] CCProxy 7.3 - Integer Overflow Exploit
6629| [30768] IBM WebSphere Application Server 5.1.1 WebContainer HTTP Request Header Security Weakness
6630| [30737] Galmeta Post 0.2 Upload_Config.PHP Remote File Include Vulnerability
6631| [30729] Blue Coat ProxySG Management Console URI Handler Multiple Cross-Site Scripting Vulnerabilities
6632| [30711] Shttp 0.0.x Remote Directory Traversal Vulnerability
6633| [30705] Korean GHBoard component/upload.jsp Unspecified Arbitrary File Upload
6634| [30704] Korean GHBoard FlashUpload Component download.jsp name Parameter Arbitrary File Access
6635| [30703] Japanese PHP Gallery Hosting Arbitrary File Upload Vulnerability
6636| [30701] Jeebles Technology Jeebles Directory 2.9.60 Download.PHP Local File Include Vulnerability
6637| [30697] ReloadCMS 1.2.5 Index.PHP Local File Include Vulnerability
6638| [30639] Cart32 6.x GetImage Arbitrary File Download Vulnerability
6639| [30622] Microsoft Internet Explorer 5.0.1 File Upload Vulnerability
6640| [30573] SisfoKampus dwoprn.php Arbitrary File Download Vulnerability
6641| [30571] Proxy Anket 3.0.1 anket.asp SQL Injection Vulnerability
6642| [30504] Olate Download 3.4.1 Admin.PHP Remote Authentication Bypass Vulnerability
6643| [30470] Synology DiskStation Manager - SLICEUPLOAD Remote Command Execution
6644| [30467] File Uploader 1.1 datei.php config[root_ordner] Parameter Remote File Inclusion
6645| [30466] File Uploader 1.1 index.php config[root_ordner] Parameter Remote File Inclusion
6646| [30443] Wordpress Persuasion Theme - Arbitrary File Download and File Deletion Exploit
6647| [30439] Mozilla Firefox/Thunderbird/SeaMonkey Chrome-Loaded About:Blank Script Execution Vulnerability
6648| [30392] Microsoft Windows ndproxy.sys - Local Privilege Escalation
6649| [30371] AlstraSoft Affiliate Network Pro 8.0 merchants/index.php uploadProducts Action pgmid Parameter SQL Injection
6650| [30322] Lighttpd <= 1.4.15 Multiple Code Execution, Denial of Service and Information Disclosure Vulnerabilities
6651| [30278] SAP DB 7.x Web Server WAHTTP.EXE Multiple Buffer Overflow Vulnerabilities
6652| [30229] SHTTPD 1.38 Filename Parse Error Information Disclosure Vulnerability
6653| [30228] Apple WebCore XMLHTTPRequest Cross-Site Scripting Vulnerability
6654| [30218] BugHunter HTTP Server 1.6.2 Parse Error Information Disclosure Vulnerability
6655| [30209] HP LoadRunner EmulationAdmin - Web Service Directory Traversal
6656| [30159] ASP Folder Gallery Download_Script.ASP Arbitrary File Download Vulnerability
6657| [30130] PHP <= 5.2.3 EXT/Session HTTP Response Header Injection Vulnerability
6658| [30105] Wordpress Download Manager Free & Pro 2.5.8 - Persistent Cross Site Scripting
6659| [30084] Wordpress page-flip-image-gallery plugins Remote File Upload
6660| [30024] LibEXIF 0.6.x - Exif_Data_Load_Data_Entry Remote Integer Overflow Vulnerability
6661| [30014] Windows NDPROXY - Local SYSTEM Privilege Escalation
6662| [30008] Cisco Prime Data Center Network Manager - Arbitrary File Upload
6663| [29946] Wordpress Orange Themes CSRF File Upload Vulnerability
6664| [29933] Gazi Download Portal Down_Indir.ASP SQL Injection Vulnerability
6665| [29919] TP-Link TL-WR740N / TL-WR740ND - 150M Wireless Lite N Router HTTP DoS
6666| [29917] FlashComs Chat <= 6.5 - Arbitrary File Upload Vulnerability
6667| [29849] ToendaCMS 1.5.3 HTTP Get And Post Forms HTML Injection Vulnerability
6668| [29834] WordPress dzs-videogallery Plugins Remote File Upload Vulnerability
6669| [29812] DesktopCentral AgentLogUpload Arbitrary File Upload
6670| [29803] Static Http Server 1.0 - Denial of Service (DoS) Exploit
6671| [29775] Image_Upload Script 2.0 - Multiple Remote File Include Vulnerabilities
6672| [29763] W-Agora 4.2.1 - Multiple Arbitrary File Upload Vulnerabilities
6673| [29739] Apache HTTP Server Tomcat 5.x/6.0.x Directory Traversal Vulnerability
6674| [29675] Kaseya < 6.3.0.2 - Arbitrary File Upload Vulnerability
6675| [29674] ManageEngine DesktopCentral 8.0.0 build < 80293 - Arbitrary File Upload Vulnerability
6676| [29644] Pickle 0.3 Download.PHP Local File Include Vulnerability
6677| [29638] LoveCMS 1.4 index.php load Parameter Traversal Arbitrary File Access
6678| [29574] eXtreme File Hosting Arbitrary RAR File Upload Vulnerability
6679| [29525] Wordpress Highlight Premium Theme - CSRF File Upload Vulnerability
6680| [29520] GTK2 GDKPixBufLoader - Remote Denial of Service Vulnerability
6681| [29503] KarjaSoft Sami HTTP Server 1.0.4/1.0.5/2.0.1 Request Remote Denial of Service Vulnerability
6682| [29482] WordPress Theme Kernel - Remote File Upload Vulnerability
6683| [29473] Squid Proxy 2.5/2.6 FTP URI Remote Denial of Service Vulnerability
6684| [29451] All In One Control Panel 1.3.x cp_downloads.php did Parameter SQL Injection
6685| [29430] Magic Photo Storage Website user/upload_photo.php _config[site_path] Parameter Remote File Inclusion
6686| [29385] Kolayindir Download Down.ASP SQL Injection Vulnerability
6687| [29348] phpCMS 1.1.7 include/class.http_indexer_phpcms.php PHPCMS_INCLUDEPATH Parameter Remote File Inclusion
6688| [29332] WordPress Think Responsive Themes Arbitrary File Upload Vulnerability
6689| [29330] WordPress Switchblade Themes Arbitrary File Upload Vulnerability
6690| [29301] Oracle Portal 9.0.2 Calendar.JSP Multiple HTTP Response Splitting Vulnerabilities
6691| [29219] DUdownload 1.0/1.1 detail.asp Multiple Parameter SQL Injection
6692| [29211] WordPress Curvo Themes - CSRF File Upload Vulnerability
6693| [29210] Open Flash Chart 2 Arbitrary File Upload
6694| [29190] Apple Mac OS X 10.4.x Mach-O Binary Loading Integer Overflow Vulnerability
6695| [29150] WordPress SAICO theme Arbitrary File Upload Vulnerability
6696| [29130] HP Intelligent Management Center BIMS UploadServlet Directory Traversal
6697| [29072] PHP Upload Tool 1.0 - Arbitrary File Upload and Directory Traversal Vulnerabilities
6698| [29068] WordPress Area53 theme Arbitrary File Upload Vulnerability
6699| [29052] Bloo 1.00 Googlespell_Proxy.PHP Cross-Site Scripting Vulnerability
6700| [28922] AIOCP 1.3.x /admin/code/index.php load_page Parameter Remote File Inclusion
6701| [28896] RunCMS 1.x Avatar Arbitrary File Upload Vulnerability
6702| [28845] Shop-Script Multiple HTTP Response Splitting Vulnerabilities
6703| [28837] Novell eDirectory 8.x iMonitor HTTPSTK Buffer Overflow Vulnerability (3)
6704| [28836] Novell eDirectory 8.x iMonitor HTTPSTK Buffer Overflow Vulnerability (2)
6705| [28835] Novell eDirectory 8.x iMonitor HTTPSTK Buffer Overflow Vulnerability (1)
6706| [28809] HP LoadRunner magentproc.exe Overflow
6707| [28795] FreeWPS 2.11 Upload.PHP Remote Command Execution Vulnerability
6708| [28731] OlateDownload 3.4 search.php query Parameter SQL Injection
6709| [28730] OlateDownload 3.4 details.php page Parameter SQL Injection
6710| [28713] Apache Tomcat/JBoss EJBInvokerServlet / JMXInvokerServlet (RMI over HTTP) Marshalled Object RCE
6711| [28709] FlashChat - Arbitrary File Upload Vulnerability
6712| [28664] Opial AV Download Management 1.0 Index.PHP Cross-Site Scripting Vulnerability
6713| [28655] Nodejs js-yaml load() Code Exec
6714| [28605] NeoSys Neon Webmail for Java 5.06/5.07 downloadfile Servlet Traversal Arbitrary File Access
6715| [28602] OSU HTTP Server 3.10/3.11 Multiple Information Disclosure Vulnerabilities
6716| [28595] BusyBox 1.01 HTTPD Directory Traversal Vulnerability
6717| [28581] Jupiter CMS 1.1.4/1.1.5 galleryuploadfunction.php Arbitrary File Upload
6718| [28578] Apple Mac OS X 10.x KExtLoad Buffer Overflow Weakness
6719| [28576] Apple Mac OS X 10.x KExtLoad Format String Weakness
6720| [28568] NX5Linkx 1.0 Links.PHP HTTP Response Splitting Vulnerability
6721| [28546] e107 website system 0.7.5 download.php Query String (PATH_INFO) Parameter XSS
6722| [28493] PHP-Nuke Book Catalog Module 1.0 'upload.php' Arbitrary File Upload Vulnerability
6723| [28452] Wordpress Lazy SEO plugin Shell Upload Vulnerability
6724| [28434] BigACE 1.8.2 download.cmd.php GLOBALS Parameter Remote File Inclusion
6725| [28433] BigACE 1.8.2 upload_form.php GLOBALS Parameter Remote File Inclusion
6726| [28424] Apache 2.x HTTP Server Arbitrary HTTP Request Headers Security Weakness
6727| [28393] AspxCommerce 2.0 - Arbitrary File Upload Vulnerability
6728| [28392] Zen Cart Web Shopping Cart 1.x autoload_func.php autoLoadConfig[999][0][loadFile] Parameter Remote File Inclusion
6729| [28377] Wordpress Plugin Complete Gallery Manager 3.3.3 - Arbitrary File Upload Vulnerability
6730| [28337] HP ProCurve Manager SNAC UpdateCertificatesServlet File Upload
6731| [28336] HP ProCurve Manager SNAC UpdateDomainControllerServlet File Upload
6732| [28195] RW::Download Stats.PHP Remote File Include Vulnerability
6733| [28143] SturGeoN Upload Arbitrary File Upload Vulnerability
6734| [28083] HP LoadRunner lrFileIOService ActiveX WriteFileString Remote Code Execution
6735| [28058] Eduha Meeting Index.PHP Arbitrary File Upload Vulnerability
6736| [28030] Cisco Secure ACS 2.3 LoginProxy.CGI Cross-Site Scripting Vulnerability
6737| [27980] Alex DownloadEngine 1.4.1 Comments.PHP SQL Injection Vulnerability
6738| [27972] ESTsoft InternetDisk Arbitrary File Upload and Script Execution Vulnerability
6739| [27969] Quake 3 Engine CL_ParseDownload Remote Buffer Overflow Vulnerability
6740| [27939] HP LoadRunner lrFileIOService ActiveX Remote Code Execution
6741| [27899] JemWeb DownloadControl 1.0 DC.PHP SQL Injection Vulnerability
6742| [27811] Albinator 2.0.8 showpic.php preloadSlideShow Parameter XSS
6743| [27704] Cogent DataHub HTTP Server Buffer Overflow
6744| [27656] Photo Transfer Upload 1.0 iOS - Multiple Vulnerabilities
6745| [27610] Joomla Media Manager File Upload Vulnerability
6746| [27608] Ultra Mini HTTPD Stack Buffer Overflow
6747| [27607] MiniWeb (Build 300) Arbitrary File Upload
6748| [27592] SIRE 2.0 - Arbitrary File Upload Vulnerability
6749| [27591] Shadowed Portal 5.7 Load.PHP Cross-Site Scripting Vulnerability
6750| [27556] Open-FTPD 1.2 - Arbitrary File Upload
6751| [27553] onehttpd 0.7 - Denial of Service
6752| [27501] Arab Portal System 2.0 download.php title Parameter XSS
6753| [27452] F5 Firepass 4100 SSL VPN Cross-Site Scripting Vulnerability
6754| [27424] DSDownload 1.0 - Multiple SQL-Injection Vulnerabilities
6755| [27380] myBloggie 2.1.2/2.1.3 upload.php Multiple Parameter XSS
6756| [27378] Easy File Sharing Web Server 3.2 Full Path Request Arbitrary File Upload
6757| [27312] FreeHostShop Website Generator 3.3 - Arbitrary File Upload Vulnerability
6758| [27309] myPHPNuke 1.8.8 download.php dcategory Parameter XSS
6759| [27304] CubeCart 3.0.x Arbitrary File Upload Vulnerability
6760| [27275] FunGamez Remote File Upload Vulnerability
6761| [27272] SocialEngine Timeline Plugin 4.2.5p9 - Arbitrary File Upload
6762| [27268] Dragonfly CMS 9.0.6 .1 Downloads Module c Parameter XSS
6763| [27241] D-Link DWL-G700AP 2.00/2.01 HTTPD Denial of Service Vulnerability
6764| [27200] ImageVue 0.16.1 upload.php Unrestricted File Upload
6765| [27127] PMachine ExpressionEngine 1.4.1 HTTP Referrer HTML Injection Vulnerability
6766| [27115] Rockliffe MailSite 5.3.4/6.1.22/7.0.3 HTTP Mail Management Cross-Site Scripting Vulnerability
6767| [27061] Hummingbird Collaboration - Crafted URL File Property Obscuration Download
6768| [27046] VMware vCenter Chargeback Manager ImageUploadServlet Arbitrary File Upload
6769| [26984] IceWarp Universal WebMail /mail/include.html - Crafted HTTP_USER_AGENT Arbitrary File Access
6770| [26977] Dev Web Management System 1.5 download_now.php target Parameter SQL Injection
6771| [26973] Cerberus Helpdesk 2.649 cer_KnowledgebaseHandler.class.php _load_article_details Function SQL Injection
6772| [26967] httprint 202.0 HTTP Response Server Field Overflow DoS
6773| [26966] httprint 202.0 HTTP Response Server Field Arbitrary Script Injection
6774| [26922] Interaction SIP Proxy 3.0 - Remote Heap Corruption Denial of Service Vulnerability
6775| [26915] Blender BlenLoader 2.x File Processing Integer Overflow Vulnerability
6776| [26778] Blackboard Academic Suite 6.2.3.23 Frameset.JSP Cross-Domain Frameset Loading Vulnerability
6777| [26739] Ultra Mini HTTPD 1.21 - Stack Buffer Overflow
6778| [26691] WebCalendar 1.0.1 Layers_Toggle.PHP HTTP Response Splitting Vulnerability
6779| [26646] PHP Upload Center Index.PHP Directory Traversal Vulnerability
6780| [26610] Bedeng PSP 1.1 download.php a.ngroup Parameter SQL Injection
6781| [26544] PHP Download Manager 1.1.x Files.PHP SQL Injection Vulnerability
6782| [26534] Revize CMS HTTPTranslatorServlet Cross-Site Scripting Vulnerability
6783| [26520] Static HTTP Server 1.0 - SEH Overflow
6784| [26500] PHPWebThings 1.4 Download.PHP File Parameter SQL Injection Vulnerability
6785| [26474] PHPFM Arbitrary File Upload Vulnerability
6786| [26467] PHP Handicapper Process_signup.PHP HTTP Response Splitting Vulnerability
6787| [26443] PHP 4.x/5.0.x File Upload GLOBAL Variable Overwrite Vulnerability
6788| [26422] MoinMoin twikidraw Action Traversal File Upload
6789| [26421] LibrettoCMS File Manager Arbitary File Upload Vulnerability
6790| [26414] PodHawk 1.85 - Arbitary File Upload Vulnerability
6791| [26388] Nuked-Klan 1.7 Download Module dl_id Parameter SQL Injection
6792| [26340] Up-IMAPProxy 1.2.3/1.2.4 - Multiple Unspecified Remote Format String Vulnerabilities
6793| [26316] imacs CMS 0.3.0 - Unrestricted File Upload Exploit
6794| [26306] NateOn Messenger 3.0 Arbitrary File Download And Buffer Overflow Vulnerabilities
6795| [26293] JPortal 2.2.1/2.3.1 Download.PHP SQL Injection Vulnerability
6796| [26255] Mail-it Now! Upload2Server 1.5 - Arbitrary File Upload Vulnerability
6797| [26243] Havalite CMS 1.1.7 - Unrestricted File Upload Exploit
6798| [26241] Fly-High CMS 2012-07-08 - Unrestricted File Upload Exploit
6799| [26233] Cisco IOS 12.x Firewall Authentication Proxy Buffer Overflow Vulnerability
6800| [26230] Microsoft IIS 5.1 WebDAV HTTP Request Source Code Disclosure Vulnerability
6801| [26225] MAXdev MD-Pro 1.0.73 Arbitrary Remote File Upload Vulnerability
6802| [26213] LibrettoCMS 2.2.2 - Arbitrary File Upload
6803| [26198] Astaro Security Linux 6.0 01 HTTP CONNECT Unauthorized Access Weakness
6804| [26189] PostNuke 0.75/0.76 DL-viewdownload.PHP SQL Injection Vulnerability
6805| [26156] CPaint 1.3 xmlhttp Request Input Validation Vulnerability
6806| [26143] ezUpload 2.2 form.php path Parameter Remote File Inclusion
6807| [26142] ezUpload 2.2 customize.php path Parameter Remote File Inclusion
6808| [26141] ezUpload 2.2 initialize.php path Parameter Remote File Inclusion
6809| [26140] ezUpload 2.2 index.php path Parameter Remote File Inclusion
6810| [26080] Comdev eCommerce 3.0 WCE.Download.PHP Directory Traversal Vulnerability
6811| [25969] Netgear WPN824v3 - Unauthorized Config Download
6812| [25950] eRoom 6.0 Plug-In Insecure File Download Handling Vulnerability
6813| [25933] slimserve httpd 1.0/1.1 - Directory Traversal vulnerability
6814| [25908] ASPPlayground.NET 3.2 SR1 Remote Arbitrary File Upload Vulnerability
6815| [25907] ASPNuke 0.80 Language_Select.ASP HTTP Response Splitting Vulnerability
6816| [25897] UBBCentral UBB.threads 5.5.1/6.x download.php Number Parameter SQL Injection
6817| [25845] Uapplication Ublog Reload 1.0.5 Trackback.ASP Cross-Site Scripting Vulnerability
6818| [25844] Ublog Reload 1.0.5 blog_comment.asp y Parameter SQL Injection
6819| [25843] Ublog Reload 1.0.5 index.asp Multiple Parameter SQL Injection
6820| [25842] JBoss 3.x/4.0.2 Malformed HTTP Request Remote Information Disclosure Vulnerability
6821| [25840] osCommerce 2.1/2.2 - Multiple HTTP Response Splitting Vulnerabilities
6822| [25837] Monkey HTTPD 1.1.1 - Crash PoC
6823| [25805] Loki Download Manager 2.0 Catinfo.ASP SQL Injection Vulnerability
6824| [25804] Loki Download Manager 2.0 Default.ASP SQL Injection Vulnerability
6825| [25794] YaPiG 0.9x Upload.PHP Directory Traversal Vulnerability
6826| [25780] JiRo's Upload System 1.0 Login.ASP SQL Injection Vulnerability
6827| [25777] PowerDownload 3.0.2/3.0.3 IncDir Remote File Include Vulnerability
6828| [25775] Nginx HTTP Server 1.3.9-1.4.0 Chuncked Encoding Stack Buffer Overflow
6829| [25661] Keyvan1 ImageGallery Database Download Vulnerability
6830| [25631] Orenosv HTTP/FTP Server 0.8.1 CGISSI.EXE Remote Buffer Overflow Vulnerability
6831| [25629] Orenosv HTTP/FTP Server 0.8.1 FTP Commands Remote Buffer Overflow Vulnerability
6832| [25627] PHP Advanced Transfer Manager 1.21 Arbitrary File Upload Vulnerability
6833| [25567] Just William's Amazon Webstore HTTP Response Splitting Vulnerability
6834| [25559] Oracle Application Server 9.0 HTTP Service Mod_Access Restriction Bypass Vulnerability
6835| [25534] SQWebmail 3.x/4.0 HTTP Response Splitting Vulnerability
6836| [25517] Mutiny 5 Arbitrary File Upload
6837| [25464] CityPost Simple PHP Upload Simple-upload-53.PHP Cross-Site Scripting Vulnerability
6838| [25440] Wordpress wp-FileManager - Arbitrary File Download Vulnerability
6839| [25430] PHP-Nuke 7.6 Surveys Module HTTP Response Splitting Vulnerability
6840| [25418] MiniWeb MiniWeb HTTP Server (build 300) - Crash PoC
6841| [25405] GetSimpleCMS 3.2.1 - Arbitrary File Upload Vulnerability
6842| [25365] AN HTTPD 1.42 Arbitrary Log Content Injection Vulnerability
6843| [25364] AN HTTPD CMDIS.DLL Remote Buffer Overflow Vulnerability
6844| [25341] PHP-Nuke 6.x/7.x Downloads Module Lid Parameter Cross-Site Scripting Vulnerability
6845| [25325] BlueSoleil 1.4 Object Push Service Bluetooth File Upload Directory Traversal Vulnerability
6846| [25258] Phorum 3.x/5.0.x HTTP Response Splitting Vulnerability
6847| [25253] betaparticle blog 2.0/3.0 upload.asp Unauthenticated File Upload
6848| [25189] Stadtaus.Com Download Center Lite 1.5 Arbitrary Remote PHP File Include Vulnerability
6849| [25187] Computalynx CProxy 3.3/3.4.x Directory Traversal Vulnerability
6850| [25164] Gaim 1.1.3 File Download Denial of Service Vulnerability
6851| [25161] PHPWebSite 0.x Image File Processing Remote Arbitrary PHP File Upload Vulnerability
6852| [25126] eggBlog 4.1.2 - Arbitrary File Upload Vulnerability
6853| [25100] CitrusDB 0.3.6 uploadcc.php Arbitrary Database Injection
6854| [25092] Software602 602 Lan Suite 2004 2004.0.04.1221 Arbitrary File Upload Vulnerability
6855| [25083] RaidenHTTPD 1.1.27 Remote File Disclosure Vulnerability
6856| [25082] Linksys PSUS4 PrintServer Malformed HTTP POST Request Denial of Service
6857| [25066] WebWasher Classic 2.2/2.3 HTTP CONNECT Unauthorized Access
6858| [25065] Magic Winmail Server 4.0 (Build 1112) upload.php Traversal Arbitrary File Upload
6859| [25064] Magic Winmail Server 4.0 (Build 1112) download.php Traversal Arbitrary File Access
6860| [24999] Windows Light HTTPD 0.1 - Buffer Overflow
6861| [24996] SAP ConfigServlet Remote Unauthenticated Payload Execution
6862| [24994] MediaWiki 1.3.x Remote Arbitrary Script Upload Vulnerability
6863| [24987] JSBoard 2.0.x Remote Arbitrary Script Upload Vulnerability
6864| [24980] Yanf 0.4 HTTP Response Buffer Overflow Vulnerability
6865| [24964] Oracle WebCenter Sites Satellite Server - HTTP Header Injection
6866| [24924] Belkin Wemo - Arbitrary Firmware Upload
6867| [24891] HP Intelligent Management Center Arbitrary File Upload
6868| [24805] MySQL MaxDB 7.5 WAHTTP Server Remote Denial of Service Vulnerability
6869| [24803] Blog Torrent 0.80 BTDownload.PHP Cross-Site Scripting Vulnerability
6870| [24792] IPCop 1.4.1 Web Administration Interface Proxy Log HTML Injection Vulnerability
6871| [24760] ZyXEL 3 Prestige Router HTTP Remote Administration Configuration Reset Vulnerability
6872| [24736] PHPWebSite 0.7.3/0.8.x/0.9.3 User Module HTTP Response Splitting Vulnerability
6873| [24701] OpenWFE 1.4.x Remote Cross-Site Scripting And Connection Proxy Vulnerabilities
6874| [24697] Serendipity 0.x Exit.PHP HTTP Response Splitting Vulnerability
6875| [24667] Wordpress 1.2 Wp-login.PHP HTTP Response Splitting Vulnerability
6876| [24665] DCP-Portal 3.7/4.x/5.x Calendar.PHP HTTP Response Splitting Vulnerability
6877| [24651] W-Agora 4.1.6 a subscribe_thread.php HTTP Response Splitting
6878| [24650] W-Agora 4.1.6 a download_thread.php thread Parameter XSS
6879| [24604] Snitz Forums 2000 Down.ASP HTTP Response Splitting Vulnerability
6880| [24598] SnipSnap 0.5.2 HTTP Response Splitting Vulnerability
6881| [24567] Oracle Database Server 8.1.7/9.0.x ctxsys.driload Access Validation Vulnerability
6882| [24549] PolarPearCms PHP File Upload Vulnerability
6883| [24548] Glossword 1.8.8 & 1.8.12 - Arbitrary File Upload Vulnerability
6884| [24547] Kordil EDMS 2.2.60rc3 - Unauthenticated Arbitrary File Upload Vulnerability
6885| [24543] iOS IPMap 2.5 - Arbitrary File Upload
6886| [24529] OpenEMR PHP File Upload Vulnerability
6887| [24528] BigAnt Server DUPF Command Arbitrary File Upload
6888| [24526] MS Office 2010 Download Execute
6889| [24492] OpenEMR 4.1.1 (ofc_upload_image.php) Arbitrary File Upload Vulnerability
6890| [24486] Google Chrome Silent HTTP Authentication
6891| [24423] Cerbere Proxy Server 1.2 Long Host Header Field Remote Denial of Service Vulnerability
6892| [24422] Comersus Cart 5.0 HTTP Response Splitting Vulnerability
6893| [24409] Working Resources BadBlue 1.7.x/2.x Unauthorized Proxy Relay Vulnerability
6894| [24405] SWsoft Plesk Reloaded 7.1 Login_name Parameter Cross-Site Scripting Vulnerability
6895| [24404] Gadu-Gadu 6.0 File Download Filename Obfuscation Weakness
6896| [24402] Axis Network Camera 2.x And Video Server 1-3 HTTP Authentication Bypass
6897| [24366] Windows Manage Memory Payload Injection
6898| [24350] acme thttpd 2.0.7 - Directory Traversal vulnerability
6899| [24326] RiSearch 0.99 /RiSearch Pro 3.2.6 show.pl Open Proxy Relay
6900| [24322] SonicWALL GMS 6 Arbitrary File Upload
6901| [24318] Allwin URLDownloadToFile + WinExec + ExitProcess Shellcode
6902| [24262] Opera Web Browser 7.5x IFrame OnLoad Address Bar URL Obfuscation Weakness
6903| [24248] IBM WebSphere Caching Proxy Server 5.0 2 Denial of Service Vulnerability
6904| [24231] ArbitroWeb PHP Proxy 0.5/0.6 Cross-Site Scripting Vulnerability
6905| [24228] Joomla com_collector Component Arbitrary File Upload Vulnerability
6906| [24188] Blackboard Learning System 6.0 Dropbox File Download Vulnerability
6907| [24181] OpenBSD 3.x ISAKMPD Security Association Piggyback Delete Payload Denial of Service Vulnerability
6908| [24147] Orenosv HTTP/FTP Server 0.5.9 HTTP GET Denial of Service Vulnerability (3)
6909| [24146] Orenosv HTTP/FTP Server 0.5.9 HTTP GET Denial of Service Vulnerability (2)
6910| [24145] Orenosv HTTP/FTP Server 0.5.9 HTTP GET Denial of Service Vulnerability (1)
6911| [24129] Omnicron OmniHTTPD 2.x/3.0 Get Request Buffer Overflow Vulnerability
6912| [24119] Microsoft Internet Explorer 5.0.1 http-equiv Meta Tag Denial of Service Vulnerability
6913| [24111] Serva 2.0.0 - HTTP Server GET Remote Denial of Service Vulnerability
6914| [24105] National Science Foundation Squid Proxy 2.3 Internet Access Control Bypass Vulnerability
6915| [24103] MailEnable Mail Server HTTPMail 1.x Remote Heap Overflow Vulnerability
6916| [24097] MyWeb HTTP Server 3.3 GET Request Buffer Overflow Vulnerability
6917| [24076] Sambar 5.x Open Proxy and Authentication Bypass Vulnerability
6918| [24070] Rosiello Security Sphiro HTTPD 0.1 B Remote Heap Buffer Overflow Vulnerability
6919| [24035] phProfession 2.5 upload.php Direct Request Path Disclosure
6920| [24024] Softwin BitDefender AvxScanOnlineCtrl COM Object Remote File Upload And Execution Vulnerability
6921| [24018] eXtplorer 2.1 - Arbitrary File Upload Vulnerability
6922| [23960] TikiWiki Project 1.8 tiki-upload_file.php galleryId Parameter XSS
6923| [23948] TikiWiki Project 1.8 img/wiki_up Arbitrary File Upload
6924| [23906] ADA IMGSVR 0.4 - Remote File Download Vulnerability
6925| [23896] MPlayer 0.9/1.0 - Remote HTTP Header Buffer Overflow Vulnerability
6926| [23878] HP Web Jetadmin 7.5.2456 Printer Firmware Update Script Arbitrary File Upload Weakness
6927| [23871] Centrinity FirstClass HTTP Server 5/7 TargetName Parameter Cross-Site Scripting Vulnerability
6928| [23870] PHP-Nuke MS-Analysis Module HTTP Referrer Field SQL Injection Vulnerability
6929| [23837] IBM Lotus Domino 6.5.1 HTTP webadmin.nsf Quick Console Cross-Site Scripting Vulnerability
6930| [23836] IBM Lotus Domino 6/7 HTTP webadmin.nsf Directory Traversal Vulnerability
6931| [23819] Phorum 3.x login.php HTTP_REFERER XSS
6932| [23818] Phorum 3.x register.php HTTP_REFERER XSS
6933| [23801] GNU MyProxy 20030629 Cross-Site Scripting Vulnerability
6934| [23777] Squid Proxy 2.4/2.5 NULL URL Character Unauthorized Access Vulnerability
6935| [23758] gweb http server 0.5/0.6 - Directory Traversal vulnerability
6936| [23743] Platform Load Sharing Facility 4/5/6 EAuth Privilege Escalation Vulnerability
6937| [23741] Proxy-Pro Professional GateKeeper 4.7 Web Proxy Buffer Overrun Vulnerability
6938| [23734] PSOProxy 0.91 Remote Buffer Overflow Vulnerability (3)
6939| [23733] PSOProxy 0.91 Remote Buffer Overflow Vulnerability (2)
6940| [23732] PSOProxy 0.91 Remote Buffer Overflow Vulnerability (1)
6941| [23714] KarjaSoft Sami HTTP Server 1.0.4 GET Request Buffer Overflow Vulnerability
6942| [23686] Monkey HTTP Daemon 0.x Missing Host Field Denial of Service Vulnerability
6943| [23676] MaxWebPortal 1.3x down.asp HTTP_REFERER XSS
6944| [23668] Microsoft Internet Explorer 5.0.1 LoadPicture File Enumeration Weakness
6945| [23665] Shaun2k2 Palmhttpd Server 3.0 - Remote Denial of Service Vulnerability
6946| [23652] WordPress Asset-Manager PHP File Upload Vulnerability
6947| [23651] WordPress WP-Property PHP File Upload Vulnerability
6948| [23614] Loom Software SurfNow 1.x/2.x Remote HTTP GET Request Denial of Service Vulnerability
6949| [23608] InternetNow ProxyNow 2.6/2.75 Multiple Stack and Heap Overflow Vulnerabilities
6950| [23593] Oracle HTTP Server 8.1.7/9.0.1/9.2 isqlplus Cross-Site Scripting Vulnerability
6951| [23585] Finjan SurfinGate 6.0/7.0 FHTTP Restart Command Execution Vulnerability
6952| [23584] McAfee ePolicy Orchestrator 1.x/2.x/3.0 Agent HTTP POST Buffer Mismanagement Vulnerability
6953| [23583] Netbus 2.0 Pro Directory Listings Disclosure and File Upload Vulnerability
6954| [23582] Acme thttpd 1.9/2.0.x CGI Test Script Cross-Site Scripting Vulnerability
6955| [23571] SelectSurvey CMS (ASP.NET) Arbitrary File Upload
6956| [23567] Sony PC Companion 2.1 (Load()) Stack-based Unicode Buffer Overflow
6957| [23565] Sony PC Companion 2.1 (DownloadURLToFile()) Stack-based Unicode Buffer Overflow
6958| [23564] Mephistoles HTTPD 0.6 Cross-Site Scripting Vulnerability
6959| [23534] Hand-Crafted Software FreeProxy 3.5/3.6 - FreeWeb CreateFile Function Denial of Service Vulnerability
6960| [23532] Hand-Crafted Software FreeProxy 3.5/3.6 - FreeWeb Directory Traversal Vulnerability
6961| [23494] Clockstone and other CMSMasters Theme File Upload Vulnerabilities
6962| [23480] Surfboard httpd 1.1.9 - Remote Buffer Overflow Vulnerability
6963| [23439] MVDSV 0.165 b/0.171 Quake Server Download Buffer Overrun Vulnerability
6964| [23417] EZMeeting 3.x EZNet.EXE Long HTTP Request Remote Buffer Overflow Vulnerability
6965| [23397] Monit 1.4/2.x/3/4 Overly Long HTTP Request Buffer Overrun Vulnerability
6966| [23385] PostMaster 3.16/3.17 Proxy Service Cross-Site Scripting Vulnerability
6967| [23360] PostgreSQL for Linux Payload Execution
6968| [23326] http commander 4.0 - Directory Traversal vulnerability
6969| [23325] BRS WebWeaver 1.06 httpd `User-Agent` Remote Denial of Service Vulnerability
6970| [23310] TelCondex SimpleWebserver 2.12.30210 build 3285 HTTP Referer Remote Buffer Overflow Vulnerability
6971| [23309] Centrinity FirstClass 7.1 HTTP Server Directory Disclosure Vulnerability
6972| [23306] thttpd 2.2x defang Remote Buffer Overflow Vulnerability (2)
6973| [23305] thttpd 2.2x defang Remote Buffer Overflow Vulnerability (1)
6974| [23295] SH-HTTPD 0.3/0.4 Character Filtering Remote Information Disclosure Vulnerability
6975| [23257] Bajie HTTP Server 0.95 Example Scripts And Servlets Cross-Site Scripting Vulnerability
6976| [23245] Apache Tomcat 4.0.x Non-HTTP Request Denial of Service Vulnerability
6977| [23234] Centrinity FirstClass 5.50/5.77/7.0/7.1 - HTTP Server Long Version Field Denial of Service Vulnerability
6978| [23226] FreeFloat FTP Server Arbitrary File Upload
6979| [23188] Athttpd 0.4 b Remote GET Request Buffer Overrun Vulnerability
6980| [23181] NullLogic Null HTTPd 0.5 - Remote Denial of Service Vulnerability
6981| [23176] NullLogic Null HTTPd 0.5.1 Error Page Long HTTP Request Cross-Site Scripting Vulnerablity
6982| [23174] TCLHttpd 3.4.2 - Multiple Cross-Site Scripting Vulnerabilities
6983| [23173] TCLhttpd 3.4.2 Directory Listing Disclosure Vulnerability
6984| [23144] minihttp file-sharing for net 1.5 - Directory Traversal vulnerability
6985| [23142] WideChapter 3.0 HTTP Request Buffer Overflow Vulnerability
6986| [23121] Kukol E.V. HTTP & FTP Server Suite 6.2 File Disclosure Vulnerability
6987| [23110] Symantec Messaging Gateway 9.5.3-3 Arbitrary File Download
6988| [23050] Avant Browser 8.0.2 Long HTTP Request Buffer Overflow Vulnerability
6989| [23037] DWebPro 3.4.1 Http.ini Plaintext Password Storage Vulnerability
6990| [23005] FCKEditor ASP 2.6.8 - File Upload Protection Bypass
6991| [22997] PostNuke 0.6/0.7 Downloads Module TTitle Cross-site Scripting Vulnerability
6992| [22962] Cisco Aironet AP1x00 Malformed HTTP GET Denial of Service Vulnerability
6993| [22955] PHP Arena paFileDB 1.1.3/2.1.1/3.0/3.1 - Arbitrary File Upload And Execution Vulnerability
6994| [22935] Websense Proxy Filter Bypass
6995| [22909] NetSuite 1.0/1.2 HTTP Server Directory Traversal Vulnerability
6996| [22902] lighttpd 1.4.31 Denial of Service PoC
6997| [22892] Mabry Software HTTPServer/X 1.0 0.047 File Disclosure Vulnerability
6998| [22886] ChangshinSoft EZTrans Server Download.PHP Directory Traversal Vulnerability
6999| [22876] Canon GP300 Remote Malformed HTTP Get Denial of Service Vulnerability
7000| [22819] Tutos 1.1 File_New Arbitrary File Upload Vulnerability
7001| [22795] MiniHTTPServer WebForums Server 1.x/2.0 - Remote Directory Traversal Vulnerability
7002| [22794] Proxomitron Proxy Server Long Get Request Remote Denial of Service Vulnerability
7003| [22787] NFR Agent FSFUI Record File Upload RCE
7004| [22786] Dune 0.6.7 HTTP Get Remote Buffer Overrun Vulnerability
7005| [22785] MyServer 0.4.1/0.4.2 HTTP Server Directory Traversal Vulnerability
7006| [22784] Microsoft Internet Explorer 5 Custom HTTP Error HTML Injection Vulnerability
7007| [22749] Novell Netware 6.0,eDirectory 8.7 HTTPSTK.NLM Remote Abend Vulnerability
7008| [22723] MegaBrowser 0.3 HTTP Directory Traversal File Disclosure Vulnerability
7009| [22714] Oracle Database Client System Analyzer Arbitrary File Upload
7010| [22701] MyServer 0.5 HTTP GET Argument Buffer Overflow Vulnerability
7011| [22700] MyServer 0.4.3 HTTP GET Argument Buffer Overflow Vulnerability
7012| [22697] iisCart2000 Arbitrary File Upload Vulnerability
7013| [22628] Platform Load Sharing Facility 4/5 LSF_ENVDIR Local Command Execution Vulnerability
7014| [22626] Axis Network Camera 2.x HTTP Authentication Bypass Vulnerability
7015| [22610] Snowblind Web Server 1.0/1.1 HTTP GET Request Buffer Overflow Vulnerability
7016| [22608] Snowblind Web Server 1.0/1.1 Malformed HTTP Request Denial of Service Vulnerability
7017| [22597] PHP-Nuke 6.5 - Multiple Downloads Module SQL Injection Vulnerabilities
7018| [22556] MDG Web Server 4D 3.6 HTTP Command Buffer Overflow Vulnerability
7019| [22553] Microsoft BizTalk Server 2002 HTTP Receiver Buffer Overflow Vulnerability
7020| [22548] Xivo 1.2 Arbitrary File Download
7021| [22515] AN HTTPD 1.x Count.pl Directory Traversal Vulnerability
7022| [22460] Abyss Web Server 1.1.2 Incomplete HTTP Request Denial of Service Vulnerability
7023| [22433] Monkey HTTP Daemon 0.4/0.5/0.6 Excessive POST Data Buffer Overflow Vulnerability
7024| [22386] Siteframe 2.2.4 Download.php Information Disclosure Vulnerability
7025| [22341] Opera 6.0/7.0 Long Filename Download Buffer Overrun Vulnerability
7026| [22296] Axis Communications HTTP Server 2.x Messages Information Disclosure Vulnerability
7027| [22230] Netscape Enterprise Server 4.1 HTTP Method Name Buffer Overflow Vulnerability
7028| [22207] 3ware Disk Managment 1.10 Malformed HTTP Request DoS Vulnerability
7029| [22186] MyRoom 3.5 GOLD save_item.php Arbitrary File Upload Vulnerability
7030| [22130] AN HTTPD 1.41 e Cross Site Scripting Vulnerability
7031| [22117] iCal 3.7 Malformed HTTP Request Denial of Service Vulnerability
7032| [22106] CUPS 1.1.x Negative Length HTTP Header Vulnerability
7033| [22064] zeroo http server 1.5 - Directory Traversal vulnerability (2)
7034| [22063] zeroo http server 1.5 - Directory Traversal vulnerability (1)
7035| [22059] Pserv 2.0 HTTP Request Parsing Buffer Overflow
7036| [22058] Pserv 2.0 User-Agent HTTP Header Buffer Overflow Vulnerability (2)
7037| [22057] Pserv 2.0 User-Agent HTTP Header Buffer Overflow Vulnerability (1)
7038| [22056] Pserv 2.0 - HTTP Version Specifier Buffer Overflow Vulnerability
7039| [22046] Null HTTPD 0.5 - Remote Heap Corruption Vulnerability
7040| [22038] Sisfokol 4.0 - Arbitrary File Upload
7041| [22024] TFTPD32 2.50 Arbitrary File Download/Upload Vulnerability
7042| [22021] Lonerunner Zeroo HTTP Server 1.5 - Remote Buffer Overflow Vulnerability
7043| [22016] LibHTTPD 1.2 POST Buffer Overflow Vulnerability
7044| [22013] Light HTTPD 0.1 GET Request Buffer Overflow Vulnerability (2)
7045| [22012] Light HTTPD 0.1 GET Request Buffer Overflow Vulnerability (1)
7046| [22009] EZ Systems HTTPBench 1.1 Information Disclosure Vulnerability
7047| [21981] Monkey HTTP Server 0.4/0.5 Invalid POST Request Denial of Service Vulnerability
7048| [21978] Linksys WAP11 1.3/1.4,D-Link DI-804 4.68/Dl-704 2.56 b5 Embedded HTTP Server DoS Vulnerability
7049| [21955] AN HTTPD 1.38/1.39/1.40/1.41 Malformed SOCKS4 Request Buffer Overflow Vulnerability
7050| [21949] IBM Websphere Caching Proxy 3.6/4.0 - Denial of Service Vulnerability
7051| [21948] IBM Websphere Edge Server 3.69/4.0 HTTP Header Injection Vulnerability
7052| [21944] Cisco CatOS 5.x/6.1/7.3/7.4 CiscoView HTTP Server Buffer Overflow Vulnerability
7053| [21937] ghttpd 1.4.x Log() Function Buffer Overflow Vulnerability
7054| [21936] ATP httpd 0.4 Single Byte Buffer Overflow Vulnerability
7055| [21929] Project Pier Arbitrary File Upload Vulnerability
7056| [21921] VBZoom 1.0 - Arbitrary File Upload Vulnerability
7057| [21896] Midicart PHP Arbitrary File Upload Vulnerability
7058| [21880] Monkey HTTP Server 0.1/0.4/0.5 - Multiple Cross Site Scripting Vulnerabilities
7059| [21857] Monkey HTTP Server 0.1.4 File Disclosure Vulnerability
7060| [21847] Avaya IP Office Customer Call Reporter ImageUpload.ashx Remote Command Execution
7061| [21837] InduSoft Web Studio Arbitrary Upload Remote Code Execution
7062| [21836] Auxilium RateMyPet Arbitrary File Upload Vulnerability
7063| [21835] qdPM 7.0 - Arbitrary PHP File Upload Vulnerability
7064| [21818] Null HTTPd 0.5 - Remote Heap Overflow Vulnerability
7065| [21801] DB4Web 3.4/3.6 Connection Proxy Vulnerability
7066| [21782] Oracle 8.1.x/9.0/9.2 TNS Listener Service_CurLoad Remote Denial of Service
7067| [21767] NullLogic Null HTTPd 0.5 Error Page Cross-Site Scripting Vulnerability
7068| [21757] OmniHTTPD 1.1/2.0.x/2.4 Sample Application URL Encoded Newline HTML Injection
7069| [21756] Belkin F5D6130 Wireless Network Access Point SNMP Request Denial of Service
7070| [21754] OmniHTTPd 1.1/2.0.x/2.4 test.shtml Sample Application XSS
7071| [21753] OmniHTTPd 1.1/2.0.x/2.4 test.php Sample Application XSS
7072| [21731] Novell NetWare 5.1/6.0 HTTP Post Arbitrary Perl Code Execution Vulnerability
7073| [21710] MyWebServer 1.0.2 Long HTTP Request HTML Injection Vulnerability
7074| [21694] 602Pro LAN SUITE 2002 Telnet Proxy Localhost Denial of Service Vulnerability
7075| [21678] Inso DynaWeb httpd 3.1/4.0.2/4.1 Format String Vulnerability
7076| [21656] Lucent Access Point 300/600/1500 IP Services Router Long HTTP Request DoS
7077| [21654] IPSwitch IMail 6.x/7.0/7.1 Web Messaging HTTP Get Buffer Overflow Vulnerability
7078| [21614] ATPhttpd 0.4 b Buffer Overflow Vulnerabilities
7079| [21611] Summit Computer Networks Lil' HTTP Server 2.1/2.2 pbcgi.cgi Cross Site Scripting
7080| [21589] AnalogX Proxy 4.0 Socks4A Buffer Overflow Vulnerability
7081| [21581] Summit Computer Networks Lil' HTTP Server 2 URLCount.CGI HTML Injection Vulnerability
7082| [21510] MS IE 5/6,MS ISA Server 2000,MS Proxy Server 2.0 Gopher Client Buffer Overflow
7083| [21441] Cisco ATA-186 HTTP Device Configuration Disclosure Vulnerability
7084| [21422] ACME Labs thttpd 2.20 Cross-Site Scripting Vulnerability
7085| [21413] National Instruments LabVIEW 5.1.1/6.0/6.1 HTTP Request Denial of Service Vulnerability
7086| [21372] Microsoft IIS 4/5 HTTP Error Page Cross Site Scripting Vulnerability
7087| [21347] PHP 3.0.x/4.x Move_Uploaded_File Open_Basedir Circumvention Vulnerability
7088| [21335] Cobalt RaQ 2.0/3.0/4.0 XTR MultiFileUpload.php Authentication Bypass Vulnerability (2)
7089| [21334] Cobalt RaQ 2.0/3.0/4.0 XTR MultiFileUpload.php Authentication Bypass Vulnerability (1)
7090| [21320] Internet Download Manager All Versions - SEH Based Buffer Overflow
7091| [21318] Internet Download Manager All Versions - Stack Based Buffer Overflow
7092| [21311] BPM Studio Pro 4.2 HTTPD Directory Traversal Vulnerability
7093| [21297] Squid 2.0-4 Cache FTP Proxy URL Buffer Overflow Vulnerability
7094| [21269] Webify eDownloads Cart Arbitrary File Deletion Vulnerability
7095| [21243] Alteon AceDirector Half-Closed HTTP Request IP Address Revealing Vulnerabililty
7096| [21202] Anti-Web HTTPD 2.2 Script Engine File Opening Denial of Service Vulnerability
7097| [21150] Rational ClearCase 3.2/4.x DB Loader TERM Environment Variable Buffer Overflow Vulnerability
7098| [21145] IBM HTTP Server 1.3.x Source Code Disclosure Vulnerability
7099| [21141] Red Hat TUX 2.1 .0-2 HTTP Server Oversized Host Denial of Service Vulnerability
7100| [21138] Sflog! CMS 1.0 - Arbitrary File Upload Vulnerability
7101| [21050] NCSA httpd 1.x Buffer Overflow Vulnerability (2)
7102| [21049] NCSA httpd 1.x Buffer Overflow Vulnerability (1)
7103| [21017] Squid Web Proxy 2.3 Reverse Proxy Vulnerability
7104| [20998] xloadimage 4.1 - Buffer Overflow Vulnerability
7105| [20978] Cisco IOS 11.x/12.x HTTP Configuration Arbitrary Administrative Access Vulnerability (4)
7106| [20977] Cisco IOS 11.x/12.x HTTP Configuration Arbitrary Administrative Access Vulnerability (3)
7107| [20976] Cisco IOS 11.x/12.x HTTP Configuration Arbitrary Administrative Access Vulnerability (2)
7108| [20975] Cisco IOS 11.x/12.x HTTP Configuration Arbitrary Administrative Access Vulnerability (1)
7109| [20955] Internet Download Manager All Versions - Memory Corruption Vulnerability
7110| [20929] ghttpd 1.4 Daemon Buffer Overflow Vulnerability
7111| [20886] Omnicron OmniHTTPD 2.0.4-8 File Source Disclosure Vulnerability
7112| [20864] Elcom CMS 7.4.10 Community Manager Insecure File Upload
7113| [20847] 3Com OfficeConnect DSL Router 812 1.1.7/840 1.1.7 HTTP Port Router DoS
7114| [20825] michael lamont savant http server 2.1 - Directory Traversal vulnerability
7115| [20790] businesswiki 2.5rc3 - Stored XSS & arbitrary file upload
7116| [20775] Netscape SmartDownload 1.3 - Buffer Overflow Vulnerability
7117| [20763] Microsoft ISA Server 2000 Web Proxy DoS Vulnerability
7118| [20728] 602Pro Lan Suite 2000a Long HTTP Request Denial of Service Vulnerability
7119| [20713] XODA 0.4.5 Arbitrary PHP File Upload Vulnerability
7120| [20703] XODA Document Management System 0.4.5 - XSS & Arbitrary File Upload
7121| [20662] WhitSoft SlimServe HTTPD 1.1 Get Denial of Service Vulnerability
7122| [20657] robin twombly a1 http server 1.0 - Directory Traversal vulnerability
7123| [20656] Robin Twombly A1 HTTP Server 1.0 - Denial of Service Vulnerability
7124| [20608] guido frassetto sedum http server 2.0 - Directory Traversal vulnerability
7125| [20595] NCSA 1.3/1.4.x/1.5,Apache httpd 0.8.11/0.8.14 ScriptAlias Source Retrieval Vulnerability
7126| [20559] tinyproxy tinyproxy 1.3.2/1.3.3 Heap Overflow Vulnerability
7127| [20557] Omnicron OmniHTTPD 2.0.7 File Corruption and Command Execution Vulnerability
7128| [20539] MobileCartly 1.0 - Remote File Upload Vulnerability
7129| [20531] IBM HTTP Server 1.3 AfpaCache/WebSphereNet.Data DoS Vulnerability
7130| [20526] GTK+ 1.2.8 Arbitrary Loadable Module Execution Vulnerability
7131| [20500] TestLink 1.9.3 - Arbitrary File Upload Vulnerability
7132| [20496] Oops Proxy Server 1.4.22 Buffer Overflow Vulnerabilities (2)
7133| [20495] Oops Proxy Server 1.4.22 Buffer Overflow Vulnerabilities (1)
7134| [20491] KTH Kerberos 4 Arbitrary Proxy Usage Vulnerability
7135| [20465] Squid Web Proxy 2.2 cachemgr.cgi Unauthorized Connection Vulnerability
7136| [20449] GlimpseHTTP 1.0/2.0 and WebGlimpse 1.0 Piped Command Vulnerability
7137| [20435] Apache 0.8.x/1.0.x,NCSA httpd 1.x test-cgi Directory Listing Vulnerability
7138| [20423] NCSA httpd-campas 1.2 sample script Vulnerability
7139| [20403] Small HTTP server 2.0 1 Non-Existent File DoS Vulnerability
7140| [20395] BNC 2.2.4/2.4.6/2.4.8 IRC Proxy Buffer Overflow Vulnerability (2)
7141| [20394] BNC 2.2.4/2.4.6/2.4.8 IRC Proxy Buffer Overflow Vulnerability (1)
7142| [20323] "Cisco IOS 12 Software ""?/"" HTTP Request DoS Vulnerability"
7143| [20305] Microsoft Site Server 2.0 with IIS 4.0 - File Upload Vulnerability
7144| [20304] Omnicron OmniHTTPD 1.1/2.0 Alpha 1 visiadmin.exe Denial of Service Vulnerability
7145| [20295] AOL Products downloadUpdater2 Plugin SRC Parameter Remote Code Execution
7146| [20242] Unixware 7.0 SCOhelp HTTP Server Format String Vulnerability
7147| [20220] Mandrake 6.1/7.0/7.1 /perl http Directory Disclosure Vulnerability
7148| [20173] WebPageTest Arbitrary PHP File Upload
7149| [20123] Symantec Web Gateway 5.0.3.18 (deptUploads_data.php groupid parameter) Blind SQLi
7150| [20120] httpdx <= 1.5.4 - Remote Heap Overflow
7151| [20111] CuteFlow 2.11.2 - Arbitrary File Upload Vulnerability
7152| [20109] Photodex ProShow Producer 5.0.3256 load File Handling Buffer Overflow
7153| [20099] AnalogX Proxy 4.0 4 DoS Vulnerability
7154| [20083] WordPress Front End Upload 0.5.4.4 - Arbitrary PHP File Upload
7155| [20054] West Street Software LocalWEB HTTP Server 1.2 - Buffer Overflow
7156| [20048] Microsoft Windows 2000 Remote CPU-overload Vulnerability
7157| [20040] SapporoWorks WinProxy 2.0/2.0.1 - Buffer Overflow Vulnerability
7158| [20029] EGallery PHP File Upload Vulnerability
7159| [20017] Max Feoktistov Small HTTP server 1.212 Buffer Overflow
7160| [19988] httpdx 1.5.4 - Remote HTTP Server Denial of Service
7161| [19942] Fortech Proxy+ 2.30 Remote Administration Vulnerability
7162| [19920] Computalynx CProxy Server 3.3 SP2 Buffer Overflow DoS Vulnerability
7163| [19882] Cisco IOS 11.x/12.x HTTP %% Vulnerability
7164| [19866] DomsHttpd <= 1.0 - Remote Denial of Service Exploit
7165| [19829] Joomla OS Property 2.0.2 Unrestricted File Upload
7166| [19792] Joomla KISS Advertiser Remote File & Bypass Upload Vulnerability
7167| [19791] WordPress Resume Submissions & Job Postings 2.5.1 - Unrestricted File Upload
7168| [19746] Novell BorderManager 3.0/3.5 Audit Trail Proxy DoS Vulnerability
7169| [19637] MS IE 5.0 for Windows 2000/95/98/NT 4 XML HTTP Redirect Vulnerability
7170| [19587] AN-HTTPd 1.2 b CGI Vulnerabilities
7171| [19567] National Science Foundation Squid Web Proxy 1.0/1.1/2.1 Authentication Failure
7172| [19566] Omnicron OmniHTTPD 1.1/2.4 Pro Buffer Overflow Vulnerability
7173| [19536] Apache <= 1.1,NCSA httpd <= 1.5.2,Netscape Server 1.12/1.1/2.0 a nph-test-cgi Vulnerability
7174| [19530] MS IE 5.0 Download Behavior Vulnerability
7175| [19398] Wordpress Fancy Gallery Plugin 1.2.4 - Arbitrary File Upload
7176| [19253] Debian Linux 2.1 httpd Vulnerability
7177| [19244] Apple Mac OS X Server 10.0 Overload Vulnerability
7178| [19154] qdPM 7 - Arbitrary File upload
7179| [19100] WordPress plugin Foxypress uploadify.php Arbitrary Code Execution
7180| [19099] F5 BIG-IP SSH Private Key Exposure
7181| [19093] Allaire ColdFusion Server <= 4.0 - Remote File Display, Deletion, Upload and Execution Vulnerability
7182| [19091] F5 BIG-IP Remote Root Authentication Bypass Vulnerability
7183| [19064] F5 BIG-IP Remote Root Authentication Bypass Vulnerability
7184| [19059] Agora-Project 2.12.11 Arbitrary File Upload Vulnerability
7185| [19058] Wordpress Custom Content Type Manager 0.9.5.13-pl Arbitrary File Upload Vulnerability
7186| [19057] Wordpress drag and drop file upload 0.1 - Arbitrary File Upload Vulnerability
7187| [19056] Wordpress Mac Photo Gallery 2.7 - Arbitrary File Upload
7188| [19055] Wordpress Pica Photo Gallery 1.0 - Arbitrary File Upload Vulnerability
7189| [19054] Wordpress SfBrowser 1.4.5 - Arbitrary File Upload Vulnerability
7190| [19053] Wordpress Top Quark Architecture 2.10 - Arbitrary File Upload Vulnerability
7191| [19052] Wordpress User Meta 1.1.1 - Arbitrary File Upload Vulnerability
7192| [19051] ClanSuite 2.9 - Arbitrary File Upload Vulnerability
7193| [19050] Wordpress wp-gpx-map 1.1.21 - Arbitrary File Upload Vulnerability
7194| [19038] Symantec Web Gateway 5.0.2.8 Arbitrary PHP File Upload Vulnerability
7195| [19036] Wordpress Content Flow 3D Plugin 1.0.0 - Arbitrary File Upload
7196| [19023] Wordpress wpStoreCart Plugin 2.5.27-2.5.29 Arbitrary File Upload
7197| [19020] Wordpress Simple Download Button Shortcode Plugin 1.0 - Remote File Disclosure
7198| [19019] Wordpress RBX Gallery Plugin 2.1 - Arbitrary File Upload
7199| [19012] Wordpress Front File Manager Plugin 0.1 - Arbitrary File Upload
7200| [19009] Wordpress Omni Secure Files Plugin 0.1.13 Arbitrary File Upload
7201| [19008] Wordpress Front End Upload 0.5.3 - Arbitrary File Upload
7202| [18998] Wordpress Gallery Plugin 3.06 Arbitrary File Upload
7203| [18997] Wordpress MM Forms Community Plugin 2.2.6 - Arbitrary File Upload
7204| [18994] Wordpress Font Uploader Plugin 1.2.4 - Arbitrary File Upload
7205| [18993] Wordpress Asset Manager Plugin 0.2 - Arbitrary File Upload
7206| [18991] Wordpress Foxypress Plugin 0.4.1.1 - 0.4.2.1 - Arbitrary File Upload
7207| [18990] Wordpress HTML5 AV Manager Plugin 0.2.7 - Arbitrary File Upload
7208| [18988] Wordpress Plugin Marketplace Plugin 1.5.0 - 1.6.1 - Arbitrary File Upload
7209| [18987] Wordpress WP-Property Plugin 1.35.0 - Arbitrary File Upload
7210| [18978] PHP 5.3.10 spl_autoload_call() Local Denial of Service
7211| [18977] PHP 5.3.10 spl_autoload_register() Local Denial of Service
7212| [18976] PHP 5.3.10 spl_autoload() Local Denial of Service
7213| [18959] Browser Navigation Download Trick
7214| [18957] PHP Volunteer Management System 1.0.2 - Arbitrary File Upload
7215| [18922] appRain CMF Arbitrary PHP File Upload Vulnerability
7216| [18768] Mega File Manager - File Download Vulnerability
7217| [18738] V-CMS PHP File Upload and Execute
7218| [18727] IBM Tivoli Provisioning Manager Express for Software Distribution Isig.isigCtl.1 ActiveX RunAndUploadFile() Method Overflow
7219| [18629] Tiny Server <= 1.1.9 HTTP HEAD DoS
7220| [18624] 2X Client for RDP 10.1.1204 ClientSystem Class ActiveX Control Download and Execute Vulnerability
7221| [18611] RM Downloader 3.1.3.3.2010.06.26 - (.m3u) Buffer Overflow (MSF)
7222| [18604] NetDecision 4.5.1 HTTP Server Buffer Overflow
7223| [18603] TVersity <= 1.9.7 Arbitrary File Download
7224| [18574] RazorCMS <= 1.2.1 STABLE File Upload Vulnerability
7225| [18541] Netmechanica NetDecision HTTP Server Denial of Service Vulnerability
7226| [18524] Tiny HTTP Server <= 1.1.9 - Remote Crash PoC
7227| [18518] The Uploader 2.0.4 (Eng/Ita) Remote File Upload Remote Code Execution
7228| [18515] Orbit Downloader - URL Unicode Conversion Overflow
7229| [18457] torrent-stats httpd.c Denial of Service
7230| [18449] Icona SpA C6 Messenger DownloaderActiveX Control Arbitrary File Download and Execute
7231| [18442] Apache httpOnly Cookie Disclosure
7232| [18432] phux Download Manager Blind SQL Injection Vulnerability
7233| [18431] Ajax Upload Arbitrary File Upload
7234| [18412] Wordpress Kish Guest Posting Plugin 1.0 - Arbitrary File Upload
7235| [18407] AllWebMenus < 1.1.9 WordPress Menu Plugin Arbitrary File Upload
7236| [18392] appRain CMF <= 0.1.5 (uploadify.php) Unrestricted File Upload Exploit
7237| [18367] XAMPP WebDAV PHP Upload
7238| [18365] Microsoft Internet Explorer JavaScript OnLoad Handler Remote Code Execution Vulnerability
7239| [18357] Pragyan CMS 2.6.1 - Arbitrary File Upload Vulnerability
7240| [18295] lighttpd Denial of Service Vulnerability PoC
7241| [18287] Joomla Module Simple File Upload 1.3 - Remote Code Execution
7242| [18277] Free Image Hosting Script Arbitrary File Upload Vulnerability
7243| [18276] Wordpress Mailing List Plugin Arbitrary File Download
7244| [18221] Apache HTTP Server Denial of Service
7245| [18185] Muster Render Farm Management System Arbitrary File Download
7246| [18148] PHP-Nuke <= 8.1.0.3.5b (Downloads) Remote Blind SQL Injection
7247| [18125] Wireshark console.lua pre-loading vulnerability
7248| [18120] FleaHttpd Remote Denial of Service Exploit
7249| [18118] QuiXplorer 2.3 - Bugtraq File Upload Vulnerability
7250| [18105] glibc LD_AUDIT arbitrary DSO load Privilege Escalation
7251| [18070] Web File Browser 0.4b14 File Download Vulnerability
7252| [18032] SAP Management Console OSExecute Payload Execution
7253| [18017] Cyclope Internet Filtering Proxy 4.0 - CEPMServer.exe DoS (Poc)
7254| [18013] Cyclope Internet Filtering Proxy 4.0 - Stored XSS Vuln.
7255| [18000] 1024 CMS 1.1.0 Beta force_download.php Local File Inclusion
7256| [17975] PcVue 10.0 SV.UIGrdCtrl.1 'LoadObject()/SaveObject()' Trusted DWORD Vulnerability
7257| [17969] Apache mod_proxy Reverse Proxy Exposure Vulnerability PoC
7258| [17882] JAKCMS PRO <= 2.2.5 - Remote Arbitrary File Upload Exploit
7259| [17869] Wordpress Relocate Upload Plugin 0.14 Remote File Inclusion
7260| [17859] Toko Lite CMS 1.5.2 (edit.php) HTTP Response Splitting Vulnerability
7261| [17858] WordPress Filedownload Plugin 0.1 (download.php) Remote File Disclosure Vulnerability
7262| [17808] WordPress WP-Filebase Download Manager plugin <= 0.2.9 - SQL Injection Vulnerability
7263| [17801] Wordpress 1 Flash Gallery Plugin Arbiraty File Upload Exploit (MSF)
7264| [17797] WordPress Paid Downloads plugin <= 2.01 SQL Injection Vulnerability
7265| [17760] Wordpress grapefile plugin <= 1.1 - Arbitrary File Upload
7266| [17721] Sunway Force Control SCADA 6.1 SP3 httpsrv.exe Exploit
7267| [17702] WordPress Block-Spam-By-Math-Reloaded Plugin Bypass
7268| [17696] Apache httpd Remote Denial of Service (memory exhaustion)
7269| [17669] Simple HTTPd 1.42 PUT Request Remote Buffer Overflow Vulnerability
7270| [17658] Simple HTTPd 1.42 Denial of Servive Exploit
7271| [17644] FCKeditor all version - Arbitrary File Upload Vulnerability
7272| [17584] cFTP <= 0.1 (r80) Arbitrary File Upload
7273| [17581] MyWebServer 1.0.3 - Arbitrary File Download
7274| [17563] Download Accelerator plus (DAP) 9.7 - M3U File Buffer Overflow Exploit (Unicode SEH)
7275| [17424] Black Ice Cover Page ActiveX Control Arbitrary File Download
7276| [17422] DreamBox DM800 Arbitrary File Download Vulnerability
7277| [17415] Black Ice Cover Page SDK insecure method DownloadImageFileURL() exploit
7278| [17393] Oracle HTTP Server XSS Header Injection
7279| [17366] Cisco AnyConnect VPN Client ActiveX URL Property Download and Execute
7280| [17349] Belkin G Wireless Router F5D7234-4 v5 Exploit
7281| [17346] w-Agora Forum 4.2.1 - Arbitrary File Upload Exploit
7282| [17326] DNS Reverse Download and Exec Shellcode
7283| [17305] "Microsoft Windows Vista/Server 2008 ""nsiproxy.sys"" Local Kernel DoS Exploit"
7284| [17303] Joomla 1.0 Component jDownloads Arbitrary File Upload Vulnerability
7285| [17285] osCommerce 2.3.1 (banner_manager.php) Remote File Upload Vulnerability
7286| [17284] EditorMonkey WordPress plugin (FCKeditor) Arbitrary File Upload
7287| [17279] DreamBox DM500(+) - Arbitrary File Download Vulnerability
7288| [17200] ZenPhoto 1.4.0.3 x-forwarded-for HTTP Header presisitent XSS
7289| [17176] SoftXMLCMS Shell Upload Vulnerability
7290| [17172] cPassMan 1.82 - Arbitrary File Download
7291| [17155] Cisco Security Agent Management Console ?st_upload? RCE Exploit
7292| [17085] PHPBoost 3.0 - Remote Download Backup Vulnerability
7293| [17080] Bigace 2.7.5 - Remote File Upload Vulnerability
7294| [17068] jHTTPd 0.1a Directory Traversal Vulnerability
7295| [17037] PostgreSQL for Microsoft Windows Payload Execution
7296| [17035] Constructr CMS 3.03 Arbitrary File Upload
7297| [17034] Progea Movicon 11 TCPUploadServer Remote Exploit
7298| [17016] EAFlashUpload 2.5 - File Arbitrary Upload
7299| [17015] Element-IT PowUpload 1.3 File Arbitrary Upload
7300| [17014] CMS Lokomedia 1.5 Arbitary File Upload Vulnerability
7301| [17011] Douran 3.9.7.8 File Download/Source Code Disclosure Vulnerability
7302| [17009] CMS Balitbang 3.3 Arbitary File Upload Vulnerability
7303| [17007] Phpbuddies Arbitrary Upload File Vulnerability
7304| [17005] Kleophatra 0.1.4 0day Arbitrary Upload File Vulnerability
7305| [17002] CMS Loko Media Local File Download Vulnerability
7306| [16990] Sun Java Applet2ClassLoader Remote Code Execution Exploit
7307| [16970] Kolibri <= 2.0 - HTTP Server HEAD Buffer Overflow
7308| [16959] Oracle WebLogic Session Fixation Via HTTP POST
7309| [16957] Oracle MySQL for Microsoft Windows Payload Execution
7310| [16907] Google Appliance ProxyStyleSheet Command Execution
7311| [16906] Joomla 1.5.12 TinyBrowser File Upload Code Execution
7312| [16903] OpenX banner-edit.php File Upload PHP Code Execution
7313| [16874] MacOS X EvoCam HTTP GET Buffer Overflow
7314| [16856] DD-WRT HTTP Daemon Arbitrary Command Execution
7315| [16809] Oracle 9i XDB HTTP PASS Overflow (win32)
7316| [16802] Webster HTTP Server GET Buffer Overflow
7317| [16800] Streamcast <= 0.9.75 HTTP User-Agent Buffer Overflow
7318| [16799] HTTPDX h_handlepeer() Function Buffer Overflow
7319| [16794] HTTPDX tolog() Function Format String Vulnerability
7320| [16790] PSO Proxy 0.91 - Stack Buffer Overflow
7321| [16789] Adobe RoboHelp Server 8 Arbitrary File Upload and Execute
7322| [16788] ColdFusion 8.0.1 - Arbitrary File Upload and Execute
7323| [16777] Free Download Manager Remote Control Server Buffer Overflow
7324| [16759] SHTTPD <= 1.34 URI-Encoded POST Request Overflow (win32)
7325| [16755] Novell iManager getMultiPartParameters Arbitrary File Upload
7326| [16732] HTTPDX tolog() Function Format String Vulnerability
7327| [16698] Windows ANI LoadAniIcon() Chunk Size Stack Buffer Overflow (SMTP)
7328| [16692] Proxy-Pro Professional GateKeeper 4.7 GET Request Overflow
7329| [16691] Blue Coat WinProxy Host Header Overflow
7330| [16690] Qbik WinGate WWW Proxy Server URL Processing Overflow
7331| [16689] CCProxy <= 6.2 - Telnet Proxy Ping Overflow
7332| [16642] WM Downloader 3.1.2.2 - Buffer Overflow
7333| [16634] Free Download Manager Torrent Parsing Buffer Overflow
7334| [16605] Snapshot Viewer for Microsoft Access ActiveX Control Arbitrary File Download
7335| [16601] FlipViewer FViewerLoading ActiveX Control Buffer Overflow
7336| [16600] Symantec Altiris Deployment Solution ActiveX Control Arbitrary File Download and Execute
7337| [16588] HP LoadRunner 9.0 ActiveX AddFolder Buffer Overflow
7338| [16576] Persits XUpload ActiveX AddFile Buffer Overflow
7339| [16570] AwingSoft Winds3D Player 3.5 SceneURL Download and Execute
7340| [16569] Orbit Downloader Connecting Log Creation Buffer Overflow
7341| [16554] America Online ICQ ActiveX Control Arbitrary File Download and Execute
7342| [16553] BaoFeng Storm mps.dll ActiveX OnBeforeVideoDownload Buffer Overflow
7343| [16540] Zenturi ProgramChecker ActiveX Control Arbitrary File Download
7344| [16532] Internet Explorer XML Core Services HTTP Request Handling
7345| [16512] Symantec AppStream LaunchObj ActiveX Control Arbitrary File Download and Execute
7346| [16505] Facebook Photo Uploader 4 ActiveX Control Buffer Overflow
7347| [16502] IBM Lotus Domino Web Access Upload Module Buffer Overflow
7348| [16496] Kazaa Altnet Download Manager ActiveX Control Buffer Overflow
7349| [16493] EnjoySAP SAP GUI ActiveX Control Arbitrary File Download
7350| [16439] NetTransport Download Manager 2.90.510 Buffer Overflow
7351| [16425] Asus Dpcproxy Buffer Overflow
7352| [16395] Microsoft SQL Server Payload Execution
7353| [16394] Microsoft SQL Server Payload Execution via SQL injection
7354| [16339] Timbuktu Pro Directory Traversal/File Upload
7355| [16319] JBoss JMX Console Beanshell Deployer WAR upload and deployment
7356| [16318] JBoss JMX Console Deployer Upload and Execute
7357| [16288] Generic Payload Handler
7358| [16220] ProQuiz 2.0.0b Arbitrary Upload Vulnerability
7359| [16199] Icy Phoenix 1.3.0.53a HTTP Referer stored XSS
7360| [16181] WordPress User Photo Component Remote File Upload Vulnerability
7361| [16131] SWFUpload 2.5.0 Beta 3 - File Arbitrary Upload
7362| [16128] jakcms 2.0 pro rc5 - Stored XSS via useragent http header injection
7363| [16103] Majordomo2 - Directory Traversal (SMTP/HTTP)
7364| [16088] NetLink Arbitrary File Upload Vulnerability
7365| [16080] RW-Download 4.0.6 - (index.php) SQL Injection Vulnerability
7366| [16072] WM Downloader 3.1.2.2 2010.04.15 (.m3u) Buffer Overflow + DEP Bypass
7367| [16058] MultiPowUpload 2.1 - Remote File Upload Vulnerability
7368| [16050] class.upload.php 0.30 - Remote File Upload Vulnerability
7369| [15981] LifeType 1.2.10 HTTP Referer stored XSS
7370| [15960] Maximus CMS (fckeditor) Arbitrary File Upload Vulnerability
7371| [15868] QuickPHP Web Server Arbitrary (src .php) File Download
7372| [15861] httpdasm 0.92 - Directory Traversal
7373| [15843] News Script PHP Pro (fckeditor) File Upload Vulnerability
7374| [15830] Social Engine 4.x (Music Plugin) Arbitrary File Upload Vulnerability
7375| [15821] HttpBlitz Web Server Denial of Service Exploit
7376| [15795] Serendipity 1.5.4 0day Arbitrary File Upload Vulnerability
7377| [15793] Vacation Rental Script 4.0 - Arbitrary File Upload Vulnerability
7378| [15791] Joomla Component Jotloader 2.2.1 - Local File Inclusion Vulnerability
7379| [15770] Download Center 2.2 - SQL injection Vulnerability
7380| [15768] MCFileManager Plugin for TinyMCE 3.2.2.3 - Arbitrary File Upload Vulnerability
7381| [15765] CubeCart 3.x - Remote File Upload Vulnerability
7382| [15756] MHP Downloadshop SQL Injection Vulnerability
7383| [15719] JE Messenger 1.0 - Arbitrary File Upload Vulnerability
7384| [15703] SOOP Portal Raven 1.0b Shell Upload Vulnerability
7385| [15690] SOOP Portal 2.0 - Remote Upload Shell Vulnerability
7386| [15654] Digitalus 1.10.0 Alpha2 - Arbitrary File Upload Vulnerability
7387| [15651] OsCSS 1.2 - Arbitrary File Upload Vulnerability
7388| [15638] Duhok Forum <= 1.1 - Remote File Upload Vulnerability
7389| [15636] Orbis CMS 1.0.2 - Arbitrary File Upload Vulnerability
7390| [15611] JDownloader Webinterface Source Code Disclosure Vulnerability
7391| [15602] PHPMotion FCKeditor File Upload Vulnerability
7392| [15597] Acidcat CMS 3.3 - (fckeditor) Shell Upload Vulnerability
7393| [15596] JCMS 2010 file download vulnerability
7394| [15563] Sitefinity CMS (ASP.NET) Shell Upload Vulnerability
7395| [15516] EasyJobPortal Shell Upload Vulnerability
7396| [15484] FCKeditor 2.x <= 2.4.3 - Arbitrary File Upload Vulnerability
7397| [15455] xt:Commerce Shopsoftware (fckeditor) Arbitrary File Upload Vulnerability
7398| [15441] MassMirror Uploader Remote File Inclusion Vulnerability
7399| [15422] Sami HTTP Server 2.0.1 GET Request Denial of Service Exploit
7400| [15404] eLouai's Force Download Script Arbitrary Local File Download Vulnerability
7401| [15389] MetInfo 3.0 (fckeditor) Arbitrary File Upload Vulnerability
7402| [15354] Zoopeer 0.1 & 0.2 (fckeditor) Shell Upload Vulnerability
7403| [15353] Joomla Component com_jfuploader < 2.12 Remote File Upload
7404| [15336] MinaliC Webserver 1.0 - Remote Source Disclosure/File Download
7405| [15316] ARM Loader Port 0x1337
7406| [15307] HP Data Protector Media Operations 6.11 HTTP Server Remote Integer Overflow DoS
7407| [15304] GNU C library dynamic linker LD_AUDIT arbitrary DSO load Vulnerability
7408| [15292] MS10-070 ASP.NET Auto-Decryptor File Download Exploit
7409| [15290] Oracle Sun Java System Web Server - HTTP Response Splitting
7410| [15277] GeekLog 1.7.0 (fckeditor) Arbitrary File Upload Vulnerability
7411| [15265] MS10-070 ASP.NET Padding Oracle File Download
7412| [15254] KCFinder 2.2 - Arbitrary File Upload Vulnerability
7413| [15249] Data/File upload and management Arbitrary File Upload Vulnerability
7414| [15217] Feindura File Manager 1.0(rc) - Remote File Upload
7415| [15194] TinyMCE MCFileManager 2.1.2 - Arbitrary File Upload Vulnerability
7416| [15164] JomSocial 1.8.8 Shell Upload Vulnerability
7417| [15160] MOAUB #30 - ASPMass Shopping Cart Vulnerability File Upload CSRF
7418| [15139] MOAUB #28 - AtomatiCMS Upload Arbitrary File Vulnerability
7419| [15050] Opencart 1.4.9.1 - Remote File Upload Vulnerability
7420| [15041] Maian Gallery 2 - Local File Download Vulnerability
7421| [14995] Joomla Component Mosets Tree 2.1.5 Shell Upload Vulnerability
7422| [14991] MOAUB #13 - Luftguitar CMS Vulnerability: Upload Arbitrary File
7423| [14989] osDate (uploadvideos.php) Shell Upload Vulnerability
7424| [14960] ES Simple Download 1.0. Local File Inclusion Vulnerability
7425| [14941] Integard Home and Pro 2 - Remote HTTP Buffer Overflow Exploit
7426| [14938] Internet Download Accelerator 5.8 - Remote Buffer Overflow PoC
7427| [14840] Mereo 1.9.2 - Remote HTTP Server Denial of Service Vulnerability
7428| [14819] Pc4Uploader 9.0 Cross-site Request Forgery
7429| [14811] Joomla Component (com_remository) Remote Upload File
7430| [14683] Httpdx 1.5.4 - Multiple Denial of Service Vulnerabilities (http-ftp) PoC
7431| [14629] Kleeja Upload - CSRF Change Admin Password
7432| [14609] Msxml2.XMLHTTP.3.0 Response Handling Memory Corruption (MS10-051)
7433| [14532] Mini-stream RM-MP3 Converter/WMDownloader/ASX to MP3 Cnvrtr Stack Buffer Overflow
7434| [14527] WM Downloader 3.1.2.2 - Buffer Overflow Exploit
7435| [14522] Xerver 4.32 - Source Disclosure and HTTP Authentication Bypass
7436| [14497] WM Downloader 3.1.2.2 2010.04.15 Buffer Overflow (SEH)
7437| [14496] UPlusFTP Server 1.7.1.01 - HTTP Remote Buffer Overflow (Post Auth)
7438| [14457] DM Filemanager 3.9.11 Arbitrary File Upload Vulnerability
7439| [14445] ZeeMatri 3.x - Arbitrary File Upload Vulnerability
7440| [14444] ZeeNetworking 1x- Arbitrary File Upload Vulnerability
7441| [14443] LILDBI Shell Upload Vulnerability
7442| [14430] RapidLeech Scripts Remote File Upload Vulnerability
7443| [14415] EZ-Oscommerce 3.1 - Remote File Upload
7444| [14390] Freelancer Marketplace Script Upload Vulnerability
7445| [14315] Joomla MySMS Component (com_mysms) Upload Vulnerability
7446| [14308] Wordpress Firestats Remote Configuration File Download
7447| [14293] Minify4Joomla Upload and Persistent XSS Vulnerability
7448| [14280] PG Social Networking Shell Upload Vulnerabilty
7449| [14279] Inout Ad server Ultimate Shell Upload Vulnerabilty
7450| [14278] Inout Article Base Ultimate Shell Upload Vulnerabilty
7451| [14277] Inout Music 1.0 - Shell Upload Vulnerabilty
7452| [14267] EA Battlefield 2 and Battlefield 2142 Multiple Arbitrary File Upload Vulnerabilities
7453| [14209] Joomla Front-End Article Manager System Upload Vulnerability
7454| [14184] SweetRice < 0.6.4 (fckeditor) Remote File Upload
7455| [14176] iScripts SocialWare 2.2.x Arbitrary File Upload Vulnerability
7456| [14150] RM Downloader 3.1.3 - Local SEH Exploit (Win7 ASLR and DEP Bypass)
7457| [14101] Subdreamer Pro 3.0.4 - CMS Upload Vulnerability
7458| [14081] RM Downloader 3.1.3 - Buffer Overflow (SEH)
7459| [14078] Bilder Upload Script - Datei Upload 1.09 - Remote Shell Upload Vulnerability
7460| [14070] Speedy 1.0 - Remote Shell Upload Vulnerability
7461| [14058] PHPnuke 8.2 - Remote Upload File Exploit
7462| [14044] WM Downloader 2.9.2 Stack Buffer Overflow
7463| [14033] Big Forum 5.2v Arbitrary File Upload & LFI Vulnerability
7464| [14014] ShellCode WinXP SP3 SPA URLDownloadToFileA + CreateProcessA + ExitProcess
7465| [14012] Weborf HTTP Server Denial of Service Vulnerability
7466| [14004] InterScan Web Security 5.0 - Arbitrary File Upload
7467| [14001] InterScan Web Security Virtual Appliance 5.0 - Arbitrary File Download
7468| [13999] Software Index (Remote File Upload) Exploit
7469| [13966] The Uploader 2.0.4 - Remote File Disclosure Vulnerability
7470| [13951] Joomla Component com_eportfolio Upload Vulnerability
7471| [13927] MarketSaz remote file Upload Vulnerability
7472| [13898] DMSEasy0.9.7 (fckeditor) Arbitrary File Upload
7473| [13893] Nakid CMS (fckeditor) Remote Arbitrary File Upload Exploit
7474| [13892] PHPAuctionSystem Upload Vulnerability
7475| [13888] SasCam 2.6.5 - Remote HTTP Server Crash
7476| [13870] iOS QuickOffice 3.1.0 - HTTP Method Remote DoS
7477| [13856] Yamamah Photo Gallery 1.00 (download.php) Local File Disclosure Vulnerability
7478| [13853] Unreal IRCD 3.2.8.1 - Remote Downloader/Execute Trojan
7479| [13835] DaLogin 2.2 (FCKeditor) Remote Arbitrary File Upload Exploit
7480| [13822] Nginx <= 0.7.65 / 0.8.39 (dev) Source Disclosure / Download Vulnerability
7481| [13814] Pars Design CMS Arbitrary File Upload
7482| [13782] Image Store Remote file Upload Vulnerability
7483| [13774] Motorola SB5101 Hax0rware Rajko HTTPD Remote Exploit PoC
7484| [13773] Holiday Travel Portal Upload Vulnerability
7485| [13772] Rayzz Photoz Upload Vulnerability
7486| [13751] greeting card Remote Upload Vulnerability
7487| [13748] Joomla Component com_annonces Upload Vulnerability
7488| [13711] Solaris/x86 - Remote Download file - 79 bytes
7489| [13699] WinXP SP2 Fr Download and Exec Shellcode
7490| [13533] win64 (URLDownloadToFileA) download and execute 218+ bytes
7491| [13530] windows/XP download and exec source
7492| [13529] win xp/2000/2003 Download File and Exec 241 bytes
7493| [13524] Windows 9x/NT/2k/XP Reverse Generic Shellcode without Loader 249 bytes
7494| [13522] win32 Download & Exec Shellcode 226 bytes+
7495| [13517] win32 download and execute 124 bytes
7496| [13516] win32 Tiny Download and Exec Shellcode 192 bytes
7497| [13515] win32 Download and Execute Shellcode Generator (browsers edition)
7498| [13489] solaris/sparc download and execute 278 bytes
7499| [13416] linux/x86 upload & exec 189 bytes
7500| [13414] linux/x86 /bin/sh sysenter Opcode Array Payload 45 bytes
7501| [13413] linux/x86 /bin/sh sysenter Opcode Array Payload 27 Bytes
7502| [13412] linux/x86 /bin/sh sysenter Opcode Array Payload 23 Bytes
7503| [13411] linux/x86 examples of long-term payloads hide-wait-change 187 bytes+
7504| [13410] linux/x86 examples of long-term payloads hide-wait-change (.s)
7505| [13409] linux/x86 /bin/sh Standard Opcode Array Payload 21 Bytes
7506| [13402] linux/x86 socket-proxy shellcode 372 bytes
7507| [13381] linux/x86 TCP Proxy Shellcode 236 bytes
7508| [13337] linux/x86 connect back, download a file and execute 149 bytes
7509| [13308] linux/x86 shellcode that forks a HTTP Server on port tcp/8800 166 bytes
7510| [13288] Utility for generating HTTP/1.x requests for shellcodes
7511| [13287] Download & Exec polymorphed shellcode Engine
7512| [13283] windows xp/sp1 generate portbind payload
7513| [13282] linux/x86 generate portbind payload
7514| [13275] freebsd/x86 kldload /tmp/o.o 74 bytes
7515| [12856] osCSS 1.2.1 (REMOTE FILE UPLOAD) Vulnerabilities
7516| [12811] Oscommerce Online Merchant 2.2 - Remote File Upload
7517| [12804] nginx [engine x] http server <= 0.6.36 Path Draversal
7518| [12797] Webiz - Local Shell Upload Vulnerability
7519| [12763] Script Upload Up Your Shell (Sql Inject)
7520| [12731] Webloader 8 - SQL Injection Vulnerability
7521| [12700] DotNetNuke Remote File upload Vulnerability
7522| [12699] eWebEditor 1.x - (WYSIWYG) Remote File Upload
7523| [12697] hustoj (fckeditor) Remote Arbitrary File Upload Exploit
7524| [12693] Asset Manager Remote File upload Vulnerability
7525| [12692] TinyBrowser Remote File upload Vulnerability
7526| [12690] cardinalCms 1.2 (fckeditor) Arbitrary File Upload Exploit.
7527| [12672] Spaw Editor 1.0 & 2.0 - Remote File Upload
7528| [12656] Battle Scrypt Shell Upload Vulnerability
7529| [12647] Webloader 7 - 8 (vid) SQL Injection Vulnerability
7530| [12646] B-Hind CMS (tiny_mce) Remote File Upload
7531| [12636] MidiCart PHP,ASP Shell Upload Vulnerability
7532| [12628] EgO 0.7b - (fckeditor) Remote File Upload
7533| [12623] Joomla Component simpledownload Local File Disclosure
7534| [12618] Joomla Component simpledownload LFI Vulnerability
7535| [12613] CompactCMS 1.4.0 (tiny_mce) Remote File Upload
7536| [12584] PolyPager 1.0rc10 (fckeditor) Remote Arbitrary File Upload Vulnerability
7537| [12581] zervit Web Server 0.4 - Source Disclosure/Download
7538| [12570] Uploader 0.1.5 - Multiple Vulnerabilities
7539| [12569] Fast Free Media 1.3 - Adult Site Upload Shell Exploit
7540| [12568] Digital College 1.0 Upload Vulnerability
7541| [12556] Tadbir CMS (fckeditor) Remote Arbitrary File Upload Exploit Vulnerability
7542| [12539] Joomla Component com_articleman Upload Vulnerability
7543| [12531] GeoHttpServer Remote DoS Vulnerability
7544| [12506] Knowledgeroot (fckeditor) Remote Arbitrary File Upload Exploit
7545| [12485] Burning Board Lite 1.0.2 Shell Upload Vulnerability
7546| [12479] Joomla DJ-Classifieds Extension com_djclassifieds Upload Vulnerability
7547| [12454] Zyke CMS 1.0 - Remote File Upload Vulnerability
7548| [12448] Socialware 2.2 - Upload Vulnerability and XSS
7549| [12447] XT-Commerce 1.0 Beta 1 => Pass / Creat and Download Backup Vulnerability
7550| [12432] Joomla JE Property Finder Component Upload Vulnerability
7551| [12420] Portaneo Portal 2.2.3 - Remote Arbitrary File Upload Exploit
7552| [12410] PostNuke 0.764 Module modload SQL Injection Vulnerability
7553| [12402] Kasseler CMS 2.0.5 - Bypass / Download Backup Vulnerability
7554| [12388] WM Downloader 3.0.0.9 - Buffer Overflow (Meta)
7555| [12384] Powered by iNetScripts: Shell Upload Vulnerability
7556| [12383] clipak Upload Vulnerability
7557| [12381] phpegasus (fckeditor) Remote Arbitrary File Upload Exploit
7558| [12376] SmodCMS 4.07 (fckeditor) - Remote Arbitrary File Upload Exploit
7559| [12350] In-portal 5.0.3 - Remote Arbitrary File Upload Exploit
7560| [12331] MultiThreaded HTTP Server 1.1 - Directory Traversal
7561| [12315] v2marketplacescript Upload_images Script (-7777) - Upload Shell Vulnerability
7562| [12308] MultiThreaded HTTP Server 1.1 - Source Disclosure
7563| [12304] MultiThreaded HTTP Server 1.1 - Directory Traversal
7564| [12302] HP Operations Manager <= 8.16 - (srcvw4.dll) LoadFile()/SaveFile() Remote Unicode Stack Overflow PoC
7565| [12292] Flex File Manager Shell Upload Vulnerability
7566| [12279] eclime 1.1 - Bypass / Create and Download Backup Vulnerability
7567| [12272] PHP RapidKill Pro 5.x Shell Upload Vulnerability
7568| [12268] Uploader 0.7 Shell Upload Vulnerability
7569| [12267] WebAdmin Shell Upload Vulnerability
7570| [12264] Apache OFBiz - FULLADMIN Creator PoC Payload
7571| [12263] Apache OFBiz - SQL Remote Execution PoC Payload
7572| [12254] CMS (fckeditor) Remote Arbitrary File Upload Exploit
7573| [12251] Camiro-CMS_beta-0.1 (fckeditor) Remote Arbitrary File Upload Exploit
7574| [12227] YUI Images Script Shell Upload Vulnerability
7575| [12226] Magic Uploader Mini Upload Vulnerability
7576| [12224] Mihalism Multi Host 4.0.0 - Upload Vulnerability
7577| [12223] Multi-Mirror Remote Upload Vulnerability
7578| [12199] My School Script Data Base Download Vulnerability
7579| [12197] Mp3 MuZik Data Base Download Vulnerability
7580| [12133] Asset Manager 1.0 Shell Upload Vulnerability
7581| [12128] GarageSales Remote Upload Vulnerability
7582| [12105] Free Image & File Hosting Upload Vulnerability
7583| [12075] LionWiki 3.x - (index.php) Shell Upload Vulnerability
7584| [12050] MassMirror Uploader Multiple RFI Exploit
7585| [12049] Uiga Proxy Remote File Inclusion Vulnerability
7586| [12038] Advanced Management For Services Sites Bypass Create And Download SQL Backup Vulnerability
7587| [12028] PHP-fusion dsmsf (module downloads) SQL Injection Exploit
7588| [12019] Velhost Uploader Script 1.2 - Local File Inclusion Vulnerability
7589| [12006] Simple Calculator by Peter Rekdal Sunde Remote Upload Vulnerability
7590| [12002] Musicbox 3.3 - Upload Shell Vulnerability
7591| [11981] WM Downloader 3.0.0.9 (.asx) Local Buffer Overflow
7592| [11967] Snipe Photo Gallery - Bypass Remote Upload Vulnerability
7593| [11953] RM Downloader 3.0.2.1 (.asx) Local Buffer Overflow (SEH)
7594| [11856] uhttp Server Path Traversal Vulnerability
7595| [11823] Trouble Ticket Software ttx.cgi Remote File Download
7596| [11788] PHP-Nuke ratedownload SQL Injection
7597| [11771] osCMax 2.0 (fckeditor) Remote File Upload
7598| [11760] Joomla Component com_rokdownloads - Local File Inclusion
7599| [11749] Subdreamer 3.0.1 - CMS upload Vulnerability
7600| [11747] CH-CMS.ch-V2 Upload Vulnerability
7601| [11746] Torrent Hoster Remont Upload Exploit
7602| [11745] FreeHost 1.00 - Upload Vulnerability
7603| [11734] httpdx 1.5.3b - Multiple Remote Pre-Authentication DoS (PoC)
7604| [11726] PHP-Fusion <= 6.01.15.4 (downloads.php) SQL Injection Vulnerability
7605| [11652] TopDownloads MP3 Player 1.0 m3u crash
7606| [11620] Dosya Yukle Scrtipi 1.0 - Shell Upload Vulnerability
7607| [11614] Uploadify Sample Collection Shell Upload Vulnerability
7608| [11613] PHP Advanced Transfer Manager 1.10 - Shell Upload Vulnerability
7609| [11611] Al Sat Scripti Database Download Vulnerability
7610| [11597] RCA DCM425 Cable Modem micro_httpd DoS/PoC
7611| [11571] Maian Uploader 4.0 - Shell Upload Vulnerability
7612| [11557] Max's Photo Album Shell Upload Vulnerability
7613| [11500] Easy~Ftp Server 1.7.0.2 - (HTTP) Remote BoF Exploit
7614| [11485] Multiple File Attachments Mail Form Pro 2.0 - WebShell upload
7615| [11476] SongForever.com Clone Shell Upload Vulnerability
7616| [11472] iOS FTP On The Go 2.1.2 - HTTP Remote DoS
7617| [11466] microUpload Shell Upload Vulnerability
7618| [11460] Dodo Upload 1.3 - Upload Shell (Bypass) Vulnerability
7619| [11450] File Upload Manager 1.3
7620| [11447] Joomla (Jw_allVideos) Remote File Download Vulnerability
7621| [11431] MRW PHP Upload Remote file upload Vulnerability
7622| [11398] GameRoom Script Admin Bypass and File Upload Vulnerability
7623| [11384] WM Downloader 3.0.0.9 - PLS PLA Exploit (WinXP SP3)
7624| [11377] Limny 1.01 - Remote File Upload Vulnerability
7625| [11374] WM Downloader 3.0.0.9 - PLS WMDownloader (PoC)
7626| [11365] CPA Site Solutions Remote File Upload Vulnerability
7627| [11343] httpdx 1.5.2 - Remote Pre-Authentication DoS (PoC)
7628| [11340] odlican.net cms 1.5 - Remote File Upload Vulnerability
7629| [11309] Snif 1.5.2 - Any Filetype Download Exploit
7630| [11301] Maian Greetings 2.1 - Shell Upload Vulnerability
7631| [11273] iOS Serversman 3.1.5 - HTTP Remote DoS Exploit
7632| [11261] UGiA PHP UPLOADER 0.2 - Shell Upload Vulnerability
7633| [11254] P2GChinchilla HTTP Server 1.1.1 - Denial of Service Exploit
7634| [11249] boastMachine 3.1 - Remote File Upload Vulnerability
7635| [11218] jQuery uploadify 2.1.0 - Remote File Upload
7636| [11211] cPanel HTTP Response Splitting Vulnerability
7637| [11203] Pidgin MSN <= 2.6.4 File Download Vulnerability
7638| [11202] RM Downloader .m3u BOF (SEH)
7639| [11169] Max's Image Uploader Shell Upload Vulnerability
7640| [11166] Uploader by CeleronDude 5.3.0 - Upload Vulnerability
7641| [11155] Transload Script Upload Vulnerability
7642| [11148] PonVFTP Bypass and Shell Upload Vulnerability
7643| [11147] Max's File Uploader Shell Upload Vulnerability
7644| [11142] Multiple Media Player HTTP DataHandler Overflow (Itunes, Quicktime, etc)
7645| [11134] Asp VevoCart Control System 3.0.4 - DB Download Vulnerability
7646| [11110] Image Hosting Script Remote shell upload Vulnerability
7647| [11104] CMScontrol 7.x File Upload
7648| [11057] Read Excel Script 1.1 - Shell Upload Vulnerability
7649| [11045] SpawCMS Editor Shell Upload Vulnerability
7650| [11019] MobPartner Counter - Remote File Upload Vulnerability
7651| [11018] VP-ASP Shopping Cart 7.0 DB Download Vulnerability
7652| [11016] Net Gitar Shop 1.0 - DB Download Vulnerability
7653| [11015] Lebi soft Ziyaretci Defteri 7.5 - DB Download Vulnerability
7654| [11014] Myuploader >> upload shell exploit
7655| [11008] YP Portal MS-Pro Surumu 1.0 DB Download Vulnerability
7656| [10984] Joomla component com_cartikads Remote File Upload Vulnerability
7657| [10938] Service d'upload 1.0.0 - Shell Upload Vulnerability
7658| [10912] Proxyroll.com Clone PHP Script Cookie Handling Vulnerability
7659| [10911] NetTransport Download Manager version:2.90.510 0day
7660| [10899] XlentCMS 1.0.4 - (downloads.php?cat) SQL Injection Vulnerability
7661| [10822] Joomla Component com_rd_download Local File Disclosure Vulnerability
7662| [10811] Joomla.Tutorials GHDB: Apache directory listing Download Vulnerability
7663| [10802] PicMe 2.1.0 - Upload Shell Vulnerability
7664| [10800] I-RATER Basic Shell Upload Vulnerability
7665| [10780] ASP Battle Blog DB Download Vulnerability
7666| [10778] makit news/blog poster 3.1 - DB Download Vulnerability
7667| [10777] Fully Functional ASP Forum 1.0 DB Download Vulnerability
7668| [10776] BaalASP 2.0 DB Download Vulnerability
7669| [10775] Uguestbook DB Download Vulnerability
7670| [10774] htmlArea 2.03 - DB Download Vulnerability
7671| [10773] Futility Forum 1.0 Revamp DB Download Vulnerability
7672| [10772] AspBB - Active Server Page Bulletin Board DB Download Vulnerability
7673| [10771] QuickEStore 7.9 - SQL Injection and Path Diclosure Download Vulnerability
7674| [10770] PSnews DB Download Vulnerability
7675| [10767] jgbbs-3.0beta1 DB Download Vulnerability
7676| [10763] Dren's PHP Uploader Remote File Upload Vulnerability
7677| [10757] PHP Forum ohne My SQL Remote File Upload Vulnerability
7678| [10756] MySimpleFileUploader 1.6 - Upload Shell Vulnerability
7679| [10753] ASP Simple Blog 3.0 - Upload shell Vulnerability
7680| [10752] Yonja Remote File Upload Vulnerability
7681| [10732] PHP upload - (unijimpe) Remote File Upload Vulnerability
7682| [10727] Smart PHP Uploader 1.0 - Remote File Upload Vulnerability
7683| [10722] PHP Uploader Downloader 2.0 - Cross Site Scripting Vulnerability
7684| [10719] PHP Uploader Downloader 2.0 - Upload Shell Vulnerability
7685| [10718] ta3arof [dating] Script Arabic Version - Upload Shell Vulnerability
7686| [10707] oscommerce <= 2.2rc2a Bypass/Create and Download Backup Vulnerability
7687| [10706] MyCart shopping cart Upload Shell Vulnerability
7688| [10704] Mega Upload Upload Shell Vulnerability
7689| [10700] Image File Upload Upload Shell Vulnerability
7690| [10695] Lizard Cart Upload Shell Vulnerability
7691| [10694] ES Simple Uploader 1.1 - Upload Shell Vulnerability
7692| [10691] EZPX My photoblog 1.2 - Upload Shell Vulnerability
7693| [10689] file upload Ar Version - Upload Shell Vulnerability
7694| [10685] Best Top List 2.11 - Upload Shell Vulnerability
7695| [10684] Upload-Point 1.6 Beta - Upload Shell Vulnerability
7696| [10681] Saibal Download Area 2.0 - Upload Shell Vulnerability
7697| [10672] kandalf upper 0.1 Upload Shell Vulnerability
7698| [10671] Info Fisier 1.0 - Remote File Upload Vulnerability
7699| [10660] barbo91 uploads Upload Shell Vulnerability
7700| [10647] VideoIsland Remote shell upload Vulnerability
7701| [10612] Add An Ad Script Remote File Upload
7702| [10610] CoreHTTP Arbitrary Command Execution Vulnerability
7703| [10601] Mini File Host 1.5 - Remote File Upload Vulnerability
7704| [10599] The Uploader 2.0 File Disclosure Vulnerability
7705| [10594] The Uploader 2.0 - Remote File Upload Vulnerability
7706| [10584] PHPhotoalbum Remote File Upload Vulnerability
7707| [10578] Ultimate Uploader 1.3 - Remote File Upload Vulnerability
7708| [10574] phUploader Remote File Upload Vulnerability
7709| [10568] Simplicity oF Upload 1.3.2 - Remote File Upload Vulnerability
7710| [10523] Uploader by CeleronDude 5.3.0 Shell Upload
7711| [10511] PHP F1 Upload Shell Upload Vulnerability
7712| [10499] eUploader PRO 3.1.1 - CSRF/XSS Multiple Vulnerabilities
7713| [10495] PhpLinkExchange 1.02 - XSS/Upload Vulerability
7714| [10481] OSSIM 2.1.5 - Arbitrary File Upload
7715| [10472] Recipe Script 5.0 - Shell Upload/CSRF/XSS Multiple Vulnerabilities
7716| [10469] Monkey HTTP Daemon < 0.9.3 - Denial of Service Vulnerability
7717| [10430] NAS Uploader 1.0 & 1.5 - Remote File Upload Vulnerability
7718| [10429] myPHPupload 0.5.1 - Remote File Upload Vulnerability
7719| [10428] Maxs AJAX File Uploader Remote File Upload Vulnerability
7720| [10426] [WS] upload Remote File Upload Vulnerability
7721| [10423] RM Downloader 3.0.2.1 - (.M3U File) Stack Overflow exploit
7722| [10403] Uploadscript 1.0 - Multiple Vulnerabilities
7723| [10401] iDesk (download.php cat_id) SQL Injection Vulnerability
7724| [10368] Free ASP Upload Shell Upload Vulnerability
7725| [10362] THOMSON TG585n 7.4.3.2 (user.ini) Arbitrary Download Vulnerability
7726| [10349] CoreHTTP web server off-by-one buffer overflow vulnerability
7727| [10331] iWeb HTTP Server Directory Transversal Vulnerability
7728| [10325] Wordpress Image Manager Plugins Shell Upload Vulnerability
7729| [10306] Achievo 1.4.2 - Arbitrary File Upload
7730| [10282] OrzHTTPd Format String Exploit
7731| [10241] Uploaderr 1.0 - File Hosting Script Shell Upload Vulnerability
7732| [10236] Flashden Multiple File Uploader Shell Upload Vulnerability
7733| [10230] Fake Hit Generator <= 2.2 Shell Upload Vulnerability
7734| [10183] Joomla 1.5.12 RCE via TinyMCE - Upload Vulnerability
7735| [10170] Xerver 4.31, 4.32 HTTP Response Splitting
7736| [10169] phpMyBackupPro - Arbitrary File Download
7737| [10163] Novell eDirectory HTTPSTK Login Stack Overflow Vulnerability
7738| [10161] JBS 2.0 / JBSX - Administration panel Bypass and File Upload Vulnerability
7739| [10089] WordPress <= 2.8.5 Unrestricted File Upload Arbitrary PHP Code Execution
7740| [10053] httpdx 1.4 Get Request Buffer Overflow
7741| [10047] Femitter HTTP Server 1.03 Remote Source Disclosure
7742| [10030] DD-WRT HTTP v24-SP1 - Command Injection Vulnerability
7743| [10009] Free Download Manager Torrent File Parsing Multiple Remote Buffer Overflow Vulnerabilities
7744| [9962] Piwik <= 1357 2009-08-02 file upload and code execution
7745| [9926] Joomla 1.5.12 tinybrowser Remote File Upload/Execute Vulnerability
7746| [9896] MiniShare HTTP 1.5.5 BoF
7747| [9886] httpdx 1.4 h_handlepeer BoF
7748| [9885] httpdx <= 1.4.6b source disclosure
7749| [9882] Firefox 3.5.3 - Local Download Manager Temp File Creation
7750| [9855] Geeklog <= 1.6.0sr2 - Remote File Upload
7751| [9806] HP LoadRunner 9.5 remote file creation PoC
7752| [9718] Xerver HTTP Server 4.32 - XSS / Directory Traversal Vulnerability
7753| [9717] Xerver HTTP Server <= 4.32 - Remote Denial of Service
7754| [9660] Techlogica HTTP Server 1.03 Arbitrary File Disclosure Exploit
7755| [9657] httpdx Web Server 1.4 (Host Header) Remote Format String DoS Exploit
7756| [9649] Xerver HTTP Server 4.32 Arbitrary Source Code Disclosure Vuln
7757| [9631] iDesk (download.php cat_id) Remote SQL Injection Vulnerability
7758| [9629] Graffiti CMS 1.x Arbitrary File Upload Vulnerability
7759| [9599] The Rat CMS Alpha 2 Arbitrary File Upload Vulnerability
7760| [9591] Ticket Support Script (ticket.php) Remote Shell Upload Vulnerability
7761| [9549] MailEnable 1.52 HTTP Mail Service Stack BOF Exploit PoC
7762| [9505] Geeklog <= 1.6.0sr1 Remote Arbitrary File Upload Vulnerability
7763| [9478] HTTP SERVER (httpsv) 1.6.2 (GET 404) Remote Denial of Service Exploit
7764| [9472] Best Dating Script Arbitrary Shell Upload Vulnerability
7765| [9469] Ultimate Fade-in slideshow 1.51 Shell Upload Vulnerability
7766| [9453] Videos Broadcast Yourself 2 - (UploadID) SQL Injection Vuln
7767| [9441] MyWeight 1.0 - Remote Shell Upload Vulnerability
7768| [9433] Gazelle CMS 1.0 - Remote Arbitrary Shell Upload Vulnerability
7769| [9432] THOMSON ST585 (user.ini) Arbitrary Download Vulnerability
7770| [9334] QuickDev 4 (download.php file) File Disclosure Vulnerability
7771| [9290] In-Portal 4.3.1 Arbitrary Shell Upload Vulnerability
7772| [9280] PunBB Automatic Image Upload <= 1.3.5 Delete Arbitrary File Exploit
7773| [9279] PunBB Automatic Image Upload <= 1.3.5 - Remote SQL Injection Exploit
7774| [9239] PHP Melody 1.5.3 - Remote File Upload Injection Vulnerability
7775| [9238] Joomla Component com_joomloads (packageId) SQL Injection Vuln
7776| [9219] powerUpload 2.4 (Auth Bypass) Insecure Cookie Handling Vulnerability
7777| [9209] DD-WRT (httpd service) Remote Command Execution Vulnerability
7778| [9122] Opial 1.0 - Arbitrary File Upload/XSS/SQL Injection Vulnerabilities
7779| [9086] MRCGIGUY Thumbnail Gallery Post 1b Arb. Shell Upload Vulnerability
7780| [9071] Apple Safari 4.x JavaScript Reload Remote Crash Exploit
7781| [9011] Joomla Component com_pinboard Remote File Upload Vulnerability
7782| [8991] Multiple HTTP Server Low Bandwidth Denial of Service #2
7783| [8988] pc4 Uploader <= 10.0 - Remote File Disclosure Vulnerability
7784| [8976] Multiple HTTP Server Low Bandwidth Denial of Service (slowloris.pl)
7785| [8916] Free Download Manager 2.5/3.0 (Control Server) Remote BOF Exploit
7786| [8897] httpdx <= 0.8 FTP Server Delete/Get/Create Directories/Files Exploit
7787| [8855] AlstraSoft Article Manager Pro Remote Shell Upload Vulnerability
7788| [8811] Joomla Component Com_Agora 3.0.0 RC1 Remote File Upload Vulnerability
7789| [8792] Webradev Download Protect 1.0 - Remote File Inclusion Vulnerabilities
7790| [8786] Lighttpd < 1.4.23 Source Code Disclosure Vulnerability (BSD/Solaris bug)
7791| [8773] ZaoCMS (PhpCommander) Arbitary Remote File Upload Vulnerability
7792| [8764] ZaoCMS (download.php) Remote File Disclosure Vulnerability
7793| [8749] DMXReady Registration Manager 1.1 - Arbitrary File Upload Vulnerability
7794| [8732] httpdx <= 0.5b FTP Server (CWD) Remote BOF Exploit (SEH)
7795| [8730] VidShare Pro Arbitrary Shell Upload Vulnerability
7796| [8716] httpdx <= 0.5b FTP Server (USER) Remote BOF Exploit (SEH)
7797| [8712] httpdx <= 0.5b Multiple Remote Denial of Service Vulnerabilities
7798| [8709] Pc4Uploader 9.0 - Remote Blind SQL Injection Vulnerability
7799| [8700] Rama CMS <= 0.9.8 (download.php file) File Disclosure Vulnerability
7800| [8647] Battle Blog 1.25 (uploadform.asp) Arbitrary File Upload Vulnerability
7801| [8628] RM Downloader 3.0.0.9 (.RAM) Local Buffer Overflow Exploit
7802| [8594] RM Downloader (.smi File) Universal Local Buffer Overflow Exploit
7803| [8589] RM Downloader (.smi File) Local Stack Overflow Exploit
7804| [8579] BaoFeng ActiveX OnBeforeVideoDownload() Remote BOF Exploit
7805| [8567] Zubrag Smart File Download 1.3 Arbitrary File Download Vulnerability
7806| [8554] Belkin Bulldog Plus HTTP Server Remote Buffer Overflow Exploit
7807| [8540] SDP Downloader 2.3.0 (.ASX) Local Buffer Overflow Exploit (SEH) #2
7808| [8536] SDP Downloader 2.3.0 (.ASX) Local Buffer Overflow Exploit (SEH)
7809| [8534] libvirt_proxy <= 0.5.1 - Local Privilege Escalation Exploit
7810| [8531] SDP Downloader 2.3.0 - (.ASX File) Local Heap Overflow PoC
7811| [8522] Zervit HTTP Server <= 0.3 (sockets++ crash) Remote Denial of Service
7812| [8514] elkagroup Image Gallery 1.0 - Arbitrary File Upload Vulnerability
7813| [8501] CRE Loaded 6.2 (products_id) SQL Injection Vulnerability
7814| [8483] flatnux 2009-03-27 (upload/id) Multiple Vulnerabilities
7815| [8481] Studio Lounge Address Book 2.5 (profile) Shell Upload Vulnerability
7816| [8474] e-cart.biz Shopping Cart Arbitrary File Upload Vulnerability
7817| [8444] Star Downloader Free <= 1.45 (.dat) Universal SEH Overwrite Exploit
7818| [8436] Job2C 4.2 (profile) Remote Shell Upload Vulnerability
7819| [8422] Steamcast (HTTP Request) Remote Buffer Overflow Exploit (SEH) [2]
7820| [8421] Steamcast (HTTP Request) Remote Buffer Overflow Exploit (SEH) [1]
7821| [8411] WM Downloader 3.0.0.9 .m3u Universal Stack Overflow Exploit
7822| [8410] RM Downloader 3.0.0.9 .m3u Universal Stack Overflow Exploit
7823| [8404] RM Downloader (.M3U File) Local Stack Overflow PoC
7824| [8403] WM Downloader (.M3U File) Local Stack Overflow PoC
7825| [8397] FunkyASP AD System 1.1 - Remote Shell Upload Vulnerability
7826| [8362] Lanius CMS <= 0.5.2 - Remote Arbitrary File Upload Exploit
7827| [8349] Family Connections <= 1.8.2 - Remote Shell Upload Exploit
7828| [8346] ActiveKB Knowledgebase (loadpanel.php Panel) Local File Inclusion Vuln
7829| [8313] Check Point Firewall-1 PKI Web Service HTTP Header Remote Overflow
7830| [8310] Sami HTTP Server 2.x (HEAD) Remote Denial of Service Exploit
7831| [8288] WeBid 0.7.3 RC9 (upldgallery.php) Remote File Upload Vulnerability
7832| [8287] PHPizabi 0.848b C1 HFP1-3 - Remote Arbitrary File Upload Exploit
7833| [8277] Free Arcade Script 1.0 Auth Bypass (SQL) / Upload Shell Vulnerabilities
7834| [8257] Orbit Downloader 2.8.7 Arbitrary File Deletion Vulnerability
7835| [8245] SW-HTTPD Server 0.x Remote Denial of Service Exploit
7836| [8219] Mozilla Firefox 3.0.7 OnbeforeUnLoad DesignMode Dereference Crash
7837| [8215] PPLive <= 1.9.21 (/LoadModule) URI Handlers Argument Injection Vuln
7838| [8196] Wordpress MU < 2.7 'HOST' HTTP Header XSS Vulnerability
7839| [8132] Access2asp imageLibrary Arbitrary ASP Shell Upload Vulnerability
7840| [8120] SkyPortal Downloads Manager 1.1 - Remote Contents Change Vuln
7841| [8097] MLdonkey <= 2.9.7 HTTP DOUBLE SLASH Arbitrary File Disclosure Vuln
7842| [8091] Mozilla Firefox 3.0.6 (BODY onload) Remote Crash Exploit
7843| [8070] SAS Hotel Management System Remote Shell Upload Vulnerability
7844| [8060] Falt4 CMS RC4 (fckeditor) Arbitrary File Upload Exploit
7845| [8048] Baran CMS 1.0 Arbitrary ASP File Upload/DB/SQL/XSS/CM Vulns
7846| [8041] GeoVision Digital Video Surveillance System (geohttpserver) DT Vuln
7847| [8039] SkaDate Online 7 Remote Shell Upload Vulnerability
7848| [8021] Squid < 3.1 5 - HTTP Version Number Parsing Denial of Service Exploit
7849| [8006] Traidnt UP 1.0 - Remote File Upload Vulnerability
7850| [7998] WikkiTikkiTavi 1.11 Remote PHP File Upload Vulnerability
7851| [7987] gr blog 1.1.4 (upload/bypass) Multiple Vulnerabilities
7852| [7986] Free Download Manager 2.5/3.0 (Authorization) Stack BOF PoC
7853| [7960] AJA Modules Rapidshare 1.0.0 - Remote Shell Upload Vulnerability
7854| [7957] Free Download Manager <= 3.0 Build 844 .torrent BOF Exploit
7855| [7909] Coppermine Photo Gallery 1.4.19 Remote PHP File Upload Vulnerability
7856| [7884] Flax Article Manager 1.1 - Remote PHP Script Upload Vulnerability
7857| [7866] Simple Machines Forum <= 1.1.7 - CSRF/XSS/Package Upload
7858| [7811] Aj Classifieds - For Sale 3.0 - Remote Shell Upload Vulnerability
7859| [7810] Aj Classifieds - Personals 3.0 - Remote Shell Upload Vulnerability
7860| [7809] Aj Classifieds - Real Estate 3.0 - Remote Shell Upload Vulnerability
7861| [7791] DMXReady Billboard Manager <= 1.1 - Remote File Upload Vulnerability
7862| [7789] DMXReady SDK <= 1.1 - Remote File Download Vulnerability
7863| [7740] PWP Wiki Processor 1-5-1 Remote File Upload Vulnerability
7864| [7739] ExcelOCX ActiveX 3.2 (Download File) Insecure Method Exploit
7865| [7732] Silentum Uploader 1.4.0 - Remote File Deletion Exploit
7866| [7645] Built2Go PHP Rate My Photo 1.46.4 - Remote File Upload Vulnerability
7867| [7644] Built2Go PHP Link Portal 1.95.1 - Remote File Upload Vulnerability
7868| [7638] Memberkit 1.0 - Remote PHP File Upload Vulnerability
7869| [7630] Megacubo 5.0.7 (mega://) Remote File Download and Execute Exploit
7870| [7620] ThePortal 2.2 Arbitrary Remote File Upload Exploit
7871| [7608] IntelliTamper 2.07/2.08 (ProxyLogin) Local Stack Overflow Exploit
7872| [7600] Flexphplink Pro Arbitrary File Upload Exploit
7873| [7569] doop cms <= 1.4.0b (csrf/upload shell) Multiple Vulnerabilities
7874| [7563] phpEmployment (php upload) Arbitrary File Upload Vulnerability
7875| [7562] phpAdBoard (php uploads) Arbitrary File Upload Vulnerability
7876| [7561] phpGreetCards XSS/Arbitrary File Upload Vulnerability
7877| [7544] Pligg 9.9.5b (check_url.php url) Upload Shell/SQL Injection Exploit
7878| [7537] BLOG 1.55B (image_upload.php) Arbitrary File Upload Vulnerability
7879| [7535] Linksys Wireless ADSL Router (WAG54G V.2) httpd DoS Exploit
7880| [7531] ReVou Twitter Clone Arbitrary File Upload Vulnerability
7881| [7528] OneOrZero helpdesk 1.6.x. - Remote Shell Upload Exploit
7882| [7525] Extract Website (download.php filename) File Disclosure Vulnerability
7883| [7524] Online Keyword Research Tool (download.php) File Disclosure Vuln
7884| [7509] Mini File Host 1.x Arbitrary PHP File Upload Vulnerability
7885| [7500] K&S Shopsysteme Arbitrary Remote File Upload Vulnerability
7886| [7487] FaScript FaUpload (download.php) SQL Injection Vulnerability
7887| [7457] Availscript Classmate Script Remote File Upload Vulnerability
7888| [7456] Availscript Article Script Remote File Upload Vulnerability
7889| [7455] The Rat Cms Alpha 2 (download.php) Remote Vulnerability
7890| [7441] joomla live chat (sql/proxy) Multiple Vulnerabilities
7891| [7435] Social Groupie (create_album.php) Remote File Upload Vulnerability
7892| [7426] PHP Support Tickets 2.2 - Remote File Upload Vulnerability
7893| [7390] Professional Download Assistant 0.1 (Auth Bypass) SQL Injection Vuln
7894| [7385] vBulletin Secure Downloads 2.0.0r - SQL Injection Vulnerability
7895| [7383] Simple Directory Listing 2 Cross Site File Upload Vulnerability
7896| [7371] Professional Download Assistant 0.1 Database Disclosure Vulnerability
7897| [7369] w3blabor CMS 3.0.5 - Arbitrary File Upload & LFI Exploit
7898| [7354] Tizag Countdown Creator .v.3 Insecure Upload Vulnerability
7899| [7312] Andy's PHP Knowledgebase 0.92.9 - Arbitrary File Upload Vulnerability
7900| [7251] Star Articles 6.0 - Remote File Upload Vulnerability
7901| [7233] LoveCMS 1.6.2 Final (Download Manager 1.0) File Upload Exploit
7902| [7197] Goople Cms 1.7 - Remote File Upload Vulnerability
7903| [7189] getaphpsite Auto Dealers Remote File Upload Vulnerability
7904| [7188] getaphpsite Real Estate Remote File Upload Vulnerability
7905| [7165] wPortfolio <= 0.3 - Remote Arbitrary File Upload Exploit
7906| [7162] MauryCMS <= 0.53.2 - Remote Shell Upload Exploit
7907| [7158] Alex Article-Engine 1.3.0 (fckeditor) Arbitrary File Upload Vulnerability
7908| [7157] Alex News-Engine 1.5.1 - Remote Arbitrary File Upload Vulnerability
7909| [7136] mxCamArchive 2.2 Bypass Config Download Vulnerability
7910| [7112] ScriptsFeed (SF) Recipes Listing Portal Remote File Upload Vulnerability
7911| [7111] ScriptsFeed (SF) Auto Classifieds Software Remote File Upload Vuln
7912| [7110] ScriptsFeed (SF) Real Estate Classifieds Software File Upload Vuln
7913| [7101] AlstraSoft SendIt Pro Remote File Upload Vulnerability
7914| [7094] Pre Real Estate Listings File Upload Vulnerability
7915| [7085] PHPStore Real Estate Remote File Upload Vulnerability
7916| [7084] PHPStore Complete Classifieds Script File Upload Vulnerability
7917| [7083] PHPStore PHP Job Search Script Remote File Upload Vulnerability
7918| [7082] PHPStore Car Dealers Remote File Upload Vulnerability
7919| [7076] Collabtive 0.4.8 (XSS/Auth Bypass/Upload) Multiple Vulnerabilities
7920| [7062] ZEEJOBSITE 2.0 - Remote File Upload Vulnerability
7921| [7058] zeeproperty 1.0 (upload/xss) Multiple Vulnerabilities
7922| [7055] SpeedStream 5200 Authentication Bypass Config Download Vulnerability
7923| [6868] Mambo Component SimpleBoard <= 1.0.1 - Arbitrary File Upload Exploit
7924| [6867] Wordpress Plugin e-Commerce <= 3.4 - Arbitrary File Upload Exploit
7925| [6866] 7Shop <= 1.1 - Remote Arbitrary File Upload Exploit
7926| [6865] e107 plugin fm pro 1- (fd/upload/dt) Multiple Vulnerabilities
7927| [6859] Agares ThemeSiteScript 1.0 (loadadminpage) RFI Vulnerability
7928| [6835] BuzzyWall 1.3.1 (download id) Remote File Disclosure Vulnerability
7929| [6830] NEPT Image Uploader 1.0 Arbitrary Shell Upload Vulnerability
7930| [6803] Iamma Simple Gallery 1.0/2.0 - Arbitrary File Upload Vulnerability
7931| [6784] PHP Easy Downloader <= 1.5 - Remote File Creation Exploit
7932| [6783] Nuke ET <= 3.4 (fckeditor) Remote Arbitrary File Upload Exploit
7933| [6770] PHP Easy Downloader 1.5 (file) File Disclosure Vulnerability
7934| [6740] My PHP Indexer 1.0 (index.php) Local File Download Vulnerability
7935| [6718] Konqueror 3.5.9 (load) Remote Crash Vulnerability
7936| [6715] ScriptsEz Easy Image Downloader Local File Download Vulnerability
7937| [6699] Microsoft PicturePusher ActiveX Cross Site File Upload Attack PoC
7938| [6680] FOSS Gallery Public <= 1.0 - Arbitrary File Upload Vulnerabilities
7939| [6674] FOSS Gallery Public <= 1.0 Arbitrary Upload / Information c99 Expoit
7940| [6670] FOSS Gallery Admin <= 1.0 - Remote Arbitrary Upload Exploit
7941| [6664] Kwalbum <= 2.0.2 Arbitary File Upload Vulnerability
7942| [6633] eFront <= 3.5.1 / build 2710 Remote Arbitrary Upload Vulnerability
7943| [6596] E-Uploader Pro <= 1.0 - Multiple Remote SQL Injection Vulnerabilities
7944| [6594] Camera Life 2.6.2b4 Arbitrary File Upload Vulnerability
7945| [6573] LanSuite 3.3.2 (fckeditor) Arbitrary File Upload Exploit
7946| [6541] Galmeta Post CMS <= 0.2 - Remote Code Execution / Arbitrary File Upload
7947| [6519] PHP iCalendar <= 2.24 (cookie_language) LFI / File Upload Exploit
7948| [6514] Availscript Jobs Portal Script File Upload Vulnerability (auth)
7949| [6493] fhttpd 0.4.2 un64() - Remote Denial of Service Exploit
7950| [6477] Cisco Router HTTP Administration CSRF Command Execution Exploit 2
7951| [6476] Cisco Router HTTP Administration CSRF Command Execution Exploit
7952| [6448] WebPortal CMS <= 0.7.4 (fckeditor) Arbitrary File Upload Vulnerability
7953| [6443] WebPortal CMS <= 0.7.4 (download.php aid) SQL Injection Exploit
7954| [6439] Sports Clubs Web Panel 0.0.1 - Remote File Upload Vulnerability
7955| [6419] Zanfi CMS lite / Jaw Portal free (fckeditor) Arbitrary File Upload Vuln
7956| [6410] Kim Websites 1.0 (fckeditor) Remote Arbitrary File Upload Vulnerability
7957| [6394] Samsung DVR SHR2040 HTTPD Remote Denial of Service DoS PoC
7958| [6390] IntegraMOD 1.4.x (Insecure Directory) Download Database Vulnerability
7959| [6360] TransLucid 1.75 (fckeditor) Remote Arbitrary File Upload Vulnerability
7960| [6357] aspwebalbum 3.2 (upload/sql/xss) Multiple Vulnerabilities
7961| [6355] Google Chrome Browser 0.2.149.27 Automatic File Download Exploit
7962| [6344] WeBid 0.5.4 (fckeditor) Remote Arbitrary File Upload Exploit
7963| [6310] Kolifa.net Download Script 1.2 (id) SQL Injection Vulnerability
7964| [6306] GeekLog <= 1.5.0 - Remote Arbitrary File Upload Exploit
7965| [6286] BandSite CMS 1.1.4 (Download Backup/XSS/CSRF) Remote Vulnerabilities
7966| [6259] VidiScript (Avatar) Remote Arbitrary File Upload Vulnerability
7967| [6231] Ppim <= 1.0 (upload/change password) Multiple Vulnerabilities
7968| [6227] IntelliTamper 2.07 HTTP Header Remote Code Execution Exploit
7969| [6216] Download Accelerator Plus - DAP 8.6 (AniGIF.ocx) Buffer Overflow PoC
7970| [6194] moziloCMS 1.10.1 (download.php) Arbitrary Download File Exploit
7971| [6191] e-vision cms <= 2.02 (sql/upload/ig) Multiple Vulnerabilities
7972| [6151] velocity web-server 1.0 - Directory Traversal file download vulnerability
7973| [6127] Wordpress Plugin Download Manager 0.2 - Arbitrary File Upload Exploit
7974| [6126] ibase <= 2.03 (download.php) Remote File Disclosure Vulnerability
7975| [6082] PhotoPost vBGallery 2.4.2 - Arbitrary File Upload Vulnerability
7976| [6065] Maian Uploader <= 4.0 Insecure Cookie Handling Vulnerability
7977| [6039] Download Accelerator Plus - DAP 8.x m3u File Buffer Overflow Exploit (c)
7978| [6030] Download Accelerator Plus - DAP 8.x (m3u) Local BOF Exploit 0day
7979| [6015] WebXell Editor 0.1.3 - Arbitrary File Upload Vulnerability
7980| [6011] contentnow 1.4.1 (upload/xss) Multiple Vulnerabilities
7981| [6008] ImperialBB <= 2.3.5 - Remote File Upload Exploit
7982| [6005] Site@School <= 2.4.10 (fckeditor) Session Hijacking / File Upload Exploit
7983| [5973] Pivot 1.40.5 Dreamwind load_template() Credentials Disclosure Exploit
7984| [5945] Seagull PHP Framework <= 0.6.4 (fckeditor) Arbitrary File Upload Exploit
7985| [5938] PHPmotion <= 2.0 (update_profile.php) Remote Shell Upload Exploit
7986| [5936] Page Manager CMS Remote Arbitrary File Upload Vulnerability
7987| [5923] Demo4 CMS 1b (fckeditor) Arbitrary File Upload Exploit
7988| [5922] cmsWorks 2.2 RC4 (fckeditor) Remote Arbitrary File Upload Exploit
7989| [5918] uTorrent / BitTorrent WebIU HTTP 1.7.7/6.0.1 Range header DoS Exploit
7990| [5907] emuCMS 0.3 (fckeditor) Arbitrary File Upload Exploit
7991| [5887] LE.CMS <= 1.4 - Remote Arbitrary File Upload Exploit
7992| [5886] LaserNet CMS <= 1.5 - Arbitrary File Upload Exploit
7993| [5880] sitexs cms 0.1.1 (upload/xss) Multiple Vulnerabilities
7994| [5850] AspWebCalendar 2008 Remote File Upload Vulnerability
7995| [5844] FreeCMS.us 0.2 (fckeditor) Arbitrary File Upload Exploit
7996| [5780] ASP Download 1.03 Arbitrary Change Administrator Account Vulnerability
7997| [5770] Achievo <= 1.3.2 (fckeditor) Arbitrary File Upload Exploit
7998| [5767] Flux CMS <= 1.5.0 (loadsave.php) Remote Arbitrary File Overwrite Exploit
7999| [5756] XOOPS Module Uploader 1.1 (filename) File Disclosure Vulnerability
8000| [5741] Akamai Download Manager < 2.2.3.7 ActiveX Remote Download Exploit
8001| [5737] Joomla Component jotloader <= 1.2.1.a Blind SQL injection Exploit
8002| [5732] C6 Messenger ActiveX Remote Download & Execute Exploit
8003| [5728] FlashBlog 0.31b Remote Arbitrary File Upload Vulnerability
8004| [5716] mebiblio 0.4.7 (sql/upload/xss) Multiple Vulnerabilities
8005| [5700] CMSimple 3.1 - Local File Inclusion / Arbitrary File Upload Exploit
8006| [5697] PHP Booking Calendar 10 d (fckeditor) Arbitrary File Upload Exploit
8007| [5694] ASUS DPC Proxy 2.0.0.16/19 Remote Buffer Overflow Exploit
8008| [5691] CMS from Scratch <= 1.1.3 (fckeditor) Remote Shell Upload Exploit
8009| [5688] SyntaxCMS <= 1.3 (fckeditor) Arbitrary File Upload Exploit
8010| [5636] Zomplog <= 3.8.2 (force_download.php) File Disclosure Vulnerability
8011| [5618] La-Nai CMS <= 1.2.16 (fckeditor) Arbitrary File Upload Exploit
8012| [5600] CMS Made Simple <= 1.2.4 (FileManager module) File Upload Exploit
8013| [5547] Novell eDirectory < 8.7.3 SP 10 / 8.8.2 - HTTP headers DoS Vulnerability
8014| [5519] VLC 0.8.6d - httpd_FileCallBack Remote Format String Exploit
8015| [5465] 2532/Gigs <= 1.2.2 - Arbitrary Database Backup/Download Vulnerability
8016| [5449] KwsPHP (Upload) Remote Code Execution Exploit
8017| [5404] phpTournois <= G4 Remote File Upload/Code Execution Exploit
8018| [5397] CDNetworks Nefficient Download (NeffyLauncher.dll) Code Execution Vuln
8019| [5381] Blog PixelMotion (modif_config.php) Remote File Upload Vulnerability
8020| [5344] Novel eDirectory HTTP Denial of Service Exploit
8021| [5338] ChilkatHttp ActiveX 2.3 Arbitrary Files Overwrite Exploit
8022| [5326] Wordpress Plugin Download (dl_id) SQL Injection Vulnerability
8023| [5308] e107 Plugin My_Gallery 2.3 Arbitrary File Download Vulnerability
8024| [5281] PEEL CMS Admin Hash Extraction and Remote Upload Exploit
8025| [5220] zKup CMS 2.0 <= 2.3 - Remote Upload Exploit
8026| [5218] XOOPS Module wfdownloads (cid) Remote SQL Injection Vulnerability
8027| [5215] Ruby 1.8.6 (Webrick Httpd 1.3.1) Directory Traversal Vulnerability
8028| [5183] php Download Manager <= 1.1 - Local File Inclusion Vulnerability
8029| [5137] XPWeb 3.3.2 (Download.php url) Remote File Disclosure Vulnerability
8030| [5136] PHPizabi 0.848b C1 HFP1 Remote File Upload Vulnerability
8031| [5129] TRUC 0.11.0 (download.php) Remote File Disclosure Vulnerability
8032| [5111] IBM Domino Web Access Upload Module - SEH Overwrite Exploit
8033| [5102] FaceBook PhotoUploader <= 5.0.14.0 - Remote Buffer Overflow Exploit
8034| [5100] ImageStation (SonyISUpload.cab 1.0.0.38) ActiveX BOF Exploit
8035| [5086] ImageStation (SonyISUpload.cab 1.0.0.38) ActiveX Buffer Overflow PoC
8036| [5078] Backup Exec System Recovery Manager <= 7.0.1 File Upload Exploit
8037| [5074] Mihalism Multi Host Download (Username) Blind SQL Injection Exploit
8038| [5073] Mambo Component com_downloads Remote SQL Injection Vulnerability
8039| [5049] FaceBook PhotoUploader (ImageUploader4.ocx 4.5.57.0) BOF Exploit
8040| [5033] LightBlog 9.5 cp_upload_image.php Remote File Upload Vulnerability
8041| [5025] MySpace Uploader (MySpaceUploader.ocx 1.0.0.4) BOF Exploit
8042| [4987] Persits XUpload 3.0 AddFile() Remote Buffer Overflow Exploit
8043| [4981] ImageShack Toolbar 4.5.7 FileUploader Class InsecureMethod PoC
8044| [4967] Lycos FileUploader Control ActiveX Remote Buffer Overflow Exploit
8045| [4954] IDM-OS 1.0 (download.php fileName) File Disclosure Vulnerability
8046| [4941] Belkin Wireless G Plus MIMO Router F5D9230-4 Auth Bypass Vulnerability
8047| [4940] Mini File Host 1.2.1 (upload.php language) Local File Inclusion Exploit
8048| [4930] Mini File Host 1.2 (upload.php language) LFI Vulnerability
8049| [4913] Macrovision FlexNet isusweb.dll DownloadAndExecute Method Exploit
8050| [4909] Macrovision FlexNet DownloadManager Insecure Methods Exploit
8051| [4894] StreamAudio ChainCast ProxyManager ccpm_0237.dll BoF Exploit
8052| [4871] UploadImage/UploadScript 1.0 - Remote Change Admin Password Exploit
8053| [4864] Zero CMS 1.0 Alpha Arbitrary File Upload / SQL Injection Vulnerabilities
8054| [4859] EkinBoard <= 1.1.0 - Remote File Upload / Auth Bypass Vulnerabilities
8055| [4857] OneCMS 2.4 - Remote SQL Injection / Upload Vulnerabilities
8056| [4844] Wordpress Plugin Wp-FileManager 1.2 - Remote Upload Vulnerability
8057| [4828] AGENCY4NET WEBFTP 1 download2.php File Disclosure Vulnerability
8058| [4820] IBM Domino Web Access Upload Module dwa7w.dll BoF Exploit
8059| [4818] IBM Domino Web Access Upload Module inotes6.dll BoF Exploit
8060| [4814] Bitweaver R2 CMS Remote File Upload / Disclosure Vulnerabilities
8061| [4812] Mihalism Multi Host 2.0.7 download.php Remote File Disclosure Vuln
8062| [4806] Persits Software XUpload Control AddFolder() Buffer Overflow Exploit
8063| [4780] ThemeSiteScript 1.0 (index.php loadadminpage) RFI Vulnerability
8064| [4764] Arcadem LE 2.04 (loadadminpage) Remote File Inclusion Vulnerability
8065| [4754] 3proxy 0.5.3g logurl() Remote Buffer Overflow Exploit (win32) (pl)
8066| [4753] Dokeos 1.8.4 Bypass Upload Shell From Your Profile Vulnerability
8067| [4747] RaidenHTTPD 2.0.19 (ulang) Remote Command Execution Exploit
8068| [4741] MySpace Content Zone 3.x Remote File Upload Vulnerability
8069| [4734] Anon Proxy Server 0.1000 Remote Command Execution Vulnerability
8070| [4729] xml2owl 0.1.1 (filedownload.php) Remote File Disclosure Vulnerability
8071| [4717] Simple HTTPD <= 1.41 (/aux) Remote Denial of Service Exploit
8072| [4714] MonAlbum 0.87 Upload Shell / Password Grabber Exploit
8073| [4704] PolDoc CMS 0.96 (download_file.php) File Disclosure Vulnerability
8074| [4700] simple httpd <= 1.38 Multiple Vulnerabilities
8075| [4666] Eurologon CMS files.php Arbitrary File Download Vulnerability
8076| [4592] ISPworker 1.21 download.php Remote File Disclosure Vulnerability
8077| [4586] ProfileCMS 1.0 - Remote File Upload Vulnerability Shell Upload Exploit
8078| [4542] Boa 0.93.15 HTTP Basic Authentication Bypass Exploit
8079| [4521] Joomla Flash uploader 2.5.1 - Remote File Inclusion Vulnerabilities
8080| [4474] EDraw Office Viewer Component 5.3 FtpDownloadFile() Remote BoF
8081| [4466] Zomplog <= 3.8.1 upload_files.php Arbitrary File Upload Exploit
8082| [4437] Lighttpd <= 1.4.17 FastCGI Header Overflow Remote Exploit
8083| [4428] Yahoo! Messenger 8.1.0.421 CYFT Object Arbitrary File Download
8084| [4427] jetAudio 7.x ActiveX DownloadFromMusicStore() Code Execution Exploit
8085| [4426] Airsensor M520 HTTPD Remote Preauth DoS / BOF PoC
8086| [4411] Chupix CMS 0.2.3 (download.php) Remote File Disclosure Vulnerability
8087| [4391] Lighttpd <= 1.4.16 FastCGI Header Overflow Remote Exploit
8088| [4386] Sisfo Kampus 2006 (dwoprn.php f) Remote File Download Vulnerability
8089| [4383] Joomla Component Restaurante Remote File Upload Vulnerability
8090| [4371] RW::Download 2.0.3 lite (index.php dlid) Remote SQL Injection Vuln
8091| [4360] CCProxy <= 6.2 - Telnet Proxy Ping Overflow Exploit (meta)
8092| [4343] Ourspace 2.0.9 (uploadmedia.cgi) Remote File Upload Vulnerability
8093| [4341] Pakupaku CMS <= 0.4 - Remote File Upload / LFI Vulnerability
8094| [4307] Joomla Component RSfiles <= 1.0.2 (path) File Download Vulnerability
8095| [4243] corehttp 0.5.3alpha (httpd) Remote Buffer Overflow Exploit
8096| [4235] Seditio CMS <= 121 - (pfs.php) Remote File Upload Vulnerability
8097| [4232] IBM AIX <= 5.3 sp6 pioout Arbitrary Library Loading Local Root Exploit
8098| [4227] PHP php_gd2.dll imagepsloadfont Local Buffer Overflow PoC
8099| [4226] Clever Internet ActiveX Suite 6.2 Arbitrary File Download/Overwrite
8100| [4194] Joomla Component Expose <= RC35 Remote File Upload Vulnerability
8101| [4113] WordPress 2.2 (wp-app.php) Arbitrary File Upload Exploit
8102| [4106] DreamLog 0.5 (upload.php) Arbitrary File Upload Exploit
8103| [4099] e107 <= 0.7.8 - (photograph) Arbitrary File Upload Vulnerability
8104| [4089] SerWeb 0.9.4 (load_lang.php) Remote File Inclusion Exploit
8105| [4057] GeometriX Download Portal (down_indir.asp id) SQL Injection Vuln
8106| [4056] Internet Download Accelerator 5.2 - Remote Buffer Overflow PoC
8107| [4053] Yahoo! Messenger Webcam 8.1 (Ywcupl.dll) Download / Execute Exploit
8108| [4052] Yahoo! Messenger Webcam 8.1 (Ywcvwr.dll) Download / Execute Exploit
8109| [4046] MiniWeb Http Server 0.8.x Remote Denial of Service Exploit
8110| [4008] Zenturi ProgramChecker ActiveX File Download/Overwrite Exploit
8111| [3993] IE 6 / Ademco, co., ltd. ATNBaseLoader100 Module Remote BoF Exploit
8112| [3985] Mac OS X <= 10.4.8 pppd Plugin Loading Privilege Escalation Exploit
8113| [3922] webdesproxy 0.0.1 (GET Request) Remote Root Exploit (exec-shield)
8114| [3918] phpAtm 1.30 (downloadfile) Remote File Disclosure Vulnerability
8115| [3913] webdesproxy 0.0.1 (GET Request) Remote Buffer Overflow Exploit
8116| [3908] YAAP <= 1.5 __autoload() Remote File Inclusion Vulnerability
8117| [3888] Gimp 2.2.14 .RAS File Download/Execute Buffer Overflow Exploit (win32)
8118| [3832] 1024 CMS 0.7 (download.php item) Remote File Disclosure Vulnerability
8119| [3831] PStruh-CZ 1.3/1.5 (download.asp File) File Disclosure Vulnerability
8120| [3829] 3proxy 0.5.3g proxy.c logurl() Remote Overflow Exploit (exec-shield)
8121| [3822] 3proxy 0.5.3g proxy.c logurl() Remote Buffer Overflow Exploit (win32)
8122| [3821] 3proxy 0.5.3g proxy.c logurl() Remote Buffer Overflow Exploit (linux)
8123| [3800] Ext 1.0 (feed-proxy.php feed) Remote File Disclosure Vulnerability
8124| [3796] wavewoo 0.1.1 (loading.php path_include) Remote File Inclusion Exploit
8125| [3764] Zomplog 3.8 (force_download.php file) Remote File Disclosure Vuln
8126| [3715] Sami HTTP Server 2.0.1 POST Request Denial of Service Exploit
8127| [3677] cattaDoc 2.21 (download2.php fn1) Remote File Disclosure Vulnerability
8128| [3676] Beryo 2.0 (downloadpic.php chemin) Remote File Disclosure Vulnerability
8129| [3674] Wserve HTTP Server 4.6 (Long Directory Name) Denial of Service Exploit
8130| [3666] XOOPS Module Rha7 Downloads 1.0 (visit.php) SQL Injection Exploit
8131| [3615] dproxy-nexgen Remote Root Buffer Overflow Exploit (x86-lnx)
8132| [3554] dproxy <= 0.5 - Remote Buffer Overflow Exploit (meta 2.7)
8133| [3516] MetaForum <= 0.513 Beta Remote File Upload Exploit
8134| [3494] McGallery 0.5b (download.php) Arbitrary File Download Vulnerability
8135| [3458] AssetMan <= 2.4a (download_pdf.php) Remote File Disclosure Vuln
8136| [3435] netForo! 0.1 (down.php file_to_download) Remote File Disclosure Vuln
8137| [3381] NetProxy <= 4.03 Web Filter Evasion / Bypass Logging Exploit
8138| [3379] STWC-Counter <= 3.4.0 (downloadcounter.php) RFI Exploit
8139| [3346] PHP-Nuke <= 8.0 Final (HTTP Referers) Remote SQL Injection Exploit
8140| [3318] Aktueldownload Haber scripti (id) Remote SQL Injection Vulnerability
8141| [3311] Jupiter CMS 1.1.5 - Remote File Upload Exploit
8142| [3249] WebBuilder 2.0 (StageLoader.php) Remote File Include Vulnerability
8143| [3203] FdScript <= 1.3.2 (download.php) Remote File Disclosure Vulnerability
8144| [3200] Apple CFNetwork HTTP Response Denial of Service Exploit (rb code)
8145| [3182] Sami HTTP Server 2.0.1 (HTTP 404 - Object not found) DoS Exploit
8146| [3174] Upload Service 1.0 (top.php maindir) Remote File Inclusion Vulnerability
8147| [3148] MS Internet Explorer VML Download and Execute Exploit (MS07-004)
8148| [3125] JV2 Folder Gallery 3.0 0 - (download.php) Remote File Disclosure Exploit
8149| [3078] Acunetix WVS <= 4.0 20060717 HTTP Sniffer Component Remote DoS
8150| [3058] Rediff Bol Downloader (ActiveX Control) Execute Local File Exploit
8151| [3049] IMGallery <= 2.5 Create Uploader Script Exploit
8152| [3020] PHP-Update <= 2.7 (admin/uploads.php) Remote Code Execution Exploit
8153| [3014] logahead UNU edition 1.0 - Remote Upload File / Code Execution Vuln
8154| [3000] Pagetool CMS <= 1.07 (pt_upload.php) Remote File Include Vulnerability
8155| [2997] File Upload Manager <= 1.0.6 (detail.asp) Remote SQL Injection Exploit
8156| [2974] Http explorer Web Server 1.02 Directory Transversal Vulnerability
8157| [2971] PgmReloaded <= 0.8.5 - Multiple Remote File Include Vulnerabilities
8158| [2962] Burak Yilmaz Download Portal (down.asp) SQL Injection Vulnerability
8159| [2945] Uploader & Downloader 3.0 (id_user) Remote SQL Injection Vulnerability
8160| [2936] GNU InetUtils ftpd 1.4.2 (ld.so.preload) Remote Root Exploit
8161| [2929] MS Internet Explorer 7 (DLL-load hijacking) Code Execution Exploit PoC
8162| [2902] TorrentFlux 2.2 (downloaddetails.php) Local File Disclosure Exploit
8163| [2886] PHP Upload Center 2.0 (activate.php) File Include Vulnerabilities
8164| [2876] deV!Lz Clanportal [DZCP] <= 1.3.6 - Arbitrary File Upload Vulnerability
8165| [2847] Sisfo Kampus <= 0.8 - Remote File Inclusion / Download Vulnerabilities
8166| [2812] PHP Easy Downloader <= 1.5 (save.php) Remote Code Execution Exploit
8167| [2776] contentnow 1.30 (upload/xss) Multiple Vulnerabilities
8168| [2768] contentnow 1.30 (local/upload/delete) Multiple Vulnerabilities
8169| [2651] MiniHttpServer Web Forum & File Sharing Server 4.0 Add User Exploit
8170| [2637] AEP SmartGate 4.3b (GET) Arbitrary File Download Exploit
8171| [2598] PH Pexplorer <= 0.24 (explorer_load_lang.php) Local Include Exploit
8172| [2569] Solaris 10 libnspr - LD_PRELOAD Arbitrary File Creation Local Root Exploit
8173| [2556] E-Uploader Pro <= 1.0 Image Upload with Code Execution Vulnerability
8174| [2521] Download-Engine <= 1.4.2 (spaw) Remote File Include Vulnerability
8175| [2482] SHTTPD 1.34 (POST) Remote Buffer Overflow Exploit
8176| [2374] Site@School <= 2.4.02 Advisory / Remote File Upload Exploit
8177| [2352] webSPELL <= 4.01.01 Database Backup Download Vulnerability
8178| [2328] RaidenHTTPD 1.1.49 (SoftParserFileXml) Remote Code Execution Exploit
8179| [2310] PhpCommander <= 3.0 (upload) Remote Code Execution Exploit
8180| [2277] Streamripper <= 1.61.25 HTTP Header Parsing Buffer Overflow Exploit 2
8181| [2274] Streamripper <= 1.61.25 HTTP Header Parsing Buffer Overflow Exploit
8182| [2122] ME Download System <= 1.3 (header.php) Remote Inclusion Vulnerability
8183| [2073] libmikmod <= 3.2.2 (GT2 loader) Local Heap Overflow PoC
8184| [2035] toendaCMS <= 1.0.0 (FCKeditor) Remote File Upload Exploit
8185| [1980] ImgSvr <= 0.6.5 (long http post) Denial of Service Exploit
8186| [1852] gxine 0.5.6 (HTTP Plugin) Remote Buffer Overflow PoC
8187| [1746] zawhttpd <= 0.8.23 (GET) Remote Buffer Overflow DoS
8188| [1671] panic-reloaded TCP Denial of Service Tool
8189| [1656] Sire 2.0 (lire.php) Remote File Inclusion/Arbitary File Upload Vulnerability
8190| [1631] ReloadCMS <= 1.2.5 Cross Site Scripting / Remote Code Execution Exploit
8191| [1628] MS Internet Explorer (createTextRang) Download Shellcoded Exploit (2)
8192| [1607] MS Internet Explorer (createTextRang) Download Shellcoded Exploit
8193| [1605] XHP CMS <= 0.5 (upload) Remote Command Execution Exploit
8194| [1597] ASPPortal <= 3.1.1 (downloadid) Remote SQL Injection Exploit
8195| [1556] D2-Shoutbox 4.2 IPB Mod (load) Remote SQL Injection Exploit
8196| [1484] FCKEditor 2.0 <= 2.2 (connector.php) - Remote Shell Upload Exploit
8197| [1446] creLoaded <= 6.15 (HTMLAREA) Automated Perl Exploit
8198| [1420] MS Windows Metafile (WMF) Remote File Download Exploit Generator
8199| [1409] BlueCoat WinProxy <= 6.0 R1c (GET Request) Denial of Service Exploit
8200| [1408] BlueCoat WinProxy 6.0 R1c (Host) Remote Stack/SEH Overflow Exploit
8201| [1396] MS Windows IIS Malformed HTTP Request Denial of Service Exploit (cpp)
8202| [1377] MS Windows IIS Malformed HTTP Request Denial of Service Exploit (pl)
8203| [1376] MS Windows IIS Malformed HTTP Request Denial of Service Exploit (c)
8204| [1365] Oracle 9.2.0.1 Universal XDB HTTP Pass Overflow Exploit
8205| [1356] DoceboLMS <= 2.0.4 connector.php Shell Upload Exploit
8206| [1340] eFiction <= 2.0 Fake GIF Shell Upload Exploit
8207| [1333] Google Search Appliance proxystylesheet XSLT Java Code Execution
8208| [1315] XOOPS (wfdownloads) 2.05 Module Multiple Vulnerabilities Exploit
8209| [1277] Mirabilis ICQ 2003a Buffer Overflow Download Shellcoded Exploit
8210| [1274] Hasbani-WindWeb/2.0 - HTTP GET Remote DoS
8211| [1174] ZipTorrent <= 1.3.7.3 - Local Proxy Password Disclosure Exploit
8212| [1137] Acunetix HTTP Sniffer Denial of Service Exploit
8213| [1108] Small HTTP Server <= 3.05.28 Arbitrary Data Execution Exploit
8214| [1091] Internet Download Manager <= 4.05 Input URL Stack Overflow Exploit
8215| [1068] PHP-Fusion <= 6.00.105 Accessible Database Backups Download Exploit
8216| [1056] Apache <= 2.0.49 Arbitrary Long HTTP Headers Denial of Service
8217| [970] Snmppd SNMP Proxy Daemon Remote Format String Exploit
8218| [964] FilePocket 1.2 - Local Proxy Password Disclosure Exploit
8219| [952] MailEnable Enterprise & Professional https Remote BoF Exploit
8220| [940] Sumus 0.2.2 httpd Remote Buffer Overflow Exploit
8221| [937] BitComet 0.57 Local Proxy Password Disclosure Exploit
8222| [919] FireFly 1.0 - Local Proxy Password Disclosure Exploit
8223| [907] phpBB <= 2.0.13 'downloads.php' mod Remote Exploit
8224| [870] Download Center Lite (DCL) <= 1.5 - Remote File Inclusion
8225| [855] Apache <= 2.0.52 HTTP GET request Denial of Service Exploit
8226| [802] MSN Messenger PNG Image Buffer Overflow Download Shellcoded Exploit
8227| [771] MS Internet Explorer .ANI files handling Downloader Exploit (MS05-002)
8228| [759] Apple iTunes Playlist Buffer Overflow Download Shellcoded Exploit
8229| [702] phpBB highlight Arbitrary File Upload (Santy.A)
8230| [687] OpenText FirstClass 8.0 HTTP Daemon /Search Remote DoS
8231| [667] Jana Server <= 2.4.4 (http/pna) Denial of Service Exploit
8232| [659] EZshopper Directory Transversal in loadpage.cgi
8233| [641] MS Internet Explorer 6.0 SP2 File Download Security Warning Bypass
8234| [621] CCProxy 6.2 (ping) Remote Buffer Overflow Exploit
8235| [619] CCProxy Log Remote Stack Overflow Exploit
8236| [570] WordPress Blog HTTP Splitting Vulnerability
8237| [556] MS Windows JPEG GDI+ All-In-One Bind/Reverse/Admin/FileDownload
8238| [478] MS Windows JPEG GDI+ Overflow Download Shellcode Exploit (MS04-028)
8239| [371] Apache HTTPd Arbitrary Long HTTP Headers DoS (c version)
8240| [360] Apache HTTPd Arbitrary Long HTTP Headers DoS
8241| [358] Lexmark Multiple HTTP Servers Denial of Service Vulnerability
8242| [290] GLIBC 2.1.3 ld_preload Local Exploit
8243| [228] Oops! 1.4.6 (one russi4n proxy-server) Heap Buffer Overflow Exploit
8244| [171] tcpdump ISAKMP Identification payload Integer Overflow Exploit
8245| [156] PSOProxy 0.91 Remote Buffer Overflow Exploit (Win2k/XP)
8246| [155] GateKeeper Pro 4.7 web proxy Remote Buffer Overflow Exploit
8247| [77] Cisco IOS 12.x/11.x HTTP Remote Integer Overflow Exploit
8248| [12] Linux Kernel < 2.4.20 Module Loader Local Root Exploit
8249| [9] Apache HTTP Server 2.x Memory Leak Exploit
8250|
8251| OpenVAS (Nessus) - http://www.openvas.org:
8252| [902825] at32 Reverse Proxy Multiple HTTP Header Fields Denial Of Service Vulnerability
8253| [900325] Qbik WinGate HTTP Proxy Server Access Controls Bypass Vulnerability
8254| [900222] IBM HTTP Server mod_proxy Interim Responses DoS Vulnerability
8255| [801834] SDP Downloader HTTP Header Handling Buffer Overflow Vulnerability
8256| [800827] Apache 'mod_proxy_http.c' Denial Of Service Vulnerability
8257| [800552] Versalsoft HTTP Image Uploader ActiveX Vulnerability
8258| [103293] Apache HTTP Server 'mod_proxy' Reverse Proxy Information Disclosure Vulnerability
8259| [100858] Apache 'mod_proxy_http' 2.2.9 for Unix Timeout Handling Information Disclosure Vulnerability
8260| [100083] HTTP Proxy Server Detection
8261| [100057] MLdonkey HTTP Request Arbitrary File Download Vulnerability
8262| [11715] Header overflow against HTTP proxy
8263| [903012] ALFTP Insecure Executable File Loading Vulnerability
8264| [902830] Apache HTTP Server 'httpOnly' Cookie Information Disclosure Vulnerability
8265| [902820] Tiny Server HTTP HEAD Request Remote Denial of Service Vulnerability
8266| [902664] Apache Traffic Server HTTP Host Header Denial of Service Vulnerability
8267| [902579] APC PowerChute Network Shutdown HTTP Response Splitting Vulnerability
8268| [902526] Oracle HTTP Server 'Expect' Header Cross-Site Scripting Vulnerability
8269| [902489] IBM DB2 'DT_RPATH' Insecure Library Loading Code Execution Vulnerabilities
8270| [902437] Lil' HTTP Server Cross Site Scripting Vulnerability
8271| [902404] jHTTPd Directory Traversal Vulnerability
8272| [902312] BlackBerry Desktop Software Insecure Library Loading Vulnerability
8273| [902307] UltraEdit Insecure Library Loading Vulnerability
8274| [902255] Microsoft Visual Studio Insecure Library Loading Vulnerability
8275| [902254] Microsoft Office Products Insecure Library Loading Vulnerability
8276| [902242] Mozilla Products Insecure Library Loading Vulnerability (Windows)
8277| [902241] Avast! Antivirus File Opening Insecure Library Loading Vulnerability (Win)
8278| [902240] uTorrent File Opening Insecure Library Loading Vulnerability
8279| [902239] Wireshark File Opening Insecure Library Loading Vulnerability (Windows)
8280| [902238] Skype Insecure Library Loading Vulnerability (Windows)
8281| [902171] Ipswitch WS_FTP Professional 'HTTP' Response Format String Vulnerability
8282| [902052] Task Freak 'loadByKey()' SQL Injection Vulnerability
8283| [902036] Mini Stream RM Downloader '.smi' File Buffer Overflow Vulnerability
8284| [901305] Microsoft Windows IP-HTTPS Component Security Feature Bypass Vulnerability (2765809)
8285| [901203] Apache httpd Web Server Range Header Denial of Service Vulnerability
8286| [901155] Integard Home and Pro HTTP Buffer Overflow Vulnerability
8287| [901149] Adobe Dreamweaver Insecure Library Loading Vulnerability
8288| [901147] Adobe Photoshop Insecure Library Loading Vulnerability
8289| [901128] Ziproxy PNG Image Processing Buffer Overflow Vulnerability
8290| [901104] Tembria Server Monitor HTTP Request Denial of Service Vulnerability
8291| [900869] Insecure Saving Of Downloadable File In Mozilla Firefox (Linux)
8292| [900842] Apache 'mod_proxy_ftp' Module Command Injection Vulnerability (Linux)
8293| [900841] Apache 'mod_proxy_ftp' Module Denial Of Service Vulnerability (Linux)
8294| [900832] Google Chrome 'JavaScript' And 'HTTPS' Multiple Vulnerabilities - Aug09
8295| [900642] SDP Downloader ASX File Heap Buffer Overflow Vulnerability
8296| [900641] SDP Downloader Version Detection
8297| [900523] Ziproxy Security Bypass Vulnerability
8298| [900522] Ziproxy Server Version Detection
8299| [900499] Apache mod_proxy_ajp Information Disclosure Vulnerability
8300| [900489] Orbit Downloader File Deletion ActiveX Vulnerability
8301| [900349] CUPS HTTP Host Header DNS Rebinding Attacks
8302| [900110] Adobe Presenter viewer.swf and loadflash.js XSS Vulnerability
8303| [900107] Apache mod_proxy_ftp Wildcard Characters XSS Vulnerability
8304| [900092] Windows HTTP Services Could Allow Remote Code Execution Vulnerabilities (960803)
8305| [881537] CentOS Update for libproxy CESA-2012:1461 centos6
8306| [881450] CentOS Update for httpd CESA-2011:1392 centos4 x86_64
8307| [881436] CentOS Update for httpd CESA-2011:1392 centos5 x86_64
8308| [881394] CentOS Update for httpd CESA-2011:1245 centos4 x86_64
8309| [881089] CentOS Update for httpd CESA-2012:0128 centos6
8310| [881032] CentOS Update for httpd CESA-2011:1392 centos4 i386
8311| [881020] CentOS Update for httpd CESA-2011:1392 centos5 i386
8312| [880970] CentOS Update for httpd CESA-2011:1245 centos4 i386
8313| [880849] CentOS Update for httpd CESA-2009:1148 centos5 i386
8314| [880842] CentOS Update for httpd CESA-2009:1205 centos3 i386
8315| [880739] CentOS Update for httpd CESA-2009:1579 centos3 i386
8316| [880706] CentOS Update for httpd CESA-2009:1579 centos5 i386
8317| [880692] CentOS Update for httpd CESA-2009:1108 centos3 i386
8318| [880691] CentOS Update for httpd CESA-2009:1580 centos4 i386
8319| [880683] CentOS Update for httpd CESA-2009:1075 centos5 i386
8320| [880565] CentOS Update for httpd CESA-2010:0168 centos5 i386
8321| [880383] CentOS Update for httpd CESA-2010:0175 centos4 i386
8322| [880313] CentOS Update for httpd CESA-2008:0005 centos3 i386
8323| [880279] CentOS Update for httpd CESA-2008:0967 centos3 x86_64
8324| [880256] CentOS Update for httpd CESA-2008:0005 centos3 x86_64
8325| [880231] CentOS Update for httpd CESA-2008:0006 centos4 i386
8326| [880227] CentOS Update for httpd CESA-2008:0006 centos4 x86_64
8327| [880200] CentOS Update for httpd CESA-2008:0967 centos3 i386
8328| [880024] CentOS Update for httpd CESA-2008:0967 centos4 x86_64
8329| [880012] CentOS Update for httpd CESA-2008:0967 centos4 i386
8330| [870862] RedHat Update for libproxy RHSA-2012:1461-01
8331| [870631] RedHat Update for httpd RHSA-2012:0128-01
8332| [870617] RedHat Update for httpd RHSA-2011:1391-01
8333| [870571] RedHat Update for httpd RHSA-2012:0323-01
8334| [870505] RedHat Update for httpd RHSA-2011:1392-01
8335| [870487] RedHat Update for httpd RHSA-2011:1294-01
8336| [870479] RedHat Update for httpd RHSA-2011:1245-01
8337| [870314] RedHat Update for httpd RHSA-2010:0659-01
8338| [870241] RedHat Update for httpd RHSA-2010:0168-01
8339| [870239] RedHat Update for httpd RHSA-2010:0175-01
8340| [870119] RedHat Update for httpd RHSA-2008:0006-01
8341| [870081] RedHat Update for httpd RHSA-2008:0005-01
8342| [870034] RedHat Update for httpd RHSA-2008:0008-01
8343| [870016] RedHat Update for httpd RHSA-2008:0967-01
8344| [864921] Fedora Update for php-symfony2-HttpFoundation FEDORA-2012-19455
8345| [864918] Fedora Update for php-symfony2-HttpFoundation FEDORA-2012-19442
8346| [864871] Fedora Update for libproxy FEDORA-2012-17574
8347| [864812] Fedora Update for haproxy FEDORA-2012-16033
8348| [864801] Fedora Update for haproxy FEDORA-2012-16056
8349| [864513] Fedora Update for lighttpd FEDORA-2012-9040
8350| [864498] Fedora Update for lighttpd FEDORA-2012-9078
8351| [864331] Fedora Update for mozilla-https-everywhere FEDORA-2012-7051
8352| [864201] Fedora Update for mozilla-https-everywhere FEDORA-2012-7175
8353| [864197] Fedora Update for mozilla-https-everywhere FEDORA-2012-7136
8354| [863961] Fedora Update for httpd FEDORA-2012-1598
8355| [863892] Fedora Update for httpd FEDORA-2011-12667
8356| [863759] Fedora Update for httpd FEDORA-2012-1642
8357| [863514] Fedora Update for httpd FEDORA-2011-12715
8358| [863286] Fedora Update for httpcomponents-client FEDORA-2011-7747
8359| [862826] Fedora Update for myproxy FEDORA-2011-0512
8360| [862821] Fedora Update for myproxy FEDORA-2011-0514
8361| [862314] Fedora Update for httpd FEDORA-2010-12478
8362| [862126] Fedora Update for httpd FEDORA-2010-6055
8363| [861951] Fedora Update for lighttpd FEDORA-2010-7636
8364| [861946] Fedora Update for lighttpd FEDORA-2010-7643
8365| [861929] Fedora Update for httpd FEDORA-2010-6131
8366| [861746] Fedora Update for httpd FEDORA-2009-12747
8367| [861534] Fedora Update for httpd FEDORA-2007-2214
8368| [861479] Fedora Update for lighttpd FEDORA-2007-1299
8369| [861373] Fedora Update for httpd FEDORA-2007-0704
8370| [861345] Fedora Update for httpd FEDORA-2007-707
8371| [861325] Fedora Update for httpd FEDORA-2007-617
8372| [861246] Fedora Update for httpd FEDORA-2007-615
8373| [861123] Fedora Update for lighttpd FEDORA-2007-2132
8374| [860849] Fedora Update for lighttpd FEDORA-2008-3376
8375| [860683] Fedora Update for lighttpd FEDORA-2008-3343
8376| [860638] Fedora Update for httpd FEDORA-2008-6393
8377| [860350] Fedora Update for httpd FEDORA-2008-1711
8378| [860293] Fedora Update for lighttpd FEDORA-2008-2262
8379| [860246] Fedora Update for lighttpd FEDORA-2008-2278
8380| [860205] Fedora Update for lighttpd FEDORA-2008-4119
8381| [860097] Fedora Update for httpd FEDORA-2008-6314
8382| [860087] Fedora Update for httpd FEDORA-2008-1695
8383| [855564] Solaris Update for /usr/sadm/lib/smc/lib/preload/jsdk21.jar 116808-02
8384| [855212] Solaris Update for /usr/sadm/lib/smc/lib/preload/jsdk21.jar 116807-02
8385| [850054] SuSE Update for XFree86-server,xorg-x11-server,xloader SUSE-SA:2007:008
8386| [841215] Ubuntu Update for libproxy USN-1629-1
8387| [840915] Ubuntu Update for python-httplib2 USN-1375-1
8388| [835056] HP-UX Update for Java VM Classloader (J2SE) HPSBUX00295
8389| [831751] Mandriva Update for libproxy MDVSA-2012:172 (libproxy)
8390| [830230] Mandriva Update for hdf5 MDKA-2007:080 (hdf5)
8391| [803125] TVMOBiLi Media Server HTTP Request Multiple BOF Vulnerabilities
8392| [803085] LibreOffice Graphic Object Loading Buffer Overflow Vulnerability (Mac OS X)
8393| [803084] LibreOffice Graphic Object Loading Buffer Overflow Vulnerability (Windows)
8394| [803080] Firefly MediaServer HTTP Header Multiple DoS Vulnerabilities
8395| [802966] PHP 'main/SAPI.c' HTTP Header Injection Vulnerability
8396| [802923] Null HTTPd Server Content-Length HTTP Header Buffer overflow Vulnerability
8397| [802838] Asterisk HTTP Manager Buffer Overflow Vulnerability
8398| [802819] Apple Safari Plugin Unloading Remote Code Execution Vulnerability (Win)
8399| [802737] Opera 'HTTPS-Session' Multiple Vulnerabilities (Linux)
8400| [802702] Google Chrome 'HTTP session' Information Disclosure Vulnerability (MAC OS X)
8401| [802701] Google Chrome 'HTTP session' Information Disclosure Vulnerability (Linux)
8402| [802700] Google Chrome 'HTTP session' Information Disclosure Vulnerability (Windows)
8403| [802617] NetDecision HTTP Server Long HTTP Request Remote Denial of Service Vulnerability
8404| [802614] Tiny HTTP Server Remote Denial of Service Vulnerability
8405| [802586] phux Download Manager 'file' Parameter SQL Injection Vulnerability
8406| [802560] Joomla Simple File Upload Module Remote Code Execution Vulnerability
8407| [802402] LabWiki Multiple Cross-site Scripting (XSS) and Shell Upload Vulnerabilities
8408| [802350] Mbedthis AppWeb HTTP TRACE Method Cross-Site Scripting Vulnerability
8409| [802341] Web File Browser 'act' Parameter File Download Vulnerability
8410| [802312] PowerZip Insecure Library Loading Vulnerability
8411| [802297] Interactive Graphical SCADA System DLL Loading Arbitrary Code Execution Vulnerability
8412| [802293] XAMPP WebDAV PHP Upload Vulnerability
8413| [802207] Dotclear Arbitrary File Upload Vulnerability
8414| [802187] Mozilla Firefox and SeaMonkey 'loadSubScript()' Security Bypass Vulnerability (MAC OS X)
8415| [802176] Mozilla Firefox and SeaMonkey 'loadSubScript()' Security Bypass Vulnerability
8416| [802156] Sunway ForceControl WebServer 'httpsvr.exe' Buffer Overflow Vulnerability
8417| [802143] Opera 'HTTPS-Session' Multiple Vulnerabilities (Mac OS X)
8418| [802141] Opera 'HTTPS-Session' Multiple Vulnerabilities (Windows)
8419| [802140] Microsoft Explorer HTTPS Sessions Multiple Vulnerabilities (Windows)
8420| [802136] Microsoft Windows Insecure Library Loading Vulnerability (2269637)
8421| [802114] NoticeBoardPro SQL Injection and Arbitrary File Upload Vulnerabilities
8422| [802104] CRE Loaded Multiple Security Bypass Vulnerabilities
8423| [802044] Lighttpd Connection header Denial of Service Vulnerability
8424| [802010] Nostromo nhttpd Webserver Directory Traversal Vulnerability
8425| [801996] IBM HTTP Server Multiple Cross Site Scripting Vulnerabilities
8426| [801969] Progea Movicon 'TCPUploadServer.exe' Multiple Vulnerabilities
8427| [801824] IBM Tivoli Directory Proxy Server Denial of Service Vulnerability
8428| [801796] Python CGIHTTPServer Module Information Disclosure Vulnerability
8429| [801770] Google Picasa Insecure Library Loading Arbitrary Code Execution Vulnerability (Windows)
8430| [801636] nginx HTTP Request Remote Buffer Overflow Vulnerability
8431| [801532] Oracle Java System Web Server HTTP Response Splitting Vulnerability
8432| [801526] Visual Synapse HTTP Server Directory Traversal Vulnerability
8433| [801511] Adobe On Location Insecure Library Loading Vulnerability (Win)
8434| [801510] Adobe ExtendedScript Toolkit (ESTK) Insecure Library Loading Vulnerability (Win)
8435| [801509] Adobe Extension Manager CS5 Insecure Library Loading Vulnerability (Win)
8436| [801508] Adobe InDesign Insecure Library Loading Vulnerability (Win)
8437| [801500] VLC Media Player File Opening Insecure Library Loading Vulnerability (Win)
8438| [801457] Microsoft Windows Address Book Insecure Library Loading Vulnerability
8439| [801456] Microsoft Windows Progman Group Converter Insecure Library Loading Vulnerability
8440| [801437] Winamp Insecure Library Loading Vulnerability
8441| [801436] TeamViewer File Opening Insecure Library Loading Vulnerability
8442| [801399] MS Windows Insecure Library Loading Remote Code Execution Vulnerabilities (2269637)
8443| [801339] Free Download Manager Multiple Buffer Overflow Vulnerabilities
8444| [801290] TortoiseSVN Insecure Library Loading Vulnerability
8445| [801274] TechSmith Snagit Insecure Library Loading Vulnerability
8446| [801273] Google Earth Insecure Library Loading Vulnerability
8447| [801267] Adobe Captivate Insecure Library Loading Vulnerability
8448| [801246] bozotic HTTP server Information Disclosure Vulnerability
8449| [801245] bozotic HTTP server Denial of Service Vulnerability
8450| [801244] bozotic HTTP server Version Detection
8451| [801236] httpdx Multiple Vulnerabilities
8452| [801214] Orbit Downloader metalink 'name' Directory Traversal Vulnerability
8453| [801213] Orbit Downloader Version Detection
8454| [801019] Xerver HTTP Server Source Code Disclosure Vulnerability
8455| [801018] Xerver HTTP Server Directory Traversal Vulnerability
8456| [801015] Xerver HTTP Server Cross Site Scripting Vulnerability
8457| [800962] httpdx Web Server 'h_handlepeer()' Buffer Overflow Vulnerability
8458| [800961] httpdx 'h_readrequest()' Host Header Format String Vulnerability
8459| [800866] Sun Java System Web Proxy Server Denial Of Service Vulnerability (Linux)
8460| [800865] Sun Java System Web Proxy Server Denial Of Service Vulnerability (Win)
8461| [800864] Sun Java System Web Proxy Server Version Detection
8462| [800858] Mozilla Firefox SOCKS5 Proxy Server DoS Vulnerability Aug-09 (Linux)
8463| [800857] Mozilla Firefox SOCKS5 Proxy Server DoS Vulnerability Aug-09 (Win)
8464| [800835] Apple Safari JavaScript 'Reload()' DoS Vulnerability - July09
8465| [800812] Sun Java System Web Proxy Server Vulnerabilities (Win)
8466| [800811] Sun Java System Web Proxy Server Vulnerabilities (Win)
8467| [800793] TCExam 'tce_functions_tcecode_editor.php' File Upload Vulnerability
8468| [800776] Internet Download Manager FTP Buffer Overflow Vulnerability
8469| [800771] PostNuke modload Module 'sid' Parameter SQL Injection Vulnerability
8470| [800539] CCProxy CONNECTION Request Buffer Overflow Vulnerability
8471| [800538] CCProxy Version Detection
8472| [800373] PHP 'mbstring.func_overload' DoS Vulnerability
8473| [800349] Multiple Buffer Overflow Vulnerabilities in Free Download Manager
8474| [800348] Free Download Manager Version Detection
8475| [800175] Xerver HTTP Server Web Administration Denial of Service Vulnerability
8476| [800144] Ruby on Rails redirect_to() HTTP Header Injection Vulnerability - Linux
8477| [800101] CA eTrust SCM Multiple HTTP Gateway Service Vulnerabilities
8478| [800026] Sun Java System Web Proxy Server Two Vulnerabilities (Linux)
8479| [800025] Sun Java System Web Proxy Server Vulnerabilities (Win)
8480| [200100] XHP CMS Version <= 0.5 File Upload Vulnerability
8481| [103494] F5 BIG-IP remote root authentication bypass Vulnerability
8482| [103470] nginx 'ngx_http_mp4_module.c' Buffer Overflow Vulnerability
8483| [103446] OSClass Directory Traversal and Arbitrary File Upload Vulnerabilities
8484| [103395] appRain CMF 'uploadify.php' Remote Arbitrary File Upload Vulnerability
8485| [103377] QuiXplorer 'index.php' Arbitrary File Upload Vulnerability
8486| [103333] Apache HTTP Server 'ap_pregsub()' Function Local Denial of Service Vulnerability
8487| [103330] LabWiki Multiple Cross Site Scripting And Arbitrary File Upload Vulnerabilities
8488| [103320] Squid Proxy Caching Server CNAME Denial of Service Vulnerability
8489| [103309] osCommerce Remote File Upload and File Disclosure Vulnerabilities
8490| [103307] 1024 CMS 1.1.0 Beta 'force_download.php' Local File Include Vulnerability
8491| [103291] TYPO3 'download.php' Local File Disclosure Vulnerability
8492| [103240] HTTP Brute Force Logins with default Credentials
8493| [103233] Squid Proxy Gopher Remote Buffer Overflow Vulnerability
8494| [103142] DynMedia Pro Web CMS 'downloadfile.php' Local File Disclosure Vulnerability
8495| [103133] Feng Office Arbitrary File Upload and Cross Site Scripting Vulnerabilities
8496| [103121] CMS Lokomedia 'downlot.php' Arbitrary File Download Vulnerability
8497| [103120] Douran Portal 'download.aspx' Arbitrary File Download Vulnerability
8498| [103119] nostromo nhttpd Directory Traversal Remote Command Execution Vulnerability
8499| [103050] Weborf 'get_param_value()' Function HTTP Header Handling Denial Of Service Vulnerability
8500| [103041] AWStats Unspecified 'LoadPlugin' Directory Traversal Vulnerability
8501| [103005] httpdASM Directory Traversal Vulnerability
8502| [103004] Mongoose 'Content-Length' HTTP Header Remote Denial Of Service Vulnerability
8503| [100949] HttpBlitz Server HTTP Request Remote Denial of Service Vulnerability
8504| [100913] osCommerce 'categories.php' Arbitrary File Upload Vulnerability
8505| [100890] FreePBX System Recordings Menu Arbitrary File Upload Vulnerability
8506| [100878] Weborf HTTP Request Denial Of Service Vulnerability
8507| [100873] HP Systems Insight Manager Arbitrary File Download Vulnerability
8508| [100835] Novell iManager 'getMultiPartParameters()' Arbitrary File Upload Vulnerability
8509| [100816] OpenCart 'fckeditor' Arbitrary File Upload Vulnerability
8510| [100809] chillyCMS Arbitrary File Upload Vulnerability
8511| [100790] DynPage 'dynpage_load.php' Local File Disclosure Vulnerability
8512| [100789] Squid Proxy String Processing NULL Pointer Dereference Denial Of Service Vulnerability
8513| [100788] Weborf HTTP 'modURL()' Function Directory Traversal Vulnerability
8514| [100777] Wing FTP Server HTTP Request Denial Of Service Vulnerability
8515| [100750] bozohttpd Security Bypass Vulnerability
8516| [100725] Apache HTTP Server Multiple Remote Denial of Service Vulnerabilities
8517| [100709] Podcast Generator 'download.php' Directory Traversal Vulnerability
8518| [100702] Wiki Web Help 'uploadimage.php' Arbitrary File Upload Vulnerability
8519| [100691] Weborf HTTP Header Processing Denial Of Service Vulnerability
8520| [100661] osCommerce Online Merchant 'file_manager.php' Remote Arbitrary File Upload Vulnerability
8521| [100650] Ziproxy Image Parsing Multiple Integer Overflow Vulnerabilities
8522| [100637] Zervit HTTP Server Source Code Information Disclosure Vulnerability
8523| [100629] Woltlab Burning Board Arbitrary File Upload Vulnerability
8524| [100620] OneHTTPD Directory Traversal Vulnerability
8525| [100617] PHP 'php_dechunk()' HTTP Chunked Encoding Integer Overflow Vulnerability
8526| [100585] HTTP File Server Security Bypass and Denial of Service Vulnerabilities
8527| [100560] uHTTP Server GET Request Directory Traversal Vulnerability
8528| [100553] Interchange HTTP Response Splitting Vulnerability
8529| [100548] Remote Help HTTP GET Request Format String Denial Of Service Vulnerability
8530| [100534] httpdx Multiple Remote Denial Of Service Vulnerabilities
8531| [100525] httpdx PNG File Handling Remote Denial of Service Vulnerability
8532| [100504] Quicksilver Forums Local File Include and Arbitrary File Upload Vulnerabilities
8533| [100496] httpdx 'MKD' Command Directory Traversal Vulnerability
8534| [100491] httpdx 'USER' Command Remote Format String Vulnerability
8535| [100480] lighttpd Slow Request Handling Remote Denial Of Service Vulnerability
8536| [100461] boastMachine Arbitrary File Upload Vulnerability
8537| [100459] XOOPS Arbitrary File Deletion and HTTP Header Injection Vulnerabilities
8538| [100449] Lighttpd 'mod_userdir' Case Sensitive Comparison Security Bypass Vulnerability
8539| [100447] Acme thttpd and mini_httpd Terminal Escape Sequence in Logs Command Injection Vulnerability
8540| [100438] Sun Java System Directory Server 'core_get_proxyauth_dn' Denial of Service Vulnerability
8541| [100421] httpdx Space Character Remote File Disclosure Vulnerability
8542| [100418] CoreHTTP CGI Support Remote Command Execution Vulnerability
8543| [100397] Monkey HTTP Daemon Invalid HTTP 'Connection' Header Denial Of Service Vulnerability
8544| [100379] Polipo Malformed HTTP GET Request Memory Corruption Vulnerability
8545| [100377] CoreHTTP 'src/http.c ' Buffer Overflow Vulnerability
8546| [100370] ISPworker Download.PHP Multiple Directory Traversal Vulnerabilities
8547| [100364] OpenX Arbitrary File Upload Vulnerability
8548| [100355] Xerver HTTP Response Splitting Vulnerability
8549| [100333] Joomla! Remote File Upload Vulnerability And Information Disclosure Weakness
8550| [100332] Serv-U Web Client HTTP Request Remote Buffer Overflow Vulnerability
8551| [100321] nginx 'ngx_http_process_request_headers()' Remote Buffer Overflow Vulnerability
8552| [100317] MapServer HTTP Request Processing Integer Overflow Vulnerability
8553| [100304] Acritum Femitter Server HTTP Request Remote File Disclosure Vulnerability
8554| [100301] JDownloader Web Detection
8555| [100278] BigAnt IM Server HTTP GET Request Buffer Overflow Vulnerability
8556| [100277] nginx Proxy DNS Cache Domain Spoofing Vulnerability
8557| [100276] nginx HTTP Request Remote Buffer Overflow Vulnerability
8558| [100245] RaidenHTTPD Cross Site Scripting and Local File Include Vulnerabilities
8559| [100244] ZNC File Upload Directory Traversal Vulnerability
8560| [100212] Lighttpd Trailing Slash Information Disclosure Vulnerability
8561| [100210] httpdx Multiple Commands Remote Buffer Overflow Vulnerabilities
8562| [100202] Matt Wright FormMail HTTP Response Splitting and Cross Site Scripting Vulnerabilities
8563| [100167] Zervit HTTP Server Malformed URI Remote Denial Of Service Vulnerability
8564| [100084] Squid Proxy Cache ICAP Adaptation Denial of Service Vulnerability
8565| [100034] HTTP-Version Detection
8566| [80076] PHP Easy Download admin/save.php Paramater Code Injection Vulnerability
8567| [80047] Abyss httpd crash
8568| [80010] HTTP NIDS evasion
8569| [72598] FreeBSD Ports: lighttpd
8570| [72568] Debian Security Advisory DSA 2573-1 (radsecproxy)
8571| [72566] Debian Security Advisory DSA 2571-1 (libproxy)
8572| [72536] Debian Security Advisory DSA 2564-1 (tinyproxy)
8573| [71965] Slackware Advisory SSA:2012-041-01 httpd
8574| [71958] Slackware Advisory SSA:2011-252-01 httpd
8575| [71947] Slackware Advisory SSA:2011-133-02 httpd
8576| [71945] Slackware Advisory SSA:2011-145-02 httpd
8577| [71941] Slackware Advisory SSA:2011-284-01 httpd
8578| [71553] Gentoo Security Advisory GLSA 201206-27 (mini_httpd)
8579| [71366] FreeBSD Ports: haproxy
8580| [70687] Debian Security Advisory DSA 2368-1 (lighttpd)
8581| [70584] FreeBSD Ports: lighttpd
8582| [69602] FreeBSD Ports: tinyproxy
8583| [69565] Debian Security Advisory DSA 2222-1 (tinyproxy)
8584| [69020] Gentoo Security Advisory GLSA 201006-17 (lighttpd)
8585| [68922] Slackware Advisory SSA:2011-041-03 httpd
8586| [68175] Slackware Advisory SSA:2010-240-02 httpd
8587| [67715] FreeBSD Ports: ziproxy
8588| [67408] FreeBSD Ports: ziproxy
8589| [67045] Slackware Advisory SSA:2010-067-01 httpd
8590| [66846] FreeBSD Ports: lighttpd
8591| [66806] Debian Security Advisory DSA 1987-1 (lighttpd)
8592| [66780] Slackware Advisory SSA:2010-024-01 httpd
8593| [66557] Fedora Core 12 FEDORA-2009-12606 (httpd)
8594| [66498] Fedora Core 10 FEDORA-2009-12604 (httpd)
8595| [66275] CentOS Security Advisory CESA-2009:1580 (httpd)
8596| [66274] CentOS Security Advisory CESA-2009:1579 (httpd)
8597| [65963] SLES10: Security update for libexif5
8598| [64741] Fedora Core 11 FEDORA-2009-8812 (httpd)
8599| [64661] CentOS Security Advisory CESA-2009:1205 (httpd)
8600| [64571] Slackware Advisory SSA:2009-214-01 httpd
8601| [64448] CentOS Security Advisory CESA-2009:1148 (httpd)
8602| [64269] CentOS Security Advisory CESA-2009:1108 (httpd)
8603| [64124] CentOS Security Advisory CESA-2009:1075 (httpd)
8604| [63864] FreeBSD Ports: ziproxy
8605| [63385] Fedora Core 9 FEDORA-2008-11923 (lighttpd)
8606| [61943] Gentoo Security Advisory GLSA 200812-04 (lighttpd)
8607| [61701] FreeBSD Ports: lighttpd
8608| [61476] Slackware Advisory SSA:2008-210-02 httpd
8609| [61364] Debian Security Advisory DSA 1540-3 (lighttpd)
8610| [61357] Debian Security Advisory DSA 1609-1 (lighttpd)
8611| [60834] FreeBSD Ports: lighttpd
8612| [60808] Gentoo Security Advisory GLSA 200804-08 (lighttpd)
8613| [60793] Debian Security Advisory DSA 1540-2 (lighttpd)
8614| [60786] Debian Security Advisory DSA 1540-1 (lighttpd)
8615| [60573] Debian Security Advisory DSA 1521-1 (lighttpd)
8616| [60513] Gentoo Security Advisory GLSA 200803-10 (lighttpd)
8617| [60499] Debian Security Advisory DSA 1513-1 (lighttpd)
8618| [60388] Slackware Advisory SSA:2008-045-01 httpd
8619| [58862] FreeBSD Ports: lighttpd
8620| [58861] FreeBSD Ports: lighttpd
8621| [58828] FreeBSD Ports: lighttpd
8622| [58805] FreeBSD Ports: lighttpd
8623| [58773] FreeBSD Ports: dirproxy
8624| [58752] Gentoo Security Advisory GLSA 200711-13 (3proxy)
8625| [58646] Gentoo Security Advisory GLSA 200709-16 (lighttpd)
8626| [58644] Debian Security Advisory DSA 1362-2 (lighttpd)
8627| [58581] Debian Security Advisory DSA 1362-1 (lighttpd)
8628| [58546] Gentoo Security Advisory GLSA 200708-11 (lighttpd)
8629| [58257] Gentoo Security Advisory GLSA 200705-07 (lighttpd)
8630| [58223] Gentoo Security Advisory GLSA 200704-17 (3proxy)
8631| [57988] Gentoo Security Advisory GLSA 200701-28 (thttpd)
8632| [57875] Gentoo Security Advisory GLSA 200608-25 (xorg-x11,xorg-server,xtrans,xload,xinit,xterm,xf86dga,xdm,libX11)
8633| [57684] Debian Security Advisory DSA 1205-2 (thttpd)
8634| [57168] Slackware Advisory SSA:2006-209-01 Apache httpd
8635| [56731] Slackware Advisory SSA:2006-129-01 Apache httpd
8636| [56729] Slackware Advisory SSA:2006-130-01 Apache httpd redux
8637| [56677] Gentoo Security Advisory GLSA 200510-26 (xli xloadimage)
8638| [56365] Gentoo Security Advisory GLSA 200603-04 (up-imapproxy)
8639| [55795] Debian Security Advisory DSA 883-1 (thttpd)
8640| [55710] FreeBSD Ports: xloadimage
8641| [55601] Debian Security Advisory DSA 852-1 (up-imapproxy)
8642| [55595] Debian Security Advisory DSA 858-1 (xloadimage)
8643| [55172] Debian Security Advisory DSA 786-1 (simpleproxy)
8644| [54853] Gentoo Security Advisory GLSA 200502-21 (lighttpd)
8645| [54728] Gentoo Security Advisory GLSA 200411-07 (Proxytunnel)
8646| [53910] Slackware Advisory SSA:2004-266-02 GTK+ image loading flaws
8647| [53819] Debian Security Advisory DSA 069-1 (xloadimage)
8648| [53781] Debian Security Advisory DSA 018-1 (tinyproxy)
8649| [53726] Debian Security Advisory DSA 145-1 (tinyproxy)
8650| [53692] Debian Security Advisory DSA 694-1 (xloadimage)
8651| [53377] Debian Security Advisory DSA 396-1 (thttpd)
8652| [52301] FreeBSD Ports: proxytunnel
8653| [52256] FreeBSD Ports: up-imapproxy
8654| [52169] FreeBSD Ports: lighttpd
8655| [20225] Kerio WinRoute Firewall HTTP/HTTPS Management Detection
8656| [20089] F5 BIG-IP Cookie Persistence
8657| [19751] Discuz! <= 4.0.0 rc4 Arbitrary File Upload Flaw
8658| [17231] CERN httpd CGI name heap overflow
8659| [17230] CERN HTTPD access control bypass
8660| [17154] Proxy accepts CONNECT requests to itself
8661| [16363] BlueCoat ProxySG console management detection
8662| [16313] RaidenHTTPD directory traversal
8663| [16069] PHProxy XSS
8664| [15853] up-imapproxy Literal DoS Vulnerability
8665| [15714] ISA Server 2000 and Proxy Server 2.0 Internet Content Spoofing (888258)
8666| [15642] Format string on HTTP header value
8667| [15641] Format string on HTTP header name
8668| [15588] Detect Apache HTTPS
8669| [15563] Abyss httpd DoS
8670| [15555] Apache mod_proxy content-length buffer overflow
8671| [15553] OmniHTTPd pro long POST DoS
8672| [15397] ICECast HTTP basic authorization DoS
8673| [14783] Snitz Forums 2000 HTTP Response Splitting
8674| [14656] MailEnable HTTPMail Service GET Overflow Vulnerability
8675| [14655] MailEnable HTTPMail Service Content-Length Overflow Vulnerability
8676| [14654] MailEnable HTTPMail Service Authorization Header DoS Vulnerability
8677| [14632] IlohaMail Attachment Upload Vulnerability
8678| [14247] Opera web browser file download extension spoofing
8679| [14229] HTTP Directory Traversal (Windows)
8680| [12286] JS.Scob.Trojan or Download.Ject Trojan
8681| [12073] Sami HTTP Server v1.0.4
8682| [11801] Format string on HTTP method name
8683| [11746] AspUpload vulnerability
8684| [11720] S-HTTP detection
8685| [11213] http TRACE XSS attack
8686| [11183] HTTP negative Content-Length buffer overflow
8687| [11174] HTTP negative Content-Length DoS
8688| [11171] HTTP unfinished line denial
8689| [11162] WebSphere Edge caching proxy denial of service
8690| [11158] Novell NetWare HTTP POST Perl Code Execution Vulnerability
8691| [11149] HTTP login page
8692| [11130] BrowseGate HTTP headers overflows
8693| [11129] HTTP 1.1 header overflow
8694| [11127] HTTP 1.0 header overflow
8695| [11096] Avirt gateway insecure telnet proxy
8696| [11084] Infinite HTTP request
8697| [11078] HTTP header overflow
8698| [11077] HTTP Cookie overflow
8699| [11075] dwhttpd format string
8700| [11069] HTTP User-Agent overflow
8701| [11065] HTTP method overflow
8702| [11061] HTTP version number overflow
8703| [11040] HTTP TRACE
8704| [10963] Compaq Web Based Management Agent Proxy Vulnerability
8705| [10930] HTTP Windows 98 MS/DOS device names DOS
8706| [10867] php POST file uploads
8707| [10820] F5 Device Default Support Password
8708| [10818] Alchemy Eye HTTP Command Execution
8709| [10799] IBM-HTTP-Server View Code
8710| [10768] DoSable squid proxy server
8711| [10763] Detect the HTTP RPC endpoint mapper
8712| [10759] Private IP address leaked in HTTP headers
8713| [10758] Check for VNC HTTP
8714| [10716] OmniPro HTTPd 2.08 scripts source full disclosure
8715| [10657] NT IIS 5.0 Malformed HTTP Printer Request Header Buffer Overflow Vulnerability
8716| [10570] Unify eWave ServletExec 3.0C file upload
8717| [10523] thttpd ssi file retrieval
8718| [10498] Test HTTP dangerous methods
8719| [10107] HTTP Server type and version
8720|
8721| SecurityTracker - https://www.securitytracker.com:
8722| [1028638] RSA Authentication Manager Writes Operating System, SNMP, and HTTP Plug-in Proxy Passwords in Clear Text to Log Files
8723| [1028025] F5 BIG-IP Input Validation Flaws Lets Remote Users Inject SQL Commands and Download Files
8724| [1027165] Squid XMLHttpRequest Allows Remote Users to Obtain the Target User's Proxy Username and Password
8725| [1026797] Citrix XenServer Workload Balancer Lets Remote Users Deny Service
8726| [1026054] Apache mod_proxy_ajp HTTP Processing Error Lets Remote Users Deny Service
8727| [1024096] Apache mod_proxy_http May Return Results for a Different Request
8728| [1022592] Akamai Download Manager Stack Overflow in Processing HTTP Responses Lets Remote Users Execute Arbitrary Code
8729| [1022272] IP Filter ippool Buffer Overflow in 'lib/load_http.c' May Let Local Users Gain Elevated Privileges
8730| [1020900] HTTP Anti Virus Proxy Bug in 'sockethandler.cpp' Lets Remote Users Deny Service
8731| [1018937] F5 FirePass Input Validation Hole in 'download_plugin.php3' Permits Cross-Site Scripting Attacks
8732| [1017586] Blue Coat WinProxy Heap Overflow in Processing HTTP CONNECT Requests May Let Remote Users Execute Arbitrary Code
8733| [1017324] Sun Java System Web Proxy Server Lets Remote Users Conduct HTTP Request Smuggling Attacks
8734| [1016239] WinGate Buffer Overflow in HTTP Proxy Lets Remote Users Execute Arbitrary Code
8735| [1016058] Symantec Gateway Security HTTP Proxy May Disclose Internal NAT Addresses
8736| [1016057] Symantec Enterprise Firewall HTTP Proxy May Disclose Internal NAT Addresses
8737| [1014359] DeleGate Proxy Lets Remote Users Conduct HTTP Request Smuggling Attacks
8738| [1014358] Sun Java System Web Proxy Server Lets Remote Users Conduct HTTP Request Smuggling Attacks
8739| [1013370] HTTP Anti Virus Proxy May Not Detect Viruses in Certain Archives
8740| [1012365] JanaServer 2 http-server and pna-proxy Flaws Let Remote Users Deny Service
8741| [1009528] FirstClass HTTP Server Input Validation Flaw in 'Upload.shtml' Permits Cross-Site Scripting Attacks
8742| [1009411] HP HTTP Server Certificates Can Be Uploaded By Remote Users to Gain Access to Managed Hosts
8743| [1007712] Nokia Electronic Documentation Default Configuration Permits Remote HTTP Proxy Services
8744| [1007146] Apache HTTP Server FTP Proxy Bug May Cause Denial of Service Conditions
8745| [1006833] EServ Can Be Used as HTTP and FTP Proxy Even When Not Configured as a Proxy
8746| [1005253] Check Point FireWall-1 HTTP Proxy Default Configuration May Allow HTTPS and FTP Traffic to Pass Through the Proxy
8747| [1005026] CERN HTTP Proxy Server Input Validation Hole Lets Remote Users Conduct Cross-site Scripting Attacks
8748| [1004780] Norton Personal Firewall Buffer Overflow in HTTP Proxy May Allow Remote Users to Execute Arbitrary Code on the System
8749| [1004779] Norton Internet Security Buffer Overflow in HTTP Proxy May Allow Remote Users to Execute Arbitrary Code on the System
8750| [1003875] HP Webproxy for HP-UX VVOS Operating System May Forward Certain HTTP Requests to the Internal Network Without Fully Processing the Packet Against the Rule Set
8751| [1003600] Check Point FireWall-1 HTTP Proxy Bug Lets Remote Users Bypass Some Access Controls and Connect to Arbitrary Ports on Internal/Protected Hosts
8752| [1003367] Nortel Alteon ACEdirector Load Balancer May Disclose the Real and Otherwise Hidden IP Addresses of Load Balanced Servers to Remote Users
8753| [1002077] Cisco LocalDirector Load Balancer May Allow Remote Users to Deny Service in Certain Configurations
8754| [1028833] HP LoadRunner Multiple Bugs Let Remote Users Deny Service and Execute Arbitrary Code
8755| [1028825] Cisco Unified Operations Manager Input Validation Flaw Permits HTTP Header Injection Attacks
8756| [1028788] F5 FirePass Component Lets Remote Users Install and Execute Arbitrary Code
8757| [1028787] F5 BIG-IP Component Lets Remote Users Install and Execute Arbitrary Code
8758| [1028675] Cisco Video Surveillance Operations Manager Software Flaw Lets Remote Users Load Arbitrary HTML on the Target User's System
8759| [1028653] VMware vCenter Chargeback Manager File Upload Flaw Lets Remote Users Execute Arbitrary Code
8760| [1028602] IBM WebSphere Portal Input Validation Flaw Permits HTTP Response Splitting Attacks
8761| [1028546] Windows HTTP Stack Header Processing Flaw Lets Remote Users Deny Service
8762| [1028516] RSA Archer eGRC Bugs Let Remote Authenticated Users Upload Files and Let Remote Users Conduct Cross-Site Scripting Attacks
8763| [1028479] McAfee ePolicy Orchestrator Input Validation Flaw Lets Remote Users Inject SQL Commands, Execute Arbitrary Code, and Upload Files
8764| [1028475] VMware vCenter Server Bugs Let Remote Users Bypass Authentication and Remote Authenticated Users Upload Arbitrary Files and Execute Files on the Target System
8765| [1028416] Cisco Firewall Services Module IKE and Auth-Proxy Bugs Let Remote Users Deny Service
8766| [1028360] Asterisk HTTP POST Content-Length Processing Flaw Lets Remote Users Deny Service
8767| [1028337] Novell ZENworks Configuration Management File Upload Authentication Flaw Lets Remote Users Execute Arbitrary Code
8768| [1028329] Symantec NetBackup Appliance Management Console Lets Remote Authenticated Users Download Files
8769| [1028281] Microsoft Office for Mac HTML Loading Bug Lets Remote Users Obtain Potentially Sensitive Information
8770| [1028252] Apache Commons FileUpload Unsafe Temporary File Lets Local Users Gain Elevated Privileges
8771| [1028247] mnoGoSearch Lets Certain Remote Users Download Arbitrary Files
8772| [1028231] Cisco Aironet HTTP Profiler Bug Lets Remote Users Deny Service
8773| [1028203] IBM HTTP Server (IHS) Input Validation Flaws in Optional Modules Permit Cross-Site Scripting Attacks
8774| [1028191] GNU Project Debugger (GDB) Untrusted File Loading Flaw Lets Local Users Gain Elevated Privileges
8775| [1028094] Cisco IOS Software HTTP Server Socket Handling Bug Lets Remote Users Execute Arbitrary Code
8776| [1028073] RSA Archer eGRC Permits Cross-Site Scripting, Cross-Domain Access, Clickjacking, and File Upload Attacks
8777| [1028035] Barracuda Link Balancer SSH Backdoor Lets Remote Users Access the System
8778| [1027860] Windows IP-HTTPS Certificate Processing Flaw Lets Remote Users Bypass Security Restrictions
8779| [1027832] F5 FirePass SSL VPN Include File Bug Lets Remote Users Deny Service and Potentially Execute Arbitrary Code
8780| [1027802] lighttpd Connection Header Processing Flaw Lets Remote Users Deny Service
8781| [1027786] Novell File Reporter 'NFRAgent.exe' Bugs Let Remote Users Upload and Download Arbitrary Files and Execute Arbitrary Code
8782| [1027690] IBM Tivoli Monitoring Web Server HTTP TRACE/TRACK Support Lets Remote Users Obtain Potentially Sensitive Information
8783| [1027688] F5 FirePass SSL VPN Input Validation Flaw Permits Cross-Site URL Redirection Attacks
8784| [1027686] Linux Kernel Bug in load_script() Lets Local Users Obtain Portions of Kernel Memory
8785| [1027611] VMware Movie Decoder DLL Loading Error Lets Remote Users Execute Arbitrary Code
8786| [1027581] Foxit Reader DLL Loading Error Lets Remote Users Execute Arbitrary Code
8787| [1027515] F5 BIG-IP Input Validation Flaw in Configuration Utility Permits Cross-Site Scripting Attacks
8788| [1027463] PHP HTTP Response Splitting Header Injection Protection Can Be Bypassed Using Carriage Return Characters
8789| [1027442] EMC ApplicationXtender Lets Remote Users Upload Files to Execute Arbitrary Code
8790| [1027412] Tinyproxy Hashmap Collision Lets Remote Users Deny Service
8791| [1027343] Novell Remote Manager Off-by-one Error in 'httpstkd' Lets Remote Users Deny Service
8792| [1027336] Citrix Access Gateway Bugs Let Remote Users Traverse the Directory, Proxy Connections via the Target System, and Inject Text Content
8793| [1027318] Ruby on Rails Bug in 'with_http_digest' Methods Lets Remote Users Deny Service
8794| [1027290] Symantec Backup Exec System Recovery and Symantec System Recovery DLL Loading Error Lets Remote Users Execute Arbitrary Code
8795| [1027229] Microsoft Office DLL Loading Error Lets Remote Users Execute Arbitrary Code
8796| [1027228] Microsoft Visual Basic for Applications DLL Loading Error Lets Remote Users Execute Arbitrary Code
8797| [1027158] F5 FirePass Controller Input Validation Flaw Lets Remote Users Inject SQL Commands
8798| [1027150] Microsoft Lync DLL Loading Error Lets Remote Users Execute Arbitrary Code
8799| [1027146] Adobe ColdFusion Bug in Component Browser Lets Remote Users Conduct HTTP Response Splitting Attacks
8800| [1027144] Check Point Endpoint Security DLL Loading Error Lets Remote Users Execute Arbitrary Code
8801| [1027137] F5 BIG-IP SSH Configuration Error Lets Remote Users Gain Root Access
8802| [1027099] VMware vMA Library Loading Error Lets Local Users Gain Elevated Privileges
8803| [1027090] Xen PV Bootloader Bug Lets Local Guest Users Crash the System
8804| [1027078] Symantec Web Gateway Bugs Let Remote Users View/Upload/Delete Files, Execute Arbitrary Commands, and Conduct Cross-Site Scripting Attacks
8805| [1027008] Cisco ASA Bugs Let Remote Users Conduct HTTP Response Splitting and Denial of Service Attacks and Obtain Potentially Sensitive Information
8806| [1026924] nginx Buffer Overflow in ngx_http_mp4_module Lets Remote Users Execute Arbitrary Code
8807| [1026861] Cisco IOS Zone-Based Firewall IP/HTTP/H.323/SIP Bugs Let Remote Users Deny Service
8808| [1026835] Novell ZENworks Configuration Management Bugs Let Remote Users Download Arbitrary Files and Execute Arbitrary Code
8809| [1026834] F5 FirePass Input Validation Flaw in 'my.activation.php3' Lets Remote Users Inject SQL Commands
8810| [1026827] nginx HTTP Response Processing Lets Remote Users Obtain Portions of Memory Contents
8811| [1026813] Asterisk Stack Overflow in HTTP Manager Lets Remote Users Execute Arbitrary Code
8812| [1026791] Microsoft Expression Design DLL Loading Error Lets Remote Users Execute Arbitrary Code
8813| [1026778] VMware vCenter Chargeback Manager Lets Remote Users Deny Service and Download Files
8814| [1026736] Cisco Small Business SRP500 Series Bugs Let Remote Users Upload Files and Remote Authenticated Users Inject Commands
8815| [1026719] CVS Heap Overflow in proxy_connect() Lets Remote Users Execute Arbitrary Code
8816| [1026693] Lenovo ThinkManagement Console SOAP Interface Lets Remote Users Upload and Delete Files and Execute Arbitrary Code
8817| [1026683] Windows XP Indeo Codec DLL Loading Error Lets Remote Users Execute Arbitrary Code
8818| [1026682] Windows Color Control Panel DLL Loading Error Lets Remote Users Execute Arbitrary Code
8819| [1026640] IBM AIX TCP Large Send Offload Bug Lets Remote Users Deny Service
8820| [1026546] F5 FirePass PHP Bug Lets Remote Users Deny Service
8821| [1026515] HP LoadRunner Stack Overflow in 'magentservice.exe' Lets Remote Users Execute Arbitrary Code
8822| [1026426] RSA SecurID Software Token for Windows DLL Loading Error Lets Remote Users Execute Arbitrary Code
8823| [1026413] Microsoft Internet Explorer DLL Loading Error Lets Remote Users Execute Arbitrary Code and HTML Processing Bugs Let Remote Users Obtain Information
8824| [1026411] Microsoft PowerPoint DLL Loading and OfficeArt Object Processing Flaws Let Remote Users Execute Arbitrary Code
8825| [1026359] lighttpd Authentication Decoding Bug Lets Remote Users Deny Service
8826| [1026353] Apache mod_proxy/mod_rewrite Bug Lets Remote Users Access Internal Servers
8827| [1026339] JBoss Enterprise SOA httpha-invoker Bug Lets Remote Users Bypass Access Controls
8828| [1026293] Windows Mail DLL Loading Error Lets Remote Users Execute Arbitrary Code
8829| [1026292] Windows Meeting Space DLL Loading Error Lets Remote Users Execute Arbitrary Code
8830| [1026283] Barracuda Link Balancer Input Validation Hole Permits Cross-Site Scripting Attacks
8831| [1026169] Microsoft Forefront Unified Access Gateway Input Validation Flaws Permits Cross-Site Scripting, HTTP Response Splitting, and Denial of Service Attacks
8832| [1026166] Windows Media Center DLL Loading Error Lets Remote Users Execute Arbitrary Code
8833| [1026164] Microsoft Active Accessibility Component DLL Loading Error Lets Remote Users Execute Arbitrary Code
8834| [1026154] IBM Rational AppScan Import/Load Function Flaws Let Remote Users Execute Arbitrary Code
8835| [1026144] Apache mod_proxy Pattern Matching Bug Lets Remote Users Access Internal Servers
8836| [1026095] Apache Tomcat HTTP DIGEST Authentication Weaknesses Let Remote Users Conduct Bypass Attacks
8837| [1026061] Blue Coat Director HTTP Trace Processing Flaw Permits Cross-Site Scripting Attacks
8838| [1026041] Microsoft Windows Components DLL Loading Error Lets Remote Users Execute Arbitrary Code
8839| [1026039] Microsoft Office DLL Loading Error and Unspecified Bug Lets Remote Users Execute Arbitrary Code
8840| [1026005] Windows Script Host DLL Loading Error Lets Remote Users Execute Arbitrary Code
8841| [1025960] Apache httpd Byterange Filter Processing Error Lets Remote Users Deny Service
8842| [1025955] Ruby on Rails Bugs Permit HTTP Response Splitting, Cross-Site Scripting, and SQL Injection
8843| [1025895] Microsoft Data Access Components Insecure Library Loading Lets Remote Users Execute Arbitrary Code
8844| [1025883] Cisco Warranty CD May Load Malware From a Remote Site
8845| [1025881] Google Android Browser URL Loading Flaw Permits Cross-Application Scripting Attacks
8846| [1025819] Foxit Reader DLL Loading Error Lets Remote Users Execute Arbitrary Code
8847| [1025774] Trend Micro Control Manager 'proxy_request.php' Input Validation Flaw Lets Remote Users Traverse the Directory
8848| [1025763] Microsoft Visio May Load DLLs Unsafely and Remotely Execute Arbitrary Code
8849| [1025749] HP-UX Dynamic Loader Lets Local Users Gain Elevated Privileges
8850| [1025714] Novell ZENworks Handheld Management Directory Traversal Flaw Lets Remote Users Upload Files
8851| [1025679] Blue Coat ProxySG Discloses Potentially Sensitive Information in Core Files
8852| [1025659] PHP File Upload Bug May Let Remote Users Overwrite Files on the Target System
8853| [1025609] HP Mercury LoadRunner Buffer Overflow in Processing Virtual User Script Files Lets Remote Users Execute Arbitrary Code
8854| [1025489] Python CGIHTTPServer Lets Remote Users View CGI Source Code
8855| [1025487] WordPress Lets Remote Authenticated Authors Upload Arbitrary Files and Execute Arbitrary Code
8856| [1025455] Blue Coat ProxySG's Blue Coat Authentication and Authorization Agent Stack Overflow Lets Remote Users Execute Arbitrary Code
8857| [1025449] Cisco Unified Communications Manager Multiple Bugs Let Remote Users Deny Service, Inject SQL Commands, and Upload Arbitrary Files
8858| [1025348] Windows Operating System Loader Driver Signing Restrictions Can Be Bypassed
8859| [1025346] Microsoft Foundation Classes May Load DLLs Unsafely and Remotely Execute Arbitrary Code
8860| [1025343] Microsoft Office DLL Loading and Graphic Object Processing Flaws Let Remote Users Execute Arbitrary Code
8861| [1025307] Linux Kernel Generic Receive Offload (GRO) Null Pointer Dereference Lets Remote Users Deny Service
8862| [1025303] Apache Tomcat HTTP BIO Connector Error Discloses Information From Different Requests to Remote Users
8863| [1025252] Immunity Debugger HTTP Update Buffer Overflow Lets Remote Users Execute Arbitrary Code via Man-in-the-Middle Attacks
8864| [1025172] Windows Remote Desktop Client DLL Loading Error Lets Remote Users Execute Arbitrary Code
8865| [1025171] Microsoft Groove DLL Loading Error Lets Remote Users Execute Arbitrary Code
8866| [1025170] Microsoft DirectShow DLL Loading Error Lets Remote Users Execute Arbitrary Code
8867| [1025027] Apache Tomcat maxHttpHeaderSize Parsing Error Lets Remote Users Deny Service
8868| [1025004] OpenOffice.org Library Loading Error Lets Remote Users Execute Arbitrary Code
8869| [1024956] HP LoadRunner Unspecified Flaw Lets Remote Users Execute Arbitrary Code
8870| [1024948] Windows Backup Manager May Load DLLs Unsafely and Remotely Execute Arbitrary Code
8871| [1024913] Kerio WinRoute Firewall HTTP Cache Can Be Poisoned By Remote Users
8872| [1024895] F-Secure Internet Security DLL Loading Error Lets Remote Users Execute Arbitrary Code
8873| [1024881] Windows Routing and Remote Access NDProxy Buffer Overflow Lets Local Users Gain Elevated Privileges
8874| [1024879] Microsoft Windows Internet Connection Signup Wizard May Load DLLs Unsafely and Remotely Execute Arbitrary Code
8875| [1024878] Windows Address Book May Load DLLs Unsafely and Remotely Execute Arbitrary Code
8876| [1024877] Microsoft Windows May Load DLLs Unsafely and Remotely Execute Arbitrary Code
8877| [1024876] Windows Media Encoder May Load DLLs Unsafely and Remotely Execute Arbitrary Code
8878| [1024875] Windows Movie Maker May Load DLLs Unsafely and Remotely Execute Arbitrary Code
8879| [1024865] Adobe Illustrator DLL Loading Error Lets Remote Users Execute Arbitrary Code
8880| [1024683] Bugzilla Permits Cross-Site Scripting and HTTP Response Splitting Attacks and Discloses Certain Information to Remote Users
8881| [1024675] HP Insight Control Performance Management for Windows Lets Remote Users Download Arbitrary Files
8882| [1024670] IBM Tivoli Directory Server Proxy Server Can Be Crashed By Remote Users
8883| [1024667] HP Insight Managed System Setup Wizard for Windows Lets Remote Users Download Arbitrary Files
8884| [1024657] HP LoadRunner Web Tours Lets Remote Users Deny Service
8885| [1024640] HP Virtual Server Environment Lets Remote Users Download Arbitrary Files
8886| [1024632] Blue Coat ProxyAV Permits Cross-Site Request Forgery Attacks
8887| [1024612] Adobe InDesign DLL Loading Error Lets Remote Users Execute Arbitrary Code
8888| [1024600] Blue Coat ProxySG Lets Remote Users Bypass JavaScript Filtering
8889| [1024503] Blue Coat ProxySG Input Validation Hole Permits Cross-Site Scripting Attacks
8890| [1024497] Novell iManager Lets Remote Users Upload Arbitrary Files
8891| [1024472] Cisco IOS SSL VPN HTTP Redirect Memory Leak Lets Remote Users Deny Serivce
8892| [1024453] HP System Management Homepage Input Validation Flaw Permits HTTP Response Splitting Attacks
8893| [1024452] Apple QuickTime DLL Loading and ActiveX Control Bugs Let Remote Users Execute Arbitrary Code
8894| [1024425] BlackBerry Desktop Software May Load DLLs Unsafely and Remotely Execute Arbitrary Code
8895| [1024407] Mozilla Thunderbird DLL Loading Error Lets Remote Users Execute Arbitrary Code
8896| [1024406] Mozilla Firefox DLL Loading Error Lets Remote Users Execute Arbitrary Code
8897| [1024355] Windows Applications May Load DLLs Unsafely and Remotely Execute Arbitrary Code
8898| [1024341] Blue Coat ProxySG Privilege Enforcement Mechanism Can Be Bypassed By Remote Authenticated Administrators
8899| [1024301] Microsoft XML Core Services (MSXML) HTTP Response Processing Flaw Lets Remote Users Execute Arbitrary Code
8900| [1024211] F5 FirePass Input Validation Flaw in Pre-Logon Sequence Permits Cross-Site Scripting Attacks
8901| [1024204] Oracle WebLogic Plugin Encoding Error Lets Remote Users Inject HTTP Headers
8902| [1024168] Cisco Application Control Engine Newline Processing Flaw May Let Remote Users Modify HTTP Headers
8903| [1024167] Cisco Content Services Switch HTTP and ClientCert Headers Can Be Spoofed or Modified By Remote USers
8904| [1024155] Cisco ASA URL Processing Flaw Lets Remote Users Conduct HTTP Response Splitting Attacks
8905| [1024153] Trend Micro InterScan Web Security Virtual Appliance Flaws Let Local Users Gain Elevated Privileges and Remote Users Upload/Download Arbitrary Files
8906| [1024132] Novell Access Manager Directory Traversal Flaw Lets Remote Users Upload Arbitrary Files
8907| [1024103] Mac OS X Multiple Flaws Let Remote Users Execute Arbitrary Code, Deny Service, and Upload/Access Files and Local Users Gain Elevated Privileges
8908| [1023960] Lexmark Printers HTTP Authorization Field Processing Bug Lets Remote Users Deny Service
8909| [1023946] HP Mercury LoadRunner Agent Lets Remote Users Execute Arbitrary Commands
8910| [1023942] Apache mod_proxy_ajp Error Condition Lets Remote Users Deny Service
8911| [1023933] Internet Download Manager Stack Overflow in Sending Certain Command Sequences Lets Remote Users Execute Arbitrary Code
8912| [1023914] Novell ZENworks Configuration Management UploadServlet File Upload Bug Lets Remote Users Execute Arbitrary Code
8913| [1023908] Adobe Download Manager Buffer Overflow in 'gp.ocx' ActiveX Control Lets Remote Users Execute Arbitrary Code
8914| [1023833] VMware ESX Server VMware Tools Executable/Library Loading/Unloading Flaws Let Users Execute Arbitrary Code
8915| [1023832] VMware Tools Executable/Library Loading/Unloading Flaws Let Users Execute Arbitrary Code
8916| [1023818] uTorrent HTTP Basic Authentication Processing Flaw in WebUI Lets Remote Users Deny Service
8917| [1023783] Mozilla Firefox Chrome Privilege Escalation Exposed via Firebug XMLHttpRequestSpy Lets Remote Users Execute Arbitrary Code
8918| [1023755] Interchange Lets Remote Users Conduct HTTP Response Splitting Attacks
8919| [1023690] Opera Integer Overflow in Processing HTTP 'Content-Length' Reponses Lets Remote Users Execute Arbitrary Code
8920| [1023655] Blue Coat ProxySG Protocol Flaw in SSL Renegotiation Lets Remote Users Conduct Man-in-the-Middle Attacks
8921| [1023651] Adobe Download Manager Flaw Lets Remote Users Download and Install Arbitrary Software
8922| [1023647] EMC HomeBase Server Directory Traversal Flaw Lets Remote Users Upload Arbitrary Files
8923| [1023625] Symantec Client Security Buffer Overflow in Client Proxy ActiveX Control Lets Remote Users Execute Arbitrary Code
8924| [1023624] Symantec AntiVirus Buffer Overflow in Client Proxy ActiveX Control Lets Remote Users Execute Arbitrary Code
8925| [1023606] Cisco Security Agent Management Center Input Validation Flaws Let Remote Authenticated Users Download Files and Inject SQL Commands
8926| [1023549] F5 BIG-IP TCP Processing Flaw Lets Remote Users Deny Service
8927| [1023548] F5 FirePass TCP Processing Flaw Lets Remote Users Deny Service
8928| [1023533] Apache mod_proxy Integer Overflow May Let Remote Users Execute Arbitrary Code
8929| [1023488] Sun Java System Web Server Heap Overflow in Processing HTTP Digest Authentication Requests Lets Remote Users Execute Arbitary Code
8930| [1023427] Sun Java System Web Proxy Server Protocol Flaw in SSL Renegotiation Lets Remote Users Conduct Man-in-the-Middle Attacks
8931| [1023396] F5 Data Manager Directory Traversal Flaw Discloses Files to Remote Authenticated Administrators
8932| [1023249] Asterisk RTP Comfort Noise Payload Processing Error Lets Remote Users Deny Service
8933| [1023188] Novell eDirectory Buffer Overflow in HTTPSTK Login Page Lets Remote Authenticated Users Execute Arbitrary Code
8934| [1023167] Apple Safari May Load HTML 5 Media Elements Automatically
8935| [1023118] KDE Bugs Let Remote Users Cause XMLHttpRequests to Be Issued or JavaScript to Be Executed
8936| [1023099] Mozilla Firefox Proxy Auto-configuration regexp Parsing Flaw Lets Users Execute Arbitrary Code
8937| [1023098] Mozilla Firefox Download Files Containing RTL Override Characters May Be Used to Spoof the Download Filename
8938| [1023096] Mozilla Firefox Lets Local Users Modify Downloaded Files in Certain Cases
8939| [1022935] Cisco IOS Authentication Proxy Race Condition Lets Remote Users Bypass Access Controls
8940| [1022928] Symantec Altiris Deployment Solution ActiveX Control DownloadAndInstall() Method Lets Remote Users Execute Arbitrary Code
8941| [1022849] Novell eDirectory HTTP Request Processing Flaw Lets Remote Users Deny Service
8942| [1022833] Adobe RoboHelp Unspecified Flaw Lets Remote Users Upload and Execute Arbitrary Code
8943| [1022830] Akamai Download Manager Unspecified Flaw Has Unspecified Impact
8944| [1022796] VMware Studio Directory Traversal Flaw Lets Remote Users Upload Files to Arbitrary Directories
8945| [1022784] Solaris sockfs HTTP Request Processing Bug Lets Remote Users Deny Service
8946| [1022659] Java Runtime Environment Proxy Mechanism Flaws Let Remote Applets Obtain Elevated Privileges
8947| [1022598] Sun Java System Access Manager Policy Agent Bug Lets Remote Users Deny Service to the Web Proxy Server
8948| [1022517] Ruby on Rails Bug in 'http_authentication.rb' Lets Remote Users Bypass Authentication
8949| [1022513] FCKeditor input Validation Flaw Lets Remote Users Upload Arbitrary Files
8950| [1022509] Apache mod_proxy stream_reqbody_cl() Infinite Loop Lets Remote Users Deny Service
8951| [1022429] Google Chrome Buffer Overflow in Processing HTTP Responses Lets Remote Users Execute Arbitrary Code
8952| [1022399] SugarCRM E-mail Attachment Uploading Bug Lets Remote Authenticated Users Execute Arbitrary Code
8953| [1022396] Mozilla Thunderbird Proxy Response Processing Bug Lets Remote Users Execute Arbitrary Code in the Context of an SSL-Protected Domain
8954| [1022387] F5 FirePass Input Validation Flaw in Unspecified Password Fields Permits Cross-Site Scripting Attacks
8955| [1022383] Mozilla Firefox Proxy Response Processing Bug Lets Remote Users Execute Arbitrary Code in the Context of an SSL-Protected Domain
8956| [1022342] Apple Safari Lets Local Users Access Files During Downloading
8957| [1022334] Sun Java System Web Server Input Validation Hole in Reverse Proxy Plug-in Permits Cross-Site Scripting Attacks
8958| [1022264] Apache mod_proxy_ajp Bug May Disclose Another User's Response Data
8959| [1022211] Mac OS X CFNetwork Heap Overflow in Processing HTTP Headers Lets Remote Users Execute Arbitrary Code
8960| [1022108] Sun Java System Delegated Administrator Bug Lets Remote Users Conduct HTTP Response Splitting Attacks
8961| [1022094] Mozilla Firefox XMLHttpRequest and XPCNativeWrapper.toString Bugs Let Remote Users Bypass Same-Origin Restrictions
8962| [1022041] Windows HTTP Services Bugs Let Remote Users Execute Arbitrary Code
8963| [1022015] Cisco ASA HTTP, TCP, H.323, and SQL*Net Processing Bugs Let Remote Users Deny Service
8964| [1021918] Java Runtime Environment (JRE) HTTP Server Bug Lets Remote Users Deny Service
8965| [1021838] WordPress MU Input Validation Hole in HTTP Host Header Permits Cross-Site Scripting Attacks
8966| [1021783] cURL/libcurl HTTP Redirect Processing May Let Remote Users Access Files
8967| [1021781] Blue Coat ProxySG Host Header Processing May Let Remote Users Bypass Security Restrictions
8968| [1021730] Sun Java System Directory Server Proxy Server Bug Lets Remote Users Deny Service
8969| [1021723] Mac OS X Folder Manager Directory Permission Error May Let Local Users Obtain the Contents of the Downloads Folder
8970| [1021716] InterScan Web Security Suite Discloses Proxy-Authentication Password
8971| [1021706] libvirt Buffer Overflow in 'libvirt_proxy' Lets Local Users Gain Elevated Privileges
8972| [1021705] BlackBerry Application Web Loader Buffer Overflow in ActiveX Control Lets Remote Users Execute Arbitrary Code
8973| [1021695] Novell QuickFinder Server Input Validation Flaws in HTTP POST Parameters Permit Cross-Site Scripting Attacks
8974| [1021684] Squid HTTP Request Processing Error Lets Remote Users Deny Service
8975| [1021668] Mozilla Firefox HTTPOnly Enforcement Flaw Lets Users Access Cookies
8976| [1021620] Cisco Unified Communications Manager Input Validation Flaw in Certificate Authority Proxy Function Lets Remote Users Deny Service
8977| [1021598] Cisco IOS Input Validation Flaw in HTTP Server Permits Cross-Site Scripting Attacks
8978| [1021555] SquirrelMail May Send Session Authentication Cookies via HTTP
8979| [1021427] Mozilla Firefox Permits Cross-Domain Responses to XMLHttpRequests to Be Accessed
8980| [1021424] Mozilla Firefox loadBindingDocument Lets Remote Users Obtain Information
8981| [1021286] WordPress Input Validation Hole in Processing 'HTTP_HOST' HTTP Header Permits Cross-Site Scripting Attacks
8982| [1021188] Mozilla Firefox nsXMLHttpRequest::NotifyEventListeners() Flaw Lets Remote Users Bypass Same-Origin Policies
8983| [1021185] Mozilla Firefox http-index-format MIME Parsing Buffer Overflow Lets Remote Users Execute Arbitrary Code
8984| [1021181] Mozilla Firefox Dynamic Module Unloading Bug Lets Remote Users Execute Arbitrary Code
8985| [1021146] Adobe Flash Player HTTP Response Header Processing Flaw Permits Cross-Site Scripting Attacks
8986| [1021038] Sun Java System Web Proxy Server Bug in FTP Subsystem Lets Remote Users Execute Arbitrary Code
8987| [1020989] Novell eDirectory Management Toolbox HTTP Header Processing Bugs Let Remote Users Deny Service
8988| [1020979] Blue Coat ProxySG Input Validation Hole in ICAP Patience Page Permits Cross-Site Scripting Attacks
8989| [1020929] Cisco IOS Firewall Bug in HTTP Application Inspection Control Lets Remote Users Deny Service
8990| [1020905] JBoss Enterprise Application Platform DownloadServerClasses Configuration Lets Remote Users Download Class Files
8991| [1020902] CCProxy Buffer Overflow in Processing CONNECTION Requests Lets Remote Users Execute Arbitrary Code
8992| [1020786] Novell eDirectory Heap Overflows in HTTP Protocol Stack Let Remote Users Execute Arbitrary Code
8993| [1020785] Novell eDirectory Input Validation Hole in HTTPSTK Permits Cross-Site Scripting Attacks
8994| [1020771] Red Hat Directory Server Buffer Overflow in Processing Accept-Language HTTP Header Values Lets Remote Users Execute Arbitrary Code
8995| [1020747] Belkin F5D7632-4 Wireless Router Lets Remote Users Bypass Authentication to Access Administrative Functions
8996| [1020696] Sun Java Web Proxy Server FTP Subsystem Bug Lets Remote Users Deny Service
8997| [1020654] Ruby WEBrick HTTP Server split_header_value() Function Regex Bug Lets Remote Users Deny Service
8998| [1020635] Apache Input Validation Hole in mod_proxy_ftp Permits Cross-Site Scripting Attacks
8999| [1020622] Tomcat Input Validation Hole in HttpServletResponse.sendError() Permits Cross-Site Scripting Attacks
9000| [1020607] Mac OS X Quick Look Buffer Overflow in Downloading Microsoft Office Files Lets Remote Users Execute Arbitrary Code
9001| [1020588] K9 Web Protection Buffer Overflows in Processing HTTP Responses From the Centralized Server Lets Remote Users Execute Arbitrary Code
9002| [1020587] K9 Web Protection Buffer Overflows in Processing HTTP Headers Lets Remote Users Execute Arbitrary Code
9003| [1020548] Blue Coat ProxySG DNS Query Port Entropy Weakness Lets Remote Users Spoof the System
9004| [1020515] Citrix XenServer Input Validation Flaw in XenAPI HTTP Interface Permits Cross-Site Scripting Attacks
9005| [1020433] Microsoft Access Snapshot Viewer ActiveX Control Lets Remote Users Download Files to Arbitrary Locations
9006| [1020393] Mac OS X Launch Services File Download Symlink Validation Bug Lets Remote Users Execute Arbitrary Code
9007| [1020328] PHP File and Directory Function safe_mode Restrictions Can By Bypass With 'http://' Prefix
9008| [1020327] PHP posix_access() safe_mode Restrictions Can By Bypass With 'http://' Prefix
9009| [1020267] Apache mod_proxy Interim Response Process Bug Lets Remote Users Deny Service
9010| [1020226] Microsoft Internet Explorer HTTP Request Header Bug May Let Remote Users Obtain Information in a Different Domain
9011| [1020217] QuickTime 'file://' URL Handler Bug Lets Remote Users Load Arbitrary Applications and Files
9012| [1020205] F5 FirePass Input Validation Hole in 'css_exceptions' and 'sql_matchscope' Parameters Permits Cross-Site Scripting Attacks
9013| [1020194] Akamai Download Manager ActiveX Control Lets Remote Users Execute Arbitrary Code
9014| [1020150] Apple Safari for Windows XP and Vista Lets Remote Users Download Files
9015| [1020098] IBM Lotus Domino Web Server Stack Overflow in Processing HTTP 'Accept-Language' Header Lets Remote Users Execute Arbitrary Code
9016| [1019955] Akamai Download Manager Lets Remote Users Execute Arbitrary Code
9017| [1019929] KDE Buffer Overflow in KHTML PNG Loader May Let Remote Users Execute Arbitrary Code
9018| [1019925] Sun Java System Directory Proxy Server Bug Lets Remote Authenticated Users Gain Administrative Privileges
9019| [1019868] Safari Bug in Processing Download Filenames Lets Remote Users Execute Arbitrary Code
9020| [1019836] Novell eDirectory HTTP Header Processing Lets Remote Users Deny Service
9021| [1019783] Novell eDirectory HTTP Request Procesing Bug Lets Remote Users Deny Service
9022| [1019735] InstallShield ActiveX Control Lets Remote Users Load and Execute Arbitrary Code
9023| [1019703] Mozilla Firefox URL Bug Lets Remote Users Spoof HTTP Referer Values in Certain Cases
9024| [1019679] Asterisk Predictable Session IDs May Let Remote Users Hijack HTTP Manager Sessions
9025| [1019655] Safari CFNetwork Bug Lets Remote Proxy Servers Spoof Secure Web Sites
9026| [1019628] Asterisk Buffer Overflow in Processing RTP Codec Payload Lets Remote Users Execute Arbitrary Code
9027| [1019536] Squid Analysis Report Generator Buffer Overflow in Processing HTTP User-Agent and Access Logs Lets Remote Users Execute Arbitrary Code
9028| [1019522] Trend Micro OfficeScan HTTP Request Parameter Processing Bugs Let Remote Users Deny Service
9029| [1019450] WebLogic Proxy Plugin Lets Remote Users Deny Service
9030| [1019443] WebLogic Servlets May Grant Access to Remote Users Based on Modified HTTP Request Header Values
9031| [1019411] Cisco Unified IP Phone Heap Overflow in Parsing SIP Proxy Responses Lets Remote Users Execute Arbitrary Code
9032| [1019408] Cisco Unified IP Phone Can Be Crashed By Remote Users Sending an HTTP Request Packet
9033| [1019370] Webmin Input Validation Hole in Processing HTTP Referer Values Permits Cross-Site Scripting Attacks
9034| [1019329] Mozilla Firefox chrome: URI Directory Traversal Bug Lets Remote Users Load Local Files
9035| [1019305] EMC Documentum 'dmclTrace.jsp' Bug Lets Remote Users Upload Arbitrary Files and Execute Arbitrary Code
9036| [1019303] Symantec BackupExec System Recovery Manager Lets Remote Users Upload Arbitrary Files and Execute Arbitrary Code
9037| [1019297] Aurigma Image Uploader Buffer Overflows in ExtractExif() and ExtractIptc() Functions Let Remote Users Execute Arbitrary Code
9038| [1019274] Proficy Real-Time Information Portal Lets Remote Authenticated Users Upload Arbitrary Files and Execute Arbitrary Code on the Target System
9039| [1019185] Apache Input Validation Hole in mod_proxy_ftp Permits Cross-Site Scripting Attacks
9040| [1019178] QuickTime Buffer Overflow in Processing HTTP 404 Response Messages Lets Remote Users Execute Arbitrary Code
9041| [1019147] XUpload Control Buffer Overflow in AddFolder() Lets Remote Users Execute Arbitrary Code
9042| [1019116] Adobe Flash Player Bugs Let Remote Users Execute Arbitrary Code, Scan Ports, and Conduct HTTP Request Splitting and Cross-Site Scripting Attacks
9043| [1019033] Microsoft Web Proxy Auto-Discovery Name Server Resolution Bug Lets Remote Users Conduct Man-in-the-Middle Attacks
9044| [1019031] F5 FirePass Input Validation Holes in 'my.logon.php3' and 'my.activation.php3' Permit Cross-Site Scripting Attacks
9045| [1019030] Apache Input Validation Hole in Default HTTP 413 Error Page Permits Cross-Site Scripting Attacks
9046| [1018988] Wireshark Wireshark MP3, DNP, SSL, ANSI MAP, Firebird/Interbase, NCP, HTTP, MEGACO, DCP ETSI, OS/400, PPP, Bluetooth SDP, and RPC Portmap Bugs Let Remote Users Deny Service
9047| [1018888] Blue Coat ProxySG Management Console Input Validation Hole in Processing CRLs Permits Cross-Site Scripting Attacks
9048| [1018883] Perdition Format String Bug in IMAP Proxy Lets Remote Users Execute Arbitrary Code
9049| [1018825] Cisco Firewall Service Module HTTPS and MGCP Processing Bugs Let Remote Users Deny Service
9050| [1018727] Microsoft Internet Security and Acceleration Server SOCKS4 Proxy Discloses IP Address Information to Remote Users
9051| [1018715] Yahoo Messenger GetFile() Method Lets Remote Users Download Arbitrary Files to the Target User's System
9052| [1018701] PhotoChannel Networks Buffer Overflow in Photo Upload Plugin ActiveX Control Lets Remote Users Execute Arbitrary Code
9053| [1018697] WinSCP URL Protocol Handlers Let Remote Users Upload/Download Arbitrary Files
9054| [1018659] Novell iChain HTTP Content Scanning Can Be Bypassed Using Full-Width Unicode Content
9055| [1018639] Backup Manager Discloses the Upload Site's FTP Password to Local Users
9056| [1018633] Apache mod_proxy Bug Lets Remote Users Deny Service
9057| [1018575] Safari for Windows Lets Remote Users Upload Arbitrary File
9058| [1018553] Streamripper Buffer Overflows in httplib_parse_sc_header() Let Remote Users Execute Arbitrary Code
9059| [1018504] Sun Java System Web Server Redirect URL Encoding Bug Lets Remote Users Conduct HTTP Response Splitting Attacks
9060| [1018491] Mac OS X CFNetwork Bugs Let Remote Users Execute Arbitrary FTP Commands and Conduct HTTP Response Splitting Attacks
9061| [1018466] IBM AIX pioout Command Lets Local Users Load and Execute Arbitrary Code
9062| [1018462] Solaris lbxproxy Lets Local Users View Portions of Certain Files
9063| [1018428] Java Runtime Environment Applet Class Loader Bug Lets Remote Users Connect to Localhost Sockets
9064| [1018356] .NET Buffer Overflows in PE Loader and JIT Compiler Let Remote Users Execute Arbitrary Code
9065| [1018344] EZFactory Input Validation Flaw in 'Download CGI' Lets Remote Users Traverse the Directory
9066| [1018332] imlib _LoadBMP() Function Endless Loop Lets Remote Users Deny Service
9067| [1018315] Wireshark DHCP/BOOTP, MMS, SSL, DCP ETSI, iSeries, and HTTP Chunked Response Bugs Let Remote Users Deny Service
9068| [1018304] Apache HTTPD scoreboard Protection Flaw Lets Local Users Terminate Arbitrary Processes
9069| [1018303] Apache HTTPD mod_cache May Let Remote Users Deny Service
9070| [1018283] RaidenHTTPD Input Validation Hole Permits Cross-Site Scripting Attacks
9071| [1018240] libexif Integer Overflow in exif_data_load_data_entry() May Let Remote Users Crash the Application or Execute Arbitrary Code
9072| [1018190] F5 FirePass Input Validation Flaw in 'my.activation.php3' Permits Remote Command Execution
9073| [1018130] Sun Java System Web Proxy Server Buffer Overflows in 'sockd' Let Remote Users Execute Arbitrary Code
9074| [1018124] Mac OS X pppd Plugin Loading Feature Lets Local Users Gain Root Privileges
9075| [1018088] FreeType Integer Overflow in TT_Load_Simple_Glyph() Lets Remote Users Execute Arbitrary Code
9076| [1018023] PHP Buffer Overflow in make_http_soap_request() May Let Remote Users Execute Arbitrary Code
9077| [1017969] Microsoft Internet Explorer Digest Authentication Bug Lets Remote Users Conduct HTTP Request Splitting Attacks
9078| [1017968] Mozilla Firefox Digest Authentication Bug Lets Remote Users Conduct HTTP Request Splitting Attacks
9079| [1017937] Gracenote CDDBControl ActiveX Control Buffer Overflow in Processing Proxy Control Parameters Permits Remote Code Execution
9080| [1017932] Novell GroupWise WebAccess Buffer Overflow in Processing HTTP Basic Authentication Lets Remote Users Execute Arbitrary Code
9081| [1017925] Akamai Download Manager ActiveX Control Buffer Overflow Lets Remote Users Execute Arbitrary Code
9082| [1017855] SolidWorks sldimdownload ActiveX Control Lets Remote Users Execute Arbitrary Code
9083| [1017840] IBM Tivoli Provisioning Manager Memory Corruption Error in Processing HTTP POST Requests May Let Remote Users Execute Arbitrary Code
9084| [1017828] IBM Lotus Sametime Buffer Overflow in STJNILoader.ocx ActiveX Control Lets Remote Users Execute Arbitrary Code
9085| [1017806] IBM WebSphere CRLF Validation Bug Permits HTTP Response Splitting Attacks
9086| [1017701] Mozilla Firefox onUnload Event and document.write() Race Condition May Let Remote Users Execute Arbitrary Code
9087| [1017613] HP Mercury LoadRunner Lets Remote Users Execute Arbitrary Code
9088| [1017581] Wireshark Bugs in TCP, HTTP, IEEE 802.11, and LLT Dissectors Let Remote Users Deny Service
9089| [1017552] GTK2 Input Validation Error in GdkPixbufLoader() Lets Remote Users Deny Service
9090| [1017498] Cisco IOS DLSw Capabilities Exchange Lets Remote Users Cause the Device to Reload
9091| [1017465] Cisco Clean Access Lets Remote Users Access the Administrative Interface and Download Backup Files
9092| [1017444] logahead UNU edition WidgEd Plugin Lets Remote Users Upload Files and Execute Arbitrary Code
9093| [1017432] Http explorer Lets Remote Users Traverse the Directory on the Target System
9094| [1017340] Adobe Download Manager Stack Overflow Lets Remote Users Execute Arbitrary Code
9095| [1017329] PHP Upload Center Include File Bug in 'activate.php' Lets Remote Users Execute Arbitrary Code
9096| [1017323] Sun Java System Web Server Lets Remote Users Conduct HTTP Request Smuggling Attacks
9097| [1017322] Sun Java Application Server Lets Remote Users Conduct HTTP Request Smuggling Attacks
9098| [1017233] Links SMB URL Parsing Bug Lets Remote Users Upload/Download Files
9099| [1017232] ELinks SMB URL Parsing Bug Lets Remote Users Upload/Download Files
9100| [1017201] SpeedyWiki Lets Remote Authenticated Users Upload Arbitrary Files and Remote Users Conduct Cross-Site Scripting Attacks
9101| [1017176] GreenBeast CMS Lets Remote Users View Filenames and Potentially Upload Files
9102| [1017163] AOL ICQ DownloadAgent() Function Lets Remote Users Execute Arbitrary Code
9103| [1017129] Wireshark (Ethereal) Bugs in HTTP, LDAP, XOT, WBXML, and MIME Multipart Dissectors Let Remote Users Deny Service
9104| [1017121] AOL Buffer Overflows in AddPictureNoAlbum and downloadFileDirectory ActiveX Controls Let Remote Users Execute Arbitrary Code
9105| [1017088] SHTTPD Buffer Overflow Lets Remote Users Execute Arbitrary Code
9106| [1017078] Adobe Flash Player Plugin Lets Remote Users Injection Arbitrary HTTP Header Data
9107| [1017076] F5 FirePass 1000 Input Validation Flaw in 'my.acctab.php3' Permits Cross-Site Scripting Attacks
9108| [1017007] TorrentFlux Missing Input Validation in HTTP User-Agent Permits Cross-Site Scripting Attacks
9109| [1016983] GOOP Gallery Input Validation Bug in 'download.php' Lets Remote Users Traverse the Directory
9110| [1016971] McAfee ePolicy Orchestrator Buffer Overflow in Processing HTTP Source Headers Lets Remote Users Execute Arbitrary Code
9111| [1016970] McAfee ProtectionPilot Buffer Overflow in Processing HTTP Source Headers Lets Remote Users Execute Arbitrary Code
9112| [1016824] Simpleboard Include File Bug in 'file_upload.php' Lets Remote Users Execute Arbitrary Code
9113| [1016781] CR64Loader ActiveX Control Buffer Overflow Lets Remote Users Execute Arbitrary Code
9114| [1016731] Microsoft Internet Explorer URL Buffer Overflow in Processing HTTP 1.1 Protocol with Compression Lets Remote Users Execute Arbitrary Code
9115| [1016593] Etomite 'rfiles.php' Lets Remote Users Upload and Execute Arbitrary Code
9116| [1016569] IBM HTTP Server (IHS) Lack of Input Validation in Expect Header May Permit Cross-Site Scripting Attacks
9117| [1016527] GIMP Buffer Overflow in xcf_load_vector() Lets Remote Users Execute Arbitrary Code
9118| [1016508] Invision Power Board Lack of Validation of HTTP Client IP Value Lets Remote Users Inject SQL Commands
9119| [1016506] Microsoft Internet Security and Acceleration Server HTTP File Exentsion Filter Can Be Bypassed By Remote Users
9120| [1016499] FlatNuke Gallery Module Lets Remote Users Upload and Execute Arbitrary Code
9121| [1016458] TWiki PHP File Suffix Validation Bug Lets Remote Users Upload and Execute Arbitrary Code
9122| [1016446] WebEx Downloader Lets Remote Users Download and Execute Arbitrary Files
9123| [1016431] F5 FirePass Input Validation Holes in Multiple Fields Permit Cross-Site Scripting Attacks
9124| [1016420] Ipswitch Collaboration Suite Bug in Premium Anti-Spam Feature May Not Properly Load Updates
9125| [1016419] Ipswitch IMail Secure Server Bug in Premium Anti-Spam Feature May Not Properly Load Updates
9126| [1016335] easy-CMS Lets Remote Authenticated Users Upload and Execute Arbitrary Code
9127| [1016327] Best Top List 'banner-upload.php' Script Lets Remote Users Upload Arbitrary Files
9128| [1016317] Cisco Secure ACS for UNIX Input Validation Flaw in 'LogonProxy.cgi' Permits Cross-Site Scripting Attacks
9129| [1016311] CMS Mundo Input Validation Flaw Lets Remote Users Inject SQL Commands and Remote Authenticated Administrators Upload Arbitrary Code
9130| [1016266] ImageVue 'admin/upload.php' Authentication Flaw Lets Remote Users Upload Arbitrary Files
9131| [1016219] Quake 3 Buffer Overflow in CL_ParseDownload() Permits Remote Code Execution
9132| [1016214] Mozilla Thunderbird Bugs Permit Arbitrary Code Execution, Cross-Site Scripting, and HTTP Response Smuggling
9133| [1016202] Mozilla Firefox Bugs Permit Arbitrary Code Execution, Cross-Site Scripting, and HTTP Response Smuggling
9134| [1016174] DGNews 'Upload Photo' Lets Remote Authenticated Users Upload Arbitrary Files
9135| [1016081] Apple LaunchServices Lets Remote Users Bypass Download Validation in Certain Cases
9136| [1016030] zawhttpd Can Be Crashed By Remote Users
9137| [1015978] Ruby HTTP/XMLRPC Server Lets Remote Users Block Connections
9138| [1015974] Symantec Scan Engine Lets Remote Users Access the System and Download Files
9139| [1015885] Sire Bugs Let Remote Users Include and Execute Arbitrary Code and Upload Image Files
9140| [1015878] Aweb's Scripts Seller Lets Remote Users Bypass Authorization and Download Files Without Paying
9141| [1015870] Cisco 11500 Content Services Switch HTTP Compression Bug Lets Remote Users Deny Service
9142| [1015863] Kaffeine Buffer Overflow in http_peek() When Fetching Playlists Lets Remote Users Execute Arbitrary Code
9143| [1015858] AN HTTPD Discloses Script Source Code to Remote Users
9144| [1015857] IBM WebSphere Lets Remote Users Deny Service By Sending Large HTTP Header Values
9145| [1015848] NetBSD elf_load_file() Validation Error Lets Local Users Crash the System
9146| [1015798] F5 FirePass Input Validation Hole in 'my.support.php3' Permits Cross-Site Scripting Attacks
9147| [1015779] Dwarf HTTP Server Discloses JSP Source Code and Permits Cross-Site Scripting Attacks
9148| [1015755] DSDownload Input Validation Flaws in 'search.php' and 'downloads.php' Permit SQL Injection
9149| [1015743] ZoneAlarm Use of Relative Path to Load DLLs Lets Local Users Gain Elevated Privileges
9150| [1015713] Apple Safari JavaScript Buffer Overflow Lets Remote Users Execute Arbitrary Code and HTTP Redirect Bug Lets Remote Users Access Files
9151| [1015703] lighttpd Discloses Script Source Code to Remote Users
9152| [1015702] SAP Web Application Server Lets Remote Users Inject Data into HTTP Responses
9153| [1015644] Blue Coat ProxySG Policy Error May Let Remote Users Bypass Default CONNECT Policy Rules
9154| [1015546] Cisco VPN 3000 Concentrator Bug in HTTP Service Lets Remote Users Deny Service
9155| [1015511] TippingPoint Intrusion Prevention System HTTP Processing Lets Remote Users Deny Service
9156| [1015484] PHP Input Validation Error in Session ID Values Permits HTTP Response Splitting Attacks
9157| [1015442] Blue Coat WinProxy Telnet Proxy Can Be Crashed By Remote Users
9158| [1015441] Blue Coat WinProxy Host Header Buffer Overflow Lets Remote Users Execute Arbitrary Code
9159| [1015432] raSMP Input Validation Flaw in HTTP User-Agent Field Permits Cross-Site Scripting Attacks
9160| [1015420] Hitachi Business Logic - Container Input Validation Holes Permit SQL Injection, Cross-Site Scripting, and HTTP Response Splitting Attacks
9161| [1015403] httprint Input Validation Error in 'Server' Field Lets Remote Users Injection Scripting Code or Deny Service
9162| [1015392] Interaction SIP Proxy Buffer Overflow in SIPParser() Lets Remote Users Deny Service
9163| [1015376] Microsoft IIS Lets Remote Users Deny Service or Execute Arbitrary Code With Malformed HTTP GET Requests
9164| [1015362] Watchfire AppScan Buffer Overflow in Processing HTTP 401 Response Messages Lets Remote Users Execute Arbitrary Code
9165| [1015353] Opera Browser May Let Remote Users Obfuscate the Download Dialog Box
9166| [1015350] Microsoft Internet Explorer Bug in Using HTTPS Proxies May Disclose Web URLs to Remote Users
9167| [1015349] Microsoft Windows Internet Explorer May Let Remote Users Obfuscate the Download Dialog Box
9168| [1015331] Sun Solaris Sun Update Connection Services May Disclose Web Proxy Password to Local Users
9169| [1015328] Mozilla Firefox Buffer Overflow in Loading 'history.dat' Lets Remote Users Deny Service
9170| [1015312] Sun Java System Application Server Reverse SSL Proxy Permits Man-in-the-Middle Attacks
9171| [1015308] DoceboLMS 'connector.php' Bugs Let Remote Users View Directory Contents and Upload and Execute Arbitrary PHP Code
9172| [1015294] Apple Safari WebKit Buffer Overflow May Let Remote Users Execute Arbitrary Code and Other Bugs May Permit JavaScript Dialog Box Spoofing and File Download Location Modification
9173| [1015275] Cisco IOS HTTP Server Input Validation Hole in Buffers Command Permits Cross-Site Scripting Attacks
9174| [1015253] Opera URL Loading Script Backtick Parsing Lets Remote Users Execute Arbitrary Shell Commands
9175| [1015246] Google Search Appliance 'proxystylesheet' Parameter Lets Remote Users Execute Arbitrary System Commands
9176| [1015213] phpMyAdmin 'libraries/header_http.inc.php' Lets Remote Users Conduct HTTP Response Splitting Attacks
9177| [1015174] SAP Web Application Server Input Validation Holes Permit HTTP Response Splitting, Cross-Site Scripting, and Phishing Attacks
9178| [1015112] Solaris Management Console Enables HTTP TRACE Support By Default
9179| [1015104] Snoopy Input Validation Hole in _httpsrequest() Lets Remote Execute Arbitrary Commands
9180| [1015072] Xloadimage Buffer Overflows in Processing NIFF Format Files Let Remote Users Execute Arbitrary Code
9181| [1015063] MailSite Express Lets Remote Users Upload Scripting Files and Execute Them
9182| [1015046] GFI MailSecurity Web Module Buffer Overflow in Processing HTTP Headers Lets Remote Users Execute Arbitrary Code
9183| [1014987] NateOn Messenger Buffer Overflow in 'NateonDownloadManager.ocx' Lets Remote Users Upload Files and Also Deny Service
9184| [1014949] Mozilla Firefox Proxy Auto-Config Scripts May Let Remote Users Deny Service
9185| [1014907] AzDGDatingLite Image Upload Feature Lets Remote Users Execute Arbitrary Code
9186| [1014884] Mail-it Now! Upload2Server Attachment Upload Feature Lets Remote Users Execute Arbitrary Code
9187| [1014875] Sun Java Web Proxy Server Error in Processing Certain POST Requests May Let Remote Users Deny Service
9188| [1014870] class-1 Forum Software File Upload Feature Lets Remote Users Upload and Execute Arbitrary Code
9189| [1014865] Cisco IOS Buffer Overflow in Firewall Authentication Proxy for FTP and/or Telnet Sessions May Let Remote Users Execute Arbitrary Code
9190| [1014814] FUDforum Avatar Upload Feature Lets Remote Users Upload and Execute Arbitrary PHP Code
9191| [1014762] ZipTorrent Discloses Proxy Password to Local Users
9192| [1014723] ezUpload 'path' Parameter Include File Bug Lets Remote Users Execute Arbitrary Code
9193| [1014673] Discuz! Board Input Validation Flaw Lets Remote Users Upload Scripting Code
9194| [1014592] Opera Error in Processing Extended ASCII Codes Lets Remote Users Spoof File Extensions in the Download Dialog Box
9195| [1014591] Simplicity oF Upload Lets Remote Users Upload and Execute Arbitrary Code
9196| [1014535] Website Generator Image Upload Preview Lets Remote Users Execute Arbitrary Code
9197| [1014534] Blue Coat ProxySG Error in Processing TCP Sequence Numbers in ICMP Messages Lets Remote Users Deny Service
9198| [1014506] Small HTTP Server FTP Service Lets Remote Authenticated Users Write to Arbitrary Files
9199| [1014452] F5 BIG-IP Unspecified SSL Authentication Bug May Let Remote Users Deny Service
9200| [1014427] MailEnable Professional Flaw in HTTPMail Service May Let Remote Users Execute Arbitrary Code
9201| [1014404] Internet Download Manager Buffer Overflow in Processing Long URLs Lets Remote Users Execute Arbitrary Code
9202| [1014369] SunONE Web Server May Allow Remote Users to Conduct HTTP Response Smuggling Attacks
9203| [1014368] Oracle Application Server Web Server May Allow Remote Users to Conduct HTTP Response Smuggling Attacks
9204| [1014367] IBM WebSphere May Allow Remote Users to Conduct HTTP Response Smuggling Attacks
9205| [1014366] BEA WebLogic May Allow Remote Users to Conduct HTTP Response Smuggling Attacks
9206| [1014365] Tomcat May Allow Remote Users to Conduct HTTP Response Smuggling Attacks
9207| [1014364] Microsoft Internet Information Server May Allow Remote Users to Conduct HTTP Response Smuggling Attacks
9208| [1014360] Oracle Application Server Web Cache Lets Remote Users Conduct HTTP Request Smuggling Attacks
9209| [1014357] Check Point FireWall-1 HTTP Request Smuggling May Let Remote Users Bypass Web Intelligence Features
9210| [1014356] Microsoft ISA Server May Accept HTTP Authentication Even When SSL Is Required
9211| [1014350] Squid HTTP Header Processing Lets Remote Users Smuggle HTTP Requests
9212| [1014323] Apache Chunked Transfer-Encoding and Content-Length Processing Lets Remote Users Smuggle HTTP Requests
9213| [1014322] Blue Coat ProxySG TCP Stack PAWS Timestamp Implementation Lets Remote Users Deny Service
9214| [1014310] ASP Nuke Input Validation Holes Permit SQL Injection, HTTP Response Splitting, and Cross-Site Scripting Attacks
9215| [1014309] ASPPlayground.NET Lets Remote Users Upload Arbitrary Files
9216| [1014285] UBBThreads Multiple Input Validation Holes Permit Cross-Site Scripting, SQL Injection, and HTTP Response Splitting Attacks
9217| [1014267] HP Version Control Repository Manager May Disclose Proxy Password to Local Users
9218| [1014263] MercuryBoard Input Validation Hole in HTTP User-Agent Permits SQL Injection
9219| [1014248] paFAQ Flaws Let Remote Users Download the Database, Inject SQL Commands, Conduct Cross-Site Scripting Attacks, and Execute Arbitrary Code
9220| [1014245] Ublog Reload Input Validation Holes in 'index.asp' Permit SQL Injection and in 'trackback.asp' Permit Cross-Site Scripting Attacks
9221| [1014243] Trac Input Validation Hole Lets Remote Users Upload Arbitrary Files
9222| [1014239] Opera XMLHttpRequest Access Controls Can By Bypassed By Remote Users
9223| [1014181] Sysreport May Disclose the up2date Proxy Password Via the System Report
9224| [1014147] Loki Download Manager Input Validation Holes Permit SQL Injection Attacks
9225| [1014141] Apple LaunchServices Lets Remote Users Bypass the File Dowload Dialog
9226| [1014086] JiRo's Upload System Input Validation Hole in Admin Panel Lets Remote Users Inject SQL Commands
9227| [1014078] PowerDownload Include File Bug Lets Remote Users Execute Arbitrary Commands
9228| [1014007] Serendipity Bugs Let Remote Authenticated Users Upload Unauthorized Files and Also Permits Cross-Site Scripting Attacks
9229| [1013966] Firefox Input Validation Error in Content-Type and Filename Lets Remote Users Spoof Download Dialog Data
9230| [1013960] 1Two News Lets Remote Users Delete Images, Upload Images, and Conduct Cross-Site Scripting Attacks
9231| [1013923] Orenosv HTTP/FTP Server FTP Command Buffer Overflow Lets Remote Users Crash the Server and HTTP SSI Buffer Overflow May Let Local Users Execute Arbitrary Code
9232| [1013913] Firefox onload() History Access Bug and Install Function Scripting Execution Flaw Lets Remote Users Execute Arbitrary Code
9233| [1013910] Squid http_access Results May Be Unexpected Due to Configuration Errors
9234| [1013839] Lotus Domino @SetHTTPHeader Permits HTTP Response Splitting Attacks
9235| [1013835] Safari Can Be Crashed With Long HTTPS URL
9236| [1013830] Uapplication Products Disclose the Database to Remote Users and Let Remote Authenticate Administrators Upload Arbitrary Files
9237| [1013823] FilePocket Discloses Proxy Passwords to Local Users
9238| [1013812] nProtect Netizen Lets Remote Users Download Arbitrary Files to the Target System
9239| [1013802] SqWebMail Input Validation Hole in 'redirect' Parameter Permits HTTP Response Splitting Attacks
9240| [1013801] MaxDB HTTP Request '%' Buffer Overflow Lets Remote Users Execute Arbitrary Code
9241| [1013786] MailEnable HTTPMail 'Authorization' Header Lets Remote Users Execute Arbitrary Code
9242| [1013749] CityPost Simple PHP Upload Input Validation Hole Permits Cross-Site Scripting Attacks
9243| [1013726] PHP-Nuke Input Validation Hole in Surveys Module Permits HTTP Response Splitting Attacks
9244| [1013709] Axel Buffer Overflow in Processing HTTP Location Values Lets Remote Users Execute Arbitrary Code
9245| [1013680] OpenOffice StgCompObjStream::Load() Heap Overflow Lets Remote Users Execute Arbitrary Code
9246| [1013671] File Upload Script 'up.php' for phpBB Lets Remote Users Upload Arbitrary Files
9247| [1013666] AN HTTP Server 'cmdIS.DLL' Buffer Overflow Lets Local Users Execute Arbitrary Code and Remote Users Conduct Cross-Site Scripting Attacks
9248| [1013603] Ublog Reload Discloses Database to Remote Users and Permits Cross-Site Scripting Attacks
9249| [1013602] Linux Kernel Bug in load_elf_library Lets Local Users Deny Service
9250| [1013557] Trillian Buffer Overflow in Processing HTTP Response Headers May Let Remote Users Execute Arbitrary Code
9251| [1013541] Download Center Lite Lets Remote Users Include and Execute Arbitrary PHP Code
9252| [1013514] Phorum Input Validation'search.php' HTTP Response Splitting
9253| [1013510] betaparticle blog Discloses Database to Remote Users and Lets Remote Users Upload/Delete Arbitrary Files
9254| [1013478] OllyDbg Error in Loading Processes With Long Names Lets Users Crash the Debugger
9255| [1013452] Symantec Enterprise Firewall DNSd Proxy Bug Lets Remote Users Poison the DNS Cache
9256| [1013451] Symantec VelociRaptor DNSd Proxy Bug Lets Remote Users Poison the DNS Cache
9257| [1013450] Symantec Gateway Security DNSd Proxy Bug Lets Remote Users Poison the DNS Cache
9258| [1013402] XOOPS Avatar Image Upload Permits Unsafe File Extensions
9259| [1013359] CProxy Input Validation Hole Discloses Files to Remote Users and Lets Remote Users Crash the Service
9260| [1013334] RaidenHTTPD Discloses PHP Source Code and Lets Remote Users Execute Arbitrary Code
9261| [1013331] CuteNews Input Validation Holes in HTTP Header Parameters Let Remote Users Conduct Cross-Site Scripting Attacks
9262| [1013320] FCKeditor May Let Remote Users Upload Arbitrary Files When Used With PHP-Nuke and Mambo
9263| [1013307] KNet HTTP GET Request Buffer Overflow Lets Remote Users Execute Arbitrary Code
9264| [1013191] Sami HTTP Server Input Validation Holes Disclose Files to Remote Users and Let Remote Users Crash the Service
9265| [1013182] HP HTTP Server Buffer Overflow Lets Remote Users Execute Arbitrary Code
9266| [1013178] PHP-Nuke Input Validation Holes in Downloads 'newdownloadshowdays' and Web Links 'newlinkshowdays' Permit Cross-Site Scripting Attacks
9267| [1013167] Squid Proxy xstrdup() Can Be Crashed With Malformed DNS Responses
9268| [1013135] ArGoSoft Mail Server Input Validation Holes Allow Remote Authenticated Users to Upload/Download Files and Create/Delete Directories
9269| [1013106] 602LAN SUITE Input Validation Bug Lets Remote Authenticated Users Upload and Execute Files
9270| [1013088] RaidenHTTPD Input Validation Flaw Discloses Files to Remote Users
9271| [1013060] DeskNow Mail and Collaboration Server Directory Traversal Flaw Lets Remote Authenticated Users Upload and Delete Arbitrary Files
9272| [1013054] RealPlayer Lets Remote Users Load Scripting Code from Local Files
9273| [1013021] SmarterMail Lets Remote Users Upload Arbitrary Scripting Code and Execute Them
9274| [1013016] Cisco IOS Can Be Reloaded By Remote Users Sending Multiple IPv6 Packets
9275| [1013007] Perl DBI::ProxyServer Unsafe Temporary Files May Let Local Users Gain Elevated Privileges
9276| [1012992] Squid Error in Parsing HTTP Content-Length Headers May Let Remote Users Poison the Cache
9277| [1012948] MaxDB sapdbwa_GetUserData() and HTTP Header Bugs Lets Remote Users Deny Service
9278| [1012891] Microsoft IE Windows XP SP2 File Download Security Can Be Bypassed With Dynamic IFRAME Tag
9279| [1012865] OpenBSD httpd mod_include Local Buffer Overflow Has Unspecified Impact
9280| [1012766] Mozilla Firefox Download Dialog Source Can Be Spoofed By Remote Users
9281| [1012765] Mozilla Browser Download Dialog Source Can Be Spoofed By Remote Users
9282| [1012764] PhotoPost Classifieds Input Validation Hole Lets Remote Users Upload Scripting Files
9283| [1012763] ReviewPost Pro Input Validation Hole Lets Remote Users Upload Scripting Files
9284| [1012753] GNUBoard Case-Sensitive File Extension Validation Lets Remote Users Upload Scripting Files
9285| [1012702] PHProxy Input Validation Hole in 'error' Parameter Lets Remote Users Conduct Cross-Site Scripting Attacks
9286| [1012684] Microsoft Windows LoadImage API Buffer Overflow Lets Remote Users Execute Arbitrary Code
9287| [1012622] IMG2ASCII 'ascii.php' Lets Remote Users Upload and Execute Scripting Code
9288| [1012588] IglooFTP Input Validation Hole in download_selection_recursive() Lets Remote Servers Write Arbitrary Files on the Client
9289| [1012567] Singapore Input Validation Holes Let Remote Authenticated Users Download and Upload Files, Delete Direcctories, and Conduct Cross-Site Scripting Attacks
9290| [1012553] 68 Designs Froogle Uploader 'setup.php' Lets Remote Users Gain Administrative Access
9291| [1012539] Attachment Mod Lets Remote Users Upload and Execute Scripting Code
9292| [1012538] JSBoard 'parse.php' Lets Remote Users Upload and Execute Scripting Code
9293| [1012532] MoniWiki 'UploadFile.php' Lets Remote Users Upload and Execute Scripting Code
9294| [1012528] Ethereal DICOM, HTTP, and SMB Dissector Bugs Let Remote Users Execute Arbitrary Code
9295| [1012499] MediaWiki Uploaded File Extension Error Lets Remote Users Execute Arbitrary Scripting Code
9296| [1012480] Opera Input Validation Error in Processing MIME Content-Type/Content-Displosition Headers Lets Remote Users Spoof the File Download Dialog
9297| [1012452] Blog Torrent 'btdownload.php' Input Validation Error Lets Remote Users Conduct Cross-Site Scripting Attacks
9298| [1012390] Blog Torrent 'btdownload.php' Input Validation Error Lets Remote Users View Arbitrary Files
9299| [1012369] PHProjekt 'setup.php' Lets Remote Users Upload Files and Execute Commands
9300| [1012362] IPCop Input Validation Hole in 'proxylog.dat' Lets Remote Users Conduct Cross-Site Scripting Attacks
9301| [1012322] DeSofto MyProxy Lets Remote Authenticated Users Connect to Arbitrary Ports and Hosts
9302| [1012298] ZyXEL Prestige 650HW 'rpFWUpload.html' Lets Remote Users Reset the Configuration
9303| [1012288] Microsoft IE Custom 404 Error Message and execCommand SaveAs Lets Remote Users Bypass XP SP2 Download Warning Mechanisms
9304| [1012234] Microsoft Internet Explorer on XP SP2 Has Unspecified Flaws That Let Remote Users Bypass File Download Restrictions
9305| [1012200] phpWebSite Input Validation Flaws Let Remote Users Conduct HTTP Response Splitting Attacks
9306| [1012189] CCProxy Buffer Overflow in Logging Function Lets Remote Users Execute Arbitrary Code
9307| [1012168] WebCalendar Grants Administrative Access and Permits Cross-Site Scripting and HTTP Response Splitting Attacks
9308| [1012165] Linux Kernel binfmt_elf Loader Lets Local Users Obtain Root Access
9309| [1012154] Microsoft Proxy Server Reverse DNS Caching Bug Lets Remote Users Spoof Web Sites
9310| [1012141] up-imapproxy Various Integer Overflows Let Remote Users Deny Service
9311| [1012103] 602LAN SUITE Lets Remote Users Deny Service With Large Content-Length Requests and Via Telnet Proxy Loopback Attacks
9312| [1012072] Proxytunnel Format String Flaw in Logging Responses May Let Remote Users Execute Arbitrary Code
9313| [1012050] ArGoSoft FTP Server Lets Remote Users Upload '.lnk' File
9314| [1012043] yChat HTTP Errors Let Remote Users Deny Service
9315| [1012025] iptables May Fail to Automatically Load Some Modules
9316| [1012011] Allied Telesyn AT-TFTP Server Lets Remote Users Download and Upload Arbitrary Files or Cause the TFTP Service to Crash
9317| [1012010] Netcordia Chesapeake TFTP Server Lets Remote Users Download and Upload Arbitrary Files or Cause the TFTP Service to Crash
9318| [1012005] Sun Java System Web Proxy Server Buffer Overflow May Let Remote Users Execute Arbitrary Code
9319| [1011960] Mega Upload Filenames in Querystring May Let Malicious Users Overwrite or Copy Files
9320| [1011938] PostNuke Downloads Site May Have Been Compromised
9321| [1011916] Mozilla Firefox Discloses Some Downloaded Files to Local Users
9322| [1011864] Serendipity Input Validation Flaws in Processing Request URI and HTTP Referer Field May Permit HTTP Response Splitting Attacks
9323| [1011769] SalesLogix Grants Administrative Access to Remote Users and Permits SQL Injection and Arbitrary File Uploads
9324| [1011736] File Upload Manager Lets Remote Users Execute Commands on the Target System
9325| [1011735] Microsoft Internet Explorer May Display the Incorrect URL When Loading a Javascript Homepage
9326| [1011708] Yak! Chat Directory Travesal Flaw Lets Remote Users Upload Files to Arbitrary Locations
9327| [1011614] Squid SNMP Parsing Error Lets Remote Users Restart the Proxy Server
9328| [1011501] Mozilla Firefox Input Validation Error Lets Remote Users Delete Download Directory Files
9329| [1011481] DCP-Portal Input Validation Errors Let Remote Users Conduct Cross-Site Scripting and HTTP Response Splitting Attacks
9330| [1011439] Icecast Buffer Overflow in Processing HTTP Headers Lets Remote Users Execute Arbitrary Code
9331| [1011427] MyServer Can Be Crashed By Remote Users With a Specially Crafted HTTP POST Request
9332| [1011406] ActivePost Lets Remote Users Upload Arbitrary Files, Detemine Passwords, and Crash the System, and D
9333| [1011261] getIntranet Input Validation Holes Let Remote Users Inject SQL Commands, Upload Files, Execute Scripting Code, and Gain Administrative Application Privileges
9334| [1011235] Pingtel xpressa Boundary Error in HTTP Management Interface Lets Remote Authenticated Users Crash the Phone
9335| [1011214] Squid Null Pointer Dereference in clientAbortBody() Lets Remote Users Crash the Proxy
9336| [1011213] Apache mod_ssl Can Be Crashed By Remote Users When Reverse Proxying SSL Connections
9337| [1011174] Mac OS X CoreFoundation Buffer Overflow and Library Loading Bugs Let Local Users Gain Elevated Privileges
9338| [1011155] Altnet Download Manager Buffer Overflow in bstrFilepath Lets Remote Users Execute Arbitrary Code
9339| [1011135] Comersus Shopping Cart 'redirecturl' Input Validation Flaw Permits HTTP Response Splitting Attacks
9340| [1011133] Cerbere Proxy Server Lets Remote Users Consume Excessive CPU Resources
9341| [1011054] Hastymail May Execute Scripting Code in E-Mail Content When 'Download' is Selected
9342| [1011046] icecast Input Validation Error in HTTP UserAgent Field Permits Cross-Site Scripting Attacks
9343| [1011042] Plesk 7 Reloaded Input Validation Flaw in 'login_up.php3' Permits Cross-Site Scripting Attacks
9344| [1011037] Gadu-Gadu File Downloading Dialog Lets Remote Authenticated Users Spoof the File Extension
9345| [1010971] Gallery Input Validation Error in 'save_photos.php' Lets Remote Users Upload and Execute Files
9346| [1010949] Kerio MailServer Bugs in Embedded HTTP Server Have Unspecified Impact
9347| [1010927] F5 3-DNS May Disclose UDP Port Status to Remote Users
9348| [1010920] Sygate Enforcer Can Be Crashed By a Remote Users Sending a Malformed Payload
9349| [1010850] thttpd Input Validation Error Discloses Files to Remote Users
9350| [1010837] MailEnable Professional HTTPMail Bug Lets Remote Users Deny Service
9351| [1010797] IBM WebSphere Can Be Crashed By Remote Users Sending Large HTTP Headers
9352| [1010788] RiSearch/Ri Search Pro Discloses Files to Remote Users and Can Be Used as an Open Proxy
9353| [1010756] Sun Java System Portal Server Proxy Authentication Flaw Grants Calendar Data Access to Remote Authenticated Users
9354| [1010751] Xitami Web Server Can Be Crashed By Remote Users Sending Invalid HTTP Headers
9355| [1010642] Fastream NETFile Server 'mkdir' Command Lets Remote Users Upload Files to Arbitrary Locations
9356| [1010639] IBM WebSphere Edge Server Component Caching Proxy JunctionRewrite Directive Lets Remote Users Deny Service
9357| [1010618] Cisco Collaboration Server ServletExec Lets Remote Users Upload Files and Obtain Administrative Privileges
9358| [1010613] Pavuk Buffer Overflow in Processing HTTP Location Headers Lets Remote Web Servers Execute Arbitrary Code on the Target System
9359| [1010599] Apache httpd Header Line Memory Allocation Lets Remote Users Crash the Server
9360| [1010500] Symantec Enterprise Firewall DNSD Proxy Can Be Poisoned By Remote Users
9361| [1010462] Apache mod_proxy Buffer Overflow May Let Remote Users Execute Arbitrary Code
9362| [1010461] smtp.proxy Format String Bug Lets Remote Users Execute Arbitrary Code
9363| [1010447] AspDotNetStorefront Input Validation Hole in Uploading Image Files Lets Remote Authenticated Administrators Upload and Execute Arbitrary Code
9364| [1010346] TinyWeb Lets Remote Users Download CGI Scripts
9365| [1010291] MiniShare Can Be Crashed By Remote Users With Incomplete HTTP Requests
9366| [1010289] Orenosv HTTP/FTP Server Can Be Crashed By Remote Users
9367| [1010266] F5 BIG-IP TCP SYN Cookie Processing Flaw Lets Remote Users Deny Service
9368| [1010255] CBTT Can Be Crashed By Remote Users Sending Specially Crafted HTTP Basic Authentication Headers
9369| [1010254] BNBT Can Be Crashed By Remote Users Sending Specially Crafted HTTP Basic Authentication Headers
9370| [1010203] OmniHTTPd Buffer Overflow in HTTP GET Range Header May Let Remote Users Execute Arbitrary Code
9371| [1010192] Blue Coat ProxySG May Disclose Private Key to Remote Users
9372| [1010171] NetChat Buffer Overflow in HTTP Service Lets Remote Users Execute Arbitrary Code
9373| [1010157] Microsoft Internet Explorer showHelp Path Search Lets Remote Users Load Existing Local CHM Files
9374| [1010107] MailEnable Buffer Overflow in HTTPMail Lets Remote Users Execute Arbitrary Code
9375| [1010088] Eudora Has Buffer Overflow in Loading 'file://' URLs
9376| [1010071] PHP-Nuke Input Validation Bugs in 'sid' Variable in 'Downloads' Module Permits SQL Injection and Cross-Site Scripting Attacks
9377| [1009958] Kaos news Lets Remote Users Download the Database Containing Passwords
9378| [1009945] IBM HTTP Server Can Be Crashed By Remote Users Sending Specially Crafted SSL Packets
9379| [1009902] PostNuke Downloads, Web_Links, 'openwindow.php' Input Validation Holes Let Remote Users Conduct Cross-Site Scripting Attacks
9380| [1009889] Cisco SNMP Bug Lets Remote Users Send SNMP Solicited Operations to Cause the Device to Reload
9381| [1009865] XChat Socks-5 Proxy Buffer Overflow Lets Remote Users Execute Arbitrary Code
9382| [1009825] ColdFusion MX File Upload Disk Space Management Bug Lets Remote Users Deny Service
9383| [1009762] Microsoft Windows COM Internet Services and RPC over HTTP Can Be Crashed By Remote Users
9384| [1009731] TikiWiki Multiple Input Validation Holes Let Remote Users Inject SQL Commands, Conduct Cross-Site Scripting Attacks, and Upload Files
9385| [1009717] FirstClass Client Buffer Overflow in Processing PROXYADDR Parameter Lets Local Users Execute Arbitrary Code
9386| [1009674] Macromedia Flash Null Pointer Assignment in LoadMovie() Lets Remote Users Deny Service
9387| [1009642] MondoSearch 'MsmHigh.exe' Can By Used As a Web Proxy By Remote Users
9388| [1009597] MPlayer Buffer Overflow in Parsing HTTP Location Header Lets Remote Servers Execute Arbitrary Code
9389| [1009548] Kerio WinRoute Firewall May Crash Due to Malformed HTTP Headers
9390| [1009513] ReGet Directory Traversal Bug May Cause Files to Be Downloaded to Arbitrary Locations
9391| [1009468] isakmpd Payload Handling Flaw Lets Remote Users Crash the Daemon
9392| [1009443] Twilight Utilities Web Server 'postfile.exe' Lets Remote Users Upload Files to Arbitrary Locations
9393| [1009439] PHP-Nuke Input Validation Holes in Feedback, Downloads, Journal, and Other Modules Permit Cross-Site Scripting Attacks
9394| [1009433] Phorum HTTP_REFERER and Other Input Validation Flaw Permits Cross-Site Scripting Attacks
9395| [1009395] MyProxy Input Validation Hole Lets Remote Users Conduct Cross-Site Scripting Attacks
9396| [1009318] Cisco Content Services Switch 11000 Series Can Be Reloaded By Remote Users
9397| [1009267] Squid Proxy Cache '%00' URL Character Access Control Bug May Let Remote Users Bypass Certain Access Controls
9398| [1009172] GateKeeper Proxy Buffer Overflow Lets Remote Users Execute Arbitrary Code
9399| [1009154] PSOProxy Buffer Overflow May Let Remote Users Execute Arbitrary Code
9400| [1009088] Sami HTTP Server Buffer Overflow Lets Remote Users Crash the Web Server
9401| [1009023] Monkey Web Server Can Be Crashed By HTTP GET Requests With No Host Value
9402| [1009016] BosDates 'calendar_download.php' Input Validation Flaw Lets Remote Users Inject SQL Commands
9403| [1008998] httpdpalm Lets Remote Users Crash the System
9404| [1008997] Jim Rees PalmOS httpd Can Be Crashed By Remote Users
9405| [1008947] Check Point FireWall-1 Format String Flaw in HTTP Component Lets Remote Users Execute Arbitrary Code
9406| [1008897] PHP-Nuke Input Validation Flaws in 'Downloads' and 'Sections' Permits SQL Injection
9407| [1008879] SurfNOW Proxy Service Can Be Denied By Remote Users
9408| [1008866] WebLogic Server and Express Input Validation Flaw in Processing HTTP TRACE Requests Permits Cross-Site Scripting
9409| [1008856] ProxyNow! Buffer Overflow Lets Remote Users Gain SYSTEM Privileges
9410| [1008842] Reptile Web Server HTTP Request Flaw Lets Remote Users Deny Service
9411| [1008838] Oracle HTTP Server 'isqlplus' Input Validation Flaws Let Remote Users Conduct Cross-Site Scripting Attacks
9412| [1008836] SurfinGate Proxy Mode Lets Remote Users Execute Application Commands
9413| [1008833] Sun Solaris modload() May Grant Root Access to Local Users
9414| [1008826] GeoVision GeoHttpServer Authentication Bypass Grants Access to Remote Users
9415| [1008822] Apache mod_perl File Descriptor Leak May Let Local Users Hijack the http and https Services
9416| [1008820] Mephistoles httpd Input Validation Flaw Permits Cross-Site Scripting Attacks
9417| [1008807] GeoHttpServer Can Be Crashed By a Remote User Sending a Long Password
9418| [1008788] DUpics Authentication Flaw Lets Remote Users Gain Administrative Access to the Application and Upload Arbitrary Files
9419| [1008786] DUdownload Authentication Flaw Lets Remote Users Gain Administrative Access to the Application
9420| [1008662] phpGroupWare Flaws Allow SQL Injection and PHP File Uploading
9421| [1008661] FreeProxy Input Validation Flaw Discloses Files to Remote Users
9422| [1008651] Yahoo! Messenger Download Filename Buffer Overflow May Let Remote Users Execute Arbitrary Code
9423| [1008563] Microsoft IIS Fails to Log HTTP TRACK Requests
9424| [1008559] Apache mod_php File Descriptor Leak May Let Local Users Hijack the https Service
9425| [1008554] Microsoft IE for Mac May Disclose Sensitive Information in Secure URLs to Remote Sites via HTTP Referer Field
9426| [1008549] Surfboard httpd Buffer Overflow May Allow a Remote User to Execute Arbitrary Code
9427| [1008526] CyberGuard Firewall Proxy Error Page Input Validation Flaw May Permit Cross-Site Scripting Attacks
9428| [1008477] Cisco Firewall Services Module (FWSM) Buffer Overflow in Cut-Through Proxy Authentication Lets Remote Users Crash the FWSM
9429| [1008469] mvdsv Quake Server Download Buffer Overflow Allows Remote Code Execution
9430| [1008463] LFTP Buffer Overflow in Processing HTTP Responses May Allow Remote Code Execution
9431| [1008460] Opera Web Browser Download Dialog Lets Remote Users Delete Arbitrary Files
9432| [1008342] Surfboard httpd Input Validation Flaw Lets Remote Users View Arbitrary Files on the System
9433| [1008265] Xitami Web Server Bug in Processing Certain HTTP POST Headers Lets Remote Users Deny Service
9434| [1008244] Kerio WinRoute Firewall Discloses Authentication Data to Remote Sites When Using Proxy Authentication
9435| [1008240] Half-Life Dedicated Server Discloses Configuration Files to Remote Users if Downloads Are Permitted
9436| [1008187] PostMast Proxy Server Permits Cross-Site Scripting Attacks
9437| [1008180] WebWasher Classic Proxy Input Validation Flaw Permits Remote Cross-Site Scripting Attacks
9438| [1008177] PeopleSoft PeopleTools iClient Lets Remote Users Upload and Execute Arbitrary Commands
9439| [1008156] BEA WebLogic Input Validation Flaw in Proxy Plug-in Lets Remote Users Crash the Service With Malformed URLs
9440| [1008075] IA WebMail Server Buffer Overflow in Processing HTTP Headers Lets Remote Users Execute Arbitrary Code
9441| [1008072] Plug and Play Web Server Proxy Service Can Be Crashed By Remote Users
9442| [1008068] frox FTP Proxy Can Be Crashed By Remote Users Conducting Port Scans
9443| [1008036] tc.SimpleWebServer Buffer Overflow in Processing the HTTP Referer Lets Remote Users Execute Arbitrary Code
9444| [1008031] thttpd 'Host' Header Directory Traversal Flaw May Disclose Files to Remote Users
9445| [1008015] sh-httpd Discloses Files to Remote Users
9446| [1008007] thttpd defang() Buffer Overflow Lets Remote Users Execute Arbitrary Code
9447| [1007980] Sun Java Runtime Environment Classloader Flaw May Let Untrusted Applets Gain Elevated Privileges
9448| [1007899] FirstClass HTTP Daemon Can Be Crashed By Remote Users
9449| [1007886] PHP-Nuke 'mailattach.php' Input Validation Flaw Lets Remote Users Upload Arbitrary Files and Execute Them
9450| [1007855] IBM DB2 Buffer Overflow in LOAD and INVOKE Commands Lets Remote Authenticated Users Execute Arbitrary Code
9451| [1007802] Null httpd Can Be Crashed By Remote Users Sending Incomplete HTTP POST Requests
9452| [1007799] Gauntlet Firewall 'sql-gw' Proxy Can Be Crashed By Remote Users Sending Invalid Data
9453| [1007797] TclHttpd 'dirlist.tcl' Discloses Directory Contents to Remote Users and Permits Remote Cross-Site Scripting Attacks
9454| [1007794] ProFTPD ASCII Mode File Upload Buffer Overflow Lets Certain Remote Users Execute Arbitrary Code
9455| [1007774] Xitami Web Server Can Be Crashed By Remote Users Sending Large HTTP GET Request Headers
9456| [1007708] Minihttp File Sharing for net Password Parsing Flaw Grants Admin Privileges to Remote Users
9457| [1007707] Minihttp Forum Web Server Password Parsing Flaw Grants Admin Privileges to Remote Users
9458| [1007566] AnalogX Proxy Input Validation Flaw Permits Remote Cross-Site Scripting Attacks Against Arbitrary Web Sites
9459| [1007553] Avant Browser Crashes When Loading a Long URL
9460| [1007470] Lil' HTTP Server Discloses Web Server Passwords to Local Users
9461| [1007460] FreeBSD 'ibcs2.ko' Loadable Kernel Module May Disclose Kernel Memory to Local Users
9462| [1007452] Xitami Web Server Fails to Log Non-HTTP Connections
9463| [1007383] Minihttp Forum Web Server Default Configuration Leaves Administrator Account Without a Password
9464| [1007364] IISShield May Fail to Drop a Specific Malformed HTTP Request
9465| [1007342] Cisco IOS Web Interface Buffer Overflow Lets Remote Users Send 2GB HTTP GET Requests to Execute Arbitrary Code
9466| [1007340] Small HTTP Server Discloses Administrator Password to Local Users
9467| [1007295] paFileDB Authentication Flaw Lets Remote Users Upload and Execute Arbitrary Code
9468| [1007278] Microsoft DirectX Heap Overflow in Loading MIDI Files Lets Remote Users Execute Arbitrary Code
9469| [1007230] Apache HTTP Server 'rotatelogs' Bug on Win32 and OS/2 May Cause the Logging to Stop
9470| [1007215] OmniHTTPd Web Server Has Input Validation Holes in Additional Sample Scripts That Let Remote Users Conduct Cross-Site Scripting Attacks
9471| [1007171] UMN Gopherd Buffer Overflows in GSisText() and in FTP Proxy Code Let Remote Users Execute Arbitrary Code
9472| [1007159] Mabry HTTPServer/X Discloses Files on the System to Remote Users
9473| [1007155] Q-Shop Shopping Cart Authentication Flaw Lets Remote Users Upload and Execute Arbitrary Code
9474| [1007126] Microsoft Internet Explorer Can By Crashed By Loading 'C:\aux' URL
9475| [1007111] ProductCart Shopping Cart Default Configuration Lets Remote Users Download the Shopping Database
9476| [1007104] Xbox Dashboard Font File Loader Integer Overflow Lets Local Users Execute Arbitrary Code
9477| [1007058] NetScreen HTTP, Telnet, and FTP Authentication Feature Can Be Bypassed in Certain Cases
9478| [1007007] Microsoft Internet Explorer Custom HTTP Error Pages May Let Remote Users Execute Scripts in the Local Computer Zone
9479| [1006992] myServer Web Server HTTP Parsing Flaw Lets Remote Users Crash the Web Service
9480| [1006945] Novell HTTPSTK Can Be Crashed By Remote Users
9481| [1006894] iisCART2000 Upload Authentication Error Lets Remote Users Upload and Execute Arbitrary Scripts
9482| [1006867] Microsoft IIS Buffer Overflow Lets Remote Users With Upload Privileges Execute Code - Remote Users Can Also Crash the Service
9483| [1006852] BRS WebWeaver HTTP Buffer Overflows Let Remote Users Crash the Web Service
9484| [1006845] AnalogX Proxy URL Buffer Overflow Lets Remote Users Execute Arbitrary Code With Administrator Privileges
9485| [1006836] CUPS Internet Printing Protocol HTTP Header Processing Flaw Lets Remote Users Deny Service
9486| [1006793] PHP-Nuke Input Validation Flaws in Several Modules (Sections, AvantGo, Surveys, Downloads, Reviews, Web_Links) Let Remote Users Inject SQL Commands
9487| [1006774] Microsoft Internet Explorer May Execute Arbitrary Code in the Wrong Security Domain When Processing Large Numbers of Download Requests
9488| [1006750] 3Com OfficeConnect DSL Router Memory Leak May Disclose Previous HTTP Request Data
9489| [1006670] Opera Web Browser Can Be Crashed When Downloading a File With a Long Filename Extension
9490| [1006666] SonicWALL Pro Can Be Crashed By Remote Users Due to Bug in Processing Large HTTP POST Requests
9491| [1006665] Pi3Web Server Can Be Crashed By Remote Users Sending Malformed HTTP GET Requests
9492| [1006634] Microsoft Internet Explorer Bugs (URLMON.DLL Buffer Overflow, File Upload Control Bypass, Plug-in URL Input Validation Flaw, CSS Modal Dialog Input Validation Flaw) Let Remote Users Execute Arbitrary Code or Access Local Files
9493| [1006616] AN HTTPD Web Server Sample Script ('count.pl') Lets Remote Users Create or Overwrite Files on the System.
9494| [1006551] KDE Configuration Flaw Lets Remote Users Create Files That Will Execute Arbitrary Commands When Loaded
9495| [1006546] CC Log Input Validation Hole in HTTP Header Fields Lets Remote Users Conduct Cross-Site Scripting Attacks
9496| [1006534] Microsoft Proxy Service in Proxy Server 2.0 Has Unspecified Flaw That Lets Remote Users Stop Traffic
9497| [1006513] Opera Browser Buffer Overflow in Loading URLs May Let Remote Users Execute Code
9498| [1006508] Coppermine Photo Gallery File Extension Validation Flaw Lets Remote Users Upload and Execute PHP Code
9499| [1006489] Abyss Web Server HTTP Header Validation Flaw Lets Remote Users Crash the Web Server
9500| [1006330] Mutt Buffer Overflow May Cause Arbitrary Code to Be Executed When Downloading Mail
9501| [1006299] Kebi Academy 2001 Input Validation Flaw Lets Remote Authenticated Users View and Upload Files from/to Arbitrary Locations on the Server
9502| [1006269] Opera Browser Download Filename Buffer Overflow Lets Remote Users Execute Arbitrary Code
9503| [1006260] DeleGate Overflow in Processing 'robots.txt' Fields Lets Remote Users Execute Arbitrary Code on the Proxy Server
9504| [1006258] PeopleSoft PeopleTools Input Filtering Bug in SchedulerTransfer Java Servlet Lets Remote Users Upload and Execute Arbitrary Code
9505| [1006254] Upload Lite Temporary File Bug Lets Remote Users Upload and Execute Arbitrary CGI Code on the Server
9506| [1006217] Uploader PHP Script Default Configuration Lets Remote Users Upload Arbitrary Files and Then Execute Them
9507| [1006105] [Indy]News Forum Software Lets Remote Users Upload Files to the System
9508| [1006099] Symantec's Norton Anti-Virus Fails to Work After Loading Corrupt Anti-Virus Definitions
9509| [1006079] Opera Browser May Execute Arbitrary Code When Loading a Malicious URL
9510| [1006069] Eggdrop IRC Bot Lets Certain Remote Authenticated Users Invoke the Bot as a Proxy
9511| [1006056] IlohaMail Input Validation Bug Lets Remote Authenticated Users Upload Files to the Server
9512| [1006003] Replicom ProxyView Default Configuration Gives Remote Users Full Access
9513| [1005943] Shambala Server FTP Input Validation Bugs Let Remote Authenticated Users View and Upload Files and Crash the Server
9514| [1005915] Middleman Proxy Buffer Overflow May Let Remote Users Execute Arbitrary Code on the Proxy Server
9515| [1005912] Mambo Site Server Input Validation Bugs Let Remote Authenticated Users Upload and Execute Code on the Server
9516| [1005901] Cgihtml Script Package Contains Multiple Flaws That Let Remote Users Deny Service or Upload Files to the System
9517| [1005889] HTTP Fetcher Buffer Overflows May Let Remote Servers Execute Arbitrary Code
9518| [1005886] AN HTTPD Web Server Discloses Installation Path to Remote Users
9519| [1005884] Winamp Buffer Overflow in Loading 'b4s' Playlists Lets Remote Users Execute Arbitrary Code on the Player
9520| [1005857] Microsoft Internet Explorer Bug in Loading Multimedia Files May Let Remote Users Execute Arbitrary Scripting Code in Other Domains
9521| [1005851] Junkbuster Proxy Default Configuration on Red Hat Linux Lets Remote Users Send SPAM Via the Proxy
9522| [1005815] Symantec VelociRaptor Firewall Buffer Overflow in RealAudio Proxy Allows Remote Users to Deny Service and Possibly Execute Arbitrary Code on the Firewall
9523| [1005814] Symantec Enterprise Firewall Buffer Overflow in RealAudio Proxy Allows Remote Users to Deny Service and Possibly Execute Arbitrary Code on the Firewall
9524| [1005792] Multi-Tech ProxyServer Default Configuration Gives Remote Users Control of the System
9525| [1005784] Apt-www-proxy Server Format String Hole Lets Remote Users Execute Arbitrary Commands
9526| [1005768] TrendMicro InterScan VirusWall Proxy Bug Lets Remote Users Connect to Internal Hosts Via the Proxy
9527| [1005730] Webster HTTP Server Multiple Bugs Let Remote Users Execute Arbitrary Code and View Files on the System
9528| [1005699] Microsoft Internet Explorer (IE) Java Class Loader Security Flaw Lets Remote Users Bypass Java Security Restrictions
9529| [1005698] Microsoft Java Virtual Machine (VM) Class Loader Security Flaw Lets Remote Users Bypass Java Security Restrictions
9530| [1005695] AOL Instant Messenger (AIM) File Sharing Bug May Let Remote Users Silently Force Downloads
9531| [1005690] acFreeProxy Server Input Validation Flaw Allows Remote Users to Conduct Cross-Site Scripting Attacks Against Proxy Server Users
9532| [1005645] Zeroo HTTP Server Buffer Overflow Lets Remote Users Execute Arbitrary Code on the Server
9533| [1005624] LibHTTPd Buffer Overflow Lets Remote Users Execute Arbitrary Code
9534| [1005600] Light HTTPd (lhttpd) Buffer Overflow Lets Remote Users Execute Arbitrary Code to Gain Shell Access on the System
9535| [1005599] eZ httpbench Tool Discloses Files on the System to Remote Users
9536| [1005598] Tiny HTTPd Input Validation Bug Discloses Files on the Server to Remote Users and Also Lets Users Execute Commands
9537| [1005524] Com21 DOXport Cable Modems Let Remote Users on the Local Network Load an Alternate Configuration File
9538| [1005505] Microsoft Internet Information Server (IIS) Script Access Control Bug May Let Remote Authenticated Users Upload Unauthorized Executable Files
9539| [1005490] AN HTTPD Web Server Lets Remote Users Conduct Cross-Site Scripting Attacks
9540| [1005472] IBM Web Traffic Express Caching Proxy Server Allows Cross-Site Scripting Attacks
9541| [1005471] IBM Web Traffic Express Caching Proxy Server Can Be Crashed By Remote Users
9542| [1005457] AN HTTPD Buffer Overflow in Processing SOCKS4 Requests Allows Remote Code Execution
9543| [1005442] IP Filter Linux Firewall Software FTP Proxy Bug Lets Remote Users Bypass the Rule Set
9544| [1005417] Web Server 4 Everyone Can Be Crashed By Remote Users Sending Long HTTP GET Requests
9545| [1005415] Symantec VelociRaptor Firewall Secure Web Proxy Lets Remote Users Cause Denial of Service Conditions
9546| [1005414] Symantec Enterprise Firewall (Raptor Firewall) Secure Web Proxy Lets Remote Users Cause Denial of Service Conditions
9547| [1005400] VBZooM Bulletin Board Lets Remote Users Upload and Execute Files
9548| [1005350] IBM HTTP Server (IHS) Input Validation Bug Lets Remote Users Conduct Cross-Site Scripting Attacks
9549| [1005301] WASD HTTP Server for OpenVMS Has Multiple Flaws That Disclose Information and Let Remote Users Gain SYSTEM Access
9550| [1005297] acWEB HTTP Server Bugs Let Remote Users Crash the System and Permit Cross-Site Scripting Attacks
9551| [1005293] Monkey HTTP Daemon Discloses Files on the System to Remote Users
9552| [1005272] Null httpd Web Server Heap Overflow Lets Remote Users Execute Arbitrary Code With Root Privileges
9553| [1005259] IBM WebSphere Can Be Crashed By Remote Users Sending Large HTTP Headers
9554| [1005247] TrendMicro InterScan VirusWall Scanner Can Be Bypassed With HTTP Chunked Transfer Encoded Packets
9555| [1005214] KDE Konqueror URL Decoding Inconsistency May Result in a Web Page Loading in the Incorrect Security Domain
9556| [1005182] Microsoft Internet Explorer URL Decoding Inconsistency May Result in a Web Page Loading in the Incorrect Security Domain
9557| [1005177] Microsoft Visual FoxPro Filename Processing Bug Lets Remote Users Create HTML That Will Cause Arbitrary Code to Be Executed When the HTML is Loaded
9558| [1005167] NullLogic's Null httpd Web Server Input Validation Bug Lets Remote Users Conduct Cross-site Scripting Attacks
9559| [1005137] OmniHTTPd Web Server Input Validation Holes in Sample Applications Let Remote Users Conduct Cross-Site Scripting Attacks
9560| [1005108] Microsoft Windows Media Player Allows Malicious Windows Media Download (.wmd) Files to Silently Create Files in a Known Location and Execute Them
9561| [1005063] Microsoft Windows XP Help and Support Center Hole Lets Remote Users Create URLs That, When Loaded, Will Delete Arbitrary Files on Your System
9562| [1004988] Tinyproxy Double Freed Memory Bug May Let Remote Users Execute Arbitrary Code on the System
9563| [1004957] Jana Web Server Buffer Overflow in Processing HTTP Commands May Let Remote Users Execute Arbitrary Code on the System
9564| [1004953] 602Pro LAN Suite Web Server and Telnet Proxy Bugs Let Remote Users Consume All Available Memory on the System
9565| [1004893] eUpload CGI Web-based File Upload Utility Access Control Flaw Discloses User Passwords to Remote Users
9566| [1004867] Lucent Access Point Routers Can Be Crashed By Remote Users Sending a Large HTTP GET Request to the Web Management Interface
9567| [1004798] World Wide Web Offline Explorer (WWWOFFLE) Proxy Buffer Overflow May Let Remote Users Execute Arbitrary Code on the System
9568| [1004759] ATPhttpd Web Server Buffer Overflows Let Remote Users Execute Arbitrary Code on the Server
9569| [1004751] Lil' HTTP Server 'pbcgi.cgi' Script Input Validation Flaw Allows Remote Users to Conduct Cross-site Scripting Attacks Against Web Server Users
9570| [1004736] Radio Community Server Default Configuration Lets Remote Users Create Users Accounts and Upload Arbitrary Files to the Server
9571| [1004722] Mac OS X SoftwareUpdate Feature Uses Unauthenticated Connections for Downloading and Automatically Installing Software Updates, Allowing Remote Users to Install Arbitrary Code on the System
9572| [1004704] Squid Proxy Cache Has Buffer Overflows in Processing Gopher and FTP Data and May Incorrectly Forward Proxy Authentication Credentials to Remote Web Sites
9573| [1004699] Noguska's NOLA Web-based Accounting and Inventory Management Package Lets Remote Users Upload and Execute PHP Code
9574| [1004675] AnalogX Proxy Server Buffer Overflow Lets Remote Users Execute Arbitrary Code on the System
9575| [1004672] OmniHTTPd Web Server Bug in Processing Long HTTP Protocol Parameters Allows Remote Users to Crash the Web Service
9576| [1004581] 4D Web Server Buffer Overflow in Processing Long HTTP Requests May Let Remote Users Execute Arbitrary Code or Crash the Service
9577| [1004572] Mozilla Mail Download Can Be Crashed By Remote Users Sending Malicious E-mail via POP3
9578| [1004571] Netscape Communicator Mail Download Can Be Crashed By Remote Users Sending Malicious E-mail via POP3
9579| [1004561] Cisco uBR7100/7200 Series Cable Modem Routers Have Integrity Verification Flaw That Lets Remote Users Load Alternate Configurations on the Router
9580| [1004518] Microsoft Proxy Server Buffer Overflow in Processing Gopher Protocol Responses Allows Remote Users to Execute Code on the Server to Gain Full Control of the Server
9581| [1004480] MetaMachine's 'eDonkey' File Sharing Software Has a Buffer Overflow May Let Remote Create URLs That Will Cause Arbitrary Arbitrary Code to Be Executed When Loaded
9582| [1004446] Squid Proxy Caching Server 'Msntauth' Authentication Module Format String Hole Lets Remote Users Execute Arbitrary Code on the Server
9583| [1004319] Hosting Controller Software for Web Hosting Companies Has Input Validation Errors in 'dsnmanager.asp' and 'imp_rootdir.asp' Scripts That Allow Remote Users to View Files on the System and Upload and Copy Files With Administrator Privileges
9584| [1004300] Microsoft Internet Explorer (IE) Zone Spoofing Hole Lets Remote Users Create HTML That, When Loaded, May Run in a Less-Secure IE Security Zone
9585| [1004241] Novel Border Manager Firewall Can Be Crashed By Remote Users Sending Specially Crafted Packets to the FTP Proxy, IP/IPX Gateway, or RTSP Proxy Ports
9586| [1004221] Squid_auth_ldap LDAP Authentication Module for the Squid Proxy Server Has Format String Bugs That Let Remote Users Execute Arbitrary Shell Commands on the System
9587| [1004211] 4D Web Server Buffer Overflow in Processing Basic HTTP Authentication Lets Remote Users Crash the Server and May Allow Arbitrary Code to Be Executed
9588| [1004191] Sun Solaris 'lbxproxy' Display Name Buffer Overflow Lets Local Users Obtain Root Group Privileges
9589| [1004187] Mozilla Browser XMLHTTP Redirect Bug Lets Remote Users View Files on a User's Computer
9590| [1004186] Netscape Browser XMLHTTP Redirect Bug Lets Remote Users View Files on a User's Computer
9591| [1004134] ICQ Instant Messaging Client Can Be Crashed When Malformed '.hpf' Files are Loaded
9592| [1004123] Lil' HTTP Server Discloses Files Located Outside of the Web Document Directory to Remote Users and Allows Remote Users to Conduct Cross-site Scripting Attacks Against Administrators
9593| [1004080] AOLserver Format String Flaw and Buffer Overflow in 'libnspd.a' API for External Database Driver Proxy Daemons May Let Remote Users Execute Arbitrary Code
9594| [1004056] Symantec Enterprise Firewall (Raptor) FTP Proxy Allows Remote Users to Conduct FTP Bounce Attacks Using Protected FTP Servers
9595| [1004014] Microsoft Internet Information Server ASP HTTP Header Processing Buffer Overflow Lets Remote Users Execute Arbitrary Code on the Server
9596| [1003992] Funk Software Proxy Remote Control Software May Let Remote Users Gain Unauthorized Access to the System
9597| [1003905] Cisco CallManager Memory Leak Lets Remote Users Cause the Server to Crash and Reload.
9598| [1003896] Squid Proxy Caching Server Heap Overflow in Processing Compressed DNS Responses Could Allow Remote DNS Servers to Crash the Service
9599| [1003873] Imlib Image Loader malloc() Argument Bug May Let Local Users Execute Arbitrary Code on the System
9600| [1003855] PHP safe_mode Restrictions Can Be Bypassed By Remote Users Via the 'move_uploaded_file' Function
9601| [1003839] Microsoft Internet Explorer (IE) 6 Lets Remote Users Cause Files to Be Downloaded and Executed Without the Knowledge or Consent of the Victim
9602| [1003778] Cobalt XTR User Interface Access Control Issue and File Uploading Authentication Bug Let Local Users Write to Files with Root Privileges
9603| [1003743] Thttpd Web Server Filtering Flaw Lets Remote Users Steal Cookies Via Cross-Site Scripting Attacks
9604| [1003740] Zope Web Application Content Server Proxy Role Error May Let Users Access Unauthorized Objects
9605| [1003732] Netscape Web Broswer Java Environment Lets Remote Malicious Applets Redirect Web Proxy Connections
9606| [1003731] Sun Java Runtime Environment (JRE) Lets Remote Malicious Applets Redirect Web Proxy Connections
9607| [1003730] Microsoft Java Virtual Machine in Internet Explorer Lets Remote Malicious Applets Redirect Web Proxy Connections
9608| [1003700] Network Associates Gauntlet Firewall Proxy Bug Lets Remote Users Bypass Some Access Controls and Connect to Arbitrary Ports on Internal/Protected Hosts
9609| [1003676] PHP File Upload Bugs Let Remote Users Execute Arbitrary Code on a PHP-enabled Web Server
9610| [1003643] FreeRADIUS Authentication Server (and Possibly Other RADIUS Servers) May Become Overloaded By a Remote Flood of Access-Request Packets from a Single User
9611| [1003639] Squid Proxy Cache Server Buffer Overflow Lets Remote Users Create Denial of Service Conditions and May Let Remote Users Execute Arbitrary Code on the System
9612| [1003636] Trend Micro's InterScan VirusWall Proxy Bug Lets Remote Users Bypass Some Access Controls and Connect to Arbitrary Ports on Internal/Protected Hosts
9613| [1003635] Finjan SurfinGate Proxy Bug Lets Remote Users Bypass Some Access Controls and Connect to Arbitrary Ports on Internal/Protected Hosts
9614| [1003614] Symantec Enterprise Firewall (Raptor) SMTP Proxy Fails to Fully Rewrite Some SMTP Headers
9615| [1003613] Lil' HTTP Server Discloses Files in Password Protected Directories on the Web Server to Remote Users
9616| [1003604] RealSystem Server and RealSystem Proxy Buffer Overflows May Let Remote Users Execute Arbitrary Code on the Server or Cause the Server to Crash
9617| [1003598] ScriptEase Mini WebServer Can Be Crashed By Remote Users Sending Long HTTP Requests
9618| [1003584] Dino's WebServer Can Be Crashed By Remote Users Sending Multiple Long HTTP GET Requests
9619| [1003553] DansGuardian Web Content Filtering Proxy Bug Lets Remote Users Bypass File Name Extension Filtering Restrictions
9620| [1003474] DeleGate Proxy Server Has Multiple Buffer Overflow Vulnerabilities That Let Remote Users Execute Arbitrary Code on the Server
9621| [1003466] Opera Web Browser Allows Cross-site Scripting Attacks Via Non-HTTP Servers
9622| [1003462] Microsoft Internet Explorer Web Browser Allows Cross-site Scripting Attacks Via Non-HTTP Servers
9623| [1003419] Microsoft Site Server Commerce Edition Lets Remote Users With Valid NT Accounts Upload and Then Execute ASP Scripts on the Server or Consume Disk Space on the Server
9624| [1003411] NETGEAR Router Web Content Filtering Mechanism Can Be Bypassed By Remote Users With Certain Malformed HTTP GET Requests
9625| [1003403] UBBThreads Bulletin Board Application Lets Remote Users With Accounts on the Bulletin Board Upload Files With Prohibited Extensions, Including PHP Scripts Which Can Subsequently Be Executed on the System
9626| [1003391] Cisco Catalyst CatOS Telnet Daemon Buffer Overflow Lets Remote Users Crash and Reload the Switch
9627| [1003331] Chuid File Permission Utility Incorrectly Lets Users Change Permission of Files Located Outside of the Upload Directory and Files Owned By Root
9628| [1003282] Avirt Gateway Web Proxy Buffer Overflow Lets Remote Users Execute Arbitrary Code on the Server with SYSTEM Level Privileges
9629| [1003281] Avirt Gateway Suite Telnet Proxy Flaw Gives Remote Users Telnet Command Line Access to the Server With SYSTEM Level Privileges
9630| [1003251] Sapporo Works 'BlackJumboDog' Web Proxy Buffer Overflow Lets Remote Users Execute Arbitrary Code on the Host Running the Proxy
9631| [1003210] Pi3Web HTTP Server Can Be Crashed By Remote Users Sending Long CGI Parameters
9632| [1003170] Cisco SN 5420 Storage Router Bugs Disclose the Router Configuration to Remote Users and Allow Remote Users to Crash the Router With Large HTTP Headers or Fragmented Packets
9633| [1003133] PostNuke Downloads Module 'ttitle' Parameter Allows Cross-Site Scripting Attacks
9634| [1003125] Hosting Controller Windows-based Web Hosting Management Software Lets Remote Users Establish Administrator Accounts and Upload and Execute Arbitrary Code on the Server
9635| [1003116] PHPFileExchange Web-Based File Storage System Has Access Control Bug That Allows Remote Users With Valid Accounts to Upload Files to Read-Only Directories
9636| [1003111] Pine E-mail Client Allows Remote Users to Send Malicious URLs Within a Message That Will Execute Arbitrary Shell Commands on the Recipient's Host When the URL is Loaded
9637| [1003103] Anti-Web HTTPD (awhttpd) Web Server Can Be Crashed By Local Users
9638| [1003096] Sfxload Sound Font Loader Component of AWESFX Utility Package Has Buffer Overflow That May Allow a Local User to Obtain Elevated Privileges on the Host
9639| [1003068] DeleGate Proxy Server Allows Cross-Site Scripting Attacks
9640| [1003065] ELSA Lancom Router Discloses the Administrator Password to Remote Users, Allowing Them to Change the Router's Configuration and Upload Modified Firmware
9641| [1003038] IBM AIX Loadable Authentication Modules Gives Root Access to Remote Users
9642| [1003002] WMCube/GDK Load Monitoring Tool Has Buffer Overflow That Lets Local Users Gain Elevated Privileges
9643| [1002988] Tivoli SecureWay Policy Director WebSEAL Server Can Be Crashed By Remote Users Appending '%2e' to HTTP Requests
9644| [1002970] ATPhttpd Web Server Can Be Crashed By Remote Users Sending Long URLs
9645| [1002957] Microsoft Internet Information Server Can Be Crashed By Remote Users With HTTP Requests Containing Invalid Content-Length Values
9646| [1002908] Platform Computing's Platform LSF Load Sharing Application Contains Multiple Flaws, Disclosing Files to Local Users, Giving Local Users Root Access, and Crashing When Remote Users Send Malformed Packets
9647| [1002890] Outlook Express for Macintosh May Crash While Downloading POP3 Mail Containing a Long Line
9648| [1002878] AspUpload Default Configuration Installs Scripts That Allow Remote Users to Upload Arbitrary Files to the Server and Rename Those Files
9649| [1002867] Frox FTP Proxy Server May Allow Remote Users to Execute Arbitrary Code on the Server in a Certain Configuration
9650| [1002820] Microsoft Internet Explorer Allows Malicious Web Pages to Spoof Downloadable File Types And Execute Code on the User's Computer When Opened Directly from the Browser
9651| [1002818] Oracle9iAS Web Cache Can Be Crashed By Remote Users Sending Malformed HTTP Content Length Header
9652| [1002783] Thttpd Web Server Has a One Byte Buffer Overflow That Allows Remote Users to Execute Arbitrary Code
9653| [1002752] Cisco 12000 Series Internet Routers Can Be Degraded or Crashed By Remote Users Due to CPU Overloading in Generating ICMP Unreachable Messages
9654| [1002743] mini_httpd Web Server Discloses Password-Protected and Non-Readable Files to Remote Users
9655| [1002742] thttpd Web Server Discloses Password-Protected and Non-Readable Files to Remote Users in Certain Configurations
9656| [1002721] Rational ClearCase Configuration Management Software Buffer Overflow in db_loader Lets Local Users Execute Arbitrary Code with Root Level Privileges
9657| [1002713] Symantec Enterprise Firewall (Raptor Firewall) Netbios Proxy Can Be Crashed By Remote Users and UDP Proxy Can Be Made to Consume All CPU Resources
9658| [1002712] IBM AS/400 HTTP Server Discloses Source Code of Java Server Pages to Remote Users
9659| [1002600] Mozilla Browser Will Return HTTP Cookies to an FTP Server at the Same Domain as the HTTP Server, Which Could Be a Different Domain if the HTTP Server is Hosting Virtual Domains
9660| [1002594] Microsoft Internet Explorer for Mac OS X is Configured to Automatically Execute Downloaded Files
9661| [1002526] Microsoft Internet Explorer (IE) Web Browser Has Multiple URL-related Flaws That May Allow for Remote Code Execution, Remote HTTP Request Generation, and Application of Incorrect Security Restrictions
9662| [1002466] Meteor FTP Server Directory Traversal Security Hole Lets Remote Users Download Files From the Server That Are Located Outside the FTP Directory
9663| [1002459] PHP-Nuke Lets Remote Users Upload Files to the Server and Copy Files on the Server, Yielding User Level Access on the Server
9664| [1002439] Squid Proxy Caching Server Can Be Crashed by Remote Users with Mkdir PUT Requests
9665| [1002301] HP-UX Process Resource Manager (PRM) and Workload Manager (WLM) Allow Local Users to Obtain Root Level Privileges on the Host
9666| [1002267] AOLserver Can Be Crashed By Remote Users With a Long HTTP Authentication String And May Execute Arbitrary Code
9667| [1002229] Dynu FTP Server Lets Remote Users Traverse the Directory and Download Files Outside of the FTP Server Directory
9668| [1002187] Sambar Telnet Proxy/Server Password Buffer Overflow May Allow Remote Users to Execute Arbitrary Code on the Server
9669| [1002074] Proxomitron Web Filtering Proxy Allows Remote Users to Conduct Cross-site Scripting Attacks and Cause Arbitrary Code to be Executed by the Proxomitron Users' Browser, Possibly Disclosing Cookies
9670| [1002056] Tcl/Tk May Load Malicious Libraries That Can Give Root Privileges to Local Users
9671| [1002050] OmniSecure's HTTProtect Temporary File Flaw May Let Local Users Overwrite Files
9672| [1002045] Squid Proxy Caching Server Lets Remote Users Conduct Portscans Against Other Hosts Via the Squid Server in Certain Configurations
9673| [1002034] Caldera Docview Documentation Web Server Lets Local Users Gain Httpd User Account Privileges
9674| [1002013] HP/UX 11.11 Dynamically Loadable Kernel Modules Feature Lets Local Users Get Root Privileges
9675| [1001956] Xloadimage Used By Netscape Browser May Execute Arbitrary Code Specified By a Malicious Remote Web Server
9676| [1001905] Small HTTP Server Can Be Crashed By Remote Users
9677| [1001893] Another Buffer Overflow in GazTek ghttpd Web Server Lets Remote Users Execute Arbitrary Code on the Server
9678| [1001854] Cisco IOS Gives Remote Users Full Control of IOS Devices When HTTP Server Authentication with Local Authorization is Enabled
9679| [1001801] SurfControl's SuperScout Web Filter Fails to Block Packets Relayed Via Proxy Servers
9680| [1001772] GazTek ghttpd Web Server Executes Arbitrary Code Supplied By Remote Users
9681| [1001713] WatchGuard Firebox Firewall SMTP Proxy Fails to Block E-mail Based Executables and Scripts in Certain Conditions
9682| [1001618] OmniHTTP Web Server Allows Remote Users to Obtain Source Code of PHP Scripts and to Cause the Server to Consume All CPU Cycles
9683| [1001607] Cisco IOS Router Software May Reload Itself After Receiving a Vulnerability Scan
9684| [1001606] Norton AntiVirus E-mail Virus Scanner Module (poproxy.exe) Allows Remote Users to Cause the Host to Crash
9685| [1001555] OmniHTTPd Pro Web Server Can Be Crashed By Remote Users
9686| [1001475] CrushFTP Java-based FTP Server Lets Remote Users Change Directories and Download Files Outside of the FTP Server's Root Document Directory
9687| [1001427] Small HTTP Server Can Be Crashed By Remote Users
9688| [1001400] Opera Web Browser May Execute Files Selected for Download Instead of Prompting the User for Approval
9689| [1001378] RitLab's The Bat! E-Mail Client Allows a User's E-Mail to Be Made Unretrievable When Downloading a Specifically Formatted E-Mail Message
9690| [1001311] Netscape's SmartDownload Can Automatically Execute Arbitrary Code Without User Intervention or Knowledge for Both Netscape and Microsoft Browsers
9691| [1001248] Savant Web Server Can Be Crashed Remotely With Certain HTTP Requests
9692| [1001153] Symantec (Axent) Raptor Firewall May Allow Unauthorized Access Through the Firewall Using the HTTP Protocol
9693| [1001149] Nearly All of Compaq's Web-Enabled Management Software Inadvertently Acts As a Web Proxy Server, Allowing Web Surfers to Bypass Normal Proxy Server Filtering
9694| [1001139] SurfControl for Microsoft Proxy Server May Fail to Block Sites
9695| [1000992] WhitSoft's SlimServe HTTPd Web Server Gives Users Remote Access to Files Outside of the Server's Main Directory
9696|
9697| OSVDB - http://www.osvdb.org:
9698| [90557] Apache HTTP Server mod_proxy_balancer balancer-manager Interface Multiple Parameter XSS
9699| [75647] Apache HTTP Server mod_proxy_ajp Module mod_proxy_balancer HTTP Request Remote DoS
9700| [43259] Apache HTTP Server on Windows mod_proxy_balancer URL Handling Remote Memory Corruption
9701| [42937] Apache HTTP Server mod_proxy_balancer balancer-manager Unspecified CSRF
9702| [40264] Apache HTTP Server mod_proxy_balancer balancer_handler Function bb Variable Remote DoS
9703| [40263] Apache HTTP Server mod_proxy_balancer balancer-manager Multiple Parameter XSS
9704| [94090] Wireshark HTTP Dissector packet-http.c http_payload_subdissector Function Crafted Packet Handling Remote DoS
9705| [93048] IBM Sterling Secure Proxy HTTP Header Web Server Version Disclosure
9706| [92200] MiniWeb HTTP Server Non-existent Directory Arbitrary File Upload
9707| [92198] MiniWeb HTTP Server filename Parameter Traversal Arbitrary File Upload
9708| [91975] HAProxy HTTP Content Inspection Mechanism HTTP Request Handling Remote Overflow DoS
9709| [91703] Google Chrome PPB_URLLoader_Proxy::OnMsgReadResponseBodyAck URL Loader Out-of-bounds Memory Disclosure
9710| [91613] Zend Framework Multiple Class HTTP Header Proxy Information Handling Spoofing Weakness
9711| [91137] Flexera AdminStudio / InstallShield ActiveX (ISProxy.dll ) Multiple Method DLL Loading Arbitrary Code Execution
9712| [90736] Zen Load Balancer Multiple Unspecified Issues
9713| [90422] Mozilla Multiple Product Proxy 407 Response HTTPS Address Spoofing
9714| [89275] Apache HTTP Server mod_proxy_ajp Module Expensive Request Parsing Remote DoS
9715| [88581] Squid Web Proxy HTTP Accelerator Mode Proxied Port Scan Weakness
9716| [88287] Squid Crafted XMLHttpRequest Remote Proxy-Authorization Cleartext Credential Disclosure
9717| [88274] TVMOBiLi Media Server HttpUtils.dll CHTTPServerTransaction::LoadFile() Method Request Parsing Overflow
9718| [88239] BugTracker.NET download_file.aspx filename Parameter HTTP Response Splitting
9719| [88174] TVMOBiLi Media Server HttpUtils.dll CHTTPServerTransaction::LoadResource() Method Request Parsing Overflow DoS
9720| [88016] BlackJumboDog HTTP Proxy Multiple String Parsing Remote Overflow
9721| [87958] IBM WebSphere Message Broker ProxyServlet / MQ HTTP Connection Cleartext Credential Disclosure
9722| [87457] Tor Directory Connection HttpProxyAuthenticator Remote Fingerprinting Weakness
9723| [86549] libproxy px_pac_reload() Function Content-Length Header Handling Remote Overflow
9724| [85838] 602Pro LAN SUITE HTTP Proxy-Authorization Header Handling Remote Overflow DoS
9725| [85809] RubyGems HTTPS to HTTP Redirection MitM Downloaded Installation File Manipulation
9726| [85692] Zen Load Balancer content3-2.cgi if Parameter Remote Command Execution
9727| [85691] Zen Load Balancer upload.cgi Arbitrary File Upload
9728| [85690] Zen Load Balancer Multiple Directory Permissions Weakness Information Disclosure
9729| [85654] Zen Load Balancer content2-2.cgi Multiple Parameter Remote Command Execution
9730| [85584] Cisco Application Control Engine (ACE) Module for Cisco Catalyst Load Balancer (LB) Queue Monitoring Application Traffic Parsing Remote DoS
9731| [85090] Apache HTTP Server mod_proxy_ajp.c mod_proxy_ajp Module Proxy Functionality Cross-client Information Disclosure
9732| [85089] Apache HTTP Server mod_proxy_http.c mod_proxy_http Module Cross-client Information Disclosure
9733| [84319] Scrutinizer NetFlow and sFlow Analyzer HTTP Request Parsing Arbitrary File Upload
9734| [83057] Python SimpleHTTPServer Module Crafted Filename Upload Directory Listing XSS
9735| [82774] HAProxy http_auth_group() Function User Parsing Weakness
9736| [82768] HAProxy Secure / HttpOnly Flag Cookie Weakness
9737| [82651] SEIL Routers HTTP-Proxy/Gateway HTTP Request Parsing URL Filter Bypass
9738| [81524] Mozilla Multiple Product RSS / Atom XML HTTPS Content Loading URL Spoofing Weakness
9739| [81164] Squid Proxy HTTP Header Host Field Parsing URL Filter Bypass
9740| [79290] Google Chrome Translation Script Unsafe HTTP Download UXSS
9741| [78987] CVS src/client.c proxy_connect() Function HTTP Version Response Parsing Remote Overflow
9742| [78774] Mozilla Multiple Products IPv6 Proxy Generated XMLHttpRequest Object Handling Remote Information Disclosure
9743| [78667] Oracle Java SE / Java for Business java:classes_net HttpsUrlConnection Authenticated Proxy Tunnel Handling Overflow
9744| [77444] Apache HTTP Server mod_proxy Mdule Web Request HTTP/0.9 Protocol URL Parsing Proxy Remote Security Bypass
9745| [77310] Apache HTTP Server mod_proxy Reverse Proxy Mode Security Bypass Weakness (2011-4317)
9746| [76079] Apache HTTP Server mod_proxy Mdule Web Request URL Parsing Proxy Remote Security Bypass (2011-3368)
9747| [74346] HAProxy src/proto_http.c manage_server_side_cookies() Function HTTP Set-Cookie Header Remote DoS
9748| [73624] PHP Streams Component HTTP Proxy FTP Wrapper ftp:// URL DoS
9749| [73354] IBM WebSphere Application Server (WAS) HTTP Transport SIP Proxy UDP Message Saturation Remote DoS
9750| [71647] Apache HttpComponents HttpClient Proxy-Authorization Credentials Remote Disclosure
9751| [69817] Microsoft SharePoint Office Document Load Balancer Crafted SOAP Request Remote Code Execution
9752| [69667] Google Chrome HTTP Proxy Authentication Required Response Handling DoS
9753| [68162] OmniVista 4760 HTTP Proxy Crafted HTTP Request Remote Overflow
9754| [67296] WebKit loader/DocumentThreadableLoader.cpp XMLHttpRequest Cross-origin Request Credential Handling Weakness
9755| [67270] Blue Coat ProxySG HTTPS Privilege Enforcement Bypass
9756| [66727] PHP HTTP Upload Unspecified DoS
9757| [65661] Spring Framework class.classLoader.URLs[0]=jar: Crafted JAR File HTTP Request Arbitrary Code Execution
9758| [65654] Apache HTTP Server mod_proxy_http mod_proxy_http.c Timeout Detection Weakness HTTP Request Response Disclosure
9759| [65157] sblim-sfcb httpAdapter.c GetPayload Function Content-Length Header Multiple Overflow
9760| [64504] Consona SdcUser.TgConCtl ActiveX (tgctlcm.dll) HTTPDownloadFile Arbitrary Command Execution
9761| [64002] WebKit DocumentThreadableLoader::preflightFailure Synchronous Preflight XMLHttpRequest CSRF
9762| [62676] Apache HTTP Server mod_proxy_ajp Module Crafted Request Remote DoS
9763| [62674] Apache HTTP Server mod_isapi Module Unloading Crafted Request Remote DoS
9764| [62009] Apache HTTP Server src/modules/proxy/proxy_util.c mod_proxy ap_proxy_send_fb() Function Overflow
9765| [60010] HP Praesidium Webproxy Crafted HTTP Request Forwarding Weakness
9766| [60001] HP LoadRunner Persits.XUpload.2 ActiveX (XUpload.ocx) MakeHttpRequest Method Traversal Arbitrary File Creation
9767| [59022] Apache Shindig ConcatProxyServlet HTTP Header Response Splitting
9768| [57882] Apache HTTP Server mod_proxy_ftp Authorization HTTP Header Arbitrary FTP Command Injection
9769| [57851] Apache HTTP Server mod_proxy_ftp EPSV Command NULL Dereference Remote DoS
9770| [57367] Universal HTTP Upload ActiveX (UUploaderSvrD.dll) Arbitrary File Deletion
9771| [56712] Live Chat Component for Joomla! xmlhttp.php Open HTTP Proxy
9772| [56489] Microsoft IE Proxy Server CONNECT Response Cached Certificate Use MiTM HTTPS Site Spoofing
9773| [56488] Google Chrome Proxy Server CONNECT Response Cached Certificate Use MiTM HTTPS Site Spoofing
9774| [56487] Opera Proxy Server CONNECT Response Cached Certificate Use MiTM HTTPS Site Spoofing
9775| [56247] Akamai Download Manager ActiveX manager.exe Redswoosh Download HTTP Response Handling Overflow
9776| [55653] MiniWeb HTTP Server Crafted Request Forced File Download / Source Disclosure
9777| [55553] Apache HTTP Server mod_proxy Module mod_proxy_http.c stream_reqbody_cl Function CPU Consumption DoS
9778| [55133] Mozilla Firefox HTTP Host Header Proxy Server CONNECT Response Document Context SSL Tampering Weakness
9779| [55132] Google Chrome src/net/http/http_transaction_winhttp.cc HTTP Host Header Proxy Server CONNECT Response Document Context SSL Tampering Weakness
9780| [55129] Microsoft IE HTTP Host Header Proxy Server CONNECT Response Document Context SSL Tampering Weakness
9781| [54768] IPFilter ippool lib/load_http.c URL Hostname Handling Local Overflow
9782| [53921] Apache HTTP Server mod_proxy_ajp Cross Thread/Session Information Disclosure
9783| [53396] Versalsoft HTTP Image Uploader ActiveX (UUploaderSvrD.dll) RemoveFileOrDir Method Arbitrary File Deletion
9784| [52413] Blue Coat ProxySG Transparent Interception Mode HTTP Host Header Dependancy Media Access Control Bypass
9785| [52412] Ziproxy Transparent Interception Mode HTTP Host Header Dependancy Media Access Control Bypass
9786| [51745] Free Download Manager (FDM) Remote Control Server HTTP Authorization Header Handling Overflow
9787| [50714] Blue Coat ProxySG Management Console /Secure/Local/console/install_upload_from_file.htm file Parameter XSS
9788| [50066] FlexCell Grid FlexCell.Grid ActiveX (FlexCell.ocx) HttpDownloadFile() Method Arbitrary File Overwrite
9789| [48528] CCProxy HTTP Proxy CONNECT Request Handling Remote Overflow
9790| [47866] Ultra.Office ActiveX (OfficeCtrl.ocx) HttpUpload() Method Overflow
9791| [47512] HTTP Anti Virus Proxy (HAVP) Infinite Loop Connection Saturation DoS
9792| [47474] Apache HTTP Server mod_proxy_ftp Directory Component Wildcard Character XSS
9793| [46085] Apache HTTP Server mod_proxy ap_proxy_http_process_response() Function Interim Response Forwarding Remote DoS
9794| [44577] phpMyAdmin Crafted HTTP Request UploadDir Parameter Arbitrary File Access
9795| [44345] Coppermine Photo Gallery upload.php Content-Type HTTP Header SQL Injection
9796| [44135] Nortel VPN Gateway Malformed HTTP Request SSL Proxy Remote DoS
9797| [44132] Nortel iSD-SSL Malformed HTTP Request SSL Proxy Remote DoS
9798| [43913] Perlbal lib/Perlbal/ClientProxy.pm Chunked Upload File Upload Handling Overflow DoS
9799| [42507] HTTP File Server (HFS) Traversal Arbitrary File Upload
9800| [42214] Apache HTTP Server mod_proxy_ftp UTF-7 Encoded XSS
9801| [42122] Kerio WinRoute Firewall Proxy Server Unspecified HTTP Fallback
9802| [41862] DeleGate HTTP Cache Proxy Unspecified DoS
9803| [41019] Apache HTTP Server mod_negotiation Module Multi-Line Filename Upload XSS
9804| [41018] Apache HTTP Server mod_negotiation Module Multi-Line Filename Upload CRLF
9805| [39291] ELinks https Proxy CONNECT Request Cleartext Information Disclosure
9806| [38832] EDraw Office Viewer Component ActiveX (officeviewer.ocx) HttpDownloadFileToTempDir Method Overflow
9807| [38794] EDraw Office Viewer Component ActiveX (officeviewer.ocx) HttpDownloadFile Method Traversal Arbitrary File Overwrite
9808| [38665] F5 Firepass SSL VPN download_plugin.php3 backurl Parameter XSS
9809| [38415] EDraw Flowchart EDIMAGE.EDImageCtrl ActiveX (EDImage.ocx) HttpDownloadFile() Method Arbitrary File Overwrite
9810| [37345] Astaro Security Gateway (ASG) HTTP Proxy Unspecified DoS
9811| [37051] Apache HTTP Server mod_proxy modules/proxy/proxy_util.c Crafted Header Remote DoS
9812| [36992] Bitflux Upload Progress Meter uploadprogress.c uploadprogress_php_rfc1867_file Function HTTP POST Overflow
9813| [36980] 3Proxy HTTP Redirection Unspecified DoS
9814| [36074] BEA WebLogic HttpClusterServlet / HttpProxyServlet SecureProxy Admin Functionality Access
9815| [36045] EDraw Office Viewer Component ActiveX (edrawofficeviewer.ocx) HttpDownloadFile Method Overflow
9816| [35237] 3Proxy HTTP Proxy Crafted Transparent Request Remote Overflow
9817| [35033] WebCreator http/load.inc.php moddir Parameter Remote File Inclusion
9818| [34339] HTTP File Uploader ActiveX (UFileUploaderD.dll) AddFile Method Overflow
9819| [33097] Blue Coat WinProxy HTTP CONNECT Request Overflow
9820| [28428] Ruby on Rails File Upload Request HTTP Header Unspecified Issue
9821| [27944] libmusicbrainz MBHttp::Download Redirect HTTP Reply Overflow
9822| [26300] Mozilla Multiple Products via Proxy Server HTTP Response Smuggling
9823| [26008] PHPGallue Proxy Cache HTTP Header Information Disclosure
9824| [25940] Etype Eserv/3 HTTP Server File Upload Name Validation Bypass
9825| [25565] phpBB usercp_avatar.php Arbitrary HTTP Proxy
9826| [22876] HTTP Anti Virus Proxy Multiple AV Scanner Failure
9827| [22853] Blue Coat ProxySG SGOS HTTP Proxy Arbitrary Port Connection
9828| [22237] Blue Coat WinProxy HTTP Request Overflow DoS
9829| [21762] Microsoft IE HTTPS Proxy Basic Authentication URL Cleartext Transmission
9830| [19792] Astaro Security Linux Proxy index.fpl wfe_download Parameter Traversal Arbitrary File Access
9831| [19008] Simpleproxy HTTP Proxy Reply Remote Format String
9832| [18284] Netquery HTTP GET Request Panel Unauthorized Proxy
9833| [16388] Mozilla with Proxy HTTP Header Arbitrary Cookie Disclosure
9834| [16082] Apple Mac OS X Server HTTP Proxy Unrestricted Access
9835| [16014] IBM Web Traffic Express Caching Proxy Server HTTP GET Request XSS
9836| [15413] Linux Kernel Equalizer Load-balancer (eql.c) Local DoS
9837| [14573] HTTP Anti Virus Proxy Archive Scanning Failure
9838| [14270] Sun Java JRE HTTP Proxy Java Applet Session Hijack
9839| [14155] BitlBee HTTP Proxy Support Unspecified Security Issue
9840| [12558] Apache HTTP Server IPv6 FTP Proxy Socket Failure DoS
9841| [12191] Falk eSolutions FLB02/CP Load Balancer Redirect Failure
9842| [11638] Bajie HTTP JServer UploadServlet upload.html File Upload Arbitrary Program Execution
9843| [11593] CCProxy Logging Component HTTP GET Request Remote Overflow
9844| [11375] ezContents uploadfile.php HTTP POST Arbitrary File/Directory Modification
9845| [9742] Apache HTTP Server mod_ssl char_buffer_read Function Reverse Proxy DoS
9846| [9688] Apache HTTP Server mod_proxy Malformed FTP Command DoS
9847| [7929] Apache HTTP Server mod_ssl ssl_engine_log.c mod_proxy Hook Function Remote Format String
9848| [7714] AnomicHTTPProxy Invalid HTTP Command Proxy Localhost Block
9849| [7713] AnomicHTTPProxy Administration Password Dementia
9850| [7709] AnomicHTTPProxy Double Dot Arbitrary File Access
9851| [6839] Apache HTTP Server mod_proxy Content-Length Overflow
9852| [6804] Avirt Gateway/Gateway Suite/SOHO HTTP Proxy Overflow
9853| [6187] Trend Micro InterScan VirusWall HTTP CONNECT Proxying
9854| [6162] Trend Micro InterScan VirusWall HTTP Proxy Content Scanning Circumvention
9855| [4433] Check Point FireWall-1 HTTP Proxy Traffic Bypass
9856| [4366] Symantec Personal Firewalls HTTP Proxy Remote Overflow
9857| [4028] PSOProxy Long HTTP Request Overflow
9858| [4015] Jigsaw HTTP Proxy Error Page XSS
9859| [3876] Jack's formmail.php Malformed HTTP Referer Arbitrary File Upload
9860| [3732] Gaim HTTP Proxy Connect Overflow
9861| [3723] ProxyNow! HTTP Request Overflow
9862| [3718] Finjan SurfinGate Proxy FHTTP Command Admin Functions Authentication Bypass
9863| [2764] Plug and Play Web Server Proxy Service HTTP Request Handling DoS
9864| [1789] Microsoft ISA Server Web Proxy Malformed HTTP Request Parsing Remote DoS
9865| [1429] SapporoWorks WinProxy Malformed HTTP GET Request DoS
9866| [1336] CProxy SP2 Long HTTP Request DoS
9867| [1050] Persits Software AspUpload AspUpload.dll HTTP Request Overflow
9868| [787] Compaq Web-enabled Management Software HTTP Server Arbitrary Traffic Proxy
9869|_
9870Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
9871OS fingerprint not ideal because: Missing a closed TCP port so results incomplete
9872No OS matches for host
9873Network Distance: 18 hops
9874Service Info: Device: load balancer
9875
9876TRACEROUTE (using port 80/tcp)
9877HOP RTT ADDRESS
98781 37.26 ms 10.252.204.1
98792 162.48 ms vlan102.as04.qc1.ca.m247.com (176.113.74.145)
98803 54.60 ms irb-0.agg2.qc1.ca.m247.com (83.97.21.80)
98814 54.60 ms vlan304.as032.buc.ro.m247.com (77.243.185.226)
98825 54.58 ms ix-xe-11-1-1-0.tcore1.w6c-montreal.as6453.net (66.198.96.98)
98836 180.23 ms if-ae-12-2.tcore1.mtt-montreal.as6453.net (64.86.31.26)
98847 197.96 ms if-ae-0-2.tcore2.mtt-montreal.as6453.net (216.6.115.90)
98858 162.59 ms if-ae-5-2.tcore2.n0v-new-york.as6453.net (64.86.226.58)
98869 180.30 ms if-ae-4-2.tcore2.l78-london.as6453.net (80.231.131.157)
988710 143.46 ms if-ae-14-2.tcore2.av2-amsterdam.as6453.net (80.231.131.161)
988811 175.58 ms if-ae-38-29.tcore1.fnm-frankfurt.as6453.net (80.231.152.33)
988912 214.23 ms if-ae-6-2.tcore1.fnm-frankfurt.as6453.net (195.219.194.150)
989013 214.16 ms 5.23.0.38
989114 214.19 ms 10.59.105.78
989215 158.29 ms host-213-74-100-126.superonline.net (213.74.100.126)
989316 158.21 ms host-213-74-100-126.superonline.net (213.74.100.126)
989417 175.81 ms host-82-222-182-3.reverse.superonline.net (82.222.182.3)
989518 165.74 ms host-82-222-182-112.reverse.superonline.net (82.222.182.112)
9896
9897NSE: Script Post-scanning.
9898Initiating NSE at 13:28
9899Completed NSE at 13:28, 0.00s elapsed
9900Initiating NSE at 13:28
9901Completed NSE at 13:28, 0.00s elapsed
9902Read data files from: /usr/bin/../share/nmap
9903OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
9904Nmap done: 1 IP address (1 host up) scanned in 230.85 seconds
9905##################################################################################################################################
9906Starting Nmap 7.80 ( https://nmap.org ) at 2019-10-11 13:31 EDT
9907NSE: Loaded 163 scripts for scanning.
9908NSE: Script Pre-scanning.
9909Initiating NSE at 13:31
9910Completed NSE at 13:31, 0.00s elapsed
9911Initiating NSE at 13:31
9912Completed NSE at 13:31, 0.00s elapsed
9913Initiating Parallel DNS resolution of 1 host. at 13:31
9914Completed Parallel DNS resolution of 1 host. at 13:31, 0.02s elapsed
9915Initiating SYN Stealth Scan at 13:31
9916Scanning host-82-222-182-112.reverse.superonline.net (82.222.182.112) [1 port]
9917Discovered open port 443/tcp on 82.222.182.112
9918Completed SYN Stealth Scan at 13:31, 0.19s elapsed (1 total ports)
9919Initiating Service scan at 13:31
9920Scanning 1 service on host-82-222-182-112.reverse.superonline.net (82.222.182.112)
9921Completed Service scan at 13:34, 152.25s elapsed (1 service on 1 host)
9922Initiating OS detection (try #1) against host-82-222-182-112.reverse.superonline.net (82.222.182.112)
9923Retrying OS detection (try #2) against host-82-222-182-112.reverse.superonline.net (82.222.182.112)
9924Initiating Traceroute at 13:34
9925Completed Traceroute at 13:34, 0.34s elapsed
9926Initiating Parallel DNS resolution of 16 hosts. at 13:34
9927Completed Parallel DNS resolution of 16 hosts. at 13:34, 0.16s elapsed
9928NSE: Script scanning 82.222.182.112.
9929Initiating NSE at 13:34
9930NSE: [http-wordpress-enum 82.222.182.112:443] got no answers from pipelined queries
9931Completed NSE at 13:37, 209.35s elapsed
9932Initiating NSE at 13:37
9933Completed NSE at 13:37, 2.01s elapsed
9934Nmap scan report for host-82-222-182-112.reverse.superonline.net (82.222.182.112)
9935Host is up (0.16s latency).
9936
9937PORT STATE SERVICE VERSION
9938443/tcp open ssl/https
9939| fingerprint-strings:
9940| FourOhFourRequest, HTTPOptions:
9941| HTTP/1.1 200 OK
9942| Cache-Control: no-cache
9943| Connection: close
9944| Content-Type: text/html; charset=utf-8
9945| Pragma: no-cache
9946| Content-Length: 3512
9947| <!DOCTYPE html>
9948| <style>
9949| a:focus,
9950| a:hover {
9951| color: #000;
9952| text-decoration: none;
9953| .btn-secondary,
9954| .btn-secondary:hover,
9955| .btn-secondary:focus {
9956| color: #333;
9957| text-shadow: none;
9958| background-color: #fff;
9959| border: .05rem solid #fff;
9960| Base structure
9961| html,
9962| body {
9963| height: 100%;
9964| background-color: #FFF;
9965| background: url(ata_ucak2.jpg) no-repeat center center fixed;
9966| body {
9967| color: #000;
9968| text-align: center;
9969| text-shadow: 0 .05rem .1rem rgba(0,0,0,.5);
9970| Extra markup and styles for table-esque vertical and horizontal centering */
9971| .site-wrapper {
9972| display: table;
9973| width: 100%;
9974| height: 100%; /* For at least Firefox */
9975| min-height: 100%;
9976| -webkit-box-shadow: inset 0 0 5r
9977| GetRequest:
9978| HTTP/1.1 302 Found
9979| Cache-Control: private
9980| Content-Type: text/html; charset=utf-8
9981| Location: /
9982| X-Frame-Options: SAMEORIGIN
9983| Date: Fri, 11 Oct 2019 17:31:57 GMT
9984| Connection: close
9985| <html><head><title>Object moved</title></head><body>
9986| <h2>Object moved to <a href="/">here</a>.</h2>
9987|_ </body></html>
9988|_http-aspnet-debug: ERROR: Script execution failed (use -d to debug)
9989| http-brute:
9990|_ Path "/" does not require authentication
9991|_http-chrono: Request times for /; avg: 212.40ms; min: 183.12ms; max: 263.23ms
9992|_http-csrf: Couldn't find any CSRF vulnerabilities.
9993|_http-devframework: Couldn't determine the underlying framework or CMS. Try increasing 'httpspider.maxpagecount' value to spider more pages.
9994|_http-dombased-xss: Couldn't find any DOM based XSS.
9995|_http-errors: ERROR: Script execution failed (use -d to debug)
9996|_http-feed: Couldn't find any feeds.
9997|_http-fetch: Please enter the complete path of the directory to save data in.
9998|_http-jsonp-detection: Couldn't find any JSONP endpoints.
9999|_http-mobileversion-checker: No mobile version detected.
10000| http-security-headers:
10001| Strict_Transport_Security:
10002|_ HSTS not configured in HTTPS Server
10003| http-sitemap-generator:
10004| Directory structure:
10005| Longest directory structure:
10006| Depth: 0
10007| Dir: /
10008| Total files found (by extension):
10009|_
10010|_http-stored-xss: Couldn't find any stored XSS vulnerabilities.
10011| http-vhosts:
10012|_127 names had status ERROR
10013|_http-vuln-cve2014-3704: ERROR: Script execution failed (use -d to debug)
10014|_http-wordpress-users: [Error] Wordpress installation was not found. We couldn't find wp-login.php
10015|_http-xssed: No previously reported XSS vuln.
100161 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at https://nmap.org/cgi-bin/submit.cgi?new-service :
10017SF-Port443-TCP:V=7.80%T=SSL%I=7%D=10/11%Time=5DA0BC8E%P=x86_64-pc-linux-gn
10018SF:u%r(GetRequest,12E,"HTTP/1\.1\x20302\x20Found\r\nCache-Control:\x20priv
10019SF:ate\r\nContent-Type:\x20text/html;\x20charset=utf-8\r\nLocation:\x20/\r
10020SF:\nX-Frame-Options:\x20SAMEORIGIN\r\nDate:\x20Fri,\x2011\x20Oct\x202019\
10021SF:x2017:31:57\x20GMT\r\nConnection:\x20close\r\n\r\n<html><head><title>Ob
10022SF:ject\x20moved</title></head><body>\r\n<h2>Object\x20moved\x20to\x20<a\x
10023SF:20href=\"/\">here</a>\.</h2>\r\n</body></html>\r\n")%r(HTTPOptions,E47,
10024SF:"HTTP/1\.1\x20200\x20OK\r\nCache-Control:\x20no-cache\r\nConnection:\x2
10025SF:0close\r\nContent-Type:\x20text/html;\x20charset=utf-8\r\nPragma:\x20no
10026SF:-cache\r\nContent-Length:\x203512\r\n\r\n<!DOCTYPE\x20html>\r\n<style>\
10027SF:r\n\r\n\r\na,\r\na:focus,\r\na:hover\x20{\r\n\x20\x20color:\x20#000;\r\
10028SF:n\x20\x20text-decoration:\x20none;\r\n}\r\n\r\n\.btn-secondary,\r\n\.bt
10029SF:n-secondary:hover,\r\n\.btn-secondary:focus\x20{\r\n\x20\x20color:\x20#
10030SF:333;\r\n\x20\x20text-shadow:\x20none;\x20\r\n\x20\x20background-color:\
10031SF:x20#fff;\r\n\x20\x20border:\x20\.05rem\x20solid\x20#fff;\r\n}\r\n\r\n\r
10032SF:\n/\*\r\n\x20\*\x20Base\x20structure\r\n\x20\*/\r\n\r\nhtml,\r\nbody\x2
10033SF:0{\r\n\x20\x20height:\x20100%;\r\n\x20\x20background-color:\x20#FFF;\r\
10034SF:n\x20\x20background:\x20url\(ata_ucak2\.jpg\)\x20no-repeat\x20center\x2
10035SF:0center\x20fixed;\r\n}\r\nbody\x20{\r\n\x20\x20color:\x20#000;\r\n\x20\
10036SF:x20text-align:\x20center;\r\n\x20\x20text-shadow:\x200\x20\.05rem\x20\.
10037SF:1rem\x20rgba\(0,0,0,\.5\);\r\n}\r\n\r\n/\*\x20Extra\x20markup\x20and\x2
10038SF:0styles\x20for\x20table-esque\x20vertical\x20and\x20horizontal\x20cente
10039SF:ring\x20\*/\r\n\.site-wrapper\x20{\r\n\x20\x20display:\x20table;\r\n\x2
10040SF:0\x20width:\x20100%;\r\n\x20\x20height:\x20100%;\x20/\*\x20For\x20at\x2
10041SF:0least\x20Firefox\x20\*/\r\n\x20\x20min-height:\x20100%;\r\n\x20\x20-we
10042SF:bkit-box-shadow:\x20inset\x200\x200\x205r")%r(FourOhFourRequest,E47,"HT
10043SF:TP/1\.1\x20200\x20OK\r\nCache-Control:\x20no-cache\r\nConnection:\x20cl
10044SF:ose\r\nContent-Type:\x20text/html;\x20charset=utf-8\r\nPragma:\x20no-ca
10045SF:che\r\nContent-Length:\x203512\r\n\r\n<!DOCTYPE\x20html>\r\n<style>\r\n
10046SF:\r\n\r\na,\r\na:focus,\r\na:hover\x20{\r\n\x20\x20color:\x20#000;\r\n\x
10047SF:20\x20text-decoration:\x20none;\r\n}\r\n\r\n\.btn-secondary,\r\n\.btn-s
10048SF:econdary:hover,\r\n\.btn-secondary:focus\x20{\r\n\x20\x20color:\x20#333
10049SF:;\r\n\x20\x20text-shadow:\x20none;\x20\r\n\x20\x20background-color:\x20
10050SF:#fff;\r\n\x20\x20border:\x20\.05rem\x20solid\x20#fff;\r\n}\r\n\r\n\r\n/
10051SF:\*\r\n\x20\*\x20Base\x20structure\r\n\x20\*/\r\n\r\nhtml,\r\nbody\x20{\
10052SF:r\n\x20\x20height:\x20100%;\r\n\x20\x20background-color:\x20#FFF;\r\n\x
10053SF:20\x20background:\x20url\(ata_ucak2\.jpg\)\x20no-repeat\x20center\x20ce
10054SF:nter\x20fixed;\r\n}\r\nbody\x20{\r\n\x20\x20color:\x20#000;\r\n\x20\x20
10055SF:text-align:\x20center;\r\n\x20\x20text-shadow:\x200\x20\.05rem\x20\.1re
10056SF:m\x20rgba\(0,0,0,\.5\);\r\n}\r\n\r\n/\*\x20Extra\x20markup\x20and\x20st
10057SF:yles\x20for\x20table-esque\x20vertical\x20and\x20horizontal\x20centerin
10058SF:g\x20\*/\r\n\.site-wrapper\x20{\r\n\x20\x20display:\x20table;\r\n\x20\x
10059SF:20width:\x20100%;\r\n\x20\x20height:\x20100%;\x20/\*\x20For\x20at\x20le
10060SF:ast\x20Firefox\x20\*/\r\n\x20\x20min-height:\x20100%;\r\n\x20\x20-webki
10061SF:t-box-shadow:\x20inset\x200\x200\x205r");
10062Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
10063OS fingerprint not ideal because: Missing a closed TCP port so results incomplete
10064No OS matches for host
10065Network Distance: 17 hops
10066
10067TRACEROUTE (using port 443/tcp)
10068HOP RTT ADDRESS
100691 38.09 ms 10.252.204.1
100702 55.85 ms vlan102.as04.qc1.ca.m247.com (176.113.74.145)
100713 55.87 ms irb-0.agg2.qc1.ca.m247.com (83.97.21.80)
100724 55.80 ms vlan304.as032.buc.ro.m247.com (77.243.185.226)
100735 55.85 ms ix-xe-11-1-1-0.tcore1.w6c-montreal.as6453.net (66.198.96.98)
100746 182.34 ms if-ae-12-2.tcore1.mtt-montreal.as6453.net (64.86.31.26)
100757 199.88 ms if-ae-0-2.tcore2.mtt-montreal.as6453.net (216.6.115.90)
100768 164.23 ms if-ae-5-2.tcore2.n0v-new-york.as6453.net (64.86.226.58)
100779 182.32 ms if-ae-4-2.tcore2.l78-london.as6453.net (80.231.131.157)
1007810 143.27 ms if-ae-14-2.tcore2.av2-amsterdam.as6453.net (80.231.131.161)
1007911 223.28 ms if-ae-38-29.tcore1.fnm-frankfurt.as6453.net (80.231.152.33)
1008012 202.93 ms if-ae-8-2.tcore1.it5-istanbul.as6453.net (195.219.156.22)
1008113 184.86 ms if-ae-8-2.tcore1.it5-istanbul.as6453.net (195.219.156.22)
1008214 167.98 ms 5.23.0.38
1008315 184.80 ms 10.59.105.78
1008416 160.19 ms host-213-74-100-126.superonline.net (213.74.100.126)
1008517 170.89 ms host-82-222-182-112.reverse.superonline.net (82.222.182.112)
10086
10087NSE: Script Post-scanning.
10088Initiating NSE at 13:37
10089Completed NSE at 13:37, 0.00s elapsed
10090Initiating NSE at 13:37
10091Completed NSE at 13:37, 0.00s elapsed
10092Read data files from: /usr/bin/../share/nmap
10093OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
10094Nmap done: 1 IP address (1 host up) scanned in 376.41 seconds
10095#######################################################################################################################################
10096--------------------------------------------------------
10097[1m[32m<<<Yasuo discovered following vulnerable applications>>>[0m
10098--------------------------------------------------------
10099+-------------------+-----------------------------------------+-----------------------------------------------------+----------+----------+
10100| App Name | URL to Application | Potential Exploit | Username | Password |
10101+-------------------+-----------------------------------------+-----------------------------------------------------+----------+----------+
10102| JBoss jmx-console | https://82.222.182.112:443/jmx-console/ | ./exploit/multi/http/jboss_deploymentfilerepository | None | None |
10103+-------------------+-----------------------------------------+-----------------------------------------------------+----------+----------+
10104#######################################################################################################################################
10105Starting Nmap 7.80 ( https://nmap.org ) at 2019-10-11 13:44 EDT
10106NSE: Loaded 47 scripts for scanning.
10107NSE: Script Pre-scanning.
10108Initiating NSE at 13:44
10109Completed NSE at 13:44, 0.00s elapsed
10110Initiating NSE at 13:44
10111Completed NSE at 13:44, 0.00s elapsed
10112Initiating Ping Scan at 13:44
10113Scanning 82.222.182.112 [4 ports]
10114Completed Ping Scan at 13:44, 0.25s elapsed (1 total hosts)
10115Initiating Parallel DNS resolution of 1 host. at 13:44
10116Completed Parallel DNS resolution of 1 host. at 13:44, 0.02s elapsed
10117Initiating SYN Stealth Scan at 13:44
10118Scanning host-82-222-182-112.reverse.superonline.net (82.222.182.112) [65535 ports]
10119Discovered open port 443/tcp on 82.222.182.112
10120Discovered open port 80/tcp on 82.222.182.112
10121SYN Stealth Scan Timing: About 7.85% done; ETC: 13:50 (0:06:04 remaining)
10122SYN Stealth Scan Timing: About 35.03% done; ETC: 13:47 (0:01:53 remaining)
10123SYN Stealth Scan Timing: About 68.28% done; ETC: 13:46 (0:00:42 remaining)
10124Completed SYN Stealth Scan at 13:46, 115.83s elapsed (65535 total ports)
10125Initiating Service scan at 13:46
10126Scanning 2 services on host-82-222-182-112.reverse.superonline.net (82.222.182.112)
10127Completed Service scan at 13:48, 152.09s elapsed (2 services on 1 host)
10128Initiating OS detection (try #1) against host-82-222-182-112.reverse.superonline.net (82.222.182.112)
10129Retrying OS detection (try #2) against host-82-222-182-112.reverse.superonline.net (82.222.182.112)
10130Initiating Traceroute at 13:48
10131Completed Traceroute at 13:48, 0.06s elapsed
10132Initiating Parallel DNS resolution of 2 hosts. at 13:48
10133Completed Parallel DNS resolution of 2 hosts. at 13:48, 0.00s elapsed
10134NSE: Script scanning 82.222.182.112.
10135Initiating NSE at 13:48
10136Completed NSE at 13:48, 16.89s elapsed
10137Initiating NSE at 13:48
10138Completed NSE at 13:48, 2.01s elapsed
10139Nmap scan report for host-82-222-182-112.reverse.superonline.net (82.222.182.112)
10140Host is up (0.043s latency).
10141Not shown: 65530 filtered ports
10142PORT STATE SERVICE VERSION
1014325/tcp closed smtp
1014480/tcp open http-proxy F5 BIG-IP load balancer http proxy
10145| vulscan: VulDB - https://vuldb.com:
10146| [127040] Loadbalancer.org Enterprise VA MAX up to 8.3.2 Apache HTTP Server Log cross site scripting
10147| [110793] Kemp Load Balancer up to 7.2.40.0 Web Application Firewall HTTP POST Request Bypass privilege escalation
10148| [108732] F5 BIG-IP up to 11.5.4/11.6.1/12.1.1 HTTP Proxy/SOCKS privilege escalation
10149| [63646] Apache HTTP Server up to 2.2.23/2.4.3 mod_proxy_balancer.c balancer_handler cross site scripting
10150| [40502] Apache HTTP Server up to 2.2.5 mod_proxy_balancer memory corruption
10151| [40501] Apache HTTP Server 2.2.6 mod_proxy_balancer cross site request forgery
10152| [40398] Apache HTTP Server up to 2.2 mod_proxy_balancer cross site scripting
10153| [40397] Apache HTTP Server up to 2.2 mod_proxy_balancer balancer_handler denial of service
10154| [139574] MicroDigital N-Series Camera up to 6400.0.8.5 httpd upload.php Filename memory corruption
10155| [138824] Proxygen HTTP Header Crafted Packet Out-of-Bounds memory corruption
10156| [137860] PluckCMS up to 4.7.4 File Upload data/inc/images.php HTTP Request privilege escalation
10157| [137767] Squid Proxy up to 2.7.STABLE9/3.5.28/4.7 HTTP Header Authorization Header memory corruption
10158| [137766] Squid Proxy up to 4.7.0 HttpHeader::getAuth Header memory corruption
10159| [137376] Cisco AsyncOS Web Proxy Function HTTP/HTTPS Request denial of service
10160| [137322] F5 BIG-IP up to 14.1.0.5 iControl REST Endpoint HTTP Request Loop denial of service
10161| [137315] F5 BIG-IP up to 11.6.4 iRules HTTP Header denial of service
10162| [136736] Cisco Wide Area Application Services HTTPS Proxy Connection Request privilege escalation
10163| [136245] Starry Station HTTP API JSON Payload PIN weak authentication
10164| [135220] IBM Cloud Private Kubernetes API Server 2.1.0/3.1.0/3.1.1/3.1.2 HTTP Proxy unknown vulnerability
10165| [134499] Google Android up to 9.0 Proxy Auto-Config ic.cc UpdateLoadElement memory corruption
10166| [134427] Sierra Wireless AirLink ES450 4.9.3 ACEManager template_load.cgi HTTP Request information disclosure
10167| [134424] Sierra Wireless AirLink ES450 4.9.3 Webserver upload.cgi HTTP Request Code Execution
10168| [134361] Cisco Web Security Appliance Web Proxy Function HTTPS Request Restart denial of service
10169| [133328] WebKitGTK/WPE WebKit up to 2.24.0 HTTP Proxy Setting Deanonymization information disclosure
10170| [130384] Zen Load Balancer 3.10.1 index.cgi privilege escalation
10171| [128801] Cisco IOS/IOS XE TCP Socket HTTP Requests Reload denial of service
10172| [128607] Proxygen HTTP2 Parser Header/Trailer denial of service
10173| [128606] Proxygen HTTP2 Priority Setting denial of service
10174| [127297] OCS Inventory NG File Upload HTTP Requests Code Execution
10175| [124890] Cisco Prime Infrastructure HTTP Web Server File Upload privilege escalation
10176| [123948] Lone Wolf Technologies loadingDOCS 2018-08-13 Permission HTTPS Request privilege escalation
10177| [123178] Insteon Hub 1013 HTTP Server /mpfsupload POST Request privilege escalation
10178| [122199] F5 BIG-IP up to 11.6.3.2/12.1.3.6/13.0.1 HTTP Health Monitor unknown vulnerability
10179| [122198] F5 BIG-IP ASM up to 11.5.6/11.6.3.1/12.1.3.5/13.1.0.1 bd HTTP Requests CPU Exhaustion denial of service
10180| [121993] F5 BIG-IP up to 11.6.3/12.1.3/13.1.0 TMM HTTP Response Restart denial of service
10181| [119218] https-proxy-agent up to 2.1.0 on Node.js JSON Parameter Memory Leak denial of service
10182| [119215] https-proxy-agent on Node.js Memory Leak denial of service
10183| [119044] http-proxy.js on Node.js Environment Variable privilege escalation
10184| [118904] Http-proxy up to 0.6.x on Node.js Error Crash denial of service
10185| [118896] http-signature up to 0.9.11 on Node.js Download weak encryption
10186| [118522] httpsync on Node.js Download weak encryption
10187| [118220] HAProxy up to 1.8.9 Authorization Header proto_http.c check_request_for_cacheability information disclosure
10188| [116923] Belkin N750 1.10.22 HTTP Request proxy.cgi memory corruption
10189| [116922] Belkin N750 1.10.22 HTTP Request proxy.cgi privilege escalation
10190| [116168] F5 BIG-IP up to 11.5.5/11.6.2/12.1.2 SPDY/HTTP2 Request denial of service
10191| [116167] F5 BIG-IP up to 11.5.5/11.6.2/12.1.2 SOCKS Proxy Request denial of service
10192| [116054] Symantec Advanced Secure Gateway/CacheFlow/ProxySG Management Console HTTP/HTTPS Request Crash denial of service
10193| [116052] Symantec Advanced Secure Gateway/ProxySG Management Console File Upload privilege escalation
10194| [115039] Apache HTTP Server up to 2.4.29 FilesMatch File Upload privilege escalation
10195| [113652] Atlassian Floodlight Controller up to 1.1 LoadBalancer Module NULL Pointer Dereference denial of service
10196| [113121] Vobot Clock up to 0.99.29 Breakout Download HTTP Response weak encryption
10197| [113073] Squid Proxy up to 4.0.22 HTTP Header HTTP Response NULL Pointer Dereference denial of service
10198| [113070] Squid Proxy up to 3.5.27/4.0.22 ESI Response HTTP Response denial of service
10199| [112294] AsusWRT up to 3.0.0.4 router/httpd/web.c do_vpnupload_post privilege escalation
10200| [111181] NetTransport Download Manager up to 2.96L NetTransport.exe HTTP Response memory corruption
10201| [111053] GetGo Download Manager up to 5.3.0.2712 HTTP Server memory corruption
10202| [110982] F5 BIG-IP 12.1.0/12.1.1/12.1.2/13.0.0 HTTP HTTP Requests denial of service
10203| [109852] Huawei VCM5010 HTTP Request File Upload weak authentication
10204| [108734] F5 BIG-IP up to 11.5.4/11.6.1/12.1.1 Traffic Management Microkernel HTTP Request Restart denial of service
10205| [106846] Apache Tomcat up to 7.0.79 on Windows HTTP PUT Method Parameter File Upload privilege escalation
10206| [103748] Barracuda Load Balancer 5.4.0.004/6.0.1.006 privilege escalation
10207| [102782] Vivotek IB8369/FD8164/FD816BA Web Service downloadMedias.cgi HTTP Request directory traversal
10208| [101768] Spring Security up to 3.2.4 CAS Proxy Ticket Authentication HTTP Request Bypass privilege escalation
10209| [99492] Facebook Proxygen HTTPMessage.request State Hijacking privilege escalation
10210| [97892] Apache Tomcat up to 9.0.0.M15 Reverse-Proxy Http11InputBuffer.java information disclosure
10211| [97489] Umbraco up to 7.3.x FeedProxy.aspx.cs Page_Load Server-Side Request Forgery
10212| [96077] PEAR HTTP_Upload v1.0.0b3 Upload.php privilege escalation
10213| [95118] http-client up to 0.10 Environment Variable Proxy privilege escalation
10214| [94746] filedownload Plugin 1.4 on WordPress Proxy privilege escalation
10215| [92268] F5 BIG-IP up to 11.5.1 HF10 Proxy/SOCKS privilege escalation
10216| [87133] Squid Proxy 3.5.17/4.0.9 HTTP Request privilege escalation
10217| [82731] Cisco AireOS up to 7.4.120.0/7.5.x/7.6.100.0 on WLC HTTP Request Reload denial of service
10218| [82215] F5 BIG-IP Blacklist Filter uploadImage.php privilege escalation
10219| [81565] Squid Proxy up to 3.5.15/4.0.7 HTTP Response denial of service
10220| [81149] Cisco Web Security Appliance Web Proxy HTTPS Request denial of service
10221| [81111] Squid Proxy up to 4.0.6 HTTP Status Code http.cc denial of service
10222| [81110] Squid Proxy up to 3.5.14/4.0.6 Response http.cc denial of service
10223| [81108] Squid Proxy up to 3.5.14/4.0.6 HTTP Header denial of service
10224| [81132] Squid Proxy 3.5.13/4.0 HTTP Status Code http.cc denial of service
10225| [80611] Cisco Web Security Appliance 8.5.3-055/9.1.0-000/9.5.0-235 Proxy Engine HTTP Method privilege escalation
10226| [75609] Wavelink ConnectPro TermProxy Service WLTermProxyService.exe HTTP Header memory corruption
10227| [75174] cURL/libcURL up to 7.42.0 HTTP Header Proxy information disclosure
10228| [75163] Cisco StarOS 12.0/12.2(300)/14.0/14.0(600) on ASR 5000 HTTP Reload denial of service
10229| [69198] Squid Proxy 3.1.9 HTTP Header Injection cross site scripting
10230| [69028] Cisco Unified IP Phone 9900 9.3(4.24) HTTP Request File Upload privilege escalation
10231| [69014] libcURL 7.30.0/7.31.0 HTTP Proxy cross site request forgery
10232| [68980] Barracuda Load Balancer 5.0.0.015 Default Credentials weak authentication
10233| [68435] Apache HTTP Server 2.4.10 mod_proxy_fcgi.c handle_headers denial of service
10234| [68198] F5 BIG-IP 10.2.1 HTTP POST Request properties.jsp directory traversal
10235| [71693] HAProxy 1.5.0/1.5.1/1.5.2/1.5.3 proto_http.c http_request_forward_body memory corruption
10236| [67289] Barracuda Load Balancer 4.2.1 cross site scripting
10237| [67183] Apache HTTP Server up to 2.4.9 mod_proxy denial of service
10238| [12338] Barracuda Networks Load Balancer 4.2.2.007 340-series index.php privilege escalation
10239| [11320] Instagram/Flattr 4.0.2/4.1.2/4.2.7 on iOS/Android HTTP POST Request Photo Upload weak encryption
10240| [9594] Oracle HTTP Server 2.2.9 Proxy Plug-In mod_proxy_http.c information disclosure
10241| [9547] Squid Proxy up to 3.3.7 HTTP Request denial of service
10242| [9526] Squid Proxy up to 3.3.6 dns_internal.cc idnsALookup HTTP Request denial of service
10243| [9076] Wireshark up to 1.8.7 HTTP Dissector packet-http.c http_payload_subdissector Crafted Packet denial of service
10244| [8099] Google Chrome up to 25.0.1364.172 ppb_url_loader_proxy.cc OnMsgReadResponseBodyAck() information disclosure
10245| [7890] Squid Proxy up to 3.2.7 http.cc httpMakeVaryMark denial of service
10246| [63089] Apache HTTP Server up to 2.2.13 mod_proxy_ajp denial of service
10247| [62895] libproxy 0.2.3/0.3.0/0.3.1 lib/pac.c px_pac_reload memory corruption
10248| [62290] Cisco Application Control Engine Module 3.0 Load Balancer denial of service
10249| [6092] Apache HTTP Server 2.4.0/2.4.1/2.4.2 mod_proxy_ajp.c information disclosure
10250| [6090] Apache HTTP Server 2.4.0/2.4.1/2.4.2 mod_proxy_http.c information disclosure
10251| [60862] CVS 1.11/1.12 HTTP Proxy Server proxy_connect memory corruption
10252| [5312] Mozilla Firefox up to 11.0 RSS/Atom XML HTTPS Content Loading URL spoofing
10253| [5176] Squid Proxy 3.1.19 HTTP Header Host Field Parser CONNECT Request privilege escalation
10254| [4846] Citrix XenServer up to 6.0.2 Workload Balancer denial of service
10255| [4591] Mozilla Firefox up to 3.6.26/6.0 IPv6 Proxy XMLHttpRequest Object information disclosure
10256| [59556] Apache HTTP Server up to 2.0.53 mod_proxy information disclosure
10257| [57268] Banu Tinyproxy up to 1.8.2 HTTP Proxy Server acl.c unknown vulnerability
10258| [56893] PHP HTTP Proxy Crash denial of service
10259| [51717] Apache HTTP Server up to 1.3.3 mod_proxy ap_proxy_send_fb memory corruption
10260| [49857] Apache HTTP Server mod_proxy_ftp cross site scripting
10261| [49856] Apache HTTP Server 2.2.13 mod_proxy_ftp ap_proxy_ftp_handler denial of service
10262| [49208] Joompolitan Com Livechat 1.0 HTTP Proxy xmlhttp.php unknown vulnerability
10263| [49178] Squid Proxy up to 3.1.0.11 HttpMsg.cc denial of service
10264| [49177] Squid Proxy up to 3.1.0.11 HttpMsg.cc denial of service
10265| [47568] Versalsoft Http File Upload Activex Control 6.0.0.35 ActiveX Control UUploaderSvrD.dll unknown vulnerability
10266| [46372] Squid Proxy up to 3.1.0.4 HttpMsg.c denial of service
10267| [43705] HAVP HTTP Antivirus Proxy 0.88 sockethandler.cpp denial of service
10268| [43556] Apache HTTP Server up to 2.1.8 mod_proxy_ftp proxy_ftp.c cross site scripting
10269| [40503] Apache HTTP Server mod_proxy_ftp cross site scripting
10270| [39685] F5 Firepass 4100 up to 5.4.6 download_plugin.php3 cross site scripting
10271| [39574] EDraw Flowchart ActiveX 2.3 ActiveX Control edimage.ocx HttpDownloadFile() directory traversal
10272| [37328] Astaro Security Gateway HTTP Proxy denial of service
10273| [36679] VersalSoft HTTP File Upload ActiveX control ActiveX Control ufileuploaderd.dll addfile memory corruption
10274|
10275| MITRE CVE - https://cve.mitre.org:
10276| [CVE-2012-4558] Multiple cross-site scripting (XSS) vulnerabilities in the balancer_handler function in the manager interface in mod_proxy_balancer.c in the mod_proxy_balancer module in the Apache HTTP Server 2.2.x before 2.2.24-dev and 2.4.x before 2.4.4 allow remote attackers to inject arbitrary web script or HTML via a crafted string.
10277| [CVE-2012-4505] Heap-based buffer overflow in the px_pac_reload function in lib/pac.c in libproxy 0.2.x and 0.3.x allows remote servers to have an unspecified impact via a crafted Content-Length size in an HTTP response header for a proxy.pac file request, a different vulnerability than CVE-2012-4504.
10278| [CVE-2011-3348] The mod_proxy_ajp module in the Apache HTTP Server before 2.2.21, when used with mod_proxy_balancer in certain configurations, allows remote attackers to cause a denial of service (temporary "error state" in the backend server) via a malformed HTTP request.
10279| [CVE-2007-6423] ** DISPUTED ** Unspecified vulnerability in mod_proxy_balancer for Apache HTTP Server 2.2.x before 2.2.7-dev, when running on Windows, allows remote attackers to trigger memory corruption via a long URL. NOTE: the vendor could not reproduce this issue.
10280| [CVE-2007-6422] The balancer_handler function in mod_proxy_balancer in the Apache HTTP Server 2.2.0 through 2.2.6, when a threaded Multi-Processing Module is used, allows remote authenticated users to cause a denial of service (child process crash) via an invalid bb variable.
10281| [CVE-2007-6421] Cross-site scripting (XSS) vulnerability in balancer-manager in mod_proxy_balancer in the Apache HTTP Server 2.2.0 through 2.2.6 allows remote attackers to inject arbitrary web script or HTML via the (1) ss, (2) wr, or (3) rr parameters, or (4) the URL.
10282| [CVE-2007-6420] Cross-site request forgery (CSRF) vulnerability in the balancer-manager in mod_proxy_balancer for Apache HTTP Server 2.2.x allows remote attackers to gain privileges via unspecified vectors.
10283| [CVE-2007-5273] Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 2 and earlier, JDK and JRE 5.0 Update 12 and earlier, SDK and JRE 1.4.2_15 and earlier, and SDK and JRE 1.3.1_20 and earlier, when an HTTP proxy server is used, allows remote attackers to violate the security model for an applet's outbound connections via a multi-pin DNS rebinding attack in which the applet download relies on DNS resolution on the proxy server, but the applet's socket operations rely on DNS resolution on the local machine, a different issue than CVE-2007-5274. NOTE: this is similar to CVE-2007-5232.
10284| [CVE-2006-4450] usercp_avatar.php in PHPBB 2.0.20, when avatar uploading is enabled, allows remote attackers to use the server as a web proxy by submitting a URL to the avatarurl parameter, which is then used in an HTTP GET request.
10285| [CVE-2013-4081] The http_payload_subdissector function in epan/dissectors/packet-http.c in the HTTP dissector in Wireshark 1.6.x before 1.6.16 and 1.8.x before 1.8.8 does not properly determine when to use a recursive approach, which allows remote attackers to cause a denial of service (stack consumption) via a crafted packet.
10286| [CVE-2013-2961] The internal web server in the Basic Services component in IBM Tivoli Monitoring (ITM) 6.2.0 through FP3, 6.2.1 through FP4, 6.2.2 through FP9, and 6.2.3 before FP3, as used in IBM Application Manager for Smart Business (formerly Tivoli Foundations Application Manager) 1.2.1 before 1.2.1.0-TIV-IAMSB-FP0004 and other products, allows remote attackers to perform unspecified redirection of HTTP requests, and bypass the proxy-server configuration, via crafted HTTP traffic.
10287| [CVE-2013-2950] CRLF injection vulnerability in IBM WebSphere Portal 6.1.0.x before 6.1.0.3 CF26, 6.1.5.x before 6.1.5 CF26, 7.0.0.x before 7.0.0.2 CF21, and 8.0.0.x through 8.0.0.1 CF5, when home substitution (aka uri.home.substitution) is enabled, allows remote authenticated users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.
10288| [CVE-2013-2873] Use-after-free vulnerability in Google Chrome before 28.0.1500.71 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a 404 HTTP status code during the loading of resources.
10289| [CVE-2013-2503] Privoxy before 3.0.21 does not properly handle Proxy-Authenticate and Proxy-Authorization headers in the client-server data stream, which makes it easier for remote HTTP servers to spoof the intended proxy service via a 407 (aka Proxy Authentication Required) HTTP status code.
10290| [CVE-2013-2304] The Sleipnir Mobile application 2.8.0 and earlier and Sleipnir Mobile Black Edition application 2.8.0 and earlier for Android allow remote attackers to load arbitrary Extension APIs, and trigger downloads or obtain sensitive HTTP response-body information, via a crafted web page.
10291| [CVE-2013-2203] WordPress before 3.5.2, when the uploads directory forbids write access, allows remote attackers to obtain sensitive information via an invalid upload request, which reveals the absolute path in an XMLHttpRequest error message.
10292| [CVE-2013-2070] http/modules/ngx_http_proxy_module.c in nginx 1.1.4 through 1.2.8 and 1.3.0 through 1.4.0, when proxy_pass is used with untrusted HTTP servers, allows remote attackers to cause a denial of service (crash) and obtain sensitive information from worker process memory via a crafted proxy response, a similar vulnerability to CVE-2013-2028.
10293| [CVE-2013-1912] Buffer overflow in HAProxy 1.4 through 1.4.22 and 1.5-dev through 1.5-dev17, when HTTP keep-alive is enabled, using HTTP keywords in TCP inspection rules, and running with rewrite rules that appends to requests, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted pipelined HTTP requests that prevent request realignment from occurring.
10294| [CVE-2013-1630] pyshop before 0.7.1 uses HTTP to retrieve packages from the PyPI repository, and does not perform integrity checks on package contents, which allows man-in-the-middle attackers to execute arbitrary code via a crafted response to a download operation.
10295| [CVE-2013-1451] Microsoft Internet Explorer 8 and 9, when the Proxy Settings configuration has the same Proxy address and Port values in the HTTP and Secure rows, does not ensure that the SSL lock icon is consistent with the Address bar, which makes it easier for remote attackers to spoof web sites via a crafted HTML document that triggers many HTTPS requests to an arbitrary host, followed by an HTTPS request to a trusted host and then an HTTP request to an untrusted host, a related issue to CVE-2013-1450.
10296| [CVE-2013-1450] Microsoft Internet Explorer 8 and 9, when the Proxy Settings configuration has the same Proxy address and Port values in the HTTP and Secure rows, does not properly reuse TCP sessions to the proxy server, which allows remote attackers to obtain sensitive information intended for a specific host via a crafted HTML document that triggers many HTTPS requests and then triggers an HTTP request to that host, as demonstrated by reading a Cookie header, aka MSRC 12096gd.
10297| [CVE-2013-1155] The auth-proxy functionality in Cisco Firewall Services Module (FWSM) software 3.1 and 3.2 before 3.2(20.1), 4.0 before 4.0(15.2), and 4.1 before 4.1(5.1) allows remote attackers to cause a denial of service (device reload) via a crafted URL, aka Bug ID CSCtg02624.
10298| [CVE-2013-1150] The authentication-proxy implementation on Cisco Adaptive Security Appliances (ASA) devices with software 7.x before 7.2(5.10), 8.0 before 8.0(5.31), 8.1 and 8.2 before 8.2(5.38), 8.3 before 8.3(2.37), 8.4 before 8.4(5.3), 8.5 and 8.6 before 8.6(1.10), 8.7 before 8.7(1.4), 9.0 before 9.0(1.1), and 9.1 before 9.1(1.2) allows remote attackers to cause a denial of service (device reload) via a crafted URL, aka Bug ID CSCud16590.
10299| [CVE-2013-0947] EMC RSA Authentication Manager 8.0 before P1 allows local users to discover cleartext operating-system passwords, HTTP plug-in proxy passwords, and SNMP communities by reading a (1) log file or (2) configuration file.
10300| [CVE-2013-0776] Mozilla Firefox before 19.0, Firefox ESR 17.x before 17.0.3, Thunderbird before 17.0.3, Thunderbird ESR 17.x before 17.0.3, and SeaMonkey before 2.16 allow man-in-the-middle attackers to spoof the address bar by operating a proxy server that provides a 407 HTTP status code accompanied by web script, as demonstrated by a phishing attack on an HTTPS site.
10301| [CVE-2013-0519] IBM Sterling Secure Proxy 3.2.0 and 3.3.01 before 3.3.01.23 Interim Fix 1, 3.4.0 before 3.4.0.6 Interim Fix 1, and 3.4.1 before 3.4.1.7 provides web-server version data in (1) an unspecified page title and (2) an unspecified HTTP header field, which allows remote attackers to obtain potentially sensitive information by reading a version string.
10302| [CVE-2013-0150] Directory traversal vulnerability in an unspecified signed Java applet in the client-side components in F5 BIG-IP APM 10.1.0 through 10.2.4 and 11.0.0 through 11.3.0, FirePass 6.0.0 through 6.1.0 and 7.0.0, and other products "when APM is provisioned," allows remote attackers to upload and execute arbitrary files via a .. (dot dot) in the filename parameter.
10303| [CVE-2012-6026] The HTTP Profiler on the Cisco Aironet Access Point with software 15.2 and earlier does not properly manage buffers, which allows remote attackers to cause a denial of service (device reload) via crafted HTTP requests, aka Bug ID CSCuc62460.
10304| [CVE-2012-5332] at32 Reverse Proxy 1.060.310 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a long string in an HTTP header field, as demonstrated using the If-Unmodified-Since field.
10305| [CVE-2012-4557] The mod_proxy_ajp module in the Apache HTTP Server 2.2.12 through 2.2.21 places a worker node into an error state upon detection of a long request-processing time, which allows remote attackers to cause a denial of service (worker consumption) via an expensive request.
10306| [CVE-2012-4271] Multiple cross-site scripting (XSS) vulnerabilities in bad-behavior-wordpress-admin.php in the Bad Behavior plugin before 2.0.47 and 2.2.x before 2.2.5 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) PATH_INFO, (2) httpbl_key, (3) httpbl_maxage, (4) httpbl_threat, (5) reverse_proxy_addresses, or (6) reverse_proxy_header parameter.
10307| [CVE-2012-3919] The Cisco Application Control Engine (ACE) module 3.0 for Cisco Catalyst switches and Cisco routers does not properly monitor Load Balancer (LB) queues, which allows remote attackers to cause a denial of service (incorrect memory access and module reboot) via application traffic, aka Bug ID CSCtw70879.
10308| [CVE-2012-3526] The reverse proxy add forward module (mod_rpaf) 0.5 and 0.6 for the Apache HTTP Server allows remote attackers to cause a denial of service (server or application crash) via multiple X-Forwarded-For headers in a request.
10309| [CVE-2012-3502] The proxy functionality in (1) mod_proxy_ajp.c in the mod_proxy_ajp module and (2) mod_proxy_http.c in the mod_proxy_http module in the Apache HTTP Server 2.4.x before 2.4.3 does not properly determine the situations that require closing a back-end connection, which allows remote attackers to obtain sensitive information in opportunistic circumstances by reading a response that was intended for a different client.
10310| [CVE-2012-3499] Multiple cross-site scripting (XSS) vulnerabilities in the Apache HTTP Server 2.2.x before 2.2.24-dev and 2.4.x before 2.4.4 allow remote attackers to inject arbitrary web script or HTML via vectors involving hostnames and URIs in the (1) mod_imagemap, (2) mod_info, (3) mod_ldap, (4) mod_proxy_ftp, and (5) mod_status modules.
10311| [CVE-2012-2632] SEIL routers with firmware SEIL/x86 1.00 through 2.35, SEIL/X1 2.30 through 3.75, SEIL/X2 2.30 through 3.75, and SEIL/B1 2.30 through 3.75, when the http-proxy and application-gateway features are enabled, do not properly handle the CONNECT command, which allows remote attackers to bypass intended URL restrictions via a TCP session.
10312| [CVE-2012-2573] Multiple cross-site scripting (XSS) vulnerabilities in T-dah WebMail 3.2.0-2.3 allow remote attackers to inject arbitrary web script or HTML via an e-mail message body with (1) a SCRIPT element, (2) a crafted Cascading Style Sheets (CSS) expression property, (3) a CSS expression property in the STYLE attribute of an arbitrary element, (4) an ONLOAD attribute of a BODY element, (5) a crafted SRC attribute of an IFRAME element, (6) a crafted CONTENT attribute of an HTTP-EQUIV="refresh" META element, or (7) a data: URL in the CONTENT attribute of an HTTP-EQUIV="refresh" META element.
10313| [CVE-2012-1011] actions.php in the AllWebMenus plugin 1.1.8 for WordPress allows remote attackers to bypass intended access restrictions to upload and execute arbitrary PHP code by setting the HTTP_REFERER to a certain value, then uploading a ZIP file containing a PHP file, then accessing it via a direct request to the file in an unspecified directory.
10314| [CVE-2012-0804] Heap-based buffer overflow in the proxy_connect function in src/client.c in CVS 1.11 and 1.12 allows remote HTTP proxy servers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted HTTP response.
10315| [CVE-2012-0387] Memory leak in the HTTP Inspection Engine feature in the Zone-Based Firewall in Cisco IOS 12.4, 15.0, 15.1, and 15.2 allows remote attackers to cause a denial of service (memory consumption or device reload) via crafted transit HTTP traffic, aka Bug ID CSCtq36153.
10316| [CVE-2012-0370] Cisco Wireless LAN Controller (WLC) devices with software 4.x, 5.x, 6.0, and 7.0 before 7.0.220.0 and 7.1 before 7.1.91.0, when WebAuth is enabled, allow remote attackers to cause a denial of service (device reload) via a sequence of (1) HTTP or (2) HTTPS packets, aka Bug ID CSCtt47435.
10317| [CVE-2011-5126] Blue Coat ProxySG 6.1 before SGOS 6.1.5.1 and 6.2 before SGOS 6.2.2.1 writes the secure heap to core images, which allows context-dependent attackers to obtain sensitive authentication information by leveraging read access to a downloaded core file.
10318| [CVE-2011-4765] The Site Editor (aka SiteBuilder) feature in Parallels Plesk Small Business Panel 10.2.0 does not include the HTTPOnly flag in a Set-Cookie header for a cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie, as demonstrated by cookies used by Wizard/Edit/Modules/ImageGallery/MultiImagesUpload and certain other files.
10319| [CVE-2011-4449] actions/files/files.php in WikkaWiki 1.3.1 and 1.3.2, when INTRANET_MODE is enabled, supports file uploads for file extensions that are typically absent from an Apache HTTP Server TypesConfig file, which makes it easier for remote attackers to execute arbitrary PHP code by placing this code in a file whose name has multiple extensions, as demonstrated by a (1) .mm or (2) .vpp file.
10320| [CVE-2011-4317] The mod_proxy module in the Apache HTTP Server 1.3.x through 1.3.42, 2.0.x through 2.0.64, and 2.2.x through 2.2.21, when the Revision 1179239 patch is in place, does not properly interact with use of (1) RewriteRule and (2) ProxyPassMatch pattern matches for configuration of a reverse proxy, which allows remote attackers to send requests to intranet servers via a malformed URI containing an @ (at sign) character and a : (colon) character in invalid positions. NOTE: this vulnerability exists because of an incomplete fix for CVE-2011-3368.
10321| [CVE-2011-3670] Mozilla Firefox before 3.6.26 and 4.x through 6.0, Thunderbird before 3.1.18 and 5.0 through 6.0, and SeaMonkey before 2.4 do not properly enforce the IPv6 literal address syntax, which allows remote attackers to obtain sensitive information by making XMLHttpRequest calls through a proxy and reading the error messages.
10322| [CVE-2011-3639] The mod_proxy module in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x before 2.2.18, when the Revision 1179239 patch is in place, does not properly interact with use of (1) RewriteRule and (2) ProxyPassMatch pattern matches for configuration of a reverse proxy, which allows remote attackers to send requests to intranet servers by using the HTTP/0.9 protocol with a malformed URI containing an initial @ (at sign) character. NOTE: this vulnerability exists because of an incomplete fix for CVE-2011-3368.
10323| [CVE-2011-3368] The mod_proxy module in the Apache HTTP Server 1.3.x through 1.3.42, 2.0.x through 2.0.64, and 2.2.x through 2.2.21 does not properly interact with use of (1) RewriteRule and (2) ProxyPassMatch pattern matches for configuration of a reverse proxy, which allows remote attackers to send requests to intranet servers via a malformed URI containing an initial @ (at sign) character.
10324| [CVE-2011-3281] Unspecified vulnerability in Cisco IOS 15.0 through 15.1, in certain HTTP Layer 7 Application Control and Inspection configurations, allows remote attackers to cause a denial of service (device reload or hang) via a crafted HTTP packet, aka Bug ID CSCto68554.
10325| [CVE-2011-1499] acl.c in Tinyproxy before 1.8.3, when an Allow configuration setting specifies a CIDR block, permits TCP connections from all IP addresses, which makes it easier for remote attackers to hide the origin of web traffic by leveraging the open HTTP proxy server.
10326| [CVE-2011-1498] Apache HttpClient 4.x before 4.1.1 in Apache HttpComponents, when used with an authenticating proxy server, sends the Proxy-Authorization header to the origin server, which allows remote web servers to obtain sensitive information by logging this header.
10327| [CVE-2011-1469] Unspecified vulnerability in the Streams component in PHP before 5.3.6 allows context-dependent attackers to cause a denial of service (application crash) by accessing an ftp:// URL during use of an HTTP proxy with the FTP wrapper.
10328| [CVE-2011-1316] The Session Initiation Protocol (SIP) Proxy in the HTTP Transport component in IBM WebSphere Application Server (WAS) before 7.0.0.15 allows remote attackers to cause a denial of service (worker thread exhaustion and UDP messaging outage) by sending many UDP messages.
10329| [CVE-2011-0398] The Piwik_Common::getIP function in Piwik before 1.1 does not properly determine the client IP address, which allows remote attackers to bypass intended geolocation and logging functionality via (1) use of a private (aka RFC 1918) address behind a proxy server or (2) spoofing of the X-Forwarded-For HTTP header.
10330| [CVE-2011-0395] Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 8.0 before 8.0(5.20), 8.1 before 8.1(2.48), 8.2 before 8.2(3), and 8.3 before 8.3(2.1), when the RIP protocol and the Cisco Phone Proxy functionality are configured, allow remote attackers to cause a denial of service (device reload) via a RIP update, aka Bug ID CSCtg66583.
10331| [CVE-2011-0272] Unspecified vulnerability in HP LoadRunner 9.52 allows remote attackers to execute arbitrary code via network traffic to TCP port 5001 or 5002, related to the HttpTunnel feature.
10332| [CVE-2010-5189] Blue Coat ProxySG before SGOS 4.3.4.1, 5.x before SGOS 5.4.5.1, 5.5 before SGOS 5.5.4.1, and 6.x before SGOS 6.1.1.1 allows remote authenticated users to execute arbitrary CLI commands by leveraging read-only administrator privileges and establishing an HTTPS session.
10333| [CVE-2010-4488] Google Chrome before 8.0.552.215 does not properly handle HTTP proxy authentication, which allows remote attackers to cause a denial of service (application crash) via unspecified vectors.
10334| [CVE-2010-3964] Unrestricted file upload vulnerability in the Document Conversions Launcher Service in Microsoft Office SharePoint Server 2007 SP2, when the Document Conversions Load Balancer Service is enabled, allows remote attackers to execute arbitrary code via a crafted SOAP request to TCP port 8082, aka "Malformed Request Code Execution Vulnerability."
10335| [CVE-2010-3281] Stack-based buffer overflow in the HTTP proxy service in Alcatel-Lucent OmniVista 4760 server before R5.1.06.03.c_Patch3 allows remote attackers to execute arbitrary code or cause a denial of service (service crash) via a long request.
10336| [CVE-2010-2823] Unspecified vulnerability in the deep packet inspection feature on the Cisco Application Control Engine (ACE) 4710 appliance with software before A3(2.6) allows remote attackers to cause a denial of service (device reload) via crafted HTTP packets, related to HTTP, RTSP, and SIP inspection, aka Bug ID CSCtb54493.
10337| [CVE-2010-2815] Unspecified vulnerability in the Transport Layer Security (TLS) implementation on Cisco Adaptive Security Appliances (ASA) 5500 series devices with software 7.2 before 7.2(5), 8.0 before 8.0(5.15), 8.1 before 8.1(2.44), 8.2 before 8.2(2.17), and 8.3 before 8.3(1.6) and Cisco PIX Security Appliances 500 series devices allows remote attackers to cause a denial of service (device reload) via a sequence of crafted TLS packets, aka Bug ID CSCtf55259.
10338| [CVE-2010-2791] mod_proxy in httpd in Apache HTTP Server 2.2.9, when running on Unix, does not close the backend connection if a timeout occurs when reading a response from a persistent connection, which allows remote attackers to obtain a potentially sensitive response intended for a different client in opportunistic circumstances via a normal HTTP request. NOTE: this is the same issue as CVE-2010-2068, but for a different OS and set of affected versions.
10339| [CVE-2010-2787] api.php in MediaWiki before 1.15.5 does not prevent use of public caching headers for private data, which allows remote attackers to bypass intended access restrictions and obtain sensitive information by retrieving documents from an HTTP proxy cache that has been used by a victim.
10340| [CVE-2010-2584] The Upload method in the RealPage Module Upload ActiveX control in Realpage.dll 1.0.0.9 in RealPage Module ActiveX Controls does not properly restrict certain property values, which allows remote attackers to read arbitrary files via a filename in the SourceFile property in conjunction with an http URL in the DestURL property.
10341| [CVE-2010-2493] The default configuration of the deployment descriptor (aka web.xml) in picketlink-sts.war in (1) the security_saml quickstart, (2) the webservice_proxy_security quickstart, (3) the web-console application, (4) the http-invoker application, (5) the gpd-deployer application, (6) the jbpm-console application, (7) the contract application, and (8) the uddi-console application in JBoss Enterprise SOA Platform before 5.0.2 contains GET and POST http-method elements, which allows remote attackers to bypass intended access restrictions via a crafted HTTP request.
10342| [CVE-2010-2465] The S2 Security NetBox 2.5, 3.3, and 4.0, as used in the Linear eMerge 50 and 5000 and the Sonitrol eAccess, stores sensitive information under the web root with insufficient access control, which allows remote attackers to download node logs, photographs of persons, and backup files via unspecified HTTP requests.
10343| [CVE-2010-2327] mod_ibm_ssl in IBM HTTP Server 6.0 before 6.0.2.43, 6.1 before 6.1.0.33, and 7.0 before 7.0.0.11, as used in IBM WebSphere Application Server (WAS) on z/OS, does not properly handle a large HTTP request body in uploading over SSL, which might allow remote attackers to cause a denial of service (daemon fail) via an upload.
10344| [CVE-2010-2267] Multiple cross-site scripting (XSS) vulnerabilities in Accoria Web Server (aka Rock Web Server) 1.4.7 allow remote attackers to inject arbitrary web script or HTML via (1) the query string to the getenv sample program, (2) the desc parameter to loadstatic.cgi, (3) the name parameter to httpdcfg.cgi, or (4) the dns parameter to servercfg.cgi.
10345| [CVE-2010-2068] mod_proxy_http.c in mod_proxy_http in the Apache HTTP Server 2.2.9 through 2.2.15, 2.3.4-alpha, and 2.3.5-alpha on Windows, NetWare, and OS/2, in certain configurations involving proxy worker pools, does not properly detect timeouts, which allows remote attackers to obtain a potentially sensitive response intended for a different client in opportunistic circumstances via a normal HTTP request.
10346| [CVE-2010-1908] The SdcUser.TgConCtl ActiveX control in tgctlcm.dll in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance does not properly restrict access to the HTTPDownloadFile, HTTPGetFile, Install, and RunCmd methods, which allows remote attackers to execute arbitrary programs via a URL in the url argument to (1) HTTPDownloadFile or (2) HTTPGetFile.
10347| [CVE-2010-1767] Cross-site request forgery (CSRF) vulnerability in loader/DocumentThreadableLoader.cpp in WebCore in WebKit before r57041, as used in Google Chrome before 4.1.249.1059, allows remote attackers to hijack the authentication of unspecified victims via a crafted synchronous preflight XMLHttpRequest operation.
10348| [CVE-2010-1760] loader/DocumentThreadableLoader.cpp in the XMLHttpRequest implementation in WebCore in WebKit before r58409 does not properly handle credentials during a cross-origin synchronous request, which has unspecified impact and remote attack vectors, aka rdar problem 7905150.
10349| [CVE-2010-1622] SpringSource Spring Framework 2.5.x before 2.5.6.SEC02, 2.5.7 before 2.5.7.SR01, and 3.0.x before 3.0.3 allows remote attackers to execute arbitrary code via an HTTP request containing class.classLoader.URLs[0]=jar: followed by a URL of a crafted .jar file.
10350| [CVE-2010-1197] Mozilla Firefox 3.5.x before 3.5.10 and 3.6.x before 3.6.4, and SeaMonkey before 2.0.5, does not properly handle situations in which both "Content-Disposition: attachment" and "Content-Type: multipart" are present in HTTP headers, which allows remote attackers to conduct cross-site scripting (XSS) attacks via an uploaded HTML document.
10351| [CVE-2010-0652] Microsoft Internet Explorer permits cross-origin loading of CSS stylesheets even when the stylesheet download has an incorrect MIME type and the stylesheet document is malformed, which allows remote HTTP servers to obtain sensitive information via a crafted document.
10352| [CVE-2010-0643] Google Chrome before 4.0.249.89 attempts to make direct connections to web sites when all configured proxy servers are unavailable, which allows remote HTTP servers to obtain potentially sensitive information about the identity of a client user via standard HTTP logging, as demonstrated by a proxy server that was configured for the purpose of anonymity.
10353| [CVE-2010-0597] Unspecified vulnerability in Cisco Mediator Framework 1.5.1 before 1.5.1.build.14-eng, 2.2 before 2.2.1.dev.1, and 3.0 before 3.0.9.release.1 on the Cisco Network Building Mediator NBM-2400 and NBM-4800 and the Richards-Zeta Mediator 2500 allows remote authenticated users to read or modify the device configuration, and gain privileges or cause a denial of service (device reload), via a (1) XML RPC or (2) XML RPC over HTTPS request, aka Bug ID CSCtb83618.
10354| [CVE-2010-0425] modules/arch/win32/mod_isapi.c in mod_isapi in the Apache HTTP Server 2.0.37 through 2.0.63, 2.2.0 through 2.2.14, and 2.3.x before 2.3.7, when running on Windows, does not ensure that request processing is complete before calling isapi_unload for an ISAPI .dll module, which allows remote attackers to execute arbitrary code via unspecified vectors related to a crafted request, a reset packet, and "orphaned callback pointers."
10355| [CVE-2010-0408] The ap_proxy_ajp_request function in mod_proxy_ajp.c in mod_proxy_ajp in the Apache HTTP Server 2.2.x before 2.2.15 does not properly handle certain situations in which a client sends no request body, which allows remote attackers to cause a denial of service (backend server outage) via a crafted request, related to use of a 500 error code instead of the appropriate 400 error code.
10356| [CVE-2010-0155] CRLF injection vulnerability in load.php in the Local Management Interface (LMI) on the IBM Proventia Network Mail Security System (PNMSS) appliance with firmware before 2.5 allows remote authenticated users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the javaVersion parameter.
10357| [CVE-2010-0010] Integer overflow in the ap_proxy_send_fb function in proxy/proxy_util.c in mod_proxy in the Apache HTTP Server before 1.3.42 on 64-bit platforms allows remote origin servers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a large chunk size that triggers a heap-based buffer overflow.
10358| [CVE-2009-4509] The administrative web console on the TANDBERG Video Communication Server (VCS) before X4.3 uses predictable session cookies in (1) tandberg/web/lib/secure.php and (2) tandberg/web/user/lib/secure.php, which makes it easier for remote attackers to bypass authentication, and execute arbitrary code by loading a custom software update, via a crafted "Cookie: tandberg_login=" HTTP header.
10359| [CVE-2009-4140] Unrestricted file upload vulnerability in ofc_upload_image.php in Open Flash Chart v2 Beta 1 through v2 Lug Wyrm Charmer, as used in Piwik 0.2.35 through 0.4.3, Woopra Analytics Plugin before 1.4.3.2, and possibly other products, when register_globals is enabled, allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension through the name parameter with the code in the HTTP_RAW_POST_DATA parameter, then accessing it via a direct request to the file in tmp-upload-images/.
10360| [CVE-2009-3890] Unrestricted file upload vulnerability in the wp_check_filetype function in wp-includes/functions.php in WordPress before 2.8.6, when a certain configuration of the mod_mime module in the Apache HTTP Server is enabled, allows remote authenticated users to execute arbitrary code by posting an attachment with a multiple-extension filename, and then accessing this attachment via a direct request to a wp-content/uploads/ pathname, as demonstrated by a .php.jpg filename.
10361| [CVE-2009-3693] Directory traversal vulnerability in the Persits.XUpload.2 ActiveX control (XUpload.ocx) in HP LoadRunner 9.5 allows remote attackers to create arbitrary files via \.. (backwards slash dot dot) sequences in the third argument to the MakeHttpRequest method.
10362| [CVE-2009-3095] The mod_proxy_ftp module in the Apache HTTP Server allows remote attackers to bypass intended access restrictions and send arbitrary commands to an FTP server via vectors related to the embedding of these commands in the Authorization HTTP header, as demonstrated by a certain module in VulnDisco Pack Professional 8.11.
10363| [CVE-2009-3094] The ap_proxy_ftp_handler function in modules/proxy/proxy_ftp.c in the mod_proxy_ftp module in the Apache HTTP Server 2.0.63 and 2.2.13 allows remote FTP servers to cause a denial of service (NULL pointer dereference and child process crash) via a malformed reply to an EPSV command.
10364| [CVE-2009-2582] Stack-based buffer overflow in manager.exe in Akamai Download Manager (aka DLM or dlmanager) before 2.2.4.8 allows remote web servers to execute arbitrary code via a malformed HTTP response during a Redswoosh download, a different vulnerability than CVE-2007-1891 and CVE-2007-1892.
10365| [CVE-2009-2072] Apple Safari does not require a cached certificate before displaying a lock icon for an https web site, which allows man-in-the-middle attackers to spoof an arbitrary https site by sending the browser a crafted (1) 4xx or (2) 5xx CONNECT response page for an https request sent through a proxy server.
10366| [CVE-2009-2071] Google Chrome before 1.0.154.53 displays a cached certificate for a (1) 4xx or (2) 5xx CONNECT response page returned by a proxy server, which allows man-in-the-middle attackers to spoof an arbitrary https site by letting a browser obtain a valid certificate from this site during one request, and then sending the browser a crafted 502 response page upon a subsequent request.
10367| [CVE-2009-2070] Opera displays a cached certificate for a (1) 4xx or (2) 5xx CONNECT response page returned by a proxy server, which allows man-in-the-middle attackers to spoof an arbitrary https site by letting a browser obtain a valid certificate from this site during one request, and then sending the browser a crafted 502 response page upon a subsequent request.
10368| [CVE-2009-2069] Microsoft Internet Explorer before 8 displays a cached certificate for a (1) 4xx or (2) 5xx CONNECT response page returned by a proxy server, which allows man-in-the-middle attackers to spoof an arbitrary https site by letting a browser obtain a valid certificate from this site during one request, and then sending the browser a crafted 502 response page upon a subsequent request.
10369| [CVE-2009-2068] Google Chrome detects http content in https web pages only when the top-level frame uses https, which allows man-in-the-middle attackers to execute arbitrary web script, in an https site's context, by modifying an http page to include an https iframe that references a script file on an http site, related to "HTTP-Intended-but-HTTPS-Loadable (HPIHSL) pages."
10370| [CVE-2009-2067] Opera detects http content in https web pages only when the top-level frame uses https, which allows man-in-the-middle attackers to execute arbitrary web script, in an https site's context, by modifying an http page to include an https iframe that references a script file on an http site, related to "HTTP-Intended-but-HTTPS-Loadable (HPIHSL) pages."
10371| [CVE-2009-2066] Apple Safari detects http content in https web pages only when the top-level frame uses https, which allows man-in-the-middle attackers to execute arbitrary web script, in an https site's context, by modifying an http page to include an https iframe that references a script file on an http site, related to "HTTP-Intended-but-HTTPS-Loadable (HPIHSL) pages."
10372| [CVE-2009-2065] Mozilla Firefox 3.0.10, and possibly other versions, detects http content in https web pages only when the top-level frame uses https, which allows man-in-the-middle attackers to execute arbitrary web script, in an https site's context, by modifying an http page to include an https iframe that references a script file on an http site, related to "HTTP-Intended-but-HTTPS-Loadable (HPIHSL) pages."
10373| [CVE-2009-2064] Microsoft Internet Explorer 8, and possibly other versions, detects http content in https web pages only when the top-level frame uses https, which allows man-in-the-middle attackers to execute arbitrary web script, in an https site's context, by modifying an http page to include an https iframe that references a script file on an http site, related to "HTTP-Intended-but-HTTPS-Loadable (HPIHSL) pages."
10374| [CVE-2009-2060] src/net/http/http_transaction_winhttp.cc in Google Chrome before 1.0.154.53 uses the HTTP Host header to determine the context of a document provided in a (1) 4xx or (2) 5xx CONNECT response from a proxy server, which allows man-in-the-middle attackers to execute arbitrary web script by modifying this CONNECT response, aka an "SSL tampering" attack.
10375| [CVE-2009-2059] Opera, possibly before 9.25, uses the HTTP Host header to determine the context of a document provided in a (1) 4xx or (2) 5xx CONNECT response from a proxy server, which allows man-in-the-middle attackers to execute arbitrary web script by modifying this CONNECT response, aka an "SSL tampering" attack.
10376| [CVE-2009-2058] Apple Safari before 3.2.2 uses the HTTP Host header to determine the context of a document provided in a (1) 4xx or (2) 5xx CONNECT response from a proxy server, which allows man-in-the-middle attackers to execute arbitrary web script by modifying this CONNECT response, aka an "SSL tampering" attack.
10377| [CVE-2009-2057] Microsoft Internet Explorer before 8 uses the HTTP Host header to determine the context of a document provided in a (1) 4xx or (2) 5xx CONNECT response from a proxy server, which allows man-in-the-middle attackers to execute arbitrary web script by modifying this CONNECT response, aka an "SSL tampering" attack.
10378| [CVE-2009-1890] The stream_reqbody_cl function in mod_proxy_http.c in the mod_proxy module in the Apache HTTP Server before 2.3.3, when a reverse proxy is configured, does not properly handle an amount of streamed data that exceeds the Content-Length value, which allows remote attackers to cause a denial of service (CPU consumption) via crafted requests.
10379| [CVE-2009-1836] Mozilla Firefox before 3.0.11, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.17 use the HTTP Host header to determine the context of a document provided in a non-200 CONNECT response from a proxy server, which allows man-in-the-middle attackers to execute arbitrary web script by modifying this CONNECT response, aka an "SSL tampering" attack.
10380| [CVE-2009-1567] Multiple stack-based buffer overflows in the Lateral Arts Photobox uploader ActiveX control 1.x before 1.3, and 2.2.0.6, allow remote attackers to execute arbitrary code via a long URL string for the (1) LogURL, (2) ConnectURL, (3) SkinURL, (4) AlbumCreateURL, (5) ErrorURL, or (6) httpsinglehost property value.
10381| [CVE-2009-1476] Buffer overflow in lib/load_http.c in ippool in Darren Reed IPFilter (aka IP Filter) 4.1.31 allows local users to gain privileges via vectors involving a long hostname in a URL.
10382| [CVE-2009-1211] Blue Coat ProxySG, when transparent interception mode is enabled, uses the HTTP Host header to determine the remote endpoint, which allows remote attackers to bypass access controls for Flash, Java, Silverlight, and probably other technologies, and possibly communicate with restricted intranet sites, via a crafted web page that causes a client to send HTTP requests with a modified Host header.
10383| [CVE-2009-1191] mod_proxy_ajp.c in the mod_proxy_ajp module in the Apache HTTP Server 2.2.11 allows remote attackers to obtain sensitive response data, intended for a client that sent an earlier POST request with no request body, via an HTTP request.
10384| [CVE-2009-1166] The administrative web interface on the Cisco Wireless LAN Controller (WLC) platform 4.x before 4.2.205.0 and 5.x before 5.2.191.0, as used in Cisco 1500 Series, 2000 Series, 2100 Series, 4100 Series, 4200 Series, and 4400 Series Wireless Services Modules (WiSM), WLC Modules for Integrated Services Routers, and Catalyst 3750G Integrated Wireless LAN Controllers, allows remote attackers to cause a denial of service (device reload) via a crafted (1) HTTP or (2) HTTPS request, aka Bug ID CSCsy27708.
10385| [CVE-2009-1164] The administrative web interface on the Cisco Wireless LAN Controller (WLC) platform 4.2 before 4.2.205.0 and 5.x before 5.2.178.0, as used in Cisco 1500 Series, 2000 Series, 2100 Series, 4100 Series, 4200 Series, and 4400 Series Wireless Services Modules (WiSM), WLC Modules for Integrated Services Routers, and Catalyst 3750G Integrated Wireless LAN Controllers, allows remote attackers to cause a denial of service (device reload) via a malformed response to a (1) HTTP or (2) HTTPS authentication request, aka Bug ID CSCsx03715.
10386| [CVE-2009-1156] Unspecified vulnerability on Cisco Adaptive Security Appliances (ASA) 5500 Series devices 8.0 before 8.0(4)25 and 8.1 before 8.1(2)15, when an SSL VPN or ASDM access is configured, allows remote attackers to cause a denial of service (device reload) via a crafted (1) SSL or (2) HTTP packet.
10387| [CVE-2009-0804] Ziproxy 2.6.0, when transparent interception mode is enabled, uses the HTTP Host header to determine the remote endpoint, which allows remote attackers to bypass access controls for Flash, Java, Silverlight, and probably other technologies, and possibly communicate with restricted intranet sites, via a crafted web page that causes a client to send HTTP requests with a modified Host header.
10388| [CVE-2009-0626] The SSLVPN feature in Cisco IOS 12.3 through 12.4 allows remote attackers to cause a denial of service (device reload or hang) via a crafted HTTPS packet.
10389| [CVE-2009-0187] Stack-based buffer overflow in Orbit Downloader 2.8.2 and 2.8.3, and possibly other versions before 2.8.5, allows remote attackers to execute arbitrary code via a crafted HTTP URL with a long host name, which is not properly handled when constructing a "Connecting" log message.
10390| [CVE-2009-0183] Stack-based buffer overflow in Remote Control Server in Free Download Manager (FDM) 2.5 Build 758 and 3.0 Build 844 allows remote attackers to execute arbitrary code via a long Authorization header in an HTTP request.
10391| [CVE-2009-0033] Apache Tomcat 4.1.0 through 4.1.39, 5.5.0 through 5.5.27, and 6.0.0 through 6.0.18, when the Java AJP connector and mod_jk load balancing are used, allows remote attackers to cause a denial of service (application outage) via a crafted request with invalid headers, related to temporary blocking of connectors that have encountered errors, as demonstrated by an error involving a malformed HTTP Host header.
10392| [CVE-2008-7250] Cross-site scripting (XSS) vulnerability in Squid Analysis Report Generator (Sarg) 2.2.4 allows remote attackers to inject arbitrary web script or HTML via a JavaScript onload event in the User-Agent header, which is not properly handled when displaying the Squid proxy log. NOTE: this issue exists because of an incomplete fix for CVE-2008-1168.
10393| [CVE-2008-7193] PHPKIT 1.6.4 PL1 includes the session ID in the URL, which allows remote attackers to conduct cross-site request forgery (CSRF) attacks by reading the PHPKITSID parameter from the HTTP Referer and using it in a request to (1) modify the user profile via upload_files/include.php or (2) create a new administrator via upload_files/pk/include.php.
10394| [CVE-2008-7139] Multiple cross-site request forgery (CSRF) vulnerabilities in WS-Proxy in Eye-Fi 1.1.2 allow remote attackers to hijack the authentication of users for requests that modify configuration via a SOAPAction parameter of (1) urn:SetOptions for autostart, (2) urn:SetDesktopSync for file upload, or (3) urn:SetFolderConfig for file download location or modification of authentication credentials
10395| [CVE-2008-6882] Live Chat (com_livechat) component 1.0 for Joomla! allows remote attackers to use the xmlhttp.php script as an open HTTP proxy to hide network scanning activities or scan internal networks via a GET request with a full URL in the query string.
10396| [CVE-2008-6638] Insecure method vulnerability in the Versalsoft HTTP Image Uploader ActiveX control (UUploaderSvrD.dll 6.0.0.35) allows remote attackers to delete arbitrary files via the RemoveFileOrDir method.
10397| [CVE-2008-5905] The web interface plugin in KTorrent before 3.1.4 allows remote attackers to bypass intended access restrictions and upload arbitrary torrent files, and trigger the start of downloads and seeding, via a crafted HTTP POST request.
10398| [CVE-2008-5825] The SmartPoster implementation on the Nokia 6131 Near Field Communication (NFC) phone with 05.12 firmware does not properly display the URI record when the Title record contains a certain combination of space, CR (aka \r), and . (dot) characters, which allows remote attackers to trick a user into loading an arbitrary URI via a crafted NDEF tag, as demonstrated by (1) an http: URI for a malicious web site, (2) a tel: URI for a premium-rate telephone number, and (3) an sms: URI that triggers purchase of a ringtone.
10399| [CVE-2008-5404] Insecure method vulnerability in the FlexCell.Grid ActiveX control in FlexCell.ocx 5.7.0.1 in FlexCell Grid ActiveX Component allows remote attackers to create and overwrite arbitrary files via the HttpDownloadFile method. NOTE: this could be leveraged for code execution by creating executable files in Startup folders or by accessing files using hcp:// URLs. NOTE: the provenance of this information is unknown
10400| [CVE-2008-4541] Heap-based buffer overflow in the FTP subsystem in Sun Java System Web Proxy Server 4.0 through 4.0.7 allows remote attackers to execute arbitrary code via a crafted HTTP GET request.
10401| [CVE-2008-4493] Microsoft PicturePusher ActiveX control (PipPPush.DLL 7.00.0709), as used in Microsoft Digital Image 2006 Starter Edition, allows remote attackers to force the upload of arbitrary files by using the AddString and Post methods and a modified PostURL to construct an HTTP POST request. NOTE: this issue might only be exploitable in limited environments or non-default browser settings.
10402| [CVE-2008-4198] Opera before 9.52, when rendering an http page that has loaded an https page into a frame, displays a padlock icon and offers a security information dialog reporting a secure connection, which might allow remote attackers to trick a user into performing unsafe actions on the http page.
10403| [CVE-2008-3878] Stack-based buffer overflow in the Ultra.OfficeControl ActiveX control in OfficeCtrl.ocx 2.0.2008.801 in Ultra Shareware Ultra Office Control allows remote attackers to execute arbitrary code via long strUrl, strFile, and strPostData parameters to the HttpUpload method.
10404| [CVE-2008-3812] Cisco IOS 12.4, when IOS firewall Application Inspection Control (AIC) with HTTP Deep Packet Inspection is enabled, allows remote attackers to cause a denial of service (device reload) via a malformed HTTP transit packet.
10405| [CVE-2008-3688] sockethandler.cpp in HTTP Antivirus Proxy (HAVP) 0.88 allows remote attackers to cause a denial of service (hang) by connecting to a non-responsive server, which triggers an infinite loop due to an uninitialized variable.
10406| [CVE-2008-2800] Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 allow remote attackers to bypass the Same Origin Policy and conduct cross-site scripting (XSS) attacks via vectors involving (1) an event handler attached to an outer window, (2) a SCRIPT element in an unloaded document, or (3) the onreadystatechange handler in conjunction with an XMLHttpRequest.
10407| [CVE-2008-2735] The HTTP server in Cisco Adaptive Security Appliance (ASA) 5500 devices 8.0 before 8.0(3)15 and 8.1 before 8.1(1)5, when configured as a clientless SSL VPN endpoint, does not properly process URIs, which allows remote attackers to cause a denial of service (device reload) via a URI in a crafted SSL or HTTP packet, aka Bug ID CSCsq19369.
10408| [CVE-2008-2558] CRE Loaded 6.2.13.1 and earlier does not set the "Secure" attribute for cookies that are sent over HTTPS, which might allow remote attackers to sniff the cookies if they are sent over HTTP.
10409| [CVE-2008-2364] The ap_proxy_http_process_response function in mod_proxy_http.c in the mod_proxy module in the Apache HTTP Server 2.0.63 and 2.2.8 does not limit the number of forwarded interim responses, which allows remote HTTP servers to cause a denial of service (memory consumption) via a large number of interim responses.
10410| [CVE-2008-1924] Unspecified vulnerability in phpMyAdmin before 2.11.5.2, when running on shared hosts, allows remote authenticated users with CREATE table permissions to read arbitrary files via a crafted HTTP POST request, related to use of an undefined UploadDir variable.
10411| [CVE-2008-1885] Directory traversal vulnerability in the NeffyLauncher 1.0.5 ActiveX control (NeffyLauncher.dll) in CDNetworks Nefficient Download allows remote attackers to download arbitrary code onto a client system via a .. (dot dot) in the SkinPath parameter and a .zip URL in the HttpSkin parameter. NOTE: this can be leveraged for code execution by writing to a Startup folder.
10412| [CVE-2008-1840] SQL injection vulnerability in upload.php in Coppermine Photo Gallery (CPG) 1.4.16 and earlier allows remote authenticated users or user-assisted remote HTTP servers to execute arbitrary SQL commands via the Content-Type HTTP response header provided by the HTTP server that is used for an upload.
10413| [CVE-2008-1531] The connection_state_machine function (connections.c) in lighttpd 1.4.19 and earlier, and 1.5.x before 1.5.0, allows remote attackers to cause a denial of service (active SSL connection loss) by triggering an SSL error, such as disconnecting before a download has finished, which causes all active SSL connections to be lost.
10414| [CVE-2008-1245] cgi-bin/setup_virtualserver.exe on the Belkin F5D7230-4 router with firmware 9.01.10 allows remote attackers to cause a denial of service (control center outage) via an HTTP request with invalid POST data and a "Connection: Keep-Alive" header.
10415| [CVE-2008-1106] The management interface in Akamai Client (formerly Red Swoosh) 3322 and earlier allows remote attackers to bypass authentication via an HTTP request that contains (1) no Referer header, or (2) a spoofed Referer header that matches an approved domain, which allows remote attackers to conduct cross-site request forgery (CSRF) attacks and force the client to download and execute arbitrary files.
10416| [CVE-2008-0971] Multiple cross-site scripting (XSS) vulnerabilities in index.cgi in Barracuda Spam Firewall (BSF) before 3.5.12.007, Message Archiver before 1.2.1.002, Web Filter before 3.3.0.052, IM Firewall before 3.1.01.017, and Load Balancer before 2.3.024 allow remote attackers to inject arbitrary web script or HTML via (1) the Policy Name field in Search Based Retention Policy in Message Archiver
10417| [CVE-2008-0456] CRLF injection vulnerability in the mod_negotiation module in the Apache HTTP Server 2.2.6 and earlier in the 2.2.x series, 2.0.61 and earlier in the 2.0.x series, and 1.3.39 and earlier in the 1.3.x series allows remote authenticated users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks by uploading a file with a multi-line name containing HTTP header sequences and a file extension, which leads to injection within a (1) "406 Not Acceptable" or (2) "300 Multiple Choices" HTTP response when the extension is omitted in a request for the file.
10418| [CVE-2008-0455] Cross-site scripting (XSS) vulnerability in the mod_negotiation module in the Apache HTTP Server 2.2.6 and earlier in the 2.2.x series, 2.0.61 and earlier in the 2.0.x series, and 1.3.39 and earlier in the 1.3.x series allows remote authenticated users to inject arbitrary web script or HTML by uploading a file with a name containing XSS sequences and a file extension, which leads to injection within a (1) "406 Not Acceptable" or (2) "300 Multiple Choices" HTTP response when the extension is omitted in a request for the file.
10419| [CVE-2008-0050] CFNetwork in Apple Mac OS X 10.4.11 allows remote HTTPS proxy servers to spoof secure websites via data in a 502 Bad Gateway error.
10420| [CVE-2007-6405] Sergey Lyubka Simple HTTPD (shttpd) 1.38 and earlier on Windows allows remote attackers to download arbitrary CGI programs or scripts via a URI with an appended (1) '+' character, (2) '.' character, (3) %2e sequence (hex-encoded dot), or (4) hex-encoded character greater than 0x7f. NOTE: the %20 vector is already covered by CVE-2007-3407.
10421| [CVE-2007-6385] The proxy server in Kerio WinRoute Firewall before 6.4.1 does not properly enforce authentication for HTTPS pages, which has unknown impact and attack vectors. NOTE: it is not clear whether this issue crosses privilege boundaries.
10422| [CVE-2007-5979] Cross-site scripting (XSS) vulnerability in download_plugin.php3 in F5 Firepass 4100 SSL VPN 5.4 through 5.5.2 and 6.0 through 6.0.1 allows remote attackers to inject arbitrary web script or HTML via the backurl parameter.
10423| [CVE-2007-5826] Absolute path traversal vulnerability in the EDraw Flowchart ActiveX control in EDImage.ocx 2.0.2005.1104 allows remote attackers to create or overwrite arbitrary files with arbitrary contents via a full pathname in the second argument to the HttpDownloadFile method, a different product than CVE-2007-4420.
10424| [CVE-2007-5796] Cross-site scripting (XSS) vulnerability in the management console in Blue Coat ProxySG before 4.2.6.1, and 5.x before 5.2.2.5, allows remote attackers to inject arbitrary web script or HTML by modifying the URL that is used for loading Certificate Revocation Lists.
10425| [CVE-2007-5570] Cisco Firewall Services Module (FWSM) 3.2(1), and 3.1(5) and earlier, allows remote attackers to cause a denial of service (device reload) via a crafted HTTPS request, aka CSCsi77844.
10426| [CVE-2007-5156] Incomplete blacklist vulnerability in editor/filemanager/upload/php/upload.php in FCKeditor, as used in SiteX CMS 0.7.3.beta, La-Nai CMS, Syntax CMS, Cardinal Cms, and probably other products, allows remote attackers to upload and execute arbitrary PHP code via a file whose name contains ".php." and has an unknown extension, which is recognized as a .php file by the Apache HTTP server, a different vulnerability than CVE-2006-0658 and CVE-2006-2529.
10427| [CVE-2007-5034] ELinks before 0.11.3, when sending a POST request for an https URL, appends the body and content headers of the POST request to the CONNECT request in cleartext, which allows remote attackers to sniff sensitive data that would have been protected by TLS. NOTE: this issue only occurs when a proxy is defined for https.
10428| [CVE-2007-4821] Buffer overflow in a certain ActiveX control in officeviewer.ocx 5.2.218.1 in EDraw Office Viewer Component 5.2 allows remote attackers to execute arbitrary code via a long first argument to the HttpDownloadFileToTempDir method, a different vulnerability than CVE-2007-3169.
10429| [CVE-2007-4727] Buffer overflow in the fcgi_env_add function in mod_proxy_backend_fastcgi.c in the mod_fastcgi extension in lighttpd before 1.4.18 allows remote attackers to overwrite arbitrary CGI variables and execute arbitrary code via an HTTP request with a long content length, as demonstrated by overwriting the SCRIPT_FILENAME variable, aka a "header overflow."
10430| [CVE-2007-4540] Multiple SQL injection vulnerabilities in download.php in Olate Download (od) 3.4.2 allow remote attackers to execute arbitrary SQL commands via the (1) HTTP_REFERER or (2) HTTP_USER_AGENT HTTP header.
10431| [CVE-2007-4420] Absolute path traversal vulnerability in a certain ActiveX control in officeviewer.ocx 5.1.199.1 in EDraw Office Viewer Component 5.1 allows remote attackers to create or overwrite arbitrary files via a full pathname in the second argument to the HttpDownloadFile method, a different vulnerability than CVE-2007-3168 and CVE-2007-3169.
10432| [CVE-2007-3389] Wireshark before 0.99.6 allows remote attackers to cause a denial of service (crash) via a crafted chunked encoding in an HTTP response, possibly related to a zero-length payload.
10433| [CVE-2007-3169] Buffer overflow in a certain ActiveX control in the EDraw Office Viewer Component (edrawofficeviewer.ocx) 4.0.5.20, and other versions before 5.0, allows remote attackers to cause a denial of service (Internet Explorer 7 crash) or execute arbitrary code via a long first argument to the HttpDownloadFile method.
10434| [CVE-2007-2695] The HttpClusterServlet and HttpProxyServlet in BEA WebLogic Express and WebLogic Server 6.1 through SP7, 7.0 through SP7, 8.1 through SP5, 9.0, and 9.1, when SecureProxy is enabled, may process "external requests on behalf of a system identity," which allows remote attackers to access administrative data or functionality.
10435| [CVE-2007-2588] Multiple buffer overflows in the Office Viewer OCX ActiveX control (oa.ocx) 3.2 allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long argument to the (1) HttpDownloadFile, (2) Open, (3) OpenWebFile, (4) DoOleCommand, (5) FTPDownloadFile, (6) FTPUploadFile, (7) HttpUploadFile, (8) Save, or (9) SaveWebFile function.
10436| [CVE-2007-2563] Buffer overflow in the AddFile function in VersalSoft HTTP File Upload ActiveX control (UFileUploaderD.dll) allows remote attackers to execute arbitrary code via a long argument.
10437| [CVE-2007-2496] The WordOCX ActiveX control in WordViewer.ocx 3.2.0.5 allows remote attackers to cause a denial of service (Internet Explorer 7 crash) via a long (1) DoOleCommand, (2) FTPDownloadFile, (3) FTPUploadFile, (4) HttpUploadFile, (5) GotoPage, (6) Save, (7) SaveWebFile, (8) HttpDownloadFile, (9) Open, (10) OpenWebFile, (11) SaveAs, or (12) ShowWordStandardDialog property value.
10438| [CVE-2007-2495] Multiple stack-based buffer overflows in the ExcelOCX ActiveX control in ExcelViewer.ocx 3.1.0.6 allow remote attackers to cause a denial of service (Internet Explorer 7 crash) via a long (1) DoOleCommand, (2) FTPDownloadFile, (3) FTPUploadFile, (4) HttpUploadFile, (5) Save, (6) SaveWebFile, (7) HttpDownloadFile, (8) Open, or (9) OpenWebFile property value. NOTE: some of these details are obtained from third party information.
10439| [CVE-2007-2494] Multiple stack-based buffer overflows in the PowerPointOCX ActiveX control in PowerPointViewer.ocx 3.1.0.3 allow remote attackers to cause a denial of service (Internet Explorer 7 crash) via a long (1) DoOleCommand, (2) FTPDownloadFile, (3) FTPUploadFile, (4) HttpUploadFile, (5) Save, (6) SaveWebFile, (7) HttpDownloadFile, (8) Open, or (9) OpenWebFile property value. NOTE: some of these details are obtained from third party information.
10440| [CVE-2007-2197] Race condition in the NeatUpload ASP.NET component 1.2.11 through 1.2.16, 1.1.18 through 1.1.23, and trunk.379 through trunk.445 allows remote attackers to obtain other clients' HTTP responses via multiple simultaneous requests, which triggers multiple calls to HttpWorkerRequest.FlushResponse for the same HttpWorkerRequest object and causes a buffer to be reused for a different request.
10441| [CVE-2007-2031] Buffer overflow in the HTTP proxy service for 3proxy 0.5 to 0.5.3g, and 0.6b-devel before 20070413, might allow remote attackers to execute arbitrary code via crafted transparent requests.
10442| [CVE-2007-1552] Unrestricted file upload vulnerability in usercp.php in MetaForum 0.513 Beta restricts file types based on the MIME type in the Content-type HTTP header, which allows remote attackers to upload and execute arbitrary scripts via an image MIME type with a filename containing an executable extension such as .php.
10443| [CVE-2007-1459] Multiple PHP remote file inclusion vulnerabilities in WebCreator 0.2.6-rc3 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the moddir parameter to (1) content/load.inc.php, (2) config/load.inc.php, (3) http/load.inc.php, and unspecified other files.
10444| [CVE-2007-1225] The connection log file implementation in Grok Developments NetProxy 4.03 does not record requests that omit http:// in a URL, which might allow remote attackers to conduct unauthorized activities and avoid detection.
10445| [CVE-2007-1224] Grok Developments NetProxy 4.03 allows remote attackers to bypass URL filtering via a request that omits "http://" from the URL and specifies the destination port (:80).
10446| [CVE-2007-0972] Unrestricted file upload vulnerability in modules/emoticons.php in Jupiter CMS 1.1.5 allows remote attackers to upload arbitrary files by modifying the HTTP request to send an image content type, and to omit is_guest and is_user parameters. NOTE: this issue might be related to CVE-2006-4875.
10447| [CVE-2007-0796] Blue Coat Systems WinProxy 6.1a and 6.0 r1c, and possibly earlier, allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long HTTP CONNECT request, which triggers heap corruption.
10448| [CVE-2007-0450] Directory traversal vulnerability in Apache HTTP Server and Tomcat 5.x before 5.5.22 and 6.x before 6.0.10, when using certain proxy modules (mod_proxy, mod_rewrite, mod_jk), allows remote attackers to read arbitrary files via a .. (dot dot) sequence with combinations of (1) "/" (slash), (2) "\" (backslash), and (3) URL-encoded backslash (%5C) characters in the URL, which are valid separators in Tomcat but not in Apache.
10449| [CVE-2007-0419] The BEA WebLogic Server proxy plug-in before June 2006 for the Apache HTTP Server does not properly handle protocol errors, which allows remote attackers to cause a denial of service (server outage).
10450| [CVE-2006-6511] dadaIMC .99.3 uses an insufficiently restrictive FilesMatch directive in the installed .htaccess file, which allows remote attackers to execute arbitrary PHP code by uploading files whose names contain (1) feature, (2) editor, (3) newswire, (4) otherpress, (5) admin, (6) pbook, (7) media, or (8) mod, which are processed as PHP file types (application/x-httpd-php).
10451| [CVE-2006-6361] Heap-based buffer overflow in the uploadprogress_php_rfc1867_file function in uploadprogress.c in Bitflux Upload Progress Meter before 8276 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via crafted HTTP POST fileupload requests.
10452| [CVE-2006-6276] HTTP request smuggling vulnerability in Sun Java System Proxy Server before 20061130, when used with Sun Java System Application Server or Sun Java System Web Server, allows remote attackers to bypass HTTP request filtering, hijack web sessions, perform cross-site scripting (XSS), and poison web caches via unspecified attack vectors.
10453| [CVE-2006-5596] Directory traversal vulnerability in the SSL server in AEP Smartgate 4.3b allows remote attackers to download arbitrary files via ..\ (dot dot backslash) sequences in an HTTP GET request.
10454| [CVE-2006-5037] ** DISPUTED ** MySource Matrix after 3.8 allows remote attackers to use the application as an HTTP proxy server via a MIME encoded URL in the sq_content_src parameter to access arbitrary sites with the server's IP address and conduct cross-site scripting (XSS) attacks. NOTE: the researcher reports that "The vendor does not consider this a vulnerability."
10455| [CVE-2006-5036] ** DISPUTED ** MySource Matrix 3.8 and earlier, and MySource 2.x, allow remote attackers to use the application as an HTTP proxy server via the sq_remote_page_url parameter to access arbitrary sites with the server's IP address and conduct cross-site scripting (XSS) attacks. NOTE: the researcher reports that "The vendor does not consider this a vulnerability."
10456| [CVE-2006-4558] DeluxeBB 1.06 and earlier, when run on the Apache HTTP Server with the mod_mime module, allows remote attackers to execute arbitrary PHP code by uploading files with double extensions via the fileupload parameter in a newthread action in newpost.php.
10457| [CVE-2006-4409] The Online Certificate Status Protocol (OCSP) service in the Security Framework in Apple Mac OS X 10.4 through 10.4.8 retrieve certificate revocation lists (CRL) when an HTTP proxy is in use, which could cause the system to accept certificates that have been revoked.
10458| [CVE-2006-4197] Multiple buffer overflows in libmusicbrainz (aka mb_client or MusicBrainz Client Library) 2.1.2 and earlier, and SVN 8406 and earlier, allow remote attackers to cause a denial of service (crash) or execute arbitrary code via (1) a long Location header by the HTTP server, which triggers an overflow in the MBHttp::Download function in lib/http.cpp
10459| [CVE-2006-4111] Ruby on Rails before 1.1.5 allows remote attackers to execute Ruby code with "severe" or "serious" impact via a File Upload request with an HTTP header that modifies the LOAD_PATH variable, a different vulnerability than CVE-2006-4112.
10460| [CVE-2006-3935] system/workplace/views/admin/admin-main.jsp in Alkacon OpenCms before 6.2.2 does not restrict access to administrator functions, which allows remote authenticated users to (1) send broadcast messages to all users (/workplace/broadcast), (2) list all users (/accounts/users), (3) add webusers (/accounts/webusers/new), (4) upload database import and export files (/database/importhttp), (5) upload arbitrary program modules (/modules/modules_import), and (6) read the log file (/workplace/logfileview) by setting the appropriate value for the path parameter in a direct request to admin-main.jsp.
10461| [CVE-2006-3830] The Languages selection in the admin interface in Kailash Nadh boastMachine (formerly bMachine) 3.1 and earlier allows remote authenticated administrators to upload files with arbitrary extensions to the bmc/Inc/Lang directory. NOTE: because the uploaded files cannot be accessed through HTTP, this issue is a vulnerability only if there is a likely usage pattern in which the files would be opened or executed by local users, e.g., malware files with names that entice local users to open the files.
10462| [CVE-2006-3731] Mozilla Firefox 1.5.0.4 and earlier allows remote user-assisted attackers to cause a denial of service (crash) via a form with a multipart/form-data encoding and a user-uploaded file. NOTE: a third party has claimed that this issue might be related to the LiveHTTPHeaders extension.
10463| [CVE-2006-3549] services/go.php in Horde Application Framework 3.0.0 through 3.0.10 and 3.1.0 through 3.1.1 does not properly restrict its image proxy capability, which allows remote attackers to perform "Web tunneling" attacks and use the server as a proxy via (1) http, (2) https, and (3) ftp URL in the url parameter, which is requested from the server.
10464| [CVE-2006-3070] write_ok.php in Zeroboard 4.1 pl8, when installed on Apache with mod_mime, allows remote attackers to bypass restrictions for uploading files with executable extensions by uploading a .htaccess file that with an AddType directive that assigns an executable module to files with assumed-safe extensions, as demonstrated by assigning the txt extension to be handled by application/x-httpd-php.
10465| [CVE-2006-2926] Stack-based buffer overflow in the WWW Proxy Server of Qbik WinGate 6.1.1.1077 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long URL HTTP request.
10466| [CVE-2006-2786] HTTP response smuggling vulnerability in Mozilla Firefox and Thunderbird before 1.5.0.4, when used with certain proxy servers, allows remote attackers to cause Firefox to interpret certain responses as if they were responses from two different sites via (1) invalid HTTP response headers with spaces between the header name and the colon, which might not be ignored in some cases, or (2) HTTP 1.1 headers through an HTTP 1.0 proxy, which are ignored by the proxy but processed by the client.
10467| [CVE-2006-2341] The HTTP proxy in Symantec Gateway Security 5000 Series 2.0.1 and 3.0, and Enterprise Firewall 8.0, when NAT is being used, allows remote attackers to determine internal IP addresses by using malformed HTTP requests, as demonstrated using a get request without a space separating the URI.
10468| [CVE-2006-2330] PHP-Fusion 6.00.306 and earlier, running under Apache HTTP Server 1.3.27 and PHP 4.3.3, allows remote authenticated users to upload files of arbitrary types using a filename that contains two or more extensions that ends in an assumed-valid extension such as .gif, which bypasses the validation, as demonstrated by uploading then executing an avatar file that ends in ".php.gif" and contains PHP code in EXIF metadata.
10469| [CVE-2006-1785] Adobe Document Server for Reader Extensions 6.0 allows remote authenticated users to inject arbitrary web script via a leading (1) ftp or (2) http URI in the ReaderURL variable in the "Update Download Site" section of ads-readerext. NOTE: it is not clear whether the vendor advisory addresses this issue. In addition, since the issue requires administrative privileges to exploit, it is not clear whether this crosses security boundaries.
10470| [CVE-2006-1645] Cross-site scripting (XSS) vulnerability in Anton Vlasov and Rostislav Gaitkuloff ReloadCMS 1.2.5 and earlier allows remote attackers to inject arbitrary web script or HTML and gain leverage to execute arbitrary PHP code via the User-Agent HTTP header, which is displayed by admin/modules/general/statistic.php in the administration panel.
10471| [CVE-2006-1631] Unspecified vulnerability in the HTTP compression functionality in Cisco CSS 11500 Series Content Services switches allows remote attackers to cause a denial of service (device reload) via (1) "valid, but obsolete" or (2) "specially crafted" HTTP requests.
10472| [CVE-2006-1218] Unspecified vulnerability in the HTTP proxy in Novell BorderManager 3.8 and earlier allows remote attackers to cause a denial of service (CPU consumption and ABEND) via unknown attack vectors related to "media streaming over HTTP 1.1".
10473| [CVE-2006-0483] Cisco VPN 3000 series concentrators running software 4.7.0 through 4.7.2.A allow remote attackers to cause a denial of service (device reload or user disconnect) via a crafted HTTP packet.
10474| [CVE-2005-4874] The XMLHttpRequest object in Mozilla 1.7.8 supports the HTTP TRACE method, which allows remote attackers to obtain (1) proxy authentication passwords via a request with a "Max-Forwards: 0" header or (2) arbitrary local passwords on the web server that hosts this object.
10475| [CVE-2005-4827] Internet Explorer 6.0, and possibly other versions, allows remote attackers to bypass the same origin security policy and make requests outside of the intended domain by calling open on an XMLHttpRequest object (Microsoft.XMLHTTP) and using tab, newline, and carriage return characters within the first argument (method name), which is supported by some proxy servers that convert tabs to spaces. NOTE: this issue can be leveraged to conduct referer spoofing, HTTP Request Smuggling, and other attacks.
10476| [CVE-2005-4814] Unrestricted file upload vulnerability in Segue CMS before 1.3.6, when the Apache HTTP Server handles .phtml files with the PHP interpreter, allows remote attackers to upload and execute arbitrary PHP code by placing .phtml files in the userfiles/ directory.
10477| [CVE-2005-3187] The listening daemon in Blue Coat Systems Inc. WinProxy before 6.1a allows remote attackers to cause a denial of service (crash) via a long HTTP request that causes an out-of-bounds read.
10478| [CVE-2005-2916] Linksys WRT54G 3.01.03, 3.03.6, 4.00.7, and possibly other versions before 4.20.7, does not verify user authentication until after an HTTP POST request has been processed, which allows remote attackers to (1) modify configuration using restore.cgi or (2) upload new firmware using upgrade.cgi.
10479| [CVE-2005-2830] Microsoft Internet Explorer 5.01, 5.5, and 6, when using an HTTPS proxy server that requires Basic Authentication, sends URLs in cleartext, which allows remote attackers to obtain sensitive information, aka "HTTPS Proxy Vulnerability."
10480| [CVE-2005-2730] The HTTP proxy in Astaro Security Linux 6.0 allows remote attackers to obtain sensitive information via an invalid request, which reveals a Proxy-authorization string in an error message.
10481| [CVE-2005-2729] The HTTP proxy in Astaro Security Linux 6.0 does not properly filter HTTP CONNECT requests to localhost, which allows remote attackers to bypass firewall rules and connect to local services.
10482| [CVE-2005-2088] The Apache HTTP server before 1.3.34, and 2.0.x before 2.0.55, when acting as an HTTP proxy, allows remote attackers to poison the web cache, bypass web application firewall protection, and conduct XSS attacks via an HTTP request with both a "Transfer-Encoding: chunked" header and a Content-Length header, which causes Apache to incorrectly handle and forward the body of the request in a way that causes the receiving server to process it as a separate HTTP request, aka "HTTP Request Smuggling."
10483| [CVE-2005-1857] Format string vulnerability in simpleproxy before 3.4 allows remote malicious HTTP proxies to execute arbitrary code via format string specifiers in a reply.
10484| [CVE-2005-1576] The file download dialog in Mozilla Firefox 0.10.1 and 1.0 for Windows uses the Content-Type HTTP header to determine the file type, but saves the original file extension when "Save to Disk" is selected, which allows remote attackers to hide the real file types of downloaded files.
10485| [CVE-2005-1575] The file download dialog in Mozilla Firefox 0.10.1 and 1.0 for Windows allows remote attackers to hide the real file types of downloaded files via the Content-Type HTTP header and a filename containing whitespace, dots, or ASCII byte 160.
10486| [CVE-2005-1340] The HTTP proxy service in Server Admin for Mac OS X 10.3.9 does not restrict access when it is enabled, which allows remote attackers to use the proxy.
10487| [CVE-2005-0943] Cisco VPN 3000 series Concentrator running firmware 4.1.7.A and earlier allows remote attackers to cause a denial of service (device reload or drop user connection) via a crafted HTTPS packet.
10488| [CVE-2005-0668] Unknown vulnerability in HTTP Anti Virus Proxy (HAVP) before 0.51 prevents viruses from being properly detected in certain files such as (1) .CAB or (2) .ZIP files.
10489| [CVE-2005-0657] Directory traversal vulnerability in Computalynx CProxy 3.3.x and 3.4.x through 3.4.4 allows remote attackers to read arbitrary files or cause a denial of service (application crash) via a .. (dot dot) in an HTTP request.
10490| [CVE-2005-0593] Firefox before 1.0.1 and Mozilla before 1.7.6 allows remote attackers to spoof the SSL "secure site" lock icon via (1) a web site that does not finish loading, which shows the lock of the previous site, (2) a non-HTTP server that uses SSL, which causes the lock to be displayed when the SSL handshake is completed, or (3) a URL that generates an HTTP 204 error, which updates the icon and location information but does not change the display of the original site.
10491| [CVE-2004-2582] Novell iChain 2.3 includes the build number in the VIA line of the proxy server's HTTP headers, which allows remote attackers to obtain sensitive information.
10492| [CVE-2004-2416] Buffer overflow in the logging component of CCProxy allows remote attackers to execute arbitrary code via a long HTTP GET request.
10493| [CVE-2004-2107] Finjan SurfinGate 6.0 and 7.0, when running in proxy mode, does not authenticate FHTTP commands on TCP port 3141, which allows remote attackers to use the finjan-parameter-type header to (1) restart the service, (2) use the getlastmsg command to view log information, or (3) use the online command to force a policy update from the database server.
10494| [CVE-2004-2061] RiSearch 1.0.01 and RiSearch Pro 3.2.06 allows remote attackers to use the show.pl script as an open proxy, or read arbitrary local files, by setting the url parameter to a (1) http://, (2) ftp://, or (3) file:// URL.
10495| [CVE-2004-1953] phProfession 2.5 allows remote attackers to gain sensitive information via a direct HTTP request to upload.php, which reveals the path in a PHP error message.
10496| [CVE-2004-1893] Dreamweaver MX, when "Using Driver On Testing Server" or "Using DSN on Testing Server" is selected, uploads the mmhttpdb.asp script to the web site but does not require authentication, which allows remote attackers to obtain sensitive information and possibly execute arbitrary SQL commands via a direct request to mmhttpdb.asp.
10497| [CVE-2004-1887] Ada Image Server (ImgSvr) 0.4 allows remote attackers to view directories or download files via an HTTP request with a trailing %00 (null).
10498| [CVE-2004-1811] The SSL HTTP Server in HP Web-enabled Management Software 5.0 through 5.92, with anonymous access enabled, allows remote attackers to compromise the trusted certificates by uploading their own certificates.
10499| [CVE-2004-1540] ZyXEL Prestige 623, 650, and 652 HW Routers, and possibly other versions, with HTTP Remote Administration enabled, does not require a password to access rpFWUpload.html, which allows remote attackers to reset the router configuration file.
10500| [CVE-2004-1484] Format string vulnerability in the _msg function in error.c in socat 1.4.0.3 and earlier, when used as an HTTP proxy client and run with the -ly option, allows remote attackers or local users to execute arbitrary code via format string specifiers in a syslog message.
10501| [CVE-2004-0989] Multiple buffer overflows in libXML 2.6.12 and 2.6.13 (libxml2), and possibly other versions, may allow remote attackers to execute arbitrary code via (1) a long FTP URL that is not properly handled by the xmlNanoFTPScanURL function, (2) a long proxy URL containing FTP data that is not properly handled by the xmlNanoFTPScanProxy function, and other overflows related to manipulation of DNS length values, including (3) xmlNanoFTPConnect, (4) xmlNanoHTTPConnectHost, and (5) xmlNanoHTTPConnectHost.
10502| [CVE-2004-0740] The HTTP server in Lexmark T522 and possibly other models allows remote attackers to cause a denial of service (server crash, reload, or hang) via an HTTP header with a long Host field, possibly triggering a buffer overflow.
10503| [CVE-2004-0700] Format string vulnerability in the mod_proxy hook functions function in ssl_engine_log.c in mod_ssl before 2.8.19 for Apache before 1.3.31 may allow remote attackers to execute arbitrary messages via format string specifiers in certain log messages for HTTPS that are handled by the ssl_log function.
10504| [CVE-2004-0684] WebSphere Edge Component Caching Proxy in WebSphere Edge Server 5.02, with the JunctionRewrite directive enabled, allows remote attackers to cause a denial of service via an HTTP GET request without any parameters.
10505| [CVE-2004-0613] osTicket allows remote attackers to view sensitive uploaded files and possibly execute arbitrary code via an HTTP request that uploads a PHP file to the ticket attachments directory.
10506| [CVE-2004-0596] The Equalizer Load-balancer for serial network interfaces (eql.c) in Linux kernel 2.6.x up to 2.6.7 allows local users to cause a denial of service via a non-existent device name that triggers a null dereference.
10507| [CVE-2004-0551] Cisco CatOS 5.x before 5.5(20) through 8.x before 8.2(2) and 8.3(2)GLX, as used in Catalyst switches, allows remote attackers to cause a denial of service (system crash and reload) by sending invalid packets instead of the final ACK portion of the three-way handshake to the (1) Telnet, (2) HTTP, or (3) SSH services, aka "TCP-ACK DoS attack."
10508| [CVE-2004-0549] The WebBrowser ActiveX control, or the Internet Explorer HTML rendering engine (MSHTML), as used in Internet Explorer 6, allows remote attackers to execute arbitrary code in the Local Security context by using the showModalDialog method and modifying the location to execute code such as Javascript, as demonstrated using (1) delayed HTTP redirect operations, and an HTTP response with a Location: header containing a "URL:" prepended to a "ms-its" protocol URI, or (2) modifying the location attribute of the window, as exploited by the Download.ject (aka Scob aka Toofer) using the ADODB.Stream object.
10509| [CVE-2004-0492] Heap-based buffer overflow in proxy_util.c for mod_proxy in Apache 1.3.25 to 1.3.31 allows remote attackers to cause a denial of service (process crash) and possibly execute arbitrary code via a negative Content-Length HTTP header field, which causes a large amount of data to be copied.
10510| [CVE-2004-0313] Buffer overflow in PSOProxy 0.91 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long HTTP request, as demonstrated using a long (1) GET argument or (2) method name.
10511| [CVE-2004-0049] Helix Universal Server/Proxy 9 and Mobile Server 10 allow remote attackers to cause a denial of service via certain HTTP POST messages to the Administration System port.
10512| [CVE-2004-0006] Multiple buffer overflows in Gaim 0.75 and earlier, and Ultramagnetic before 0.81, allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) cookies in a Yahoo web connection, (2) a long name parameter in the Yahoo login web page, (3) a long value parameter in the Yahoo login page, (4) a YMSG packet, (5) the URL parser, and (6) HTTP proxy connect.
10513| [CVE-2003-1286] HTTP Proxy in Sambar Server before 6.0 beta 6, when security.ini lacks a 127.0.0.1 proxydeny entry, allows remote attackers to send proxy HTTP requests to the Sambar Server's administrative interface and external web servers, by making a "Connection: keep-alive" request before the proxy requests.
10514| [CVE-2003-1159] Plug and Play Web Server Proxy 1.0002c allows remote attackers to cause a denial of service (server crash) via an invalid URI in an HTTP GET request to TCP port 8080.
10515| [CVE-2003-1028] The download function of Internet Explorer 6 SP1 allows remote attackers to obtain the cache directory name via an HTTP response with an invalid ContentType and a .htm file, which could allow remote attackers to bypass security mechanisms that rely on random names, as demonstrated by threadid10008.
10516| [CVE-2003-1001] Buffer overflow in the Cisco Firewall Services Module (FWSM) in Cisco Catalyst 6500 and 7600 series devices allows remote attackers to cause a denial of service (crash and reload) via HTTP auth requests for (1) TACACS+ or (2) RADIUS authentication.
10517| [CVE-2003-0963] Buffer overflows in (1) try_netscape_proxy and (2) try_squid_eplf for lftp 2.6.9 and earlier allow remote HTTP servers to execute arbitrary code via long directory names that are processed by the ls or rels commands.
10518| [CVE-2003-0807] Buffer overflow in the COM Internet Services and in the RPC over HTTP Proxy components for Microsoft Windows NT Server 4.0, NT 4.0 Terminal Server Edition, 2000, XP, and Server 2003 allows remote attackers to cause a denial of service via a crafted request.
10519| [CVE-2003-0803] Nokia Electronic Documentation (NED) 5.0 allows remote attackers to use NED as an open HTTP proxy via a URL in the location parameter, which NED accesses and returns to the user.
10520| [CVE-2003-0106] The HTTP proxy for Symantec Enterprise Firewall (SEF) 7.0 allows proxy users to bypass pattern matching for blocked URLs via requests that are URL-encoded with escapes, Unicode, or UTF-8.
10521| [CVE-2002-2414] Opera 6.0.3, when using Squid 2.4 for HTTPS proxying, does not properly handle when accepting a non-global certificate authority (CA) certificate from a site and establishing a subsequent HTTPS connection, which allows remote attackers to cause a denial of service (crash).
10522| [CVE-2002-2405] Check Point FireWall-1 4.1 and Next Generation (NG), with UserAuth configured to proxy HTTP traffic only, allows remote attackers to pass unauthorized HTTPS, FTP and possibly other traffic through the firewall.
10523| [CVE-2002-2286] The parse-get function in utils.c for apt-www-proxy 0.1 allows remote attackers to cause a denial of service (crash) via an empty HTTP request, which causes a null dereference.
10524| [CVE-2002-2081] cphost.dll in Microsoft Site Server 3.0 allows remote attackers to cause a denial of service (disk consumption) via an HTTP POST of a file with a long TargetURL parameter, which causes Site Server to abort and leaves the uploaded file in c:\temp.
10525| [CVE-2002-1999] HP Praesidium Webproxy 1.0 running on HP-UX 11.04 VVOS could allow remote attackers to cause Webproxy to forward requests to the internal network via crafted HTTP requests.
10526| [CVE-2002-1710] The attachment capability in Compose Mail in BasiliX Webmail 1.1.0 does not check whether the attachment was uploaded by the user or came from a HTTP POST, which could allow local users to steal sensitive information like a password file.
10527| [CVE-2002-1629] Multi-Tech ProxyServer products MTPSR1-100, MTPSR1-120, MTPSR1-202ST, MTPSR2-201, and MTPSR3-200 ship with a null password, which allows remote attackers to gain administrative privileges via Telnet or HTTP.
10528| [CVE-2002-1169] IBM Web Traffic Express Caching Proxy Server 3.6 and 4.x before 4.0.1.26 allows remote attackers to cause a denial of service (crash) via an HTTP request to helpout.exe with a missing HTTP version number, which causes ibmproxy.exe to crash.
10529| [CVE-2002-1168] Cross-site scripting (XSS) vulnerability in IBM Web Traffic Express Caching Proxy Server 3.6 and 4.x before 4.0.1.26 allows remote attackers to execute script as other users via an HTTP request that contains an Location: header with a "%0a%0d" (CRLF) sequence, which echoes the Location as an HTTP header in the server response.
10530| [CVE-2002-1167] Cross-site scripting (XSS) vulnerability in IBM Web Traffic Express Caching Proxy Server 3.6 and 4.x before 4.0.1.26 allows remote attackers to execute script as other users via an HTTP GET request.
10531| [CVE-2002-1087] The scripts (1) createdir.php, (2) removedir.php and (3) uploadfile.php for ezContents 1.41 and earlier do not check credentials, which allows remote attackers to create or delete directories and upload files via a direct HTTP POST request.
10532| [CVE-2002-1061] Multiple buffer overflows in Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) an HTTP GET request with a long major version number, (2) an HTTP GET request to the HTTP proxy on port 3128 with a long major version number, (3) a long OK reply from a POP3 server, and (4) a long SMTP server response.
10533| [CVE-2002-1001] Buffer overflows in AnalogX Proxy before 4.12 allows remote attackers to cause a denial of service and possibly execute arbitrary code via (1) a long HTTP request to TCP port 6588 or (2) a SOCKS 4A request to TCP port 1080 with a long DNS hostname.
10534| [CVE-2002-0847] tinyproxy HTTP proxy 1.5.0, 1.4.3, and earlier allows remote attackers to execute arbitrary code via memory that is freed twice (double-free).
10535| [CVE-2002-0815] The Javascript "Same Origin Policy" (SOP), as implemented in (1) Netscape, (2) Mozilla, and (3) Internet Explorer, allows a remote web server to access HTTP and SOAP/XML content from restricted sites by mapping the malicious server's parent DNS domain name to the restricted site, loading a page from the restricted site into one frame, and passing the information to the attacker-controlled frame, which is allowed because the document.domain of the two frames matches on the parent domain.
10536| [CVE-2002-0778] The default configuration of the proxy for Cisco Cache Engine and Content Engine allows remote attackers to use HTTPS to make TCP connections to allowed IP addresses while hiding the actual source IP.
10537| [CVE-2002-0663] Buffer overflow in HTTP Proxy for Symantec Norton Personal Internet Firewall 3.0.4.91 and Norton Internet Security 2001 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large outgoing HTTP request.
10538| [CVE-2002-0440] Trend Micro InterScan VirusWall HTTP proxy 3.6 with the "Skip scanning if Content-length equals 0" option enabled allows malicious web servers to bypass content scanning via a Content-length header set to 0, which is often ignored by HTTP clients.
10539| [CVE-2002-0133] Buffer overflows in Avirt Gateway Suite 4.2 allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) long header fields to the HTTP proxy, or (2) a long string to the telnet proxy.
10540| [CVE-2002-0081] Buffer overflows in (1) php_mime_split in PHP 4.1.0, 4.1.1, and 4.0.6 and earlier, and (2) php3_mime_split in PHP 3.0.x allows remote attackers to execute arbitrary code via a multipart/form-data HTTP POST request when file_uploads is enabled.
10541| [CVE-2002-0058] Vulnerability in Java Runtime Environment (JRE) allows remote malicious web sites to hijack or sniff a web client's sessions, when an HTTP proxy is being used, via a Java applet that redirects the session to another server, as seen in (1) Netscape 6.0 through 6.1 and 4.79 and earlier, (2) Microsoft VM build 3802 and earlier as used in Internet Explorer 4.x and 5.x, and possibly other implementations that use vulnerable versions of SDK or JDK.
10542| [CVE-2001-1130] Sdbsearch.cgi in SuSE Linux 6.0-7.2 could allow remote attackers to execute arbitrary commands by uploading a keylist.txt file that contains filenames with shell metacharacters, then causing the file to be searched using a .. in the HTTP referer (from the HTTP_REFERER variable) to point to the directory that contains the keylist.txt file.
10543| [CVE-2001-1030] Squid before 2.3STABLE5 in HTTP accelerator mode does not enable access control lists (ACLs) when the httpd_accel_host and http_accel_with_proxy off settings are used, which allows attackers to bypass the ACLs and conduct unauthorized activities such as port scanning.
10544| [CVE-2001-0535] Example applications (Exampleapps) in ColdFusion Server 4.x do not properly restrict prevent access from outside the local host's domain, which allows remote attackers to conduct upload, read, or execute files by spoofing the "HTTP Host" (CGI.Host) variable in (1) the "Web Publish" example script, and (2) the "Email" example script.
10545| [CVE-2001-0483] Configuration error in Axent Raptor Firewall 6.5 allows remote attackers to use the firewall as a proxy to access internal web resources when the http.noproxy Rule is not set.
10546| [CVE-2001-0374] The HTTP server in Compaq web-enabled management software for (1) Foundation Agents, (2) Survey, (3) Power Manager, (4) Availability Agents, (5) Intelligent Cluster Administrator, and (6) Insight Manager can be used as a generic proxy server, which allows remote attackers to bypass access restrictions via the management port, 2301.
10547| [CVE-2001-0308] UploadServlet in Bajie HTTP JServer 0.78, and possibly other versions before 0.80, allows remote attackers to execute arbitrary commands by calling the servlet to upload a program, then using a ... (modified ..) to access the file that was created for the program.
10548| [CVE-2001-0129] Buffer overflow in Tinyproxy HTTP proxy 1.3.3 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long connect request.
10549| [CVE-2000-0984] The HTTP server in Cisco IOS 12.0 through 12.1 allows local users to cause a denial of service (crash and reload) via a URL containing a "?/" string.
10550| [CVE-2000-0812] The administration module in Sun Java web server allows remote attackers to execute arbitrary commands by uploading Java code to the module and invoke the com.sun.server.http.pagecompile.jsp92.JspServlet by requesting a URL that begins with a /servlet/ tag.
10551| [CVE-2000-0593] WinProxy 2.0 and 2.0.1 allows remote attackers to cause a denial of service by sending an HTTP GET request without listing an HTTP version number.
10552| [CVE-2000-0395] Buffer overflow in CProxy 3.3 allows remote users to cause a denial of service via a long HTTP request.
10553| [CVE-2000-0376] Buffer overflow in the HTTP proxy server for the i-drive Filo software allows remote attackers to execute arbitrary commands via a long HTTP GET request.
10554| [CVE-1999-1535] Buffer overflow in AspUpload.dll in Persits Software AspUpload before 1.4.0.2 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long argument in the HTTP request.
10555| [CVE-1999-0923] Sample runnable code snippets in ColdFusion Server 4.0 allow remote attackers to read files, conduct a denial of service, or use the server as a proxy for other HTTP calls.
10556|
10557| SecurityFocus - https://www.securityfocus.com/bid/:
10558| [94953] Squid HTTP proxy Multiple Information Disclosure Vulnerabilities
10559| [92569] F5 BIG-IP CVE-2015-8022 Arbitrary File Upload Vulnerability
10560| [92147] Barracuda Web App Firewall and Load Balancer Arbitrary Command Injection Vulnerability
10561| [90202] Http Anti Virus Proxy %28Havp%29 CVE-2005-0668 Remote Security Vulnerability
10562| [82340] Multiple F5 BIG-IP Products CVE-2015-8021 Arbitrary File Upload Vulnerability
10563| [77810] I-Httpd CVE-2014-7260 File-Upload Vulnerability
10564| [74648] Proxychains-ng 'LD_PRELOAD' Arbitrary Code Execution Vulnerability
10565| [71657] Apache HTTP Server 'mod_proxy_fcgi' Module Denial of Service Vulnerability
10566| [66268] Loadbalancer Enterprise VA Security Bypass Vulnerability
10567| [65508] Barracuda Load Balancer '/cgi-mod/index.cgi' Arbitrary Command Execution Vulnerability
10568| [65037] Cantata Internal HTTP Server Path Traversal Arbitrary File Download Vulnerability
10569| [56979] Loadbalancer Enterprise R16 Multiple HTML Injection Vulnerabilities
10570| [56753] Apache Apache HTTP Server 'mod_proxy_ajp Module Denial Of Service Vulnerability
10571| [55638] ZEN Load Balancer Multiple Security Vulnerabilities
10572| [53046] Apache HTTP Server 'LD_LIBRARY_PATH' Insecure Library Loading Arbitrary Code Execution Vulnerability
10573| [53024] RETIRED: Squid Proxy 'Host' HTTP Header Security Bypass Vulnerability
10574| [52553] at32 Reverse Proxy Multiple HTTP Header Fields Denial Of Service Vulnerabilities
10575| [52443] Citrix XenServer Workload Balancer Component Unspecified Denial of Service Vulnerability
10576| [51869] Apache HTTP Server CVE-2011-3639 'mod_proxy' Reverse Proxy Security Bypass Vulnerability
10577| [50802] Apache HTTP Server 'mod_proxy' Reverse Proxy Security Bypass Vulnerability
10578| [49957] Apache HTTP Server 'mod_proxy' Reverse Proxy Information Disclosure Vulnerability
10579| [43338] Alcatel-Lucent OmniVista 4760 HTTP Proxy Remote Buffer Overflow Vulnerability
10580| [42102] Apache 'mod_proxy_http' 2.2.9 for Unix Timeout Handling Information Disclosure Vulnerability
10581| [40827] Apache 'mod_proxy_http' Timeout Handling Information Disclosure Vulnerability
10582| [40685] ImageStore HTTP Header Remote Arbitrary File Upload Vulnerability
10583| [37966] Apache 1.3 mod_proxy HTTP Chunked Encoding Integer Overflow Vulnerability
10584| [36550] HP LoadRunner XUpload.ocx ActiveX Control 'MakeHttpRequest()' Arbitrary File Download Vulnerability
10585| [36491] Cisco IOS Authentication Proxy for HTTP(S) Authentication Bypass Vulnerability
10586| [35380] Multiple Browser Malicious Proxy HTTPS Man In The Middle Vulnerability
10587| [35076] IPFilter 'ippool' 'lib/load_http.c' Local Buffer Overflow Vulnerability
10588| [33865] MLdonkey HTTP Request Arbitrary File Download Vulnerability
10589| [33858] Multiple HTTP Proxy HTTP Host Header Incorrect Relay Behavior Vulnerability
10590| [33779] Barracuda Load Balancer 'realm' Parameter Cross Site Scripting Vulnerability
10591| [33687] Trend Micro Interscan Web Security HTTP Proxy Authentication Information Disclosure Vulnerability
10592| [33604] Squid Web Proxy Cache HTTP Version Number Parsing Denial of Service Vulnerability
10593| [31431] ZoneAlarm HTTP Proxy Remote Denial of Service Vulnerability
10594| [31416] CCProxy Server HTTP 'CONNECT' Request Buffer Overflow Vulnerability
10595| [30861] Ultra Office Control 'HttpUpload()' Method Buffer Overflow Vulnerability
10596| [29653] Apache 'mod_proxy_http' Interim Response Denial of Service Vulnerability
10597| [28301] HTTP File Upload ActiveX Control Arbitrary File and Directory Deletion Vulnerability
10598| [27236] Apache 'mod_proxy_balancer' Multiple Vulnerabilities
10599| [26732] HFS HTTP File Server Arbitrary File Upload Vulnerability
10600| [26661] F5 Networks FirePass 4100 SSL VPN Download_Plugin.PHP3 Cross-Site Scripting Vulnerability
10601| [26412] F5 FirePass 4100 SSL VPN Download_Plugin.PHP3 Cross-Site Scripting Vulnerability
10602| [25593] EDraw Office Viewer Component HttpDownloadFileToTempDir ActiveX Buffer Overflow Vulnerability
10603| [25489] Apache HTTP Server Mod_Proxy Denial of Service Vulnerability
10604| [23853] VersalSoft HTTP File Upload ActiveX Control Remote Buffer Overflow Vulnerability
10605| [23578] NeatUpload HTTPWorkerRequest.FlushResponse Information Disclosure Vulnerability
10606| [23545] 3proxy HTTP Proxy Request Buffer Overflow Vulnerability
10607| [22203] Squid Proxy ACL Queue Overload Remote Denial of Service Vulnerability
10608| [17965] PHPBB Unauthorized HTTP Proxy Vulnerability
10609| [17936] Symantec Enterprise Firewall / Gateway Security HTTP Proxy Internal IP Leakage Weakness
10610| [15825] Microsoft Internet Explorer HTTPS Proxy Information Disclosure Vulnerability
10611| [13435] Squid Proxy HTTP Response Splitting Remote Cache Poisoning Vulnerability
10612| [12464] F5 BIG-IP HTTP Pipelining OneConnect Information Leakage Vulnerability
10613| [12433] Squid Proxy Malformed HTTP Header Parsing Cache Poisoning Vulnerability
10614| [12412] Squid Proxy Oversize HTTP Headers Unspecified Remote Vulnerability
10615| [10735] AnomicHTTPProxy Administrative Interface Denial Of Service Vulnerability
10616| [10733] AnomicHTTPProxy Administrative Interface Authentication Bypass Vulnerability
10617| [10732] AnomicHTTPProxy Directory Traversal Vulnerability
10618| [10730] Linux Kernel Equalizer Load Balancer Device Driver Local Denial Of Service Vulnerability
10619| [8584] CacheFlow CacheOS HTTP HOST Proxy Vulnerability
10620| [7331] WebGUI HTTPProxy Denial Of Service Vulnerability
10621| [7054] DeleGate HTTP Proxy Robot.TXT User-Agent: Buffer Overflow Vulnerability
10622| [6765] Macromedia ColdFusion HTTP Client Sample Application Proxy Access Vulnerability
10623| [6339] apt-www-proxy NULL HTTP Request Denial Of Service Vulnerability
10624| [6218] Opera HTTPS Proxy Denial of Service Vulnerability
10625| [6212] Cisco PIX TACACS+/RADIUS HTTP Proxy Buffer Overrun Vulnerability
10626| [5959] Multiple Symantec HTTP Proxy Information Disclosure Vulnerability
10627| [5958] Multiple Symantec HTTP Proxy Denial of Service Vulnerability
10628| [5744] Check Point Firewall-1 HTTP Proxy Server Unauthorized Protocol Access Vulnerability
10629| [5447] W3C CERN httpd Proxy Cross-Site Scripting Vulnerability
10630| [5320] T. Hauck Jana Server HTTP Proxy Server Request Logging Buffer Overflow Vulnerability
10631| [4731] tinyproxy HTTP Proxy Memory Corruption Vulnerability
10632| [4488] EMUMail HTTP Host Arbitrary Config File Loading Vulnerability
10633| [3904] Avirt Gateway Suite HTTP Proxy Remote Buffer Overflow Vulnerability
10634| [3858] SapporoWorks Black JumboDog HTTP Proxy Buffer Overflow Vulnerability
10635| [2517] Raptor Firewall HTTP Request Proxying Vulnerability
10636| [104563] Multiple Microsoft Products DLL Loading Multiple Remote Code Execution Vulnerabilities
10637| [104470] F5 BIG-IP ASM CVE-2018-5526 Remote Denial of Service Vulnerability
10638| [104384] Multiple F5 BIG-IP Products CVE-2018-5522 Remote Denial of Service Vulnerability
10639| [104373] Microsoft Windows 'HTTP.sys' CVE-2018-8231 Remote Code Execution Vulnerability
10640| [104362] Multiple F5 BIG-IP Products CVE-2018-5517 Remote Denial of Service Vulnerability
10641| [104361] Microsoft Windows 'HTTP.sys' CVE-2018-8226 Denial of Service Vulnerability
10642| [104347] HAProxy CVE-2018-11469 Information Disclosure Vulnerability
10643| [104282] Symantec Advanced Secure Gateway and ProxySG CVE-2018-5241 Authentication Bypass Vulnerability
10644| [104272] Joomla! Core CVE-2018-11322 Arbitrary File Upload Vulnerability
10645| [104108] SAP Internet Graphics Server CVE-2018-2420 Unspecified Arbitrary File Upload Vulnerability
10646| [104099] F5 BIG-IP CVE-2018-5515 Remote Denial of Service Vulnerability
10647| [104097] F5 BIG-IP CVE-2018-5514 Remote Denial of Service Vulnerability
10648| [104095] F5 BIG-IP CVE-2018-5512 Remote Denial of Service Vulnerability
10649| [103952] nghttp2 CVE-2018-1000168 Remote Denial of Service Vulnerability
10650| [103826] Oracle HTTP Server CVE-2018-2760 Remote Security Vulnerability
10651| [103742] CA Workload Automation AE and Workload Control Center Multiple Security Vulnerabilities
10652| [103716] Adobe InDesign CC CVE-2018-4927 DLL Loading Local Privilege Escalation Vulnerability
10653| [103685] Symantec ProxySG and ASG Multiple Security Vulnerabilities
10654| [103684] Ruby CVE-2017-17742 HTTP Response Splitting Vulnerability
10655| [103650] Microsoft Windows 'HTTP.sys' CVE-2018-0956 Denial of Service Vulnerability
10656| [103528] Apache HTTP Server CVE-2018-1302 Denial of Service Vulnerability
10657| [103525] Apache HTTP Server CVE-2017-15715 Remote Security Bypass Vulnerability
10658| [103524] Apache HTTP Server CVE-2018-1312 Remote Security Bypass Vulnerability
10659| [103522] Apache HTTP Server CVE-2018-1303 Denial of Service Vulnerability
10660| [103520] Apache HTTP Server CVE-2018-1283 Remote Security Vulnerability
10661| [103515] Apache HTTP Server CVE-2018-1301 Denial of Service Vulnerability
10662| [103512] Apache HTTP Server CVE-2017-15710 Denial of Service Vulnerability
10663| [103505] F5 BIG-IP ASM and Analytics CVE-2018-5505 Remote Denial of Service Vulnerability
10664| [103504] Multiple F5 BIG-IP Products CVE-2018-5509 Remote Denial of Service Vulnerability
10665| [103441] F5 BIG-IQ Centralized Management CVE-2017-6152 Local Privilege Escalation Vulnerability
10666| [103434] APACHE Allura CVE-2018-1319 HTTP Response Splitting Vulnerability
10667| [103404] IBM Notes CVE-2018-1435 DLL Loading Remote Code Execution Vulnerability
10668| [103401] IBM Notes CVE-2018-1437 DLL Loading Local Privilege Escalation Vulnerability
10669| [103393] Adobe Connect CVE-2018-4921 Arbitrary File Upload Vulnerability
10670| [103338] Multiple Schneider Electric Products CVE-2018-7239 DLL Loading Local Code Execution Vulnerability
10671| [103236] Microsoft Windows Installer CVE-2018-0868 DLL Loading Local Privilege Escalation Vulnerability
10672| [103235] Multiple F5 BIG-IP Products CVE-2017-6150 Remote Denial of Service Vulnerability
10673| [103233] F5 BIG-IP ASM CVE-2017-6154 Remote Denial of Service Vulnerability
10674| [103217] Multiple F5 BIG-IP Products CVE-2018-5500 Memory Corruption Vulnerability
10675| [103211] Multiple F5 BIG-IP Products CVE-2018-5501 Remote Denial of Service Vulnerability
10676| [103173] Telerik UI for ASP.NET AJAX CVE-2017-11357 Arbitrary File Upload Vulnerability
10677| [103171] Telerik UI for ASP.NET AJAX CVE-2017-11317 Arbitrary File Upload Vulnerability
10678| [103148] Drupal CKEditor Upload Image Module Access Bypass Vulnerability
10679| [103096] Multiple Trend Micro Products CVE-2018-6218 DLL Loading Remote Code Execution Vulnerability
10680| [103084] F5 BIG-IP AFM Certificate Validation Security Bypass Vulnerability
10681| [103052] Schneider Electric StruxureOn Gateway CVE-2017-9970 Arbitrary File Upload Vulnerability
10682| [103039] Multiple Dell EMC Products Arbitrary File Upload and Security Bypass Vulnerabilities
10683| [102983] CareFusion Upgrade Utility CVE-2018-5457 DLL Loading Local Privilege Escalation Vulnerability
10684| [102835] NetIQ Access Manager CVE-2018-1342 Arbitrary File Upload Vulnerability
10685| [102733] Cisco Small Business Managed Switches Multiple HTTP Response Splitting Vulnerabilities
10686| [102565] Oracle HTTP Server CVE-2018-2561 Remote Security Vulnerability
10687| [102467] Multiple F5 BIG-IP Products CVE-2017-6133 Remote Denial of Service Vulnerability
10688| [102466] Multiple F5 BIG-IP Products CVE-2017-6134 Remote Denial of Service Vulnerability
10689| [102456] NetGain Systems Enterprise Manager CVE-2017-16594 Arbitrary File Upload Vulnerability
10690| [102455] Symantec ProxySG and ASG CVE-2016-9099 Open Redirection Vulnerability
10691| [102454] Symantec ProxySG and ASG CVE-2016-9100 Information Disclosure Vulnerability
10692| [102451] Symantec ProxySG CVE-2016-10256 Cross Site Scripting Vulnerability
10693| [102447] Symantec ProxySG and ASG CVE-2016-10257 Cross Site Scripting Vulnerability
10694| [102363] VMware vSphere Data Protection CVE-2017-15549 Arbitrary File Upload Vulnerability
10695| [102337] NetGain Systems Enterprise Manager CVE-2017-16609 Arbitrary File Download Vulnerability
10696| [102333] Multiple F5 BIG-IP Products CVE-2017-6132 Remote Denial of Service Vulnerability
10697| [102332] F5 BIG-IP AFM CVE-2017-0304 SQL Injection Vulnerability
10698| [102324] IBM Security Guardium CVE-2017-1262 HTTP Response Splitting Vulnerability
10699| [102264] Multiple F5 BIG-IP Products CVE-2017-6166 Remote Denial of Service Vulnerability
10700| [102228] GNU C Library 'elf/dl-load.c ' CVE-2017-16997 Local Privilege Escalation Vulnerability
10701| [102145] SAP Plant Connectivity CVE-2017-16690 DLL Loading Remote Code Execution Vulnerability
10702| [102044] Amazon Audible CVE-2017-17069 DLL Loading Local Privilege Escalation Vulnerability
10703| [101974] IBM Workload Scheduler CVE-2017-1716 Local Information Disclosure Vulnerability
10704| [101930] Cisco Immunet Antimalware CVE-2017-12312 DLL Loading Local Privilege Escalation Vulnerability
10705| [101928] Cisco Email Security Appliance CVE-2017-12309 HTTP Response Splitting Vulnerability
10706| [101901] Multiple F5 BIG-IP Products CVE-2017-6168 Information Disclosure Vulnerability
10707| [101896] Cisco FindIT Discovery Utility DLL Loading Local Arbitrary Code Execution Vulnerability
10708| [101890] VMware Workstation DLL Loading CVE-2017-4939 Local Code Execution Vulnerability
10709| [101858] Cisco Network Academy Packet Tracer DLL Loading Local Privilege Escalation Vulnerability
10710| [101801] SAP NwSapSetup DLL Loading Local Code Execution Vulnerability
10711| [101789] ManageEngine ServiceDesk CVE-2017-11512 Arbitrary File Download Vulnerability
10712| [101788] ManageEngine ServiceDesk CVE-2017-11511 Arbitrary File Download Vulnerability
10713| [101780] Multiple AutomationDirect Products CVE-2017-1402 DLL Loading Local Code Execution Vulnerability
10714| [101636] Multiple F5 BIG-IP Products CVE-2017-6161 Security Bypass Vulnerability
10715| [101635] Multiple F5 BIG-IP Products CVE-2017-6162 Denial of Service Vulnerability
10716| [101634] Multiple F5 BIG-IP Products CVE-2017-6157 Remote Command Execution Vulnerability
10717| [101633] Multiple F5 BIG-IP Products CVE-2017-6159 Denial of Service Vulnerability
10718| [101632] Multiple F5 BIG-IP Products CVE-2017-6160 Denial of Service Vulnerability
10719| [101624] Joomla! NS Download Shop Component CVE-2017-15965 SQL Injection Vulnerability
10720| [101612] Multiple F5 BIG-IP Products CVE-2017-0303 Denial of Service Vulnerability
10721| [101606] Multiple F5 BIG-IP Products CVE-2017-6163 Denial of Service Vulnerability
10722| [101548] Multiple F5 BIG-IP Products CVE-2017-6144 Security Bypass Vulnerability
10723| [101543] Multiple F5 BIG-IP Products CVE-2017-6165 Local Information Disclosure Vulnerability
10724| [101542] Multiple F5 BIG-IP Products CVE-2017-6145 Security Bypass Vulnerability
10725| [101530] ProxySG and ASG CVE-2016-9097 Remote Authorization Bypass Vulnerability
10726| [101516] Apache HTTP Server CVE-2017-12171 Security Bypass Vulnerability
10727| [101505] SpiderControl MicroBrowser CVE-2017-14010 DLL Loading Remote Code Execution Vulnerability
10728| [101282] HP Intelligent Management Center Service Operation Management Arbitrary File Download Vulnerability
10729| [101234] IBM WebSphere Application Server CVE-2017-1503 HTTP Response Splitting Vulnerability
10730| [101112] Microsoft Windows DLL Loading CVE-2017-11769 Multiple Local Privilege Escalation Vulnerabilities
10731| [100981] Multiple F5 BIG-IP Products CVE-2017-6147 Denial of Service Vulnerability
10732| [100970] Trend Micro Mobile Security for Enterprise Multiple Arbitrary File Upload Vulnerabilities
10733| [100939] Symantec Norton Remove and Reinstall DLL Loading CVE-2017-13676 Local Code Execution Vulnerability
10734| [100923] Cisco FindIT Network Discovery Utility DLL Loading Arbitrary Code Execution Vulnerability
10735| [100872] Apache HTTP Server CVE-2017-9798 Information Disclosure Vulnerability
10736| [100837] ManageEngine Firewall Analyzer CVE-2017-14123 Arbitrary File Upload Vulnerability
10737| [100680] Google Android Bootloaders Multiple Security Vulnerabilities
10738| [100605] 360 Total Security CVE-2017-12653 Insecure Library Loading Remote Privilege Escalation Vulnerability
10739| [100572] IBM Sametime Proxy Server Multiple Security Vulnerabilities
10740| [100554] Symantec ProxyClient CVE-2017-13674 Local Privilege Escalation Vulnerability
10741| [100498] connman 'src/dnsproxy.c' Stack Based Buffer Overflow Vulnerability
10742| [100465] RedHat RESTEasy CVE-2017-7561 HTTP Header Injection Vulnerability
10743| [100452] Automated Logic Corporation Products Directory Traversal and Arbitrary File Upload Vulnerabilities
10744| [100414] Foxit PDF Compressor CVE-2017-12892 DLL Loading Remote Code Execution Vulnerability
10745| [100338] HP LoadRunner and Performance Center CVE-2017-8953 Cross Site Scripting Vulnerability
10746| [100264] Solar Controls WATTConfig M Software CVE-2017-9648 DLL Loading Local Code Execution Vulnerability
10747| [100263] SIMPlight SCADA Software CVE-2017-9661 DLL Loading Local Code Execution Vulnerability
10748| [100261] Solar Controls Heating Control Downloader DLL Loading Local Code Execution Vulnerability
10749| [100208] Moxa SoftNVR-IA Live Viewer CVE-2017-5170 DLL Loading Local Code Execution Vulnerability
10750| [100200] Symantec VIP Access Desktop DLL Loading CVE-2017-6329 Local Code Execution Vulnerability
10751| [100147] Libexpat Expat CVE-2017-11742 DLL Loading Remote Code Execution Vulnerability
10752| [100130] Trend Micro OfficeScan 'Proxy.php' Command Injection Vulnerability
10753| [100127] Trend Micro OfficeScan Proxy CVE-2017-11393 Command Injection Vulnerability
10754| [100114] Schneider Electric Pro-face GP-Pro CVE-2017-9961 DLL Loading Arbitrary Code Execution Vulnerability
10755| [100006] VMware vCenter Server CVE-2017-4921 DLL Loading Local Privilege Escalation Vulnerability
10756| [99920] Cisco ASR 5000 Series GGSN Gateway CVE-2017-6612 HTTP Redirection Security Bypass Vulnerability
10757| [99911] Palo Alto DNS Proxy CVE-2017-8390 Arbitrary Code Execution Vulnerability
10758| [99569] Apache HTTP Server CVE-2017-9788 Memory Corruption Vulnerability
10759| [99568] Apache HTTP Server CVE-2017-9789 Denial of Service Vulnerability
10760| [99549] IBM Daeja ViewONE CVE-2017-1308 Arbitrary File Download Vulnerability
10761| [99429] Microsoft Windows Https.sys Component CVE-2017-8582 Information Disclosure Vulnerability
10762| [99348] Microsoft Office Patch Installer Multiple DLL Loading Remote Code Execution Vulnerabilities
10763| [99334] e-Tax software CVE-2017-2226 DLL Loading Remote Code Execution Vulnerability
10764| [99290] Multiple Sharp Devices DLL Loading Remote Code Execution Vulnerability
10765| [99243] EMC Avamar Authentication Bypass And Arbitrary File Upload Vulnerabilities
10766| [99223] Cisco Prime Collaboration Provisioning CVE-2017-6704 Arbitrary File Download Vulnerability
10767| [99170] Apache HTTP Server CVE-2017-7679 Buffer Overflow Vulnerability
10768| [99137] Apache HTTP Server CVE-2017-7668 Denial of Service Vulnerability
10769| [99135] Apache HTTP Server CVE-2017-3167 Authentication Bypass Vulnerability
10770| [99134] Apache HTTP Server CVE-2017-3169 Denial of Service Vulnerability
10771| [99132] Apache HTTP Server CVE-2017-7659 Denial of Service Vulnerability
10772| [98823] Screensaver Installers CVE-2017-2176 DLL Loading Remote Code Execution Vulnerability
10773| [98817] SaAT Netizen CVE-2017-2206 DLL Loading Remote Code Execution Vulnerability
10774| [98811] Microsoft Office CVE-2017-8506 DLL Loading Remote Code Execution Vulnerability
10775| [98810] Microsoft Office CVE-2017-0260 DLL Loading Remote Code Execution Vulnerability
10776| [98809] SaAT Personal Installer CVE-2017-2207 DLL Loading Remote Code Execution Vulnerability
10777| [98807] Tera Term Installer CVE-2017-2193 DLL Loading Remote Code Execution Vulnerability
10778| [98777] Magento CMS Video Upload Functionality Remote Code Execution Vulnerability
10779| [98725] Electronic Tendering and Bid Opening System DLL Loading Remote Code Execution Vulnerability
10780| [98659] F5 BIG-IP Azure Products CVE-2017-6131 Security Bypass Vulnerability
10781| [98637] Multiple IBM Products CVE-2017-1291 HTTP Response Splitting Vulnerability
10782| [98566] Multiple VMware Workstation Products DLL Loading Local Privilege Escalation Vulnerability
10783| [98481] Multiple F5 BIG-IP Products CVE-2017-6128 Denial of Service Vulnerability
10784| [98478] Multiple F5 BIG-IP Products CVE-2016-9250 Security Bypass Vulnerability
10785| [98446] Schneider Electric SoMachine HVAC DLL Loading Remote Code Execution Vulnerability
10786| [98420] PrimeDrive Desktop Application Installer DLL Loading Remote Code Execution Vulnerability
10787| [98400] Trend Micro Threat Discovery Appliance 'upload.cgi' Directory Traversal Vulnerability
10788| [98199] Google Android Htc Bootloader CVE-2017-0623 Privilege Escalation Vulnerability
10789| [98149] Google Android Motorola Bootloader CVE-2016-10277 Privilege Escalation Vulnerability
10790| [98148] Google Android Qualcomm Bootloader CVE-2016-10276 Privilege Escalation Vulnerability
10791| [98146] Google Android Qualcomm Bootloader CVE-2016-10275 Privilege Escalation Vulnerability
10792| [98094] Zabbix Proxy Server CVE-2017-2825 Man in the Middle Security Bypass Vulnerability
10793| [98074] Multiple IBM Products CVE-2016-9693 Unspecified Arbitrary File Download Vulnerability
10794| [98040] Vivaldi Installer CVE-2017-2156 DLL Loading Remote Code Execution Vulnerability
10795| [98031] BLF-Tech LLC VisualView HMI CVE-2017-6051 DLL Loading Local Code Execution Vulnerability
10796| [98029] Joomla! Core CVE-2017-7989 Arbitrary File Upload Vulnerability
10797| [97719] Cybozu Office CVE-2016-4874 Arbitrary File Download Vulnerability
10798| [97712] vtiger CRM CVE-2015-6000 Arbitrary File Upload Vulnerability
10799| [97697] Multiple Toshiba memory card installers DLL Loading Remote Code Execution Vulnerability
10800| [97662] Google Android CVE-2016-1155 HTTP Header Injection Vulnerability
10801| [97642] Magento CMS 'RetrieveImage.php' Arbitrary File Upload Vulnerability
10802| [97620] D-Link DWR-116 CVE-2017-6190 Arbitrary File Download Vulnerabilitiy
10803| [97591] Trend Micro Deep Discovery Email Inspector 'policy_setting' Arbitrary File Upload Vulnerability
10804| [97571] Fiyo CMS '/dapur/apps/app_theme/libs/save_file.php' Arbitrary File Upload Vulnerability
10805| [97483] Veritas System Recovery CVE-2017-7444 DLL Loading Local Code Execution Vulnerability
10806| [97479] Certec EDV GmbH atvise scada Cross Site Scripting and HTTP Header Injection Vulnerabilities
10807| [97411] Microsoft Office CVE-2017-0197 DLL Loading Remote Code Execution Vulnerability
10808| [97389] Schneider Electric Interactive Graphical SCADA DLL Loading Remote Code Execution Vulnerability
10809| [97388] Marel Food Processing Systems Security Bypass and Arbitrary File Upload Vulnerabilities
10810| [97198] Multiple F5 BIG-IP CVE-2016-7474 Local Information Disclosure Vulnerability
10811| [97174] CODESYS Web Server Stack Based Buffer Overflow and File Upload Vulnerabilities
10812| [97168] F5 BIG-IP APM CVE-2016-7472 Denial of Service Vulnerability
10813| [97146] Nghttp2 CVE-2017-2428 Multiple Remote Security Vulnerabilities
10814| [97125] WordPress recent-backups Plugin 'download-file.php' Arbitrary File Download Vulnerability
10815| [97119] Multiple F5 BIG-IP Products CVE-2016-7468 Denial of Service Vulnerability
10816| [97113] PhishWall Client CVE-2017-2130 DLL Loading Remote Code Execution Vulnerability
10817| [97108] candidate-application-form Wordpress Plugin CVE-2015-1000005 Arbitrary File Download Vulnerability
10818| [97107] WordPress Filedownload Plugin CVE-2015-1000004 Cross-Site Scripting Vulnerability
10819| [97106] WordPress Filedownload Plugin CVE-2015-1000003 SQL Injection Vulnerability
10820| [97100] Wordpress Filedownload Plugin CVE-2015-1000002 Security Bypass Vulnerability
10821| [97083] Nuxeo Platform CVE-2017-5869 Arbitrary File Upload Vulnerability
10822| [97031] Multiple Trend Micro Products CVE-2017-5565 DLL Loading Local Code Injection Vulnerability
10823| [97024] Multiple Bitdefender Products CVE-2017-6186 DLL Loading Local Code Injection Vulnerability
10824| [97022] Multiple AVG Products CVE-2017-5566 DLL Loading Local Code Injection Vulnerability
10825| [97021] Multiple Avira Products CVE-2017-6417 DLL Loading Local Code Injection Vulnerability
10826| [97017] Multiple Avast Products CVE-2017-5567 DLL Loading Local Code Injection Vulnerability
10827| [97000] Rockwell Automation Connected Components Workbench DLL Loading Local Code Execution Vulnerability
10828| [96990] AppSamvid DLL Loading Local Code Execution Vulnerability
10829| [96969] Skype CVE-2017-6517 DLL Loading Local Code Execution Vulnerability
10830| [96957] Rapid7 AppSpider CVE-2017-5233 DLL Loading Remote Code Execution Vulnerability
10831| [96956] Nexpose Information Disclosure and DLL Loading Remote Code Execution Vulnerabilities
10832| [96945] b2evolution CVE-2017-6902 Arbitrary File Upload Vulnerability
10833| [96908] WordPress Wp2android Plugin CVE-2017-1002003 Arbitrary File Upload Vulnerability
10834| [96906] WordPress Webapp-Builder Plugin CVE-2017-1002002 Arbitrary File Upload Vulnerability
10835| [96905] WordPress Mobile App Builder By Wappress Plugin Arbitrary File Upload Vulnerability
10836| [96899] WordPress Mobile Friendly App Builder By Easytouch Plugin Arbitrary File Upload Vulnerability
10837| [96857] Trend Micro Endpoint Sensor CVE-2017-6798 DLL Loading Remote Code Execution Vulnerability
10838| [96826] IBM Rational Rhapsody Design Manager CVE-2016-8973 Arbitrary File Upload Vulnerability
10839| [96812] Google Pixel Qualcomm Bootloader CVE-2017-0455 Information Disclosure Vulnerability
10840| [96774] HP LoadRunner and Performance Center CVE-2017-5789 Remote Heap Buffer Overflow Vulnerability
10841| [96773] HP Intelligent Management Center CVE-2017-5795 Arbitrary File Download Vulnerability
10842| [96772] Multiple VMware Workstation Products CVE-2017-4898 DLL Loading Remote Code Execution Vulnerability
10843| [96718] PHP FormMail Generator Cross Site Scripting and Arbitrary File Upload Vulnerabilities
10844| [96619] PrimeDrive Desktop Application Installer DLL Loading Remote Code Execution Vulnerability
10845| [96554] WordPress fast-image-adder Plugin CVE-2015-1000001 Arbitrary File Upload Vulnerability
10846| [96548] Rapid7 Metasploit Pro CVE-2017-5235 DLL Loading Remote Code Execution Vulnerability
10847| [96547] WordPress Mobile App Plugin CVE-2017-6104 Arbitrary File Upload Vulnerability
10848| [96545] Rapid7 Insight Collector CVE-2017-5234 DLL Loading Remote Code Execution Vulnerability
10849| [96476] Amazon Kindle Setup CVE-2017-6189 DLL Loading Local Code Execution Vulnerability
10850| [96471] Multiple F5 BIG-IP Products CVE-2016-9245 Denial of Service Vulnerability
10851| [96464] Multiple F5 BIG-IP Products CVE-2016-9256 Privilege Escalation Vulnerability
10852| [96431] 7-ZIP32.DLL CVE-2017-2107 DLL Loading Remote Code Execution Vulnerability
10853| [96424] Huawei Honor 7 and Mate S CVE-2017-2699 Arbitrary File Upload Vulnerability
10854| [96418] Nessus Arbitrary File Upload Vulnerability
10855| [96411] Drupal DownloadFile Module Unspecified Security Vulnerability
10856| [96379] Dotclear 'inc/core/class.dc.core.php' Arbitrary File Upload Vulnerability
10857| [96328] Multiple F5 BIG-IP Products CVE-2016-6249 Information Disclosure Vulnerability
10858| [96293] Apache Tomcat 'http11/AbstractInputBuffer.java' Denial of Service Vulnerability
10859| [96248] Cisco Prime Collaboration Assurance CVE-2017-3843 Arbitrary File Download Vulnerability
10860| [96210] Advantech WebAccess CVE-2017-5175 DLL Loading Local Code Execution Vulnerability
10861| [96143] Multiple F5 BIG-IP Products CVE-2016-9244 Information Disclosure Vulnerability
10862| [96119] Sielco Sistemi Winlog Pro/ Winlog Lite CVE-2017-5161 DLL Loading Local Code Execution Vulnerability
10863| [96036] Hawtio CVE-2017-2617 Arbitrary File Upload Vulnerability
10864| [96024] Microsoft Windows CVE-2017-0039 DLL Loading Local Privilege Escalation Vulnerability
10865| [95997] OpenBSD httpd CVE-2017-5850 Denial of Service Vulnerability
10866| [95995] Akamai NetSession CVE-2016-10157 DLL Loading Remote Code Execution Vulnerability
10867| [95980] IBM Tivoli Key Lifecycle Manager CVE-2016-6104 Arbitrary File Upload Vulnerability
10868| [95968] SageCRM SQL Injection and Arbitrary File Upload Vulnerabilities
10869| [95898] SHDesigns Resident Download Manager CVE-2016-6567 Remote Code Execution Vulnerability
10870| [95863] pecl_http CVE-2016-5873 Buffer Overflow Vulnerability
10871| [95825] Multiple F5 BIG-IP Products CVE-2016-9249 Denial of Service Vulnerability
10872| [95680] GigaCC OFFICE OS Command Execution and Arbitrary File Upload Vulnerabilities
10873| [95460] GeniXCMS CVE-2017-5520 Arbitrary File Upload Vulnerability
10874| [95451] IBM Kenexa LMS on Cloud CVE-2016-8931 Arbitrary File Upload Vulnerability
10875| [95444] Symantec Norton Download Manager CVE-2016-6592 DLL Loading Remote Code Execution Vulnerability
10876| [95443] IBM Kenexa LMS on Cloud CVE-2016-8932 Arbitrary File Upload Vulnerability
10877| [95405] Multiple F5 BIG-IP Products CVE-2016-9247 Denial of Service Vulnerability
10878| [95359] libgit2 'src/transports/http.c' Security Bypass Vulnerability
10879| [95320] Multiple F5 BIG-IP Products CVE-2016-7469 HTML Injection Vulnerability
10880| [95241] Google Android Products Qualcomm Bootloader Multiple Integer Overflow Vulnerabilities
10881| [95237] Google Android bootloader Multiple Local Information Disclosure Vulnerabilities
10882| [95228] Multiple F5 BIG-IP Products CVE-2016-5024 Denial of Service Vulnerability
10883| [95199] IBM Security Privileged Identity Manager CVE-2016-5990 Arbitrary File Upload Vulnerability
10884| [95186] ImageMagick CVE-2016-10048 Module Loading Security Bypass Vulnerability
10885| [95078] Apache HTTP Server CVE-2016-0736 Remote Security Vulnerability
10886| [95077] Apache HTTP Server CVE-2016-8743 Security Bypass Vulnerability
10887| [95076] Apache HTTP Server CVE-2016-2161 Denial of Service Vulnerability
10888| [94886] McAfee VirusScan Enterprise for Windows DLL Loading Remote Code Execution Vulnerability
10889| [94768] Microsoft Windows Installer CVE-2016-7292 DLL Loading Local Privilege Escalation Vulnerability
10890| [94731] Symantec VIP Access Desktop DLL Loading CVE-2016-6593 Local Code Execution Vulnerability
10891| [94695] RETIRED: Symantec Norton Download Manager DLL Loading Remote Code Execution Vulnerability
10892| [94665] Microsoft Office CVE-2016-7275 DLL Loading Remote Code Execution Vulnerability
10893| [94663] Joomla! Core CVE-2016-9836 Arbitrary File Upload Vulnerability
10894| [94650] Apache HTTP Server CVE-2016-8740 Denial of Service Vulnerability
10895| [94616] Multiple Japan Pension Service Products CVE-2016-7818 DLL Loading Local Code Execution Vulnerability
10896| [94582] IBM FileNet Workplace XT CVE-2016-8921 Unspecified Arbitrary File Upload Vulnerability
10897| [94497] Wordpress csv2wpec-coupon Plugin CVE-2015-1000013 Arbitrary File Upload Vulnerability
10898| [94417] HDF5 CVE-2016-4332 Local Heap Overflow Vulnerability
10899| [94416] HDF5 CVE-2016-4333 Local Heap Buffer Overflow Vulnerability
10900| [94414] HDF5 CVE-2016-4330 Local Heap Overflow Vulnerability
10901| [94411] HDF5 CVE-2016-4331 Local Heap Buffer Overflow Vulnerability
10902| [94383] Apereo Webproxy Portlet Information Disclosure Vulnerability
10903| [94353] Multiple F5 BIG-IP Products CVE-2016-7476 Denial of Service Vulnerability
10904| [94306] IBM Kenexa LMS on Cloud CVE-2016-6124 Arbitrary File Upload Vulnerability
10905| [94295] Multiple Symantec Products CVE-2016-5311 DLL Loading Local Privilege Escalation Vulnerability
10906| [94288] TYPO3 Secure Download Form Extension Unspecified Cross Site Scripting Vulnerability
10907| [94279] Multiple Symantec Products CVE-2016-6590 DLL Loading Local Privilege Escalation Vulnerability
10908| [94267] Drupal D8 Editor File upload Module Cross Site Scripting Vulnerability
10909| [94260] F5 BIG-IP ASM CVE-2016-7472 Denial of Service Vulnerability
10910| [94246] Dotclear CVE-2016-9268 Arbitrary File Upload Vulnerability
10911| [94240] F5 BIG-IP LTM Products CVE-2016-5745 Security Bypass Vulnerability
10912| [94203] Google Nexus Qualcomm Bootloader CVE-2016-6729 Privilege Escalation Vulnerability
10913| [94193] IBM BigFix Platform CVE-2016-0214 Unspecified Arbitrary File Upload Vulnerability
10914| [94191] Moodle CVE-2016-9187 Arbitrary File Upload Vulnerability
10915| [94190] Moodle CVE-2016-9186 Arbitrary File Upload Vulnerability
10916| [94185] Google Android Proxy Auto Config CVE-2016-6723 Denial of Service Vulnerability
10917| [94176] SAP Message Server HTTP Daemon Denial of Service Vulnerability
10918| [94170] Google Android Download Manager CVE-2016-6710 Information Disclosure Vulnerability
10919| [94121] Exponent CMS CVE-2016-7095 Arbitrary File Upload Vulnerability
10920| [94087] JPKI Client Software CVE-2016-4902 DLL Loading Remote Code Execution Vulnerability
10921| [93967] Wordpress contus-video-comments Plugin 'save.php' Arbitrary File Upload Vulnerability
10922| [93830] Schneider Electric Unity PRO Insecure File Downloading Remote Code Execution Vulnerability
10923| [93774] Apache OpenOffice CVE-2016-6804 DLL Loading Remote Code Execution Vulnerability
10924| [93606] National Tax Agency e-Tax CVE-2016-4901 DLL Loading Remote Code Execution Vulnerability
10925| [93575] Magento CMS Flash File Uploader Cross Site Scripting Vulnerability
10926| [93572] Evernote for Windows DLL Loading Remote Code Execution Vulnerability
10927| [93456] Lighttpd CVE-2016-1000212 Security Bypass Vulnerability
10928| [93440] Dotclear CVE-2016-7902 Arbitrary File Upload Vulnerability
10929| [93347] IBM Sterling Secure Proxy Configuration Manager CVE-2016-6023 Directory Traversal Vulnerability
10930| [93345] IBM Sterling Secure Proxy Configuration Manager CVE-2016-6025 Local Security Bypass Vulnerability
10931| [93342] IBM Sterling Secure Proxy CVE-2016-6026 Man in the Middle Information Disclosure Vulnerability
10932| [93340] IBM Sterling Secure Proxy CVE-2016-6027 Man in the Middle Information Disclosure Vulnerability
10933| [93325] Multiple F5 BIG-IP Products CVE-2016-5700 Remote Command Execution Vulnerability
10934| [93279] Microsoft Windows 'Capcom.sys' DLL Loading Local Code Execution Vulnerability
10935| [93269] Snort CVE-2016-1417 DLL Loading Remote Code Execution Vulnerability
10936| [93267] Joomla! DVFolderContent Module 'download.php' Local File Include Vulnerability
10937| [93119] Exponent CMS Arbitrary Code Execution and File Upload Vulnerabilities
10938| [93088] Cisco IOS and IOS XE Software CVE-2016-6412 HTTP Header Injection Vulnerability
10939| [93082] Multiple IBM Products CVE-2016-5945 Arbitrary File Upload Vulnerability
10940| [93073] Exponent CMS Cross Site Scripting and Arbitrary File Upload Vulnerabilities
10941| [93072] Exponent CMS Local File Include and Arbitrary File Upload Vulnerabilities
10942| [93069] HP LoadRunner and Performance Center CVE-2016-4384 Unspecified Denial of Service Vulnerability
10943| [93015] Huawei HiSuite Local Information Disclosure and DLL Loading Local Code Execution Vulnerability
10944| [92980] ABB DataManagerPro CVE-2016-4526 DLL Loading Local Code Execution Vulnerability
10945| [92976] Fortinet FortiClient DLL Loading Remote Code Execution Vulnerability
10946| [92940] Multiple VMware Workstation Products CVE-2016-7085 DLL Loading Remote Code Execution Vulnerability
10947| [92900] Multiple F5 BIG-IP Products CVE-2016-5022 Denial of Service Vulnerability
10948| [92899] Blue Coat K9 Web Protection DLL Loading Remote Code Execution Vulnerability
10949| [92894] RedHat JBoss Enterprise Application Platform CVE-2016-4993 HTTP Header Injection Vulnerability
10950| [92800] Multiple F5 BIG-IP Products CVE-2016-6876 Denial of Service Vulnerability
10951| [92794] Infoblox Network Automation CVE-2016-6484 HTTP Response Splitting Vulnerability
10952| [92773] HTTP/2 CVE-2016-7153 Information Disclosure Vulnerability
10953| [92769] HTTPS CVE-2016-7152 Information Disclosure Vulnerability
10954| [92671] Multiple F5 BIG-IP Products CVE-2016-1497 Information Disclosure Vulnerability
10955| [92670] Multiple F5 BIG-IP Products CVE-2016-5023 Denial of Service Vulnerability
10956| [92656] Traps Endpoint Server Management Core Arbitrary File Download Vulnerability
10957| [92647] Dotclear Arbitrary File Upload Vulnerability
10958| [92614] IBM Tivoli Storage Manager CVE-2016-5934 DLL Loading Local Code Execution Vulnerability
10959| [92574] RETIRED: ownCloud DLL Loading Local Code Execution Vulnerability
10960| [92570] Multiple F5 BIG-IP Products CVE-2016-5736 Security Bypass Vulnerability
10961| [92502] Huawei FusionAccess HTTP Header Injection Vulnerability
10962| [92498] The Installer of PhishWall Client Internet Explorer DLL Loading Code Execution Vulnerability
10963| [92492] phpMyAdmin CVE-2016-6628 Arbitrary File Download Vulnerability
10964| [92477] Enpass DLL Loading Local Code Execution Vulnerability
10965| [92393] NMAP DLL Loading Local Code Execution Vulnerability
10966| [92392] Cisco Jabber for Windows Predictable Memory Address Load Vulnerability
10967| [92370] ownCloud 'Download Log' Functionality Cross-Site Scripting Vulnerability
10968| [92365] Foxit Reader and PhantomPDF DLL Loading Remote Code Execution Vulnerability
10969| [92351] Sophos Mobile Control EAS Proxy CVE-2016-6597 Information Disclosure Vulnerability
10970| [92334] IBM Rational Publishing Engine CVE-2016-2914 Arbitrary File Upload Vulnerability
10971| [92331] Apache HTTP Server CVE-2016-1546 Remote Denial of Service Vulnerability
10972| [92324] VMware vCenter Server and ESXi CVE-2016-5331 HTTP Header Injection Vulnerability
10973| [92323] VMware Tools CVE-2016-5330 DLL Loading Remote Code Execution Vulnerability
10974| [92320] Apache APR-util and httpd CVE-2016-6312 Denial of Service Vulnerability
10975| [92268] BullGuard Antivirus DLL Loading Local Code Execution Vulnerability
10976| [92251] Google Nexus LG Electronics Bootloader CVE-2016-3851 Privilege Escalation Vulnerability
10977| [92236] Google Nexus Qualcomm Bootloader CVE-2016-3850 Privilege Escalation Vulnerability
10978| [92137] Dropbox DLL Loading Local Code Execution Vulnerability
10979| [92026] Oracle HTTP Server CVE-2016-3482 Remote Security Vulnerability
10980| [91816] Apache HTTP Server CVE-2016-5387 Security Bypass Vulnerability
10981| [91798] 7-Zip DLL Loading Local Code Execution Vulnerability
10982| [91797] Bitdefender Antivirus DLL Loading Local Code Execution Vulnerability
10983| [91752] Python DLL Loading Local Code Execution Vulnerability
10984| [91750] Notepad++ DLL Loading Local Code Execution Vulnerability
10985| [91749] Drupal Webform Multiple File Upload Module Remote Code Execution Vulnerability
10986| [91746] JetBrains PyCharm Professional DLL Loading Local Code Execution Vulnerability
10987| [91745] 360 Total Security 2016 DLL Loading Local Code Execution Vulnerability
10988| [91632] Google Nexus Qualcomm Bootloader Multiple Denial of Service Vulnerabilities
10989| [91566] Apache HTTP Server CVE-2016-4979 Authentication Bypass Vulnerability
10990| [91561] PuTTY DLL Loading Local Code Execution Vulnerability
10991| [91532] Multiple F5 BIG-IP Products CVE-2016-5020 Privilege Escalation Vulnerability
10992| [91487] PHP 'php_http_url.c' Multiple Buffer Overflow Vulnerabilities
10993| [91484] IBM WebSphere Application Server CVE-2016-0359 HTTP Response Splitting Vulnerability
10994| [91465] Multiple Panda Security Multiple Products DLL Loading Local Code Execution Vulnerability
10995| [91453] Apache Commons FileUpload CVE-2016-3092 Denial Of Service Vulnerability
10996| [91425] GIMP 'app/xcf/xcf-load.c' Multiple Remote Code Execution Vulnerabilities
10997| [91418] Huawei HiSuite DLL Loading Local Code Execution Vulnerability
10998| [91333] Multiple F5 BIG-IP Products CVE-2016-3687 Open Redirect Vulnerability
10999| [91226] Python 'urrlib2/urllib/httplib/http.client' HTTP Header Injection Vulnerability
11000| [91213] NCH Software WavePad DLL Loading Local Code Execution Vulnerability
11001| [91164] HAProxy CVE-2016-3711 Local Information Disclosure Vulnerability
11002| [91162] Multiple F5 Networks Products CVE-2016-5021 Information Disclosure Vulnerability
11003| [91138] HAProxy CVE-2016-5360 Remote Denial of Service Vulnerability
11004| [91096] Microsoft Office CVE-2016-3235 DLL Loading Local Privilege Escalation Vulnerability
11005| [91036] WordPress WP Mobile Detector Plugin 'resize.php' Arbitrary File Upload Vulnerability
11006| [90997] cURL CVE-2016-4802 DLL Loading Local Code Execution Vulnerability
11007| [90972] Typo3 'http:BL Blocking' Extension SQL Injection and Cross-Site Scripting Vulnerability
11008| [90963] Relay Ajax Directory Manager Arbitrary File Upload Vulnerability
11009| [90951] IBM WebSphere eXtreme Scale CVE-2016-0400 HTTP Response Splitting Vulnerability
11010| [90907] CMS Made Simple CVE-2016-2784 HTTP Header Injection Vulnerability
11011| [90865] Libxml2 'xmlLoadEntityContent()' Function CVE-2016-4449 Security Bypass Vulnerability
11012| [90862] IBM Connections CVE-2016-0322 Arbitrary File Upload Vulnerability
11013| [90827] Apache ActiveMQ CVE-2016-3088 Multiple Arbitrary File Upload Vulnerabilities
11014| [90670] Python kdcproxy CVE-2015-5159 Remote Denial of Service Vulnerability
11015| [90656] Multiple F5 BIG-IP Products CVE-2015-8099 Denial of Service Vulnerability
11016| [90581] Websphere Edge server Caching proxy CVE-2004-0684 Denial-Of-Service Vulnerability
11017| [90554] Imap Proxy CVE-2004-1035 Denial-Of-Service Vulnerability
11018| [90478] Browser CVE-2004-1449 File-Upload Vulnerability
11019| [90436] Geohttpserver CVE-2004-2100 Security Bypass Vulnerability
11020| [90412] Geohttpserver CVE-2004-2101 Denial-Of-Service Vulnerability
11021| [90397] Foreman Smart Proxy CVE-2016-3728 Remote Code Execution Vulnerability
11022| [90361] Myproxy CVE-2004-2481 Local Security Vulnerability
11023| [90355] Activepost Standard CVE-2004-2616 File-Upload Vulnerability
11024| [90329] AspDotNetStorefront CVE-2004-2700 File-Upload Vulnerability
11025| [90328] newsPHP CVE-2004-2690 File-Upload Vulnerability
11026| [90265] Sami Http Server CVE-2005-0450 Directory Traversal Vulnerability
11027| [90260] lighttpd CVE-2005-0453 Remote Security Vulnerability
11028| [90256] ArGoSoft Mail Server CVE-2005-0367 File-Upload Vulnerability
11029| [90249] Sami Http Server CVE-2005-0451 Denial-Of-Service Vulnerability
11030| [90203] RaidenHTTPD CVE-2005-0622 Remote Security Vulnerability
11031| [90188] Cproxy CVE-2005-0657 Denial-Of-Service Vulnerability
11032| [90169] RSA Authentication Manager CVE-2016-0902 HTTP Response Splitting Vulnerability
11033| [90156] Ublog Reload CVE-2005-0938 Remote Security Vulnerability
11034| [90060] Uapplication Uphotogallery CVE-2005-1428 File-Upload Vulnerability
11035| [90020] Microsoft Windows CVE-2016-0152 DLL Loading Remote Code Execution Vulnerability
11036| [89897] I-Man CVE-2005-1868 File-Upload Vulnerability
11037| [89869] YaPig CVE-2005-1881 File-Upload Vulnerability
11038| [89830] File Upload Manager CVE-2005-1957 File-Upload Vulnerability
11039| [89822] File Upload Manager CVE-2005-1956 File-Upload Vulnerability
11040| [89365] PHPKIT CVE-2005-2699 File-Upload Vulnerability
11041| [89341] Cisco WebEx Productivity Tools CVE-2016-4349 DLL Loading Local Code Execution Vulnerabilities
11042| [89293] vBulletin CVE-2005-3021 File-Upload Vulnerability
11043| [89188] Mini Httpd CVE-2001-0893 Remote Security Vulnerability
11044| [89177] JiRo Upload System CVE-2005-1904 SQL-Injection Vulnerability
11045| [89153] Reload CVE-2005-2009 SQL-Injection Vulnerability
11046| [89087] Thttpd CVE-2001-0892 Remote Security Vulnerability
11047| [89082] OmniHTTPD CVE-2001-0778 Remote Security Vulnerability
11048| [89035] Internet Download Manager CVE-2005-2210 Remote Security Vulnerability
11049| [89003] Http Server CVE-2001-0285 Denial-Of-Service Vulnerability
11050| [88888] Parosproxy CVE-2005-4668 Local Security Vulnerability
11051| [88861] Compaqhttpserver CVE-2005-2982 Cross-Site Scripting Vulnerability
11052| [88776] Java HTTP Server CVE-2001-0307 Remote Security Vulnerability
11053| [88680] Segue Cms CVE-2005-4814 File-Upload Vulnerability
11054| [88677] Java System Web Proxy Server CVE-2005-4806 Denial-Of-Service Vulnerability
11055| [88523] Small HTTP server CVE-2000-0898 Denial-Of-Service Vulnerability
11056| [88460] Csm Proxy CVE-1999-1149 Denial-Of-Service Vulnerability
11057| [88413] Http Server CVE-1999-0929 Denial-Of-Service Vulnerability
11058| [88395] I-Gear MS Proxy CVE-2000-1007 Remote Security Vulnerability
11059| [88316] Fur Http Server CVE-2000-0838 Denial-Of-Service Vulnerability
11060| [88147] ProxySG CVE-2006-0578 Security Bypass Vulnerability
11061| [88139] PHPKIT CVE-2006-0785 File-Upload Vulnerability
11062| [88084] Internet Explorer CVE-1999-0870 File-Upload Vulnerability
11063| [88072] Php Upload Center CVE-2006-1207 Remote Security Vulnerability
11064| [88069] Php Upload Center CVE-2006-1208 File-Upload Vulnerability
11065| [87939] Thttpd Http Server CVE-1999-1456 Remote Security Vulnerability
11066| [87912] Thttpd Http Server CVE-1999-1457 Remote Security Vulnerability
11067| [87761] Squid Web Proxy CVE-1999-1273 Remote Security Vulnerability
11068| [87694] Compaqhttpserver CVE-2006-1774 Security Bypass Vulnerability
11069| [87691] Php Live Helper CVE-2006-1478 File-Upload Vulnerability
11070| [87621] Coppermine Photo Gallery CVE-2006-2514 File-Upload Vulnerability
11071| [87601] Iheat CVE-2006-2511 File-Upload Vulnerability
11072| [87587] Segue Cms CVE-2006-5498 File-Upload Vulnerability
11073| [87576] DownloadEngine CVE-2006-5459 Remote Security Vulnerability
11074| [87501] Wm Downloader CVE-2009-1327 Remote Security Vulnerability
11075| [87494] Rm Downloader CVE-2009-1326 Remote Security Vulnerability
11076| [87486] Mini-Stream Rm Downloader CVE-2009-1646 Remote Security Vulnerability
11077| [87478] getPlus Download Manager CVE-2008-5364 Remote Security Vulnerability
11078| [87470] PHP 'libxml_disable_entity_loader()' CVE-2015-8866 XML External Entity Injection Vulnerability
11079| [87395] Speedywiki CVE-2006-5845 File-Upload Vulnerability
11080| [87392] Punbb CVE-2006-5735 File-Upload Vulnerability
11081| [87378] Seleniumserver Ftp Server CVE-2006-5981 File-Upload Vulnerability
11082| [87301] TFT Gallery CVE-2006-6347 File-Upload Vulnerability
11083| [87114] Logahead Unu CVE-2006-6887 File-Upload Vulnerability
11084| [87046] 3proxy CVE-2006-6981 Denial-Of-Service Vulnerability
11085| [87039] 3proxy CVE-2006-6982 Remote Security Vulnerability
11086| [87007] Httprotect CVE-2001-1172 Local Security Vulnerability
11087| [86993] Dnhttpd CVE-2001-1266 Directory Traversal Vulnerability
11088| [86850] Rigter Portal System CVE-2006-7082 File-Upload Vulnerability
11089| [86845] Imce Module CVE-2006-7109 File-Upload Vulnerability
11090| [86786] VerliAdmin CVE-2007-0098 File-Upload Vulnerability
11091| [86774] Uber Uploader CVE-2007-0123 File-Upload Vulnerability
11092| [86732] Sami HTTP Server CVE-2007-0548 Denial-Of-Service Vulnerability
11093| [86726] Uploader CVE-2007-0532 Information Disclosure Vulnerability
11094| [86651] F3Site CVE-2007-0764 File-Upload Vulnerability
11095| [86585] Wiclear CVE-2007-1097 File-Upload Vulnerability
11096| [86583] Sitex CVE-2007-1235 File-Upload Vulnerability
11097| [86570] webSPELL CVE-2007-1155 File-Upload Vulnerability
11098| [86560] Fantastico De Luxe CVE-2007-1455 File-Upload Vulnerability
11099| [86372] Really Simple Php And Ajax CVE-2007-1851 File-Upload Vulnerability
11100| [86370] Pcp-Guestbook CVE-2007-1933 File-Upload Vulnerability
11101| [86345] pL-PHP CVE-2007-2008 File-Upload Vulnerability
11102| [86313] Ixon Cms CVE-2007-2104 File-Upload Vulnerability
11103| [86302] Monkey Cms CVE-2007-2105 File-Upload Vulnerability
11104| [86299] Phphd Download System CVE-2007-2096 Remote Security Vulnerability
11105| [86290] Kai Content Management System CVE-2007-2106 File-Upload Vulnerability
11106| [86286] Download-Engine CVE-2007-2255 Remote Security Vulnerability
11107| [86279] Multiple F5 BIG-IP Products CVE-2016-3686 Authorization Bypass Vulnerability
11108| [86225] Download-Engine CVE-2007-2289 Remote Security Vulnerability
11109| [86221] Minimal HTTP Server CVE-2007-2315 Denial-Of-Service Vulnerability
11110| [86217] News Manager Deluxe CVE-2007-2303 File-Upload Vulnerability
11111| [86207] Wp-Table CVE-2007-2483 File-Upload Vulnerability
11112| [86173] b2evolution CVE-2007-2681 File-Upload Vulnerability
11113| [86169] Weblogic Server CVE-2007-2699 File-Upload Vulnerability
11114| [86142] EMC Unisphere for VMAX Virtual Appliance CVE-2016-0889 Arbitrary File Upload Vulnerability
11115| [86119] Scallywag CVE-2007-2960 File-Upload Vulnerability
11116| [86023] Multiple F5 BIG-IP Products CVE-2016-2084 Denial of Service Vulnerability
11117| [85987] Multiple F5 BIG-IP Products CVE-2015-8240 Denial of Service Vulnerability
11118| [85972] Imlib2 'loaders/loader_gif.c' Out of Bounds Read Denial of Service Vulnerability
11119| [85937] Microsoft Windows Library Loading CVE-2016-0148 Remote Code Execution Vulnerability
11120| [85936] Microsoft Internet Explorer Library Loading CVE-2016-0160 Remote Code Execution Vulnerability
11121| [85908] Microsoft Windows 'HTTP.sys' CVE-2016-0150 Denial of Service Vulnerability
11122| [85877] Golang Go CVE-2016-3958 DLL Loading Arbitrary Code Execution Vulnerability
11123| [85826] Google Android Download Manager CVE-2016-0848 Remote Privilege Escalation Vulnerability
11124| [85718] Punbb CVE-2006-5735 File-Upload Vulnerability
11125| [85707] Blue Coat ProxySG and Advanced Secure Gateway CVE-2015-8597 Open Redirection Vulnerability
11126| [85656] Pluxml CVE-2007-3432 File-Upload Vulnerability
11127| [85648] GL-SH Deaf Forum CVE-2007-3535 File-Upload Vulnerability
11128| [85645] WordPress CVE-2007-3544 File-Upload Vulnerability
11129| [85612] Ezfactory Download Cgi CVE-2007-3692 Directory Traversal Vulnerability
11130| [85592] Gpg Plugin CVE-2007-3779 File-Upload Vulnerability
11131| [85589] PSnews CVE-2007-3772 File-Upload Vulnerability
11132| [85480] Neuron Blog CVE-2007-4371 File-Upload Vulnerability
11133| [85469] Bilder Uploader CVE-2007-4326 Remote Security Vulnerability
11134| [85405] Pakupaku Cms CVE-2007-4641 File-Upload Vulnerability
11135| [85388] RedHat Ceph CVE-2015-5245 HTTP Response Splitting Vulnerability
11136| [85385] Bluecoat ProxySG CVE-2015-4334 Authentication Bypass Vulnerability
11137| [85370] Izicontents CVE-2007-5055 File-Upload Vulnerability
11138| [85364] Wordsmith CVE-2007-5103 File-Upload Vulnerability
11139| [85332] TorrentTrader CVE-2007-5311 File-Upload Vulnerability
11140| [85316] Dircproxy CVE-2007-5226 Denial-Of-Service Vulnerability
11141| [85297] Force Download CVE-2007-5732 Directory Traversal Vulnerability
11142| [85243] FTP Admin CVE-2007-6233 File-Upload Vulnerability
11143| [85225] Uber Uploader CVE-2007-6676 Remote Security Vulnerability
11144| [85187] Zero CMS CVE-2008-0233 File-Upload Vulnerability
11145| [85174] Photopost Vbgallery CVE-2008-0251 File-Upload Vulnerability
11146| [85161] All Club CMS CVE-2008-0602 File-Upload Vulnerability
11147| [85156] Project Issue Tracking Module CVE-2008-0577 File-Upload Vulnerability
11148| [85146] Azucar CMS CVE-2008-0654 File-Upload Vulnerability
11149| [85115] Lan Manager CVE-2008-0803 File-Upload Vulnerability
11150| [85020] Tr Script News CVE-2008-1958 File-Upload Vulnerability
11151| [85010] Phoenix View Cms CVE-2008-2534 File-Upload Vulnerability
11152| [85001] Chicomas CVE-2008-2016 File-Upload Vulnerability
11153| [84995] Chicomas CVE-2008-2017 File-Upload Vulnerability
11154| [84988] FlashBlog CVE-2008-2574 File-Upload Vulnerability
11155| [84987] Cre Loaded CVE-2008-2558 Remote Security Vulnerability
11156| [84984] AbsoluteTelnet DLL Loading Arbitrary Code Execution Vulnerability
11157| [84960] Phpcards CVE-2006-5604 File-Upload Vulnerability
11158| [84955] Segue Cms CVE-2006-5498 File-Upload Vulnerability
11159| [84950] DownloadEngine CVE-2006-5459 Remote Security Vulnerability
11160| [84934] OtomiGenX CVE-2008-2782 File-Upload Vulnerability
11161| [84921] HomePH Design CVE-2008-2982 File-Upload Vulnerability
11162| [84916] Hedgehog-CMS CVE-2008-2898 File-Upload Vulnerability
11163| [84900] Minishowcase Image Gallery CVE-2008-3390 File-Upload Vulnerability
11164| [84889] Links CVE-2008-3555 File-Upload Vulnerability
11165| [84874] Documentum Applicationxtender Workflow Manager CVE-2008-3685 File-Upload Vulnerability
11166| [84870] Gallery CVE-2008-3600 File-Upload Vulnerability
11167| [84859] Symphony CVE-2008-3592 File-Upload Vulnerability
11168| [84828] Zanfi CMS Lite CVE-2008-4158 File-Upload Vulnerability
11169| [84773] PhpWebGallery CVE-2008-4702 File-Upload Vulnerability
11170| [84765] Sports Clubs Web Portal CVE-2008-4592 File-Upload Vulnerability
11171| [84761] X7 Chat CVE-2008-4718 File-Upload Vulnerability
11172| [84730] Webcards CVE-2008-4878 File-Upload Vulnerability
11173| [84701] ABB Panel Builder CVE-2016-2281 DLL Loading Local Code Execution Vulnerability
11174| [84665] Professional Download Assistant CVE-2008-5572 Information Disclosure Vulnerability
11175| [84575] Blue Smiley Organizer CVE-2006-5238 File-Upload Vulnerability
11176| [84524] Asp Download CVE-2008-6739 Remote Security Vulnerability
11177| [84519] Flexphpdirectory CVE-2008-6750 File-Upload Vulnerability
11178| [84496] Mini File Host CVE-2008-6785 File-Upload Vulnerability
11179| [84482] LoveCMS CVE-2008-7062 File-Upload Vulnerability
11180| [84357] HP ArcSight ESM and ArcSight ESM Express CVE-2016-1991 Arbitrary File Download Vulnerability
11181| [84307] PHP 'soap/php_http.c' Type Confusion Remote Denial Of Service Vulnerability
11182| [84286] SAP Download Manager Weak Encryption Local Security Weakness
11183| [84243] Simple Http Scanner CVE-2006-5026 Remote Security Vulnerability
11184| [84237] Simple Http Scanner CVE-2006-5025 Remote Security Vulnerability
11185| [84213] Flexera Software InstallShield CVE-2016-2542 DLL Loading Local Privilege Escalation Vulnerability
11186| [84192] Osu Httpd CVE-2006-4907 Information Disclosure Vulnerability
11187| [84189] Osu Httpd CVE-2006-4908 Information Disclosure Vulnerability
11188| [84159] Punbb CVE-2006-4759 File-Upload Vulnerability
11189| [83930] Microsoft Windows Library Loading CVE-2016-0100 Remote Code Execution Vulnerability
11190| [83923] Downloadcontrol CVE-2006-2553 Cross-Site Scripting Vulnerability
11191| [83872] Huawei UTPS CVE-2016-2780 DLL Loading Local Code Execution Vulnerability
11192| [83859] Dokuwiki CVE-2006-4675 File-Upload Vulnerability
11193| [83747] Webex Downloader Activex Control CVE-2006-3424 Remote Security Vulnerability
11194| [83728] PHCDownload CVE-2006-3525 SQL-Injection Vulnerability
11195| [83719] Jenkins CVE-2016-0789 HTTP Response Splitting Vulnerability
11196| [83713] vtiger CRM CVE-2006-4617 File-Upload Vulnerability
11197| [83703] Microsoft PowerPoint Viewer DLL Loading Arbitrary Code Execution Vulnerability
11198| [83596] GIMP DLL Loading Arbitrary Code Execution Vulnerability
11199| [83589] Wireshark CVE-2016-2521 DLL Loading Remote Code Execution Vulnerability
11200| [83522] Dproxy CVE-2007-1866 Remote Security Vulnerability
11201| [83502] Http Service CVE-2007-5560 Remote Security Vulnerability
11202| [83469] Download Accelerator Plus CVE-2008-3433 Remote Security Vulnerability
11203| [83408] Drupal Core Arbitrary File Upload and Information Disclosure Vulnerabilities
11204| [83391] Nghttp2 CVE-2016-1544 Local Denial of Service Vulnerability
11205| [83296] Square OkHttp CVE-2016-2402 Security Bypass Vulnerability
11206| [83282] Node.js CVE-2016-2086 HTTP Request Smuggling Vulnerability
11207| [83245] HD Video Player PRO Local File Include and Arbitrary File Upload Vulnerabilities
11208| [83220] SAP Java Proxy Runtime Unspecified Cross Site Scripting Vulnerability
11209| [83141] Node.js CVE-2016-2216 HTTP Response Splitting Vulnerability
11210| [83133] ME Download System CVE-2006-4054 Remote Security Vulnerability
11211| [82988] Wm Downloader CVE-2009-1327 Remote Security Vulnerability
11212| [82980] Rm Downloader CVE-2009-1326 Remote Security Vulnerability
11213| [82893] OmniHTTPD CVE-2002-1455 Cross-Site Scripting Vulnerability
11214| [82813] Windows NT CVE-1999-0489 File-Upload Vulnerability
11215| [82630] Netgear Management System NMS300 Directory Traversal and Arbitrary File Upload Vulnerabilities
11216| [82563] Cherokee Httpd CVE-2004-1946 Local Security Vulnerability
11217| [82517] CCProxy CVE-2004-2685 Remote Security Vulnerability
11218| [82511] Microsoft Windows CVE-2016-0044 DLL Loading Denial of Service Vulnerability
11219| [82510] Microsoft Windows CVE-2016-0042 DLL Loading Local Privilege Escalation Vulnerability
11220| [82505] Microsoft Windows CVE-2016-0041 DLL Loading Multiple Local Privilege Escalation Vulnerabilities
11221| [82481] Mini-Stream Rm Downloader CVE-2009-1646 Remote Security Vulnerability
11222| [82436] Download module for PostNuke CVE-2005-0616 Cross-Site Scripting Vulnerability
11223| [82419] RaidenHTTPD CVE-2005-0623 Remote Security Vulnerability
11224| [82356] Java System Web Proxy Server CVE-2005-1232 Remote Security Vulnerability
11225| [82145] Burak Yilmaz Download Portal CVE-2006-6672 SQL-Injection Vulnerability
11226| [81928] Aktueldownload Haber Script CVE-2007-1015 SQL-Injection Vulnerability
11227| [81925] Aktueldownload Haber Script CVE-2007-1016 SQL-Injection Vulnerability
11228| [81845] Rha7 Downloads CVE-2007-2107 SQL-Injection Vulnerability
11229| [81692] Foxit Reader and Foxit PhantomPDF DLL Loading Arbitrary Code Execution Vulnerability
11230| [81690] LEADTOOLS ActiveX Control Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
11231| [81689] HP LaserJet Fax Preview DLL Loading Arbitrary Code Execution Vulnerability
11232| [81687] HP LaserJet Printer DLL Loading Arbitrary Code Execution Vulnerability
11233| [81546] Multiple F5 BIG-IP Products CVE-2015-5516 Denial of Service Vulnerability
11234| [81524] Anon Proxy Server CVE-2007-6460 Cross-Site Scripting Vulnerability
11235| [81470] PHCDownload CVE-2007-6670 SQL-Injection Vulnerability
11236| [81457] Http File Server CVE-2008-0409 Cross-Site Scripting Vulnerability
11237| [81125] Oracle GoldenGate CVE-2016-0451 Arbitrary File Upload Vulnerability
11238| [81122] Oracle GoldenGate CVE-2016-0452 Arbitrary File Upload Vulnerability
11239| [80740] H2O CVE-2016-1133 HTTP Header Injection Vulnerability
11240| [80737] PHCDownload CVE-2008-6597 Cross-Site Scripting Vulnerability
11241| [80526] HPE ArcSight Logger Client Certificate Upload Multiple Security Bypass Vulnerabilities
11242| [80486] Download Manager CVE-2006-2964 Multiple File Include Vulnerabilities
11243| [80438] Nghttp2 CVE-2015-8659 Unspecified Security Vulnerability
11244| [80433] Multiple F5 BIG-IP Products CVE-2015-7759 Denial of Service Vulnerability
11245| [80430] Multiple F5 BIG-IP Products CVE-2015-7393 Local Privilege Escalation Vulnerability
11246| [80385] Multiple F5 BIG-IP Products CVE-2015-8611 Insecure Default Password Vulnerability
11247| [80271] Myth Download CVE-2009-4701 SQL-Injection Vulnerability
11248| [80203] Uploader CVE-2003-1552 File-Upload Vulnerability
11249| [80166] TrueCrypt and VeraCrypt DLL Loading Arbitrary Code Execution Vulnerability
11250| [80061] I-Httpd CVE-2014-7263 Cross-Site Scripting Vulnerability
11251| [80059] I-Httpd CVE-2014-7262 Cross-Site Scripting Vulnerability
11252| [80040] I-Httpd CVE-2014-7261 Cross-Site Scripting Vulnerability
11253| [80022] F5 BIG-IP APM File Handling Out of Bounds Memory Corruption Vulnerability
11254| [79985] Maian Uploader CVE-2014-10004 SQL-Injection Vulnerability
11255| [79968] Maian Uploader CVE-2014-10003 Cross-Site Scripting Vulnerability
11256| [79966] Maian Uploader CVE-2014-10006 Cross-Site Scripting Vulnerability
11257| [79909] Microsoft Windows MAPI DLL Loading CVE-2016-0020 Local Privilege Escalation Vulnerability
11258| [79906] Microsoft Windows CVE-2016-0018 DLL Loading Remote Code Execution Vulnerability
11259| [79902] Microsoft Windows CVE-2016-0016 DLL Loading Remote Code Execution Vulnerability
11260| [79901] Linux Kernel KVM 'kvm_pit_load_count()' Function Divide By Zero Denial of Service Vulnerability
11261| [79896] Microsoft Windows DLL Loading CVE-2016-0014 Local Privilege Escalation Vulnerability
11262| [79837] RETIRED: F5 BIG-IP LTM Denial of Service Vulnerability
11263| [79712] Mediawiki CVE-2015-8625 Arbitrary File Upload Vulnerability
11264| [79702] CG-WLBARAGM Wireless LAN Router CVE-2015-7793 Open Proxy Vulnerability
11265| [79669] Multiple Kaspersky products DLL Loading Arbitrary Code Execution Vulnerability
11266| [79666] WinRAR CVE-2015-5663 Executable Loading Arbitrary Code Execution Vulnerability
11267| [79657] F-Secure Online Scanner CVE-2015-8264 DLL Loading Arbitrary Code Execution Vulnerability
11268| [79652] Oracle OLE DB Provider Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
11269| [79630] Maian Uploader CVE-2014-10005 Information Disclosure Vulnerability
11270| [79629] Product Data Management CVE-2014-100015 File-Upload Vulnerability
11271| [79603] WebFrame CVE-2009-0514 File-Upload Vulnerability
11272| [79591] Downloadcenter CVE-2009-0732 Information Disclosure Vulnerability
11273| [79586] Kipper CVE-2009-0765 File-Upload Vulnerability
11274| [79580] Phpskelsite CVE-2009-0596 File-Upload Vulnerability
11275| [79570] Ziproxy CVE-2009-0804 Security Bypass Vulnerability
11276| [79538] Rapidleech CVE-2009-1090 File-Upload Vulnerability
11277| [79530] Pastelcms CVE-2009-1405 File-Upload Vulnerability
11278| [79518] Fungamez CVE-2009-1488 File-Upload Vulnerability
11279| [79502] Answer And Question Script CVE-2009-1663 File-Upload Vulnerability
11280| [79460] DeDeCMS CVE-2009-2270 File-Upload Vulnerability
11281| [79432] Dit.Cms CVE-2009-2784 File-Upload Vulnerability
11282| [79423] Cms Chainuk CVE-2009-2333 File-Upload Vulnerability
11283| [79386] Vedit CVE-2009-3064 File-Upload Vulnerability
11284| [79369] Gazelle CMS CVE-2009-3182 File-Upload Vulnerability
11285| [79326] Cmsphp CVE-2009-3507 File-Upload Vulnerability
11286| [79315] D.Net Cms CVE-2009-3515 File-Upload Vulnerability
11287| [79311] Httpdx CVE-2009-3711 Denial-Of-Service Vulnerability
11288| [79300] WordPress CVE-2009-3890 File-Upload Vulnerability
11289| [79293] XUpload CVE-2009-3693 Directory Traversal Vulnerability
11290| [79269] Sweetrice CVE-2009-4231 File-Upload Vulnerability
11291| [79264] Operations Manager CVE-2009-4189 File-Upload Vulnerability
11292| [79262] Betsy Cms CVE-2009-4056 File-Upload Vulnerability
11293| [79259] CuteNews CVE-2009-4116 File-Upload Vulnerability
11294| [79252] Piwik CVE-2009-4137 File-Upload Vulnerability
11295| [79229] Open Source Security Information Management CVE-2009-4373 File-Upload Vulnerability
11296| [79180] Serendipity CVE-2009-4412 File-Upload Vulnerability
11297| [79155] Httpdx CVE-2009-4770 Remote Security Vulnerability
11298| [79144] Bandsite Cms CVE-2009-4793 File-Upload Vulnerability
11299| [79136] Skadate Online Dating Software CVE-2009-4739 File-Upload Vulnerability
11300| [79094] Cre Loaded CVE-2009-5076 Security Bypass Vulnerability
11301| [79073] Cre Loaded CVE-2009-5077 Security Bypass Vulnerability
11302| [79053] Sb Folderdownload CVE-2010-0325 Information Disclosure Vulnerability
11303| [79045] Dhttpd CVE-2009-5110 Denial-Of-Service Vulnerability
11304| [79023] Com Gcalendar CVE-2010-0972 File-Upload Vulnerability
11305| [79014] Scriptegrator Plugin CVE-2010-0760 File-Upload Vulnerability
11306| [79006] vBSEO CVE-2010-1077 File-Upload Vulnerability
11307| [78967] OpenCominterne CVE-2010-1936 File-Upload Vulnerability
11308| [78956] Openfoncier CVE-2010-1948 File-Upload Vulnerability
11309| [78955] openCatalogue CVE-2010-1999 File-Upload Vulnerability
11310| [78954] Openpresse CVE-2010-1935 File-Upload Vulnerability
11311| [78946] Opencourrier CVE-2010-1926 File-Upload Vulnerability
11312| [78942] Openplanning CVE-2010-1928 File-Upload Vulnerability
11313| [78934] Proman CVE-2010-2138 File-Upload Vulnerability
11314| [78929] Orbit Downloader CVE-2010-2104 Directory Traversal Vulnerability
11315| [78918] CMSQLite CVE-2010-2096 File-Upload Vulnerability
11316| [78909] OPC Systems.NET CVE-2015-7917 DLL Loading Local Privilege Escalation Vulnerability
11317| [78881] Ziproxy CVE-2010-2350 Denial-Of-Service Vulnerability
11318| [78879] CMS Made Simple CVE-2010-2797 File-Upload Vulnerability
11319| [78817] Cisco Emergency Responder Web Framework CVE-2015-6407 Arbitrary File Upload Vulnerability
11320| [78807] LOYTEC Router CVE-2015-7906 Arbitrary File Download Vulnerability
11321| [78792] Websiteadmin CVE-2010-3688 File-Upload Vulnerability
11322| [78763] vtiger CRM CVE-2010-3910 File-Upload Vulnerability
11323| [78739] Multiple Cisco IP Phones CVE-2015-6403 Local Arbitrary File Upload Vulnerability
11324| [78634] Proxysg Sg9000-5 CVE-2010-5189 Remote Security Vulnerability
11325| [78628] Proxysg Sg9000-5 CVE-2010-5190 Security Bypass Vulnerability
11326| [78615] Microsoft Windows Library Loading CVE-2015-6133 Remote Code Execution Vulnerability
11327| [78614] Microsoft Windows Library Loading CVE-2015-6132 Remote Code Execution Vulnerability
11328| [78612] Microsoft Windows CVE-2015-6128 DLL Loading Remote Code Execution Vulnerability
11329| [78593] Fraise CVE-2011-0518 File-Upload Vulnerability
11330| [78457] Multiple IBM Products CVE-2015-2017 HTTP Response Splitting Vulnerability
11331| [78340] Open Business Management CVE-2011-5141 File-Upload Vulnerability
11332| [78332] Com Jce CVE-2011-5134 File-Upload Vulnerability
11333| [78321] Openemr CVE-2011-5161 File-Upload Vulnerability
11334| [78220] WordPress Double-Opt-in-for-Download Plugin Multiple SQL Injection Vulnerabilities
11335| [78170] Rbx Gallery CVE-2012-3575 File-Upload Vulnerability
11336| [78157] Wpstorecart CVE-2012-3576 File-Upload Vulnerability
11337| [78152] Font Uploader CVE-2012-3814 File-Upload Vulnerability
11338| [78102] Elastic Load Balancing Api Tools CVE-2012-5781 Remote Security Vulnerability
11339| [78094] Phppaleo CVE-2012-5386 File-Upload Vulnerability
11340| [77980] Powermail CVE-2014-3947 File-Upload Vulnerability
11341| [77946] HP LoadRunner Virtual Table Server CVE-2015-6857 Local Code Execution Vulnerability
11342| [77890] An-Http CVE-2003-1270 Denial-Of-Service Vulnerability
11343| [77841] Proxysg CVE-2011-5124 Remote Security Vulnerability
11344| [77759] Cformsii CVE-2014-9473 File-Upload Vulnerability
11345| [77741] Infinitewp Admin Panel CVE-2014-9521 File-Upload Vulnerability
11346| [77732] ProjectSend CVE-2014-9567 File-Upload Vulnerability
11347| [77673] TomatoCart 'json.php' Multiple Arbitrary File Upload Vulnerabilities
11348| [77666] Multiple F5 BIG-IP Products CVE-2015-3628 Privilege Escalation Vulnerability
11349| [77658] AggreGate Platform Multiple Arbitrary File Upload Vulnerabilities
11350| [77372] Mediawiki 'api/ApiUpload.php' Security Bypass Vulnerability
11351| [77110] Apache HttpComponents HttpClient CVE-2015-5262 Denial of Service Vulnerability
11352| [77087] MAGMI Plugin For Magento 'download_file.php' Directory Traversal Vulnerability
11353| [77076] Multiple F5 Products CVE-2015-4040 Directory Traversal Vulnerability
11354| [77013] SolarWinds Storage Manager 'ProcessFileUpload.jsp' Arbitrary File Upload Vulnerability
11355| [76929] Python DLL Loading 'readline.pyd' Remote Code Execution Vulnerability
11356| [76899] TYPO3 'http:BL Blocking' Extension SQL Injection Vulnerability
11357| [76838] Kaseya Virtual System Administrator CVE-2015-6589 Arbitrary File Upload Vulnerability
11358| [76835] Kaseya Virtual System Administrator Arbitrary File Upload and Privilege Escalation Vulnerability
11359| [76832] Apache cordova-plugin-file-transfer CVE-2015-5204 HTTP Header Injection Vulnerability
11360| [76727] FreeType 't1load.c' Denial of Service Vulnerability
11361| [76726] Symantec Web Gateway CVE-2015-5692 Arbitrary File Upload Vulnerability
11362| [76716] IBM WebSphere eXtreme Scale CVE-2015-2028 HTTP Response Splitting Vulnerability
11363| [76658] IBM HTTP Server CVE-2015-4947 Stack Buffer Overflow Vulnerability
11364| [76545] HP LoadRunner CVE-2015-5426 Local Code Execution Vulnerability
11365| [76459] JasPer 'jasper_image_stop_load()' Function Double Free Denial of Service Vulnerability
11366| [76445] ManageEngine ServiceDesk Arbitrary File Upload Vulnerability
11367| [76418] SAP NetWeaver 'AFPServlet' Arbitrary File Download Vulnerability
11368| [76368] vBulletin Multiple Arbitrary File Upload Vulnerabilities
11369| [76339] Apple Safari WebKit Page Loading Information Disclosure Vulnerability
11370| [76281] Golang Go CVE-2015-5739 HTTP Header Injection Vulnerability
11371| [76271] Thomson Reuters FATCA CVE-2015-5951 Arbitrary File Upload Vulnerability
11372| [76228] Microsoft Remote Desktop Protocol DLL Loading CVE-2015-2473 Remote Code Execution Vulnerability
11373| [76226] SuiteCRM 'Upload Company Logo' Functionality Incomplete Fix Arbitrary File Upload Vulnerability
11374| [76091] RabbitMQ CVE-2014-9650 HTTP Response Splitting Vulnerability
11375| [76061] Gazou BBS plus CVE-2015-2974 Arbitrary File Upload Vulnerability
11376| [76032] Golang Go CVE-2015-5741 HTTP Header Injection Vulnerability
11377| [76028] WordPress MailCWP Plugin 'mailcwp-upload.php' Arbitrary File Upload Vulnerability
11378| [76014] Multiple D-Link Products HTTP Buffer Overflow Vulnerability
11379| [76009] WordPress wp-powerplaygallery Plugin 'upload.php' Multiple SQL Injection Vulnerabilities
11380| [75991] WordPress image-export Plugin 'download.php' Arbitrary File Download Vulnerability
11381| [75965] Apache HTTP Server CVE-2015-3185 Security Bypass Vulnerability
11382| [75964] Apache HTTP Server CVE-2015-0253 Remote Denial of Service Vulnerability
11383| [75963] Apache HTTP Server CVE-2015-3183 Security Vulnerability
11384| [75962] Microsoft Malicious Software Removal Tool DLL Loading Local Privilege Escalation Vulnerability
11385| [75943] Multiple F5 BIG-IP Products CVE-2015-4637 Authentication Bypass Vulnerability
11386| [75922] SAP SERVICE DATA DOWNLOAD Remote Command Execution Vulnerability
11387| [75755] Oracle Endeca Information Discovery Studio CVE-2015-2602 Arbitrary File Upload Vulnerability
11388| [75750] Oracle Endeca Information Discovery Studio CVE-2015-4745 Arbitrary File Download Vulnerability
11389| [75698] WordPress IBS Mappro Plugin 'download.php' Arbitrary File Download Vulnerability
11390| [75600] WordPress Swim Team Plugin 'download.php' Arbitrary File Download Vulnerability
11391| [75599] WordPress ACF Frontend Display Plugin 'index.php' Arbitrary File Upload Vulnerability
11392| [75584] WordPress S3Bubble Plugin 'downloader.php' Arbitrary File Download Vulnerability
11393| [75577] PivotX Cross Site Scripting, Session Fixation and Arbitrary File Upload Vulnerabilities
11394| [75567] WordPress MDC YouTube Downloader Plugin 'download.php' Arbitrary File Download Vulnerability
11395| [75563] WordPress WP e-Commerce Shop Styling Plugin 'download.php' Arbitrary File Download Vulnerability
11396| [75554] HAProxy CVE-2015-3281 Information Disclosure Vulnerability
11397| [75519] Multiple EMC Documentum Products Cross Site Scripting and Arbitrary File Upload Vulnerabilities
11398| [75396] WordPress Download Zip Attachments Plugin 'download.php' Arbitrary File Download Vulnerability
11399| [75394] WordPress wp-instance-rename Plugin 'mysqldump_download.php' Arbitrary File Download Vulnerability
11400| [75366] IBM Leads CVE-2015-0126 Multiple Arbitrary File Upload Vulnerabilities
11401| [75344] IBM WebSphere Commerce CVE-2015-0196 HTTP Response Splitting Vulnerability
11402| [75341] WordPress Fusion Theme 'functions.php' Arbitrary File Upload Vulnerability
11403| [75326] Cisco Web Security Appliance CVE-2015-4198 HTTP Header Injection Vulnerability
11404| [75311] MantisBT SQL Injection and Arbitrary File Download Vulnerabilities
11405| [75297] Schneider Electric Wonderware System Platform DLL Loading Arbitrary Code Execution Vulnerability
11406| [75276] Drupal HTTP Strict Transport Security Module Security Bypass Vulnerability
11407| [75248] TYPO3 Frontend User Upload Extension CVE-2015-4607 Arbitrary File Upload Vulnerability
11408| [75238] TYPO3 Job Fair Extension CVE-2015-4606 Arbitrary File Upload Vulnerability
11409| [75226] WordPress History Collection Plugin 'download.php' Arbitrary File Download Vulnerability
11410| [75211] WordPress Zip Attachments Plugin 'download.php' Arbitrary File Download Vulnerability
11411| [75210] BlackCat CMS 'logs.php' Arbitrary File Download Vulnerability
11412| [75207] WordPress NativeChurch Theme 'download.php' Arbitrary File Download Vulnerability
11413| [75203] Symantec Endpoint Protection Manager and Client DLL Loading Local Privilege Escalation Vulnerability
11414| [75182] Microsoft Internet Explorer ShowSaveFileDialog DLL Loading Arbitrary Code Execution Vulnerability
11415| [75164] IBM HTTP Server CVE-2015-1829 Denial of Service Vulnerability
11416| [75146] WordPress 'functions.php' Arbitrary File Upload Vulnerability
11417| [75110] WordPress Aviary Image Editor Add-on For Gravity Forms Plugin Arbitrary File Upload Vulnerability
11418| [75047] WordPress Wow Moodboard Lite Plugin 'wowproxy.php' Open Redirection Vulnerability
11419| [75026] Cisco TelePresence Integrator C Series CVE-2015-0770 HTTP Response Splitting Vulnerability
11420| [75004] Microsoft Windows LoadLibrary CVE-2015-1758 Remote Privilege Escalation Vulnerability
11421| [74967] Cisco Unified MeetingPlace CVE-2015-0764 Arbitrary File Download Vulnerability
11422| [74958] IBM Marketing Operations CVE-2014-8887 Arbitrary File Upload Vulnerability
11423| [74931] Multiple IBM Flex System Products CVE-2014-9564 HTTP Response Splitting Vulnerability
11424| [74920] Cisco Headend System Release CVE-2015-0745 Arbitrary File Download Vulnerabilitiy
11425| [74919] Cisco Videoscape Conductor and Headend System Release HTTP Header Injection Vulnerability
11426| [74917] Cisco Headend Digital Broadband Delivery System CVE-2015-0733 HTTP Response Splitting Vulnerability
11427| [74875] Sierra Wireless AirCard 'export.cfg' HTTP Header Injection Vulnerability
11428| [74858] Wavelink ConnectPro 'WLTermProxyService.exe' Heap Buffer Overflow Vulnerability
11429| [74828] WordPress Estrutura-Basica Theme 'download.php' Arbitrary File Download Vulnerability
11430| [74813] Lighttpd 'http_auth.c' Security Bypass Vulnerability
11431| [74788] Visual Mining NetCharts Server CVE-2015-4032 Arbitrary File Upload Vulnerability
11432| [74772] Schneider Electric OPC Factory Server DLL Loading Arbitrary Code Execution Vulnerability
11433| [74758] WordPress Simple Backup Plugin 'tools.php' Arbitrary File Download Vulnerability
11434| [74744] SuiteCRM 'Upload Company Logo' Functionality Arbitrary File Upload Vulnerability
11435| [74738] Xamarin for Android DLL Loading Arbitrary Code Execution Vulnerability
11436| [74737] HP LoadRunner CVE-2015-2110 Remote Buffer Overflow Vulnerability
11437| [74731] WISE-FTP DLL Loading Multiple Local Code Execution Vulnerabilities
11438| [74709] Cisco Sourcefire 3D System Lights-Out Management CVE-2015-0739 Arbitrary File Upload Vulnerability
11439| [74650] Multiple F5 BIG-IP Products SSL Certificate Validation Multiple Security Bypass Vulnerabilities
11440| [74625] SAP Sybase Unwired Platform Online Data Proxy Local Information Disclosure Vulnerability
11441| [74583] HP Network Virtualization for LoadRunner and Performance Center Information Disclosure Vulnerability
11442| [74562] F5 Networks BIG-IQ User Enumeration Vulnerability
11443| [74479] F5 BIG-IP Application Security Manager Security Bypass Vulnerability
11444| [74442] IBM InfoSphere Optim Workload Replay CVE-2015-1895 Security Bypass Vulnerability
11445| [74441] IBM InfoSphere Optim Workload Replay CVE-2015-1894 Cross Site Request Forgery Vulnerability
11446| [74343] Drupal Webform Multiple File Upload Module Multiple Cross Site Request Forgery Vulnerabilities
11447| [74335] Dovecot 'ssl-proxy-openssl.c' Remote Denial of Service Vulnerability
11448| [74308] Avsarsoft Matbaa Script Cross Site Scripting and Arbitrary File Upload Vulnerabilities
11449| [74286] Cisco FireSIGHT System Software CVE-2015-0706 HTTP Open Redirection Vulnerability
11450| [74271] Drupal Public Download Count Module CVE-2015-3389 Cross Site Scripting Vulnerability
11451| [74209] Wolf CMS 'FileManagerController.php' Arbitrary File Upload Vulnerability
11452| [74207] LiteSpeed Web Server 'httpreq.cpp' Use After Free Denial of Service Vulnerability
11453| [74201] BlueDragon CFChart Servlet CVE-2014-5370 Arbitrary File Download Vulnerability
11454| [74158] Apache HTTP Server 'protocol.c' Remote Denial of Service Vulnerability
11455| [74013] Microsoft Windows HTTP Protocol Stack CVE-2015-1635 Remote Code Execution Vulnerability
11456| [73949] Novell ZENworks Configuration Management CVE-2015-0779 Remote File Upload Vulnerability
11457| [73944] WordPress Work The Flow Plugin 'index.php' Arbitrary File Upload Vulnerability
11458| [73909] ManageEngine Desktop Central MSP 'InventorySWMeteringServlet' Arbitrary File Upload Vulnerability
11459| [73907] ManageEngine OpManager CVE-2014-6036 Arbitrary File Upload Vulnerability
11460| [73694] WordPress VideoWhisper Video Conference Integration Arbitrary File Upload Vulnerability
11461| [73690] WordPress VideoWhisper Video Presentation 'vw_upload.php' Arbitrary File Upload Vulnerability
11462| [73538] Barracuda Link Balancer Series Firmware CVE-2011-5114 Cross-Site Scripting Vulnerability
11463| [73450] mini_httpd CVE-2015-1548 Information Disclosure Vulnerability
11464| [73445] WordPress Aspose DOC Exporter Plugin Arbitrary File Download Vulnerability
11465| [73439] Websense TRITON V-Series CVE-2015-2772 Unspecified Arbitrary File Upload Vulnerability
11466| [73404] GoAhead WebServer 'src/http.c' Directory Traversal Vulnerability
11467| [73384] WordPress Aspose Cloud eBook Generator Arbitrary File Download Vulnerability
11468| [73382] Berta CMS 'upload.php' Arbitrary File Upload Vulnerability
11469| [73350] Huawei eSpace Desktop CVE-2014-9416 DLL Loading Multiple Local Code Execution Vulnerabilities
11470| [73328] WordPress WP Marketplace Plugin 'wpmarketplace\libs\cart.php' Arbitrary File Download Vulnerability
11471| [73309] Citrix Command Center CVE-2015-2682 Arbitrary File Download Vulnerabilitiy
11472| [73298] Codoforum 'index.php' Arbitrary File Download Vulnerabilitiy
11473| [73247] Multiple Rockwell Automation Products DLL Loading Multiple Local Code Execution Vulnerabilities
11474| [73118] WordPress Pixabay Images Plugin CVE-2015-1375 Arbitrary File Upload Vulnerability
11475| [73083] Adobe Flash Player CVE-2015-0340 File Upload Restriction Security Bypass Vulnerability
11476| [73041] Apache HTTP Server 'mod_lua' Module Denial of Service Vulnerability
11477| [73040] Apache HTTP Server 'mod_lua.c' Local Access Bypass Vulnerability
11478| [73030] Telerik Analytics Monitor Library DLL Loading Multiple Local Code Execution Vulnerabilities
11479| [73027] Cimon CmnView CVE-2014-9207 DLL Loading Arbitrary Code Execution Vulnerability
11480| [72999] NetCat CMS Multiple HTTP Response Splitting Vulnerabilities
11481| [72992] WeBid 'ajax.php' Arbitrary File Upload Vulnerability
11482| [72956] GNOME librest 'rest_proxy_call_get_url()' Memory Corruption Vulnerability
11483| [72894] Microsoft Windows DLL Loading CVE-2015-0096 Remote Code Execution Vulnerability
11484| [72767] libcsoap 'nanohttp-server.c' Buffer Overflow and Denial of Service Vulnerabilities
11485| [72749] Mozilla Firefox 'nsXMLHttpRequest::GetResponse' Heap Double Free Memory Corruption Vulnerability
11486| [72747] Mozilla Firefox Firefox ESR and Thunderbird DLL Loading Arbitrary Code Execution Vulnerability
11487| [72703] Squid CVE-2015-0881 HTTP Header Injection Vulnerability
11488| [72686] GLPI Arbitrary File Upload and Privilege Escalation Vulnerability
11489| [72674] Drupal Avatar Uploader Module Arbitrary File Upload Vulnerability
11490| [72633] HumHub '.htaccess' Arbitrary File Upload Vulnerability
11491| [72621] Maarch LetterBox CVE-2015-1587 Arbitrary File Upload Vulnerability
11492| [72620] WordPress Photo Gallery Plugin CVE-2014-9312 Arbitrary File Upload Vulnerability
11493| [72546] WordPress Holding Pattern Theme CVE-2015-1172 Arbitrary File Upload Vulnerability
11494| [72485] Cisco Unified IP Phones 9900 Series CVE-2015-0604 Arbitrary File Upload Vulnerability
11495| [72471] ArticleFR 'videouploader.php' Arbitrary File Upload Vulnerability
11496| [72384] SYNCK GRAPHICA Download Log CGI CVE-2015-0867 Directory Traversal Vulnerability
11497| [72256] Multiple EMC Products CVE-2015-0515 Arbitrary File Upload Vulnerability
11498| [72250] Siemens Scalance X Switches 'HTTP' Request Denial of Service Vulnerability
11499| [72193] Oracle HTTP Server CVE-2015-0386 Remote Security Vulnerability
11500| [72143] Oracle HTTP Server CVE-2014-6571 Remote Security Vulnerability
11501| [72079] Django 'django.util.http.is_safe_url()' Cross Site Scripting Vulnerability
11502| [72053] Apache HTTP Server 'mod_remoteip.c' IP Address Spoofing Vulnerability
11503| [72046] Mozilla Firefox/Thunderbird/SeaMonkey Proxy Authentication Session Fixation Vulnerability
11504| [72017] Fork CMS 'loadForm()' Function Cross Site Scripting Vulnerability
11505| [72014] F5 Networks BIG-IP Application Security Manager (ASM) HTML Injection Vulnerability
11506| [72010] Corel FastFlick CVE-2014-8398 Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
11507| [72009] VideoStudio Pro X7 'u32ZLib.dll' DLL Loading Arbitrary Code Execution Vulnerability
11508| [72007] Corel PDF Fusion 'quserex.dll' DLL Loading Arbitrary Code Execution Vulnerability
11509| [72006] Corel Painter 'wacommt.dll' DLL Loading Arbitrary Code Execution Vulnerability
11510| [72005] Multiple Corel Products 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
11511| [72004] CorelCAD 'TD_Mgd_3.08_9.dll' DLL Loading Arbitrary Code Execution Vulnerability
11512| [71983] WordPress Shopping Cart Plugin 'banneruploaderscript.php' Arbitrary File Upload Vulnerability
11513| [71894] Strongswan IKEv2 Payloads CVE-2014-9221 Remote Denial Of Service Vulnerability
11514| [71879] Apache Traffic Server 'HttpTransact.cc' Denial of Service Vulnerability
11515| [71872] AdaptCMS Arbitrary File Upload Vulnerability
11516| [71871] AdaptCMS 'Referer' Header Field HTTP Open Redirection Vulnerability
11517| [71842] Osclass 'contact.php' Arbitrary File Upload Vulnerability
11518| [71818] WordPress cformsII Plugin 'lib_nonajax.php' Arbitrary File Upload Vulnerability
11519| [71808] WordPress Frontend Uploader Plugin 'errors' Parameter Cross Site Scripting Vulnerability
11520| [71781] libvirt 'storageVolUpload()' Function Local Denial of Service Vulnerability
11521| [71744] Allegro RomPager HTTP Cookie Handling CVE-2014-9222 Security Bypass Vulnerability
11522| [71702] WordPress DB Backup Plugin 'download.php' Directory Traversal Vulnerability
11523| [71686] WordPress WP Symposium Plugin Multiple Arbitrary File Upload Vulnerabilities
11524| [71672] Intrexx CVE-2014-2025 Unspecified Arbitrary File Upload Vulnerability
11525| [71656] Apache HTTP Server 'mod_cache' Module Denial of Service Vulnerability
11526| [71551] WordPress Ajax Store Locator Plugin 'sl_file_download.php' Arbitrary File Download Vulnerability
11527| [71549] Multiple F5 Products CVE-2014-8730 Man In The Middle Information Disclosure Vulnerability
11528| [71535] Zenoss Core 'HTTPOnly' Cookie Flag Information Disclosure Vulnerability
11529| [71521] MantisBT 'file_download.php' HTML Injection Vulnerability
11530| [71490] WordPress Download Manager Plugin Remote Code Execution and Remote File Include Vulnerabilities
11531| [71418] WordPress CM Download Manager Plugin Cross Site Request Forgery Vulnerability
11532| [71404] Multiple ManageEngine Products Multiple Arbitrary File Download Vulnerabilities
11533| [71380] MantisBT 'file_download.php' HTML Injection Vulnerability
11534| [71353] Apache HTTP Server 'LuaAuthzProvider' Authorization Bypass Vulnerability
11535| [71290] Digi Online Examination System CVE-2014-8997 Unspecified Arbitrary File Upload Vulnerability
11536| [71274] Serenity Client Management Portal Arbitrary File Upload and Multiple HTML Injection Vulnerabilities
11537| [71272] WordPress wpDataTables Plugin Multiple Arbitrary File Upload Vulnerabilities
11538| [71266] Mouse Media Script Upload Image Multiple HTML Injection Vulnerabilities
11539| [71229] Joomla HD FLV 'com_hdflvplayer/hdflvplayer/download.php' Arbitrary File Download Vulnerabilitiy
11540| [71204] WordPress CM Download Manager Plugin CVE-2014-8877 Remote PHP Code Execution Vulnerability
11541| [71127] Moodle CVE-2014-7835 Unspecified Arbitrary File Upload Vulnerability
11542| [71108] OpenKM 'frontend/Download' Cross Site Scripting Vulnerability
11543| [71099] Multiple Magento Products CVE-2014-8770 Arbitrary File Upload Vulnerability
11544| [71063] F5 Networks BIG-IP CVE-2014-8727 Directory Traversal Vulnerability
11545| [71001] Multiple ManageEngine Products CVE-2014-7866 Arbitrary File Upload Vulnerabilities
11546| [70929] HelpDEZk 'uploadify.php' Arbitrary File Upload Vulnerability
11547| [70920] Cisco Small Business RV Series Routers CVE-2014-2179 Arbitrary File Upload Vulnerability
11548| [70895] Visual Mining NetCharts Server CVE-2014-8516 Arbitrary File Upload Vulnerability
11549| [70838] F5 Networks BIG-IP CVE-2014-6033 XML External Entity Injection Vulnerability
11550| [70834] F5 Networks BIG-IP CVE-2014-6032 XML External Entity Injection Vulnerability
11551| [70764] WordPress Download Manager Plugin 'file_download.php' Arbitrary File Download Vulnerabilitiy
11552| [70734] Multiple Maarch Products 'file_to_index.php' Arbitrary File Upload Vulnerability
11553| [70727] IBM Tivoli Integrated Portal CVE-2014-6151 HTTP Response Splitting Vulnerability
11554| [70723] Creative Contact Form 'wp-content/plugins/sexy-contact-form' Arbitrary File Upload Vulnerability
11555| [70716] DotNetNuke DNNspot Store 'UploadifyHandler.ashx' Arbitrary File Upload Vulnerability
11556| [70671] Huawei Mobile Partner 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
11557| [70614] Fox DataDiode Proxy Server CVE-2014-2358 Cross Site Request Forgery Vulnerability
11558| [70576] YourMembers 'ym-download_functions.include.php' SQL Injection Vulnerability
11559| [70375] TWiki '.htaccess' File Arbitrary File Upload Vulnerability
11560| [70320] Foreman Smart Proxy CVE-2014-3691 SSL Certificate Validation Security Bypass Vulnerability
11561| [70231] Zyxel SBG-3300 Series Routers 'framLoad()' Function Denial of Service Vulnerability
11562| [70216] HTTP File Server CVE-2014-7226 Remote Command Execution Vulnerability
11563| [70181] Cisco WebEx Meetings Server CVE-2014-3395 Arbitrary File Download Vulnerabilitiy
11564| [70169] ManageEngine OpManager CVE-2014-6035 Arbitrary File Upload Vulnerability
11565| [70167] Multiple ManageEngine Products CVE-2014-6034 Arbitrary File Upload Vulnerability
11566| [70162] Posnic Multiple Information Disclosure and Arbitrary File Upload Vulnerabilities
11567| [70145] WordPress WP file upload and manager by N-Media Plugin Arbitrary File Upload Vulnerability
11568| [70109] HTTP File Server Multiple Cross Site Scripting Vulnerabilities
11569| [70082] Joomla! Face Gallery SQL Injection and Arbitrary File Download Vulnerabilities
11570| [70081] X2CRM 'FileUploadsFilter.php' CVE-2014-5298 Arbitrary File Upload Vulnerability
11571| [70078] Joomla Mac Gallery 'albumid' Parameter Arbitrary File Download Vulnerabilitiy
11572| [69996] AVD Download Video CVE-2014-5666 SSL Certificate Validation Security Bypass Vulnerability
11573| [69806] Huawei Honor Cube WS860S Arbitrary File Upload Vulnerability
11574| [69782] HTTP File Server 'ParserLib.pas' Remote Command Execution Vulnerability
11575| [69759] WordPress Trinity Theme 'download.php' Arbitrary File Download Vulnerabilitiy
11576| [69734] IBM WebSphere Portal CVE-2014-4792 Arbitrary File Upload Vulnerability
11577| [69728] Apache Tomcat CVE-2013-4444 Arbitrary File Upload Vulnerability
11578| [69719] Posnic SQL Injection and Arbitrary File Upload Vulnerabilities
11579| [69690] HAProxy Multiple Buffer Overflow Vulnerabilities
11580| [69680] Multiple F5 Networks Products CVE-2014-4024 Information Disclosure Vulnerability
11581| [69676] Loaded Commerce 7 Address Book Multiple SQL Injection Vulnerabilities
11582| [69673] WordPress Antioch Theme 'download.php' Arbitrary File Download Vulnerabilitiy
11583| [69672] WordPress Epic Theme 'download.php' Arbitrary File Download Vulnerabilitiy
11584| [69671] WordPress Authentic Theme 'download.php' Arbitrary File Download Vulnerabilitiy
11585| [69670] WordPress Urban City Theme 'download.php' Arbitrary File Download Vulnerabilitiy
11586| [69604] Microsoft Internet Explorer 'CHTMLEditorProxy' Objects Remote Memory Corruption Vulnerability
11587| [69577] Drupal Avatar Uploader Module Information Disclosure Vulnerability
11588| [69570] TYPO3 SB Folderdownload Unspecified Cross Site Scripting Vulnerability
11589| [69547] IBM Business Process Manager and WebSphere CVE-2014-3075 Arbitrary File Upload Vulnerability
11590| [69497] Multiple WordPress Themes Multiple Arbitrary File Download Vulnerabilities
11591| [69494] Multiple ManageEngine Products CVE-2014-5005 Arbitrary File Upload Vulnerability
11592| [69493] Multiple ManageEngine Products CVE-2014-5006 Arbitrary File Upload Vulnerability
11593| [69491] ManageEngine DesktopCentral Incomplete Fix Arbitrary File Upload Vulnerability
11594| [69485] WordPress Slideshow Gallery Plugin 'admin.php' Arbitrary File Upload Vulnerability
11595| [69461] Multiple F5 Networks Products CVE-2014-2927 Remote Code Execution Vulnerability
11596| [69455] Cisco Intelligent Automation for Cloud CVE-2014-3349 Arbitrary File Upload Vulnerability
11597| [69449] Multiple F5 BIG-IP Products 'echo.jsp' Multiple Cross Site Scripting Vulnerabilities
11598| [69440] WordPress Download Shortcode Plugin 'force-download.php' Local File Include Vulnerability
11599| [69424] Novell Groupwise 'FileUploadServlet' Arbitrary File Access Vulnerability
11600| [69394] Aruba Networks Web Management Portal CVE-2014-2592 Arbitrary File Upload Vulnerability
11601| [69389] SAS Visual Analytics CVE-2014-5454 Arbitrary File Upload Vulnerability
11602| [69387] WordPress KenBurner Slider Plugin 'admin-ajax.php' Arbitrary File Download Vulnerabilitiy
11603| [69385] ntopng HTTP Host Request Header Lines Multiple HTML Injection Vulnerabilities
11604| [69347] WordPress File Upload Plugin 'admin-ajax.php' Cross Site Scripting Vulnerability
11605| [69317] AsyncHttpClient SSL Host Name Verification Security Weakness
11606| [69316] AsyncHttpClient SSL/TLS Certificate Validation Security Bypass Weakness
11607| [69279] Monkey HTTP Daemon CVE-2014-5336 Remote Denial of Service Vulnerability
11608| [69278] WordPress WP Content Source Control Plugin 'download.php' Directory Traversal Vulnerability
11609| [69258] Apache HttpComponents Incomplete Fix CVE-2014-3577 SSL Validation Security Bypass Vulnerability
11610| [69257] Apache HttpComponents Incomplete Fix SSL Certificate Validation Security Bypass Vulnerability
11611| [69248] Apache HTTP Server CVE-2013-4352 Remote Denial of Service Vulnerability
11612| [69230] WordPress File Upload Plugin CVE-2014-5199 Cross Site Request Forgery Vulnerability
11613| [69204] WordPress CK-And-SyntaxHighLighter Plugin Arbitrary File Upload Vulnerability
11614| [69111] nginx SMTP Proxy Remote Command Injection Vulnerability
11615| [69014] WordPress Gmedia Gallery Plugin Arbitrary File Upload Vulnerability
11616| [68993] iFolder+ Local File Include and Arbitrary File Upload Vulnerabilities
11617| [68962] Attachmate Verastream Process Designer CVE-2014-0607 Arbitrary File Upload Vulnerability
11618| [68960] Trusted Boot 'loader.c' Security Bypass Vulnerability
11619| [68942] WordPress Slider Revolution Responsive Plugin 'img' Parameter Arbitrary File Download Vulnerabilitiy
11620| [68936] dtSearch Desktop 'imhost32.dll' DLL Loading Arbitrary Code Execution Vulnerability
11621| [68892] Omeka '/admin/items/add' Arbitrary File Upload Vulnerability
11622| [68867] Ukora CMS 'uploadFile.php' Arbitrary File Upload Vulnerability
11623| [68863] Apache HTTP Server 'mod_cache' Module Remote Denial of Service Vulnerability
11624| [68825] WordPress WP Backup Plus Plugin Arbitrary File Download Vulnerabilitiy
11625| [68786] Multiple IBM Products CVE-2014-0948 Unspecified Arbitrary File Upload Vulnerability
11626| [68752] bozohttpd 'snprintf()' Function Authentication Bypass Vulnerability
11627| [68747] Apache HTTP Server CVE-2014-3523 Remote Denial of Service Vulnerability
11628| [68746] Acme micro_httpd CVE-2014-4927 Buffer Overflow Denial of Service Vulnerability
11629| [68745] Apache HTTP Server CVE-2014-0118 Remote Denial of Service Vulnerability
11630| [68742] Apache HTTP Server CVE-2014-0231 Remote Denial of Service Vulnerability
11631| [68740] Apache HTTP Server CVE-2014-0117 Remote Denial of Service Vulnerability
11632| [68694] Cisco Unified Communications Domain Manager Admin HTTP Open Redirection Vulnerability
11633| [68678] Apache HTTP Server 'mod_status' CVE-2014-0226 Remote Code Execution Vulnerability
11634| [68661] WordPress Tidio Gallery Plugin Cross Site Scripting and Arbitrary File Upload Vulnerabilities
11635| [68658] WEBMIS CMS Arbitrary File Upload Vulnerability
11636| [68656] WordPress CopySafe PDF Protection Plugin Arbitrary File Upload Vulnerability
11637| [68654] WordPress WPTouch Plugin Arbitrary File Upload Vulnerability
11638| [68652] Oracle HTTP Server CVE-2014-4222 Remote Security Vulnerability
11639| [68650] Oracle HTTP Server CVE-2014-4251 Remote Security Vulnerability
11640| [68522] WordPress Download Manager Plugin Arbitrary File Upload Vulnerability
11641| [68503] Cisco WebEx Meetings Client File Transfer Functionality Arbitrary File Download Vulnerabilitiy
11642| [68479] Cisco Unified Communications Manager CVE-2014-3316 Arbitrary File Upload Vulnerability
11643| [68468] Frog CMS file_manager Plugin Arbitrary File Upload Vulnerability
11644| [68437] AtomCMS SQL Injection and Arbitrary File Upload Vulnerabilities
11645| [68414] WordPress NextGEN Gallery 'photocrati_ajax' Arbitrary File Upload Vulnerability
11646| [68406] WordPress Hot Files: File Sharing and Download Manager Plugin Cross Site Scripting Vulnerability
11647| [68404] WordPress WP Media Player Plugin 'uploader.php' Cross Site Scripting Vulnerability
11648| [68310] WordPress MailPoet Newsletters Plugin Remote File Upload Vulnerability
11649| [68295] ownCloud CVE-2012-5057 HTTP Header Injection Vulnerability
11650| [68291] IBM Sametime Meeting Server Arbitrary File Upload Vulnerability
11651| [68256] Foreman Smart-Proxy CVE-2012-5477 Insecure File Permissions Vulnerability
11652| [68147] Python CGIHTTPServer Module Path Separators Handling Information Disclosure Vulnerability
11653| [68117] Foreman Smart-Proxy Remote Command Injection Vulnerability
11654| [68078] F5 Networks ARX Data Manager CVE-2014-2949 SQL Injection Vulnerabilitiy
11655| [68022] Yealink VoIP Phones '/servlet' HTTP Response Splitting Vulnerability
11656| [68008] IBM C\xFAram Social Program Management CVE-2014-3012 HTTP Response Splitting Vulnerability
11657| [67960] DotNetNuke ResponsiveSidebar 'ResponsiveSidebarDownload.aspx' Arbitrary File Download Vulnerabilitiy
11658| [67959] DotNetNuke EventsCalendar 'downloaddoc.aspx' Arbitrary File Download Vulnerabilitiy
11659| [67958] DotNetNuke EasyDnnGallery 'ImageDownload.aspx' Arbitrary File Download Vulnerabilitiy
11660| [67957] DotNetNuke dnnUI_NewsArticlesSlider 'ImageHandler.ashx' Arbitrary File Download Vulnerabilitiy
11661| [67956] DotNetNuke CodeEditor 'NNCodeEditorDownload.aspx' Arbitrary File Download Vulnerabilitiy
11662| [67950] DotNetNuke ASPSlideshow 'ASPSlideShowDownload.aspx' Arbitrary File Download Vulnerabilitiy
11663| [67783] F*EX '/rup' HTTP Response Splitting Vulnerability
11664| [67781] Xilisoft Video Converter Ultimate 'quserex.dll' DLL Loading Arbitrary Code Execution Vulnerability
11665| [67771] Multiple F5 BIG-IP and Enterprise Manager 'list.jsp' Multiple Cross Site Scripting Vulnerabilities
11666| [67710] Perl libwww-perl (LWP) Module HTTP Header Arbitrary File Overwrite Vulnerability
11667| [67708] Foreman Smart Proxy CVE-2013-0210 Arbitrary Command Execution Vulnerability
11668| [67665] Cisco Unified Communications Domain Manager Self-Care HTTP Open Redirection Vulnerability
11669| [67646] Multiple IBM Products CVE-2013-5465 Arbitrary File Upload Vulnerability
11670| [67637] Multiple IBM Products CVE-2012-3333 HTTP Response Splitting Vulnerability
11671| [67634] Red Hat sos GRUB Bootloader Password Information Disclosure Vulnerability
11672| [67626] TYPO3 HTTP Host Header Spoofing Vulnerability
11673| [67620] Atlassian Confluence ClassLoader Manipulation Security Bypass Vulnerability
11674| [67619] TYPO3 Powermail Extension Arbitrary File Upload Vulnerability
11675| [67615] Pimcore 'Zend_Http_Response_Stream' PHP Object Injection Vulnerability
11676| [67612] Pyplate HTTPOnly Cookie Flag Information Disclosure Weakness
11677| [67608] Pyplate 'download.py' Arbitrary File Disclosure Vulnerability
11678| [67598] IBM Sametime Proxy Server and Web Client CVE-2014-3015 Cross Site Request Forgery Vulnerability
11679| [67559] Dotclear 'filemanager::isFileExclude()' Method Arbitrary File Upload Vulnerability
11680| [67558] Cisco TelePresence System HTTPS Communication Information Disclosure Vulnerability
11681| [67484] Joomla! Yeendeen YEEditor File Upload Security Bypass Vulnerability
11682| [67469] WordPress cnhk-slideshow Plugin Arbitrary File Upload Vulnerability
11683| [67455] Multiple Solar-Log Products Arbitrary File Upload and Information Disclosure Vulnerabilities
11684| [67388] Xen Loading Guest Kernel Multiple Denial of Service Vulnerabilities
11685| [67278] Multiple F5 BIG-IP Products CVE-2014-2928 Remote Command Injection Vulnerability
11686| [67270] WordPress Photo Gallery Plugin 'UploadHandler.php' Cross Site Request Forgery Vulnerability
11687| [67227] Multiple F5 BIG-IQ Products Configuration Utility Access Control Security Bypass Vulnerability
11688| [67192] Erlang/OTP 'httpc' Denial of Service Vulnerability
11689| [67191] F5 Networks BIG-IQ Remote Privilege Escalation Vulnerability
11690| [67121] Apache Struts ClassLoader Manipulation CVE-2014-0114 Security Bypass Vulnerability
11691| [67102] Cisco Unified Contact Center Express CVE-2014-2180 Arbitrary File Upload Vulnerability
11692| [67083] WordPress Work The Flow Plugin 'admin-ajax.php' Arbitrary File Upload Vulnerability
11693| [67080] WordPress Echelon Theme 'media-upload.php' Arbitrary File Upload Vulnerability
11694| [67064] Apache Struts ClassLoader Manipulation Incomplete Fix Security Bypass Vulnerability
11695| [67061] Siemens SIMATIC S7-1200 CVE-2014-2909 HTTP Response Splitting Vulnerability
11696| [67044] Livetecs Timelive CVE-2014-2042 Arbitrary File Upload Vulnerability
11697| [66988] KnowledgeTree 'mdownload.php' SQL Injection Vulnerability
11698| [66976] QEMU 'virtio_load()' Function Memory Corruption Vulnerability
11699| [66964] JBoss Overload Runtime Governance CVE-2013-6469 Remote Code Execution Vulnerability
11700| [66961] HP LoadRunner Virtual User Generator CVE-2013-6213 Remote Code Execution Vulnerability
11701| [66921] WordPress Linenity Theme 'download.php' Local File Include Vulnerability
11702| [66797] PivotX 'fileupload.php' CVE-2014-0342 Arbitrary File Upload Vulnerability
11703| [66772] vSphere Client CVE-2014-1209 Arbitrary File Download Vulnerability
11704| [66752] CGIScript.net csUpload Authentication Bypass Vulnerability
11705| [66637] FortiBalancer SSH Access CVE-2014-2723 Security Bypass Vulnerability
11706| [66636] FortiBalancer SSH Access CVE-2014-2722 Security Bypass Vulnerability
11707| [66626] FortiBalancer SSH Access CVE-2014-2721 Security Bypass Vulnerability
11708| [66621] IBM InfoSphere Optim Workload Replay CVE-2014-0827 Cross Site Scripting Vulnerability
11709| [66599] lighttpd CVE-2014-2469 Remote Denial of Service Vulnerability
11710| [66566] Cisco Security Manager HTTP Header CVE-2014-2138 Open Redirection Vulnerability
11711| [66565] Cisco Web Security Appliance HTTP Header Injection Vulnerability
11712| [66531] ionCube Loader Wizard 'loader-wizard.php' Multiple Security Vulnerabilities
11713| [66506] X2CRM 'ProfileController.php' CVE-2014-2664 Arbitrary File Upload Vulnerability
11714| [66490] WordPress Felici Theme 'uploadify.php' Arbitrary File Upload Vulnerability
11715| [66443] KCFinder 'browse.php' Arbitrary File Upload Vulnerability
11716| [66430] iThoughtsHD CVE-2014-1827 Unspecified Arbitrary File Upload Vulnerability
11717| [66409] SeedDMS Multiple Unspecified Arbitrary File Upload Vulnerabilities
11718| [66398] qEngine Multiple Arbitrary File Upload Vulnerabilities
11719| [66394] Check_MK CVE-2014-2331 Multiple Arbitrary File Upload Vulnerabilities
11720| [66371] OXID eShop 'index.php' Multiple HTTP Response Splitting Vulnerabilities
11721| [66359] IBM InfoSphere BigInsights CVE-2013-3998 HTTP Response Splitting Vulnerability
11722| [66307] VLC Media Player 'src/network/httpd.c' Cross Site Scripting Vulnerability
11723| [66303] Apache HTTP Server Multiple Denial of Service Vulnerabilities
11724| [66288] WordPress Subscribe To Comments Reloaded Plugin Cross-Site Request Forgery Vulnerability
11725| [66255] SeedDMS '/op/op.AddFile2.php' Arbitrary File Upload Vulnerability
11726| [66217] FrontAccounting 'attachments.php' Arbitrary File Upload Vulnerability
11727| [66211] Free Download Manager 'Downloads_Deleted.cpp' Stack Based Buffer Overflow Vulnerability
11728| [66185] Siemens SIMATIC S7-1500 CVE-2014-2247 HTTP Response Splitting Vulnerability
11729| [66158] cups-filters 'OPVPWrapper::loadDriver()' Function Local Arbitrary Command Execution Vulnerability
11730| [66157] lighttpd CVE-2014-2324 Multiple Directory Traversal Vulnerabilities
11731| [66153] lighttpd 'mod_mysql_vhost.c' SQL Injection Vulnerability
11732| [66109] MyBB Plugin Uploader Arbitrary File Upload Vulnerability
11733| [66093] Multiple Asterisk Products 'main/http.c' Remote Stack Overflow Vulnerability
11734| [66073] ClipShare Pro 'ubr_link_upload.php' Local File Include Vulnerability
11735| [66054] Blue Coat ProxySG CVE-2014-2033 Security Bypass Vulnerability
11736| [66044] WordPress Premium Gallery Manager Plugin Arbitrary File Upload Vulnerability
11737| [66041] RETIRED: Apache Struts CVE-2014-0094 Classloader Manipulation Security Bypass Vulnerability
11738| [65999] Apache Struts ClassLoader Manipulation CVE-2014-0094 Security Bypass Vulnerability
11739| [65972] HP SiteScope 'loadFileContents' SOAP Request Remote Code Execution Vulnerability
11740| [65958] WordPress The Cotton Theme Arbitrary File Upload Vulnerability
11741| [65913] GetGo Download Manager CVE-2014-2206 Stack Buffer Overflow Vulnerability
11742| [65866] WordPress VideoWhisper Live Streaming Integration Arbitrary File Upload Vulnerability
11743| [65846] Plogger 'plog-admin/plog-upload.php' Arbitrary File Upload Vulnerability
11744| [65800] WordPress Feedweb Plugin '_wp_http_referer' Parameter Cross Site Scripting Vulnerability
11745| [65749] Autodesk AutoCAD CVE-2014-0819 Insecure Library Loading Arbitrary Code Execution Vulnerability
11746| [65739] Telligent Evolution 'loading.aspx' Cross Site Scripting Vulnerability
11747| [65708] Cisco Adaptive Security Appliance Phone Proxy CTL Security Bypass Vulnerability
11748| [65707] Cisco Adaptive Security Appliance Phone Proxy sec_db Security Bypass Vulnerability
11749| [65685] VideoCharge Studio 'CHTTPResponse::GetHttpResponse()' Function Stack Buffer Overflow Vulnerability
11750| [65681] Ultra Mini HTTPD 'POST' Request Stack-Based Buffer Overflow Vulnerability
11751| [65662] Cisco Firewall Services Module Cut-Through Proxy Remote Denial of Service Vulnerability
11752| [65646] MODx Evogallery Module 'uploadify.php' Arbitrary File Upload Vulnerability
11753| [65629] Openswan IKEv2 Payloads Incomplete Fix Remote Denial Of Service Vulnerability
11754| [65594] Red Hat Satellite and Spacewalk 'return_url' Paramter HTTP Header Injection Vulnerability
11755| [65561] MyBB Extended Useradmininfo Plugin 'User-Agent' HTTP Header HTML Injection Vulnerability
11756| [65489] IBM WebSphere Portal CVE-2013-6722 Arbitrary File Upload Vulnerability
11757| [65488] SpagoBI CVE-2013-6234 Arbitrary File Upload Vulnerability
11758| [65460] WordPress Kiddo Theme Arbitrary File Upload Vulnerability
11759| [65452] Bandizip 'dwmapi.dll' Insecure Library Loading Arbitrary Code Execution Vulnerability
11760| [65438] Joomla! Projoom NovaSFH Plugin 'upload.php' Arbitrary File Upload Vulnerability
11761| [65435] OneHTTPD HTTP Request Denial of Service Vulnerability
11762| [65422] Multiple F5 Networks Products CVE-2013-6024 Local Information Disclosure Vulnerability
11763| [65411] WordPress Dandelion Theme Arbitrary File Upload Vulnerability
11764| [65400] Apache Commons FileUpload CVE-2014-0050 Denial Of Service Vulnerability
11765| [65251] SmarterMail '\App_Data\Temp' Directory Arbitrary Shell Upload Vulnerability
11766| [65248] Sitecore CMS Multiple Arbitrary Shell Upload Vulnerabilities
11767| [65227] Cisco Identity Services Engine HTTP Control Interface for NAC Web Cross Site Scripting Vulnerability
11768| [65218] WordPress 'media-upload.php' Information Disclosure Vulnerability
11769| [65201] socat PROXY-CONNECT Address Stack Buffer Overflow Vulnerability
11770| [65188] Pidgin 'gg_http_watch_fd()' Function Buffer Overflow Vulnerability
11771| [65175] Simple E-Document 'upload.php' Arbitrary File Upload Vulnerability
11772| [65155] Openswan IKEv2 payloads Remote Denial Of Service Vulnerability
11773| [65141] WordPress SS Downloads Plugin Multiple Cross Site Scripting Vulnerabilities
11774| [65137] Maian Uploader Multiple Security Vulnerabilities
11775| [65124] Multiple Generel Electric Products 'gefebt.exe' Shell Upload Vulnerability
11776| [65117] Multiple Generel Electric Products Shell Upload Vulnerability
11777| [65060] WordPress Global Flash Gallery Plugin 'swfupload.php' Arbitrary File Upload Vulnerability
11778| [65059] Imageview 'upload.php' Arbitrary File Upload Vulnerability
11779| [65047] WordPress Wordfence Security Plugin 'User-Agent' HTTP Header HTML Injection Vulnerability
11780| [65005] IDA Pro Mach-O Loader Unspecified Security Vulnerability
11781| [64987] Libreswan 'IKEv2' Payloads Remote Denial of Service Vulnerability
11782| [64939] Cisco Identity Services Engine Support Bundle Download Unauthorized Access Vulnerability
11783| [64827] Oracle iPlanet Web Proxy Server CVE-2013-5808 Remote Security Vulnerability
11784| [64788] Joomla! Almond Classifieds Component Arbitrary File Upload Vulnerability
11785| [64785] Conceptronic C54APM 2.0 'submit-url' Parameter HTTP Response Splitting Vulnerability
11786| [64732] CCProxy 'CCProxy.ini' Configuration File Integer Overflow Vulnerability
11787| [64705] Joomla! Aclsfgpl Component 'index.php' Arbitrary File Upload Vulnerability
11788| [64633] Huawei eSight Arbitrary File Upload Vulnerability
11789| [64615] Python 'Lib/CGIHTTPServer.py' Script Directory Traversal Vulnerability
11790| [64587] Advanced Dewplayer Plugin for WordPress 'download-file.php' Script Directory Traversal Vulnerability
11791| [64556] PhotoStore 'uploadify.php' Arbitrary File Upload Vulnerability
11792| [64554] LimeSurvey '/admin/templates.php' Script Arbitrary File Upload Vulnerability
11793| [64545] eFront Arbitrary File Upload and Information Disclosure Vulnerabilities
11794| [64380] Iscripts Multicart 'HTTP_RAW_POST_DATA' Parameter Remote PHP Code Injection Vulnerability
11795| [64346] Veno File Manager 'q' Parameter Arbitrary File Download Vulnerability
11796| [64327] Telmanik CMS 'photo_upload.php' Arbitrary File Upload Vulnerability
11797| [64307] osCMax Arbitrary File Upload and Full Path Information Disclosure Vulnerabilities
11798| [64302] IBM Sterling Connect:Enterprise HTTP Option CVE-2013-6327 Cross Site Scripting Vulnerability
11799| [64264] Monitorix HTTP Server CVE-2013-7072 Multiple Unspecified Security Vulnerabilities
11800| [64251] FlashCanvas 'proxy.php' Cross Site Scripting Vulnerability
11801| [64237] NVIDIA mental ray DLL Loading Arbitrary Code Execution Vulnerability
11802| [64178] Monitorix HTTP Server 'handle_request()' Remote Command Execution Vulnerability
11803| [64173] WordPress PhotoSmash Galleries Plugin 'bwbps-uploader.php' Arbitrary File Upload Vulnerability
11804| [64171] Snes9x 'codec_mpeg.dll' DLL Loading Arbitrary Code Execution Vulnerability
11805| [64165] Hex Workshop 'mfc100trk.dll' DLL Loading Arbitrary Code Execution Vulnerability
11806| [64164] WordPress Page Flip Image Gallery Plugin 'upload.php' Arbitrary File Upload Vulnerability
11807| [64163] Cisco Cloud Portal CVE-2013-6708 Arbitrary File Download Vulnerability
11808| [64159] WordPress Download Manager Plugin 'file[title]' Parameter Cross Site Scripting Vulnerability
11809| [64138] Libmicrohttpd Multiple Remote Security Vulnerabilities
11810| [64068] TP-Link TL-WR740N/TL-WR740ND Wireless N Routers HTTP Processing Denial of Service Vulnerability
11811| [64055] Novell Remote Manager HTTPSTK Service Denial of Service Vulnerability
11812| [64054] FlashComs Chat 'file.php' Arbitrary File Upload Vulnerability
11813| [64044] WordPress OptimizePress Theme 'media-upload.php' Arbitrary File Upload Vulnerability
11814| [64041] phpThumb 'phpThumb.php' Arbitrary File Upload Vulnerability
11815| [64031] up.time Monitoring '/wizards/post2file.php' Arbitrary File Upload Vulnerability
11816| [64025] Static HTTP Server GET Request Processing Remote Denial of Service Vulnerability
11817| [64023] Potplayer DLL Loading Arbitrary Code Execution Vulnerability
11818| [64019] Multiple WordPress Orange Themes 'upload-handler.php' Arbitrary File Upload Vulnerability
11819| [63974] Wondershare Player 'ws_converterex.dll' DLL Loading Arbitrary Code Execution Vulnerability
11820| [63973] BZR Player 'codec_mpeg.dll' DLL Loading Arbitrary Code Execution Vulnerability
11821| [63971] Microsoft Windows Kernel 'NDProxy.sys' Local Privilege Escalation Vulnerability
11822| [63968] phpMyFAQ Image Manager Arbitrary File Upload Vulnerability
11823| [63935] Apache Solr 'SolrResourceLoader' Directory Traversal Vulnerability
11824| [63929] Multiple Fujitsu Interstage Products HTTP Server Unspecified Buffer Overflow Vulnerability
11825| [63923] Multiple WordPress Themes 'themify-ajax.php' Arbitrary File Upload Vulnerability
11826| [63917] FTP Drive + HTTP Server for iOS Directory Traversal Vulnerability
11827| [63913] Monitorix HTTP Server 'handle_request()' Session Fixation and Cross Site Scripting Vulnerabilities
11828| [63881] WordPress Contact Form 7 Plugin Arbitrary File Upload Vulnerability
11829| [63862] ERDAS ER Viewer Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
11830| [63836] WordPress Suco Themes 'themify-ajax.php' Arbitrary File Upload Vulnerability
11831| [63784] ManageEngine DesktopCentral 'AgentLogUploadServlet' Directory Traversal Vulnerability
11832| [63782] Kaseya 'SystemTab/UploadImage.asp' Arbitrary File Upload Vulnerability
11833| [63780] IBM WebSphere Application Server HTTP Response Data Cross Site Scripting Vulnerability
11834| [63779] SAP NetWeaver 'SHSTI_UPLOAD_XML()' Function XML External Entity Injection Vulnerability
11835| [63768] Multiple WordPress Themes 'upload-handler.php' Arbitrary File Upload Vulnerability
11836| [63762] WordPress Make A Statement Theme Arbitrary File Upload Vulnerability
11837| [63735] Cisco Services Portal CVE-2013-3406 Arbitrary File Download Vulnerability
11838| [63721] Allegro RomPager HTTP Referer Header URI Redirection and Cross Site Scripting Vulnerabilities
11839| [63716] Multiple WordPress Themes 'upload-handler.php' Arbitrary File Upload Vulnerability
11840| [63688] lighttpd CVE-2013-4559 Local Privilege Escalation Vulnerability
11841| [63686] lighttpd CVE-2013-4560 Use-After-Free Remote Denial of Service Vulnerability
11842| [63662] AjaXplorer 'save_zoho.php' Arbitrary File Upload Vulnerability
11843| [63660] YUI 'uploader.swf' Cross Site Scripting Vulnerability
11844| [63658] WordPress Highlight Theme Arbitrary File Upload Vulnerability
11845| [63624] Cisco Adaptive Security Appliance Phone Proxy Database Security Bypass Vulnerability
11846| [63623] WordPress Kernel Theme 'upload-handler.php' Arbitrary File Upload Vulnerability
11847| [63573] Drupal Secure Pages Module HTTP Redirection Information Disclosure Vulnerability
11848| [63542] TinyMCE SQL Injection and Arbitrary File Upload Vulnerabilities
11849| [63534] lighttpd SSL Weak Cipher CVE-2013-4508 Security Bypass Weakness
11850| [63523] WordPress This Way Theme 'upload_settings_image.php' Arbitrary File Upload Vulnerability
11851| [63522] WordPress Think Responsive Themes 'upload_settings_image.php' Arbitrary File Upload Vulnerability
11852| [63513] GitLab 'SSH key upload' Feature CVE-2013-4490 Remote Code Execution Vulnerability
11853| [63477] HP LoadRunner Virtual User Generator CVE-2013-4839 Remote Code Execution Vulnerability
11854| [63476] HP LoadRunner Virtual User Generator CVE-2013-4838 Remote Code Execution Vulnerability
11855| [63475] HP LoadRunner Virtual User Generator CVE-2013-4837 Remote Code Execution Vulnerability
11856| [63472] WordPress Checkout Plugin Cross Site Scripting and Arbitrary File Upload Vulnerabilities
11857| [63454] vTiger CRM 'files' Upload Folder Arbitrary PHP Code Execution Vulnerability
11858| [63412] WordPress Money Theme Cross Site Scripting and Arbitrary File Upload Vulnerabilities
11859| [63391] Juniper Networks Junos CVE-2013-6014 Proxy ARP Denial of Service Vulnerability
11860| [63362] WordPress GeoPlaces Theme Arbitrary Shell Upload Vulnerability
11861| [63355] Attachmate Verastream Host Integrator CVE-2013-3626 Arbitrary File Upload Vulnerability
11862| [63306] WordPress AREA53 Theme 'php.php' Arbitrary File Upload Vulnerability
11863| [63287] Joomla! Maian15 Component 'name' Parameter Arbitrary Shell Upload Vulnerability
11864| [63275] SMF CVE-2013-4465 Unspecified Arbitrary File Upload Vulnerability
11865| [63257] WordPress Daily Deal Theme Arbitrary Shell Upload Vulnerability
11866| [63247] WebCollab 'item' Parameter HTTP Response Splitting Vulnerability
11867| [63245] F5 BIG-IP Traffic Management Microkernel Denial of Service Vulnerability
11868| [63219] PHP Point Of Sale 'ofc_upload_image.php' Remote Code Execution Vulnerability
11869| [63174] Apache Commons FileUpload 'DiskFileItem' Class Null Byte Arbitrary File Write Vulnerability
11870| [63165] UbiDisk Local File Include and Arbitrary File Upload Vulnerabilities
11871| [63159] OpenStack Glance 'download_image' Policy Information Disclosure Vulnerability
11872| [63033] Cisco Identity Services Engine CVE-2013-5541 Arbitrary File Upload Vulnerability
11873| [63031] Cisco Identity Services Engine CVE-2013-5539 Arbitrary File Upload Vulnerability
11874| [62974] Open-Xchange AppSuite CVE-2013-6009 HTTP Response Splitting Vulnerability
11875| [62876] WordPress Woopra Analytics Plugin 'ofc_upload_image.php' Arbitrary PHP Code Execution Vulnerability
11876| [62875] CPAN HTTP::Body::MultiPart Module CVE-2013-4407 Remote Command Injection Vulnerability
11877| [62852] FlashChat 'upload.php' Arbitrary File Upload Vulnerability
11878| [62836] Corel PaintShop Pro X5 and X6 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
11879| [62825] WordPress SEO Watcher Plugin 'ofc_upload_image.php' Arbitrary PHP Code Execution Vulnerability
11880| [62776] ClipBucket 'ofc_upload_image.php' Arbitrary PHP Code Execution Vulnerability
11881| [62723] Abuse HTTP Server Remote Denial of Service Vulnerability
11882| [62720] Open-Xchange AppSuite HTTP Response Splitting and Multiple Cross Site Scripting Vulnerabilities
11883| [62691] ESRI ArcGIS for Server CVE-2013-5221 Arbitrary File Upload Vulnerability
11884| [62666] Multiple Emerson Process Management RTUs CVE-2013-0689 Arbitrary File Upload Vulnerability
11885| [62647] Blue Coat ProxySG and Security Gateway OS Denial Of Service Vulnerability
11886| [62620] AspxCommerce 'LogoHandler.ashx' Module Arbitrary File Upload Vulnerability
11887| [62596] F5 BIG-IP APM Access Policy Logout Page Cross Site Scripting Vulnerability
11888| [62594] F5 BIG-IP APM Access Policy Logon Page Clickjacking Vulnerability
11889| [62589] WordPress Lazy SEO Plugin 'lazyseo.php' Arbitrary File Upload Vulnerability
11890| [62514] Ajax File and Image Manager 'ajax_file_upload.php' Arbitrary File Upload Vulnerability
11891| [62496] WordPress Complete Gallery Manager Plugin 'upload-images.php' Arbitrary File Upload Vulnerability
11892| [62476] Mozilla Firefox For Android Insecure Shared Library Loading Arbitrary Code Execution Vulnerability
11893| [62439] Image Uploader 'index.php' Arbitrary File Upload Vulnerability
11894| [62437] WordPress Simple Dropbox Upload 'multi.php' Arbitrary File Upload Vulnerability
11895| [62413] Uploadify 'uploadify.php' Multiple Input Validation Vulnerabilities
11896| [62396] IBM Analytical Decision Management CVE-2013-4049 Arbitrary File Upload Vulnerability
11897| [62385] NetEase Personal Address Book for iOS Arbitrary File Upload Vulnerability
11898| [62383] NetEase lua Programming Language for iOS Arbitrary File Upload Vulnerability
11899| [62365] OpenEMR Multiple SQL Injection and Arbitrary File Upload Vulnerabilities
11900| [62357] NetEase Perl Programming Language for iOS Arbitrary File Upload Vulnerability
11901| [62355] NetEase Ruby Programming Language for iOS Arbitrary File Upload Vulnerability
11902| [62279] Prestashop HTTP Header Injection Vulnerability
11903| [62259] AjaXplorer CVE-2013-5689 Arbitrary File Upload Vulnerability
11904| [62156] Red Hat JBoss Enterprise Application Platform CVE-2013-2185 Arbitrary File Upload Vulnerability
11905| [62076] YingZhi Python Programming Language for iOS Arbitrary File Upload Vulnerability
11906| [62072] Linux Kernel '/net/core/scm.c' nsproxy Local Privilege Escalation Vulnerability
11907| [61994] Belkin F5D7234-4 G Wireless Router Authentication Bypass and Remote Code Execution Vulnerabilities
11908| [61910] Graphite 'pickle.loads()' Multiple Remote Code Execution Vulnerabilities
11909| [61836] Download Monitor 'sort' Parameter Cross Site Scripting Vulnerability
11910| [61820] Joomla! jDownloads Component Cross Site Scripting Vulnerability
11911| [61808] Photo Transfer Local File Include, Arbitrary File Upload and HTML Injection Vulnerabilities
11912| [61797] TYPO3 Backend File Upload / File Abstraction Layer Extension Arbitrary File Upload Vulnerability
11913| [61768] ThinkVantage Access Connections Insecure Library Loading Arbitrary Code Execution Vulnerabilities
11914| [61753] OneHTTPD Denial of Service Vulnerability
11915| [61751] Review Board CVE-2013-4796 Arbitrary File Upload Vulnerability
11916| [61745] HTC Sync Manager Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
11917| [61735] Advanced Guestbook 'addentry.php' Arbitrary Shell Upload Vulnerability
11918| [61727] Soda PDF CVE-2013-3485 Multiple Insecure Library Loading Arbitrary Code Execution Vulnerabilities
11919| [61715] Symfony CVE-2013-4752 HTTP Header Spoofing Security Bypass Vulnerability
11920| [61622] TimeLine SocialEngine Plugin Arbitrary File Upload Vulnerability
11921| [61617] OmegaBB 'attach_file.php' Arbitrary File Upload Vulnerability
11922| [61613] FluidGalleries 'photo-upload.php' Arbitrary File Upload Vulnerability
11923| [61585] FunGamez 'game.php' Arbitrary File Upload Vulnerability
11924| [61582] Joomla! 'media.php' Arbitrary File Upload Vulnerability
11925| [61569] MachForm CVE-2013-4949 Arbitrary File Upload Vulnerability
11926| [61554] WordPress Comment Extra Fields Plugin 'swfupload.swf' Cross Site Scripting Vulnerability
11927| [61531] TP-Link TL-SC3171 IP Camera Arbitrary File Upload Vulnerability
11928| [61526] YUI 'flashuploader.swf' Cross-Site Scripting Vulnerability
11929| [61524] YUI 'uploader.swf' File Cross Site Scripting Vulnerability
11930| [61448] FileChucker Multiple Arbitrary File Upload Vulnerabilities
11931| [61446] HP LoadRunner CVE-2013-4800 Remote Code Execution Vulnerability
11932| [61445] HP LoadRunner CVE-2013-4801 Remote Code Execution Vulnerability
11933| [61444] HP LoadRunner CVE-2013-4797 Remote Code Execution Vulnerability
11934| [61443] HP LoadRunner CVE-2013-4798 Remote Code Execution Vulnerability
11935| [61442] HP LoadRunner CVE-2013-4799 Remote Code Execution Vulnerability
11936| [61441] HP LoadRunner CVE-2013-2370 Remote Code Execution Vulnerability
11937| [61437] HP LoadRunner CVE-2013-2369 Remote Code Execution Vulnerability
11938| [61436] HP LoadRunner CVE-2013-2368 Unspecified Denial of Service Vulnerability
11939| [61416] Cisco Unified Operations Manager CVE-2013-3439 Unspecified HTTP Header Injection Vulnerability
11940| [61407] Download Monitor 'admin.php' Multiple Cross Site Scripting Vulnerabilities
11941| [61405] Photo Server Arbitrary File Upload and Command Injection Vulnerabilities
11942| [61379] Apache HTTP Server CVE-2013-2249 Unspecified Remote Security Vulnerability
11943| [61368] TinyMCE Image Manager Plugin Cross Site Scripting and Arbitrary File Upload Vulnerabilities
11944| [61330] Cisco Unified IP Phones 9900 Series CVE-2013-3426 Arbitrary File Download Vulnerability
11945| [61326] Flux Player Local File Include and Arbitrary File Upload Vulnerabilities
11946| [61324] WiFly Pro Arbitrary File Upload Vulnerability
11947| [61202] Multiple F5 Networks Java Applet 'filename' Parameter Directory Traversal Vulnerability
11948| [61200] Voice Logger Authentication Bypass and Multiple Arbitrary File Download Vulnerabilities
11949| [61170] Atlassian Confluence Multiple Arbitrary File Upload Vulnerabilities
11950| [61130] Ultra Mini HTTPD 'GET' Request Stack-Based Buffer Overflow Vulnerability
11951| [61129] Apache HTTP Server CVE-2013-1896 Remote Denial of Service Vulnerability
11952| [61080] Drupal Stage File Proxy Module Denial Of Service Vulnerability
11953| [61065] Imperva SecureSphere Operations Manager CVE-2013-4094 Multiple Arbitrary File Upload Vulnerabilities
11954| [61034] dl Download Ticket Service Session Fixation and Cross Site Request Forgery Vulnerabilities
11955| [60987] Multiple IBM products CVE-2013-2982 Arbitrary File Upload Vulnerability
11956| [60918] JRuby Insecure Library Loading Arbitrary Code Execution Vulnerability
11957| [60910] MachForm SQL Injection and Arbitrary File Upload Vulnerabilities
11958| [60875] Apache Geronimo RMI Classloader Security Bypass Vulnerability
11959| [60859] Atomy Maxsite 'index.php' Arbitrary File Upload Vulnerability
11960| [60856] YOPMAIL HTTP Response Splitting and Multiple Cross Site Scripting Vulnerabilities
11961| [60847] Mobile USB Drive HD Multiple Local File Include and Arbitrary File Upload Vulnerabilities
11962| [60839] eFile Arbitrary File Upload and Multiple HTML Injection Vulnerabilities
11963| [60775] WordPress CVE-2013-2203 File Upload Path Disclosure Vulnerability
11964| [60759] WordPress 'SWFUpload' Library CVE-2013-2205 Multiple Cross Site Scripting Vulnerabilities
11965| [60738] Monkey HTTP Daemon Local Buffer Overflow Vulnerability
11966| [60725] PodHawk Arbitrary File Upload Vulnerability
11967| [60690] Joomla! RokDownloads Component Arbitrary File Upload Vulnerability
11968| [60662] imacs 'mng.php' Arbitrary File Upload Vulnerability
11969| [60660] et-chat Privilege Escalation and Arbitrary Shell Upload Vulnerabilities
11970| [60597] HAProxy CVE-2013-2175 Remote Denial of Service Vulnerability
11971| [60589] Monkey HTTP Daemon CVE-2013-2183 Local Security Bypass Vulnerability
11972| [60588] HAProxy CVE-2013-2175 Multiple Denial of Service Vulnerabilities
11973| [60585] bloofoxCMS 'index.php' Arbitrary File Upload Vulnerability
11974| [60574] Fly-High CMS 'upload.php' Arbitrary File Upload Vulnerability
11975| [60573] Havalite CMS 'upload.php' Arbitrary File Upload Vulnerability
11976| [60569] Monkey HTTP Daemon Mandril Security Plugin CVE-2013-2182 Security Bypass Vulnerability
11977| [60564] Monkey HTTP Daemon 'dirlisting' Plugin Cross Site Scripting Vulnerability
11978| [60560] LibrettoCMS 'PGRFileManager.php' Arbitrary File Upload Vulnerability
11979| [60533] WordPress NextGEN Gallery 'upload.php' Arbitrary File Upload Vulnerability
11980| [60433] WordPress NextGEN Gallery Plugin 'swfupload.swf' Multiple Cross Site Scripting Vulnerabilities
11981| [60425] Monkey HTTP Daemon Multiple Denial of Service Vulnerabilities
11982| [60415] Monkey HTTP Daemon CVE-2013-2159 Authentication Bypass Vulnerability
11983| [60333] Monkey HTTP Daemon 'memcpy()' Function Buffer Overflow Vulnerability
11984| [60332] gpEasy CMS Arbitrary File Upload Vulnerability
11985| [60275] TYPO3 SB Folderdownload Extension Unspecified File Disclosure Vulnerability
11986| [60210] Monkey HTTP Daemon NULL Byte Denial of Service Vulnerability
11987| [60201] IBM WebSphere Portal CVE-2013-2950 HTTP Response Splitting Vulnerability
11988| [60181] WordPress Export To Text Plugin 'download' Parameter Remote File Include Vulnerability
11989| [60105] Request Tracker CVE-2013-3372 HTTP Header Injection Vulnerability
11990| [60077] MediaWiki Arbitrary File Upload Vulnerability
11991| [60017] Juniper Networks Junos Proxy ARP Denial of Service Vulnerability
11992| [60010] RETIRED: Acme thttpd HTTP Server Directory Traversal Vulnerability
11993| [59990] MiniWeb HTTP POST Denial of Service Vulnerability
11994| [59989] Moxiecode File Manager Multiple Remote File Upload Vulnerabilities
11995| [59988] TinyMCE MCImageManager Plugin Arbitrary File Upload Vulnerability
11996| [59968] ownCloud CVE-2013-2089 Arbitrary File Upload Vulnerability
11997| [59941] Apple iTunes CVE-2013-1014 HTTPS Certificate Validation Security Bypass Vulnerability
11998| [59934] Jojo CMS 'X-Forwarded-For' HTTP header SQL-Injection Vulnerability
11999| [59886] WordPress wp-FileManager Plugin 'path' Parameter Arbitrary File Download Vulnerability
12000| [59831] Gallery Server Pro Arbitrary File Upload Vulnerability
12001| [59826] Apache HTTP Server Terminal Escape Sequence in Logs Command Injection Vulnerability
12002| [59784] Microsoft Windows 'HTTP.sys' Remote Denial of Service Vulnerability
12003| [59718] Drupal Htmlarea Module Multiple Arbitrary File Upload Vulnerabilities
12004| [59699] nginx 'ngx_http_parse.c' Stack Buffer Overflow Vulnerability
12005| [59694] IBM Sterling Secure Proxy CVE-2013-0520 Information Disclosure Vulnerability
12006| [59692] IBM Sterling Secure Proxy CVE-2013-0518 Information Disclosure Vulnerability
12007| [59691] IBM Sterling Secure Proxy CVE-2013-0519 Information Disclosure Vulnerability
12008| [59671] GetSimple CMS Arbitrary File Upload Vulnerability
12009| [59669] EMC RSA Archer GRC CVE-2013-0932 Arbitrary File Upload Vulnerability
12010| [59515] WebKit 'FrameLoader::checkCompleted()' Function Use After Free Remote Code Execution Vulnerability
12011| [59509] vCenter Server Appliance CVE-2013-3080 Arbitrary File Upload Vulnerability
12012| [59496] nginx 'ngx_http_close_connection()' Remote Integer Overflow Vulnerability
12013| [59495] Light HTTPD Stack-Based Buffer Overflow Vulnerability
12014| [59477] Belkin F5D8236-4 Router CVE-2013-3084 Unspecified Cross Site Scripting Vulnerability
12015| [59476] Belkin F5D8236-4 Router CVE-2013-3083 Cross Site Request Forgery Vulnerability
12016| [59372] Joomla Civicrm Component Arbitrary Shell Upload Vulnerability
12017| [59360] Global Mapper Multiple Insecure Library Loading Arbitrary Code Execution Vulnerabilities
12018| [59280] Open-Xchange Server and OX App Suite CVE-2013-2582 HTTP Header Injection Vulnerability
12019| [59132] Oracle WebCenter Sites CVE-2013-1509 HTTP Header Injection Vulnerability
12020| [59059] CMSLogik Arbitrary File Upload and Multiple HTML Injection Vulnerabilities
12021| [58968] HP Intelligent Management Center 'SyslogDownloadServlet' Information Disclosure Vulnerability
12022| [58967] HP Intelligent Management Center 'tamServletDownload' Servlet Information Disclosure Vulnerability
12023| [58966] HP Intelligent Management Center 'DownloadServlet' Information Disclosure Vulnerability
12024| [58965] HP Intelligent Management Center 'flexFileUpload' Servlet Remote Code Execution Vulnerability
12025| [58964] HP Intelligent Management Center 'acmServletDownload' Information Disclosure Vulnerability
12026| [58946] MiniWeb Directory Traversal and Arbitrary File Upload Vulnerabilities
12027| [58937] WordPress WP-DownloadManager Plugin Cross Site Request Forgery Vulnerability
12028| [58929] Belkin Wemo Switch Arbitrary Firmware Upload Vulnerability
12029| [58928] Nitro PDF 'bcgcbproresen.dll' DLL Loading Arbitrary Code Execution Vulnerability
12030| [58820] HAProxy 'tcp-request content' CVE-2013-1912 Buffer Overflow Vulnerability
12031| [58677] HP Intelligent Management Center 'DownloadReportSourceServlet' Information Disclosure Vulnerability
12032| [58676] HP Intelligent Management Center 'IctDownloadServlet' Information Disclosure Vulnerability
12033| [58675] HP Intelligent Management Center 'FaultDownloadServlet' Information Disclosure Vulnerability
12034| [58673] HP Intelligent Management Center 'mibFileUpload' Servlet Remote Code Execution Vulnerability
12035| [58664] Novell ZENWorks AdminStudio ISProxy 'ISProxy.dll' Activex Remote Code Execution Vulnerability
12036| [58528] lighttpd CVE-2013-1427 Insecure Temporary File Creation Vulnerability
12037| [58519] Skype Click to Call Update Service DLL Loading Arbitrary Code Execution Vulnerability
12038| [58486] SAP NetWeaver DI Arbitrary File Upload Vulnerability
12039| [58473] Open-Xchange Server CVE-2013-1647 Multiple HTTP Header Injection Vulnerabilities
12040| [58432] PHPBoost Arbitrary File Upload and Information Disclosure Vulnerabilities
12041| [58431] KindEditor Multiple Remote File Upload Vulnerabilities
12042| [58425] Privoxy Proxy Authentication Information Disclosure Vulnerabilities
12043| [58422] Flexera InstallShield and AdminStudio 'ISProxy.dll' Activex Remote Code Execution Vulnerability
12044| [58417] SWFUpload Multiple Content Spoofing and Cross Site Scripting Vulnerabilities
12045| [58364] Wireshark RELOAD Dissector CVE-2013-2487 Denial of Service Vulnerability
12046| [58363] Wireshark RELOAD Dissector CVE-2013-2486 Denial of Service Vulnerability
12047| [58326] Apache Commons FileUpload CVE-2013-0248 Insecure Temporary File Creation Vulnerability
12048| [58325] Debian Apache HTTP Server CVE-2013-1048 Symlink Attack Local Privilege Escalation Vulnerability
12049| [58322] Squid 'httpMakeVaryMark()' Function Memory Corruption Vulnerability
12050| [58321] AirDrive HD Local File Include and Arbitrary File Upload Vulnerabilities
12051| [58319] Squid 'httpMakeVaryMark()' Function Remote Denial of Service Vulnerability
12052| [58285] WordPress Uploader Plugin 'blog' Parameter Cross Site Scripting Vulnerability
12053| [58276] USB Disk & File Transfer 'File Upload' Multiple Local File Include Vulnerabilities
12054| [58260] Ruby HTTParty CVE-2013-1801 Parameter Parsing Vulnerability
12055| [58199] IP.Board IP.Downloads Multiple Access Security Bypass Vulnerabilities
12056| [58165] Apache HTTP Server Multiple Cross Site Scripting Vulnerabilities
12057| [58159] Kordil EDMS Arbitrary File Upload Vulnerability
12058| [58158] PolarBear CMS 'upload.php' Arbitrary File Upload Vulnerability
12059| [58131] Photodex ProShow Producer Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
12060| [58130] IPMap Local File Include and Arbitrary File Upload Vulnerabilities
12061| [58127] sthttpd 'thttpd.log' Insecure File Permissions Vulnerability
12062| [58119] RETIRED: IBM HTTP Server Multiple Modules Cross Site Scripting Vulnerabilities
12063| [58073] Apache Commons HttpClient CVE-2012-5783 SSL Certificate Validation Security Bypass Vulnerability
12064| [58062] Drupal Varnish HTTP Accelerator Integration Module Cross Site Scripting Vulnerability
12065| [58010] Air Transfer 'File Upload' Multiple Local File Include Vulnerabilities
12066| [57983] chillyCMS Security Bypass and Arbitrary File Upload Vulnerabilities
12067| [57974] mora Downloader CVE-2012-5188 Arbitrary Code Execution Vulnerability
12068| [57951] Pidgin 'libpurple' CVE-2013-0272 HTTP Header Stack Buffer Overflow Vulnerability
12069| [57824] Microsoft Internet Explorer COmWindowProxy Use-After-Free Remote Code Execution Vulnerability
12070| [57820] WirelessFiles Local File Include and Arbitrary File Upload Vulnerabilities
12071| [57790] Google Chrome 24.0.1312.57 HTTP Authentication Security Bypass Weakness
12072| [57680] Free Monthly Websites Multiple Security Bypass and Arbitrary File Upload Vulnerabilities
12073| [57664] WordPress WP-Table Reloaded Plugin 'id' Parameter Cross Site Scripting Vulnerability
12074| [57650] Wordpress Gallery Plugin 'load' Parameter Remote File Include Vulnerability
12075| [57555] WordPress Plupload Plugin 'id' Parameter Cross Site Scripting Vulnerability
12076| [57532] Atomy Maxsite CVE-2012-6498 Arbitrary File Upload Vulnerability
12077| [57504] Lenovo Bluetooth with Enhanced Data Rate Software DLL Loading Arbitrary Code Execution Vulnerability
12078| [57500] F5 BIG-IP CVE-2012-3000 SQL Injection Vulnerability
12079| [57496] F5 Networks BIG-IP CVE-2012-2997 XML External Entity Injection Vulnerability
12080| [57464] Joomla! Collector Component Arbitrary File Upload Vulnerability
12081| [57361] Oracle Enterprise Manager Grid Control CVE-2013-0354 HTTP Response Splitting Vulnerability
12082| [57319] Serva HTTP Server Denial of Service Vulnerability
12083| [57242] Prizm Content Connect Arbitrary File Upload Vulnerability
12084| [57229] Free Blog Arbitrary File Upload and Arbitrary File Deletion Vulnerabilities
12085| [57152] WordPress Multiple WPScientist Themes Arbitrary File Upload Vulnerability
12086| [57112] WordPress Uploader Plugin Arbitrary File Upload Vulnerability
12087| [57101] WordPress Shopping Cart Plugin Multiple SQL Injection and Arbitrary File Upload Vulnerabilities
12088| [57100] WordPress ReFlex Gallery Plugin 'php.php' Arbitrary File Upload Vulnerability
12089| [57098] WordPress Xerte Online Plugin 'save.php' Arbitrary File Upload Vulnerability
12090| [57093] e107 'e107_admin/download.php' Cross Site Request Forgery Vulnerability
12091| [57074] WordPress SB Uploader Plugin Arbitrary File Upload Vulnerability
12092| [57073] RETIRED: WordPress TwentyTen Theme 'loo.php' Arbitrary File Upload Vulnerability
12093| [57063] Content Component 'cont' Parameter Arbitrary File Upload Vulnerability
12094| [57055] MotoCMS File Disclosure and Arbitrary File Upload Vulnerabilities
12095| [57044] Feindura CMS Arbitrary File Upload Vulnerability
12096| [57028] Sony PC Companion 'DownloadURLToFile()' Function Stack Based Buffer Overflow Vulnerability
12097| [57022] vCenter Server Appliance Arbitrary File Download Vulnerability
12098| [56988] WordPress Multiple CMSMasters Themes 'upload.php' Arbitrary File Upload Vulnerability
12099| [56866] Freefloat FTP Server 'WMI' Service Arbitrary File Upload Vulnerability
12100| [56840] Microsoft Windows IP-HTTPS Server Revoked SSL Certificate Validation Security Bypass Vulnerability
12101| [56809] IBM Tivoli Monitoring HTTP Monitoring Console Cross Site Scripting Vulnerability
12102| [56808] Panda Internet Security Insecure Library Loading Multiple Local Privilege Escalation Vulnerabilities
12103| [56807] Qt 'XmlHttpRequest' Object Insecure Redirection Information Disclosure Vulnerability
12104| [56789] Symantec Messaging Gateway Arbitrary File Download Vulnerabilities
12105| [56749] JsUpload '/tmp/uploader' Directory Traversal Vulnerability
12106| [56744] BigDump Cross Site Scripting, SQL Injection, and Arbitrary File Upload Vulnerabilities
12107| [56735] FCKEditor 'FileUpload()' Function Arbitrary File Upload Vulnerability
12108| [56712] libproxy 'print_proxies()' Function Format String Vulnerability
12109| [56711] Perl Dancer.pm CVE-2012-5572 HTTP Header Injection Vulnerability
12110| [56668] Websense Proxy Filter Security Bypass Vulnerability
12111| [56663] WordPress Zarzadzonie Kontem Plugin 'ajaxfilemanager.php' Script Arbitrary File Upload Vulnerability
12112| [56659] WordPress Zingiri Web Shop Plugin 'path' Parameter Arbitrary File Upload Vulnerability
12113| [56658] ownCloud Multiple Cross Site Scripting and Arbitrary File Upload Vulnerabilities
12114| [56619] lighttpd 'http_request_split_value()' Function Remote Denial of Service Vulnerability
12115| [56593] IBM WebSphere Portal Theme Component 'LayerLoader.jsp' Directory Traversal Vulnerability
12116| [56588] WeBid 'loader.php' Directory Traversal Vulnerability
12117| [56562] Perl CGI.pm 'Set-Cookie' and 'P3P' Headers HTTP Header Injection Vulnerability
12118| [56500] SWFUpload 'swfupload_f9.swf' Script Cross Site Scripting Vulnerability
12119| [56496] Pebble HTTP Response Splitting Vulnerability
12120| [56490] IDIC Blogs 'picture_upload.php' Arbitrary File Upload Vulnerability
12121| [56470] VMware Player and Workstation Insecure Library Loading Arbitrary Code Execution Vulnerability
12122| [56462] Microsoft .NET Framework CVE-2012-2519 DLL Loading Arbitrary Code Execution Vulnerability
12123| [56432] XiVO 'id' Parameter Arbitrary File Download Vulnerability
12124| [56354] UMPlayer 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
12125| [56308] Arora 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
12126| [56245] IBM Tivoli Monitoring Web Server HTTP TRACE/TRACK Methods Information Disclosure Vulnerability
12127| [56175] F5 FirePass Remote SQL Injection Vulnerability
12128| [56146] Django 'HttpRequest.get_host()' Information Disclosure Vulnerability
12129| [56109] BSW Gallery 'uploadpic.php' Arbitrary File Upload Vulnerability
12130| [56105] radsecproxy Client Certificate Verification Security Bypass Vulnerability
12131| [56097] WordPress Download Shortcode Plugin 'file' Parameter Arbitrary File Disclosure Vulnerability
12132| [56087] Sisfokol Multiple Arbitrary File Upload Vulnerabilities
12133| [55919] WordPress Crayon Syntax Highlighter Plugin 'wp_load' Parameter Remote File Include Vulnerabilities
12134| [55910] libproxy CVE-2012-4505 Heap-Based Buffer Overflow Vulnerability
12135| [55909] libproxy CVE-2012-4504 Stack-Based Buffer Overflow Vulnerability
12136| [55905] Monkey HTTP Daemon '/var/run/monkey.pid' Symlink Attack Local Privilege Escalation Vulnerability
12137| [55902] WordPress Guest Posting Plugin CVE-2012-5318 'uploadify.php' Arbitrary File Upload Vulnerability
12138| [55758] ProjectPier 'upload.php' Arbitrary File Upload Vulnerability
12139| [55692] WordPress Archin Theme Cross Site Scripting and Arbitrary File Upload Vulnerabilities
12140| [55686] Foxit Reader 'fxdecod1.dll' DLL Loading Arbitrary Code Execution Vulnerability
12141| [55685] YingZhiPython Directory Traversal and Arbitrary File Upload Vulnerabilities
12142| [55648] Novell GroupWise HTTP Interfaces Directory Traversal Vulnerability
12143| [55639] Monkey HTTP Daemon Local Privilege Escalation Vulnerability
12144| [55635] Monkey HTTP Daemon Local Information Disclosure Vulnerability
12145| [55621] Technicolor THOMSON TWG850-4 HTTP Authentication Bypass Vulnerability
12146| [55527] PHP 'main/SAPI.c' CVE-2012-4388 HTTP Header Injection Vulnerability
12147| [55510] Webify eDownloads Cart Arbitrary File Deletion Vulnerability
12148| [55487] WordPress Download Monitor Plugin 'dlsearch' Parameter Cross Site Scripting Vulnerability
12149| [55486] F5 Networks BIG-IP Application Security Manager (ASM) Cross-Site Scripting Vulnerability
12150| [55464] Multiple RealFlex Products Insecure Library Loading Arbitrary Code Execution Vulnerability
12151| [55443] ownCloud 'migrate.php' File Upload Vulnerability
12152| [55436] Tiki Wiki CMS Groupware 'SWFUpload' Unspecified Vulnerability
12153| [55426] web@all Local File Include and Multiple Arbitrary File Upload Vulnerabilities
12154| [55421] ThinPrint 'tpfc.dll' Insecure Library Loading Arbitrary Code Execution Vulnerability
12155| [55420] OpenStack Swift 'loads()' Arbitrary Code Execution Vulnerability
12156| [55417] Kayako Fusion 'download.php' Cross Site Scripting Vulnerability
12157| [55402] Ektron CMS 'Upload.aspx' Arbitrary File Upload Vulnerability
12158| [55384] InterPhoto CMS Arbitrary File Upload Vulnerability
12159| [55380] CyberLink PowerProducer Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
12160| [55378] CyberLink StreamAuthor Insecure Library Loading Multiple Arbitrary Code Execution Vulnerabilities
12161| [55376] CyberLink LabelPrint Multiple Insecure Library Loading Arbitrary Code Execution Vulnerabilities
12162| [55368] Internet Download Manager '.ef2' File Buffer Overflow Vulnerability
12163| [55297] PHP 'header()' HTTP Header Injection Vulnerability
12164| [55273] HP SiteScope UploadFilesHandler Directory Traversal Vulnerability
12165| [55243] WordPress Simple:Press Forum Plugin Arbitrary File Upload Vulnerability
12166| [55225] Joomla! FreiChat Component Insecure File Upload Vulnerability
12167| [55223] ownCloud 'fileuploaded.php' Arbitrary File Upload Vulnerability
12168| [55210] elcomCMS 'UploadStyleSheet.aspx' Arbitrary File Upload Vulnerability
12169| [55209] EMC ApplicationXtender Multiple Products Arbitrary File Upload Vulnerability
12170| [55204] BusinessWiki Arbitrary File Upload and Multiple HTML Injection Vulnerabilities
12171| [55179] Adobe Pixel Bender Toolkit2 'tbbmalloc.dll' Multiple DLL Loading Code Execution Vulnerabilities
12172| [55177] Foxit Reader 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12173| [55175] WordPress Monsters Editor for WP Super Edit Plugin Arbitrary File Upload Vulnerability
12174| [55174] WordPress Rich Widget Plugin Arbitrary File Upload Vulnerability
12175| [55173] WordPress 'sem-wysiwyg' Plugin Arbitrary File Upload Vulnerability
12176| [55166] Joomla! CiviCRM Component Multiple Arbitrary File Upload Vulnerabilities
12177| [55131] Apache HTTP Server HTML-Injection And Information Disclosure Vulnerabilities
12178| [55127] XODA Arbitrary File Upload and HTML Injection Vulnerabilities
12179| [55117] SaltOS 'download.php' Cross Site Scripting Vulnerability
12180| [55099] Tinyproxy Header Multiple Denial of Service Vulnerabilities
12181| [55095] IBM Lotus Domino HTTP Response Splitting and Cross Site Scripting Vulnerabilities
12182| [55040] MobileCartly Multiple Remote File Upload Vulnerabilities
12183| [54994] Group-Office HTTPOnly Cookies Flag Information Disclosure Vulnerabilities
12184| [54933] dirLIST Multiple Local File Include and Arbitrary File Upload Vulnerabilities
12185| [54818] AOL downloadUpdater2 Plugin 'SRC' Parameter Remote Buffer Overflow Vulnerability
12186| [54774] Joomla Joomgalaxy Component SQL Injection and Arbitrary File Upload Vulnerabilities
12187| [54727] Scrutinizer HTTP Authentication Bypass Vulnerability
12188| [54726] Scrutinizer Arbitrary File Upload Vulnerability
12189| [54721] Symantec Web Gateway 'deptUploads_data.php' SQL Injection Vulnerability
12190| [54712] httpdx Heap Buffer Overflow Vulnerability
12191| [54704] Ruby on Rails 'authenticate_or_request_with_http_digest' Method Denial Of Service Vulnerability
12192| [54700] WebKit WebSockets CVE-2012-3696 HTTP Header Injection Vulnerability
12193| [54655] WordPress Front End Upload Plugin Arbitrary File Upload Vulnerability
12194| [54651] Multiple Siemens SIMATIC Products DLL Loading Arbitrary Code Execution Vulnerability
12195| [54646] Invensys Multiple Products DLL Loading Arbitrary Code Execution Vulnerability
12196| [54635] WordPress chenpress Plugin Arbitrary File Upload Vulnerability
12197| [54629] httpdx Wildcards Remote Denial of Service Vulnerability
12198| [54597] WordPress Cimy User Extra Fields Plugin Arbitrary File Upload Vulnerability
12199| [54594] Symantec System Recovery CVE-2012-0305 DLL Loading Arbitrary Code Execution Vulnerability
12200| [54478] DomsHttpd Remote Denial of Service Vulnerability
12201| [54477] Google Chrome 'metro_driver.dll' DLL Loading Arbitrary Code Execution Vulnerability
12202| [54470] EmbryoCore CMS 'loadcss.php' Multiple Directory Traversal Vulnerabilities
12203| [54467] Rama Zeiten CMS 'download.php' Remote File Disclosure Vulnerability
12204| [54464] EGallery 'egallery/uploadify.php' Arbitrary File Upload Vulnerability
12205| [54447] Joomla! KSAdvertiser Component Arbitrary File Upload Vulnerability
12206| [54446] Joomla! OS Property Component Arbitrary File Upload Vulnerability
12207| [54441] WordPress Resume Submissions & Job Postings Unrestricted File Upload Vulnerability
12208| [54440] WordPress Generic Plugin Arbitrary File Upload Vulnerability
12209| [54421] Chyrp SQL Injection and Arbitrary File Upload Vulnerabilities
12210| [54372] Open Upload Cross-Site Scripting and Arbitrary Code Execution Vulnerabilities
12211| [54351] Umbraco CMS 'codeEditorSave.asmx' Arbitrary File Upload Vulnerability
12212| [54344] Mono 'HttpForbiddenHandler.cs' Cross-Site Scripting Vulnerability
12213| [54338] WordPress Contus Vblog Plugin 'save.php' Arbitrary File Upload Vulnerability
12214| [54337] WordPress Front-end Editor Plugin 'upload.php' Arbitrary File Upload Vulnerability
12215| [54336] Eclydre Web Manager 'upload.php' Arbitrary File Upload Vulnerability
12216| [54335] sflog! 'uploadContent.inc.php' Arbitrary File Upload Vulnerability
12217| [54303] Microsoft Visual Basic for Applications DLL Loading Arbitrary Code Execution Vulnerability
12218| [54264] Photodex ProShow Producer 'load' File Remote Stack Buffer Overflow Vulnerability
12219| [54255] GetSimple CMS Items Manager Plugin 'php.php' Arbitrary File Upload Vulnerability
12220| [54254] Magix CMS 'upload.php' Arbitrary File Upload Vulnerability
12221| [54252] Magix CMS 'upload.php' Arbitrary File Upload Vulnerability
12222| [54245] SWFUpload 'movieName' Parameter Cross Site Scripting Vulnerability
12223| [54238] JAKCMS PRO 'uploader.php' Arbitrary File Upload Vulnerability
12224| [54228] PHP-Fusion Advanced MP3 Player Infusion 'upload.php' Arbitrary File Upload Vulnerability
12225| [54225] Avaya IP Office Customer Call Reporter 'ImageUpload.ashx' Remote Code Execution Vulnerability
12226| [54205] Drupal IMCE Mkdir 'imce' Arbitrary File Upload Vulnerability
12227| [54204] Schoolhos CMS Arbitrary File Upload and HTML Injection Vulnerabilities
12228| [54193] Western Digital Live TV Local File Include and Arbitrary File Upload Vulnerabilities
12229| [54179] Drupal Drag & Drop Gallery 'upload.php' Arbitrary File Upload Vulnerability
12230| [54174] e107 Articulate 'manage_articulate.php' Arbitrary File Upload Vulnerability
12231| [54173] WordPress Flip Book 'php.php' Arbitrary File Upload Vulnerability
12232| [54172] SilverStripe Pixlr Image Editor 'upload.php' Arbitrary File Upload Vulnerability
12233| [54171] WordPress Fancy Gallery 'image-upload.php' Arbitrary File Upload Vulnerability
12234| [54170] Amazon S3 Uploadify Script 'uploadify.php' Arbitrary File Upload Vulnerability
12235| [54165] IBM Lotus Expeditor DLL Loading Arbitrary Code Execution Vulnerability
12236| [54127] AdNovum nevisProxy Cross Site Scripting Vulnerability
12237| [54107] Cisco AnyConnect Secure Mobility Client VPN Downloader Arbitrary Code Execution Vulnerabilities
12238| [54098] e107 FileDownload Plugin Arbitrary File Upload and Remote File Disclosure Vulnerabilities
12239| [54092] e107 Filemanager Plugin 'ajaxfilemanager.php' Arbitrary File Upload Vulnerability
12240| [54091] e107 Hupsi_fancybox Plugin 'uploadify.php' Arbitrary File Upload Vulnerability
12241| [54090] e107 Hupsis Media Gallery Plugin 'ajaxfilemanager.php' Arbitrary File Upload Vulnerability
12242| [54088] e107 Hupsi Share Plugin 'uploadify.php' Arbitrary File Upload Vulnerability
12243| [54087] e107 Radio Plan Plugin 'upload.php' Arbitrary File Upload Vulnerability
12244| [54085] e107 Tap Plugin 'ajaxfilemanager.php' Arbitrary File Upload Vulnerability
12245| [54083] Python SimpleHTTPServer 'list_directory()' Function Cross Site Scripting Vulnerability
12246| [54078] WordPress Auctions Plugin 'upload.php' Arbitrary File Upload Vulnerability
12247| [54059] WordPress Lim4wp 'upload.php' Arbitrary File Upload Vulnerability
12248| [54057] WordPress LB Mixed Slideshow Plugin 'upload.php' Arbitrary File Upload Vulnerability
12249| [54055] Samsung AllShare 'Content-Length' HTTP Header Remote Denial Of Service Vulnerability
12250| [54052] WordPress Multiple Themes 'upload.php' Arbitrary File Upload Vulnerability
12251| [54041] Joomla! Maian Media Component 'uploadhandler.php' Arbitrary File Upload Vulnerability
12252| [54038] Joomla! Dione FileUploader Component 'upload.php' Arbitrary File Upload Vulnerability
12253| [54037] Joomla! hwdVideoShare Component 'flash_upload.php' Arbitrary File Upload Vulnerability
12254| [54022] qdPM Arbitrary File Upload Vulnerability
12255| [54020] WordPress Zingiri Web Shop Plugin 'uploadfilexd.php' Arbitrary File Upload Vulnerability
12256| [53995] WordPress Invit0r Plugin 'ofc_upload_image.php' Arbitrary File Upload Vulnerability
12257| [53994] WordPress Evarisk Plugin 'uploadPhotoApres.php' Arbitrary File Upload Vulnerability
12258| [53990] Zimplit CMS Local File Include and Arbitrary File Upload Vulnerabilities
12259| [53978] WordPress Annonces Plugin 'theme.php' Arbitrary File Upload Vulnerability
12260| [53977] Joomla! Easy Flash Uploader Component 'helper.php' Arbitrary File Upload Vulnerability
12261| [53975] Joomla! jFancy Component 'script.php' Arbitrary File Upload Vulnerability
12262| [53973] Joomla! IDoEditor Component 'image.php' Arbitrary File Upload Vulnerability
12263| [53972] Joomla! DentroVideo Component 'upload.php' Arbitrary File Upload Vulnerability
12264| [53969] Joomla! Art Uploader Component 'upload.php' Arbitrary File Upload Vulnerability
12265| [53968] Joomla! Simple SWFUpload Component 'uploadhandler.php' Arbitrary File Upload Vulnerability
12266| [53967] WordPress HD FLV Player Plugin 'uploadVideo.php' Arbitrary File Upload Vulnerability
12267| [53945] XOOPS Cube PROJECT FileManager 'xupload.php' Arbitrary File Upload Vulnerability
12268| [53944] Joomla! Joomsport Component SQL Injection and Arbitrary File Upload Vulnerabilities
12269| [53941] Adobe ColdFusion Component Browser CVE-2012-2041 HTTP Response Splitting Vulnerability
12270| [53931] WordPress Contus Video Gallery Plugin 'upload1.php' Arbitrary File Upload Vulnerability
12271| [53929] Clansuite 'uploadify.php' Arbitrary File Upload Vulnerability
12272| [53928] ET - Chat Multiple Arbitrary File Upload Vulnerabilities
12273| [53925] Check Point Endpoint Connect DLL Loading Arbitrary Code Execution Vulnerability
12274| [53923] Agora-Project 'dossierup' Parameter Remote Arbitrary File Upload Vulnerability
12275| [53920] PHPAccounts SQL Injection and Arbitrary File Upload Vulnerabilities
12276| [53919] WordPress Custom Content Type Manager Plugin 'upload_form.php' Arbitrary File Upload Vulnerability
12277| [53918] WordPress PICA Photo Gallery 'picaPhotosResize.php' Arbitrary File Upload Vulnerability
12278| [53915] WordPress Drag & Drop File Uploader Plugin 'dnd-upload.php' Arbitrary File Upload Vulnerability
12279| [53914] Wordpress SFBrowser Plugin 'sfbrowser.php' Arbitrary File Upload Vulnerability
12280| [53913] WordPress Top Quark Architecture Plugin 'script.php' Arbitrary File Upload Vulnerability
12281| [53912] WordPress Mac Photo Gallery Plugin 'upload-file.php' Arbitrary File Upload Vulnerability
12282| [53910] WordPress User Meta Plugin 'uploader.php' Arbitrary File Upload Vulnerability
12283| [53909] WordPress WP GPX Maps Plugin Arbitrary File Upload Vulnerability
12284| [53898] WordPress Hungred Post Thumbnail Plugin 'hpt_file_upload.php' Arbitrary File Upload Vulnerability
12285| [53897] F5 Multiple Products SSH Configuration Remote Unauthorized Access Vulnerability
12286| [53896] WordPress wpStoreCart Plugin 'upload.php' Arbitrary File Upload Vulnerability
12287| [53895] WordPress PDW File Browser Plugin 'upload.php' Arbitrary File Upload Vulnerability
12288| [53894] WordPress Picturesurf Gallery Plugin 'upload.php' Arbitrary File Upload Vulnerability
12289| [53891] WordPress Front File Manager Plugin 'Upload.php' Arbitrary File Upload Vulnerability
12290| [53879] IBM Lotus iNotes Upload Module ActiveX Control Buffer Overflow Vulnerability
12291| [53874] WordPress Front End Upload Plugin 'Upload.php' Arbitrary File Upload Vulnerability
12292| [53872] WordPress Omni Secure Files Plugin 'Upload.php' Arbitrary File Upload Vulnerability
12293| [53855] WordPress FCChat Widget Plugin 'Upload.php' Arbitrary File Upload Vulnerability
12294| [53853] WordPress Font Uploader Plugin 'font-upload.php' Arbitrary File Upload Vulnerability
12295| [53852] WordPress MM Forms Community Plugin 'doajaxfileupload.php' Arbitrary File Upload Vulnerability
12296| [53851] WordPress VideoWhisper Video Presentation Plugin 'vw_upload.php' Arbitrary File Upload Vulnerability
12297| [53849] WordPress Gallery Plugin Arbitrary File Upload Vulnerability
12298| [53831] Microsoft Lync CVE-2012-1849 DLL Loading Arbitrary Code Execution Vulnerability
12299| [53830] RETIRED: Microsoft Visual Basic for Applications DLL Loading Arbitrary Code Execution Vulnerability
12300| [53813] Collabtive 'manageuser.php' Arbitrary File Upload Vulnerability
12301| [53809] WordPress Asset Manager Plugin 'upload.php' Arbitrary File Upload Vulnerability
12302| [53806] WordPress Comment Extra Fields Plugin 'cef-upload.php' Arbitrary File Upload Vulnerability
12303| [53805] WordPress Foxypress Plugin 'uploadify.php' Arbitrary File Upload Vulnerability
12304| [53804] WordPress HTML5 AV Manager Plugin 'custom.php' Arbitrary File Upload Vulnerability
12305| [53790] Nmedia WordPress Member Conversation Plugin 'doupload.php' Arbitrary File Upload Vulnerability
12306| [53789] WordPress WP Marketplace Plugin 'uploadify.php' Arbitrary File Upload Vulnerability
12307| [53787] WordPress WP-Property Plugin 'uploadify.php' Arbitrary File Upload Vulnerability
12308| [53786] Nmedia Users File Uploader Plugin Arbitrary File Upload Vulnerability
12309| [53782] PyroCMS HTTP Response Splitting and HTML Injection Vulnerabilities
12310| [53777] f2blog 'uploadimg.php' Remote File Upload Vulnerability
12311| [53761] TinyCMS Local File Include and Arbitrary File Upload Vulnerabilities
12312| [53740] WHMCS Cross Site Scripting and Multiple HTTP Parameter Pollution Vulnerabilities
12313| [53724] VAMCart 'tinybrowser.php' Remote Arbitrary File Upload Vulnerability
12314| [53701] PHP Volunteer Management Arbitrary File Upload and HTML Injection Vulnerabilities
12315| [53696] DynPage 'ckfinder' Multiple Arbitrary File Upload Vulnerabilities
12316| [53695] DornCMS 'add_page.php' Remote Arbitrary File Upload Vulnerability
12317| [53681] Measuresoft ScadaPro DLL Loading Arbitrary Code Execution Vulnerability
12318| [53675] phpCollab Unauthorized Access and Arbitrary File Upload Vulnerabilities
12319| [53647] HAProxy Trash Buffer Overflow Vulnerability
12320| [53645] Macronia AhMeBa Professional Arbitrary File Upload Vulnerability
12321| [53641] AZ Photo Album Cross Site Scripting and Arbitrary File Upload Vulnerabilities
12322| [53616] Acuity CMS Directory Traversal and Arbitrary File Upload Vulnerabilities
12323| [53612] Tornado 'tornado.web.RequestHandler.set_header()' HTTP Response Splitting Vulnerability
12324| [53609] Cryptographp 'cryptographp.inc.php' HTTP Response Splitting Vulnerability
12325| [53568] 3DVIA Composer 'dwmapi.dll' and 'ibfs32.dll' DLL Loading Arbitrary Code Execution Vulnerabilities
12326| [53560] 3D XML Player Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
12327| [53517] Download Manager 'cid' Parameter Cross Site Scripting Vulnerability
12328| [53514] Download Monitor 'uploader.php' Multiple Cross Site Scripting Vulnerabilities
12329| [53486] Anaconda Bootloader Configuration Module Insecure File Permission Vulnerability
12330| [53448] Chevereto Image Upload Script Cross Site Scripting and Information Disclosure Vulnerability
12331| [53443] Symantec Web Gateway Management Scripts Arbitrary File Upload Vulnerability
12332| [53442] Symantec Web Gateway Arbitrary File Download And Delete Vulnerability
12333| [53439] Cisco Prime LAN Management Solution HTTP Response Splitting Vulnerability
12334| [53416] Node.js HTTP Parser Information Disclosure Vulnerability
12335| [53412] eFront Cross Site Scripting and Arbitrary File Upload Vulnerabilities
12336| [53316] WellinTech KingView DLL Loading Arbitrary Code Execution Vulnerability
12337| [53277] Joomla! 'Host' HTTP Header Cross Site Scripting Vulnerability
12338| [53267] NetArt Media Car Portal Arbitrary File Upload and HTML Injection Vulnerabilities
12339| [53242] Ettercap 'exchndl.dll' And 'quserex.dll' DLL Loading Arbitrary Code Execution Vulnerabilities
12340| [53191] Xunlei Thunder Insecure Library Loading Arbitrary Code Execution Vulnerability
12341| [53190] RETIRED: Liferay Enterprise Portal Arbitrary File Download And Security Bypass Vulnerability
12342| [53176] WordPress Download Manager Plugin 'cid' Parameter Cross Site Scripting Vulnerability
12343| [53093] Oracle Database Server CVE-2012-0527 Remote HTTP Response Splitting Vulnerability
12344| [53084] Oracle Database Server CVE-2012-0526 Remote HTTP Response Splitting Vulnerability
12345| [53015] McAfee Web Gateway 'Host' HTTP Header Security Bypass Vulnerability
12346| [53011] ActiveScriptRuby 'GRScript18.dll' ActiveX Control DLL Loading Arbitrary Code Execution Vulnerability
12347| [52999] nginx 'ngx_http_mp4_module.c' Buffer Overflow Vulnerability
12348| [52994] CGIProxy Multiple Unspecified Security Vulnerabilities
12349| [52964] Nmedia Users File Uploader plugin for WordPress Multiple Security Vulnerabilities
12350| [52960] WordPress WP Marketplace Plugin File Enumeration Weakness and File Upload Vulnerabilities
12351| [52944] WordPress Uploadify Integration Plugin Multiple Cross Site Scripting Vulnerabilities
12352| [52933] Siemens Scalance X Switches 'HTTP' Request Denial of Service Vulnerability
12353| [52912] Umbraco CMS 'url' Parameter Open Proxy Vulnerability
12354| [52861] Wordpress Another WordPress Classifieds Plugin Unspecified Image Upload Vulnerability
12355| [52832] Red Hat Network Satellite Server NULL Organization Package Upload Security Bypass Vulnerability
12356| [52825] Havalite CMS SQL Injection and Arbitrary File Upload Vulnerabilities
12357| [52823] GetSimple CMS 'filebrowser.php' Remote Arbitrary File Upload Vulnerability
12358| [52713] vBulletin vBDownloads module 'mirrors[]' Parameter HTML Injection Vulnerability
12359| [52702] Apache Struts2 'XSLTResult.java' Remote Arbitrary File Upload Vulnerability
12360| [52696] Apache Traffic Server HTTP Host Header Handling Heap Based Buffer Overflow Vulnerability
12361| [52653] F5 FirePass 'state' Parameter SQL Injection Vulnerability
12362| [52643] Tiny Server HTTP GET Request Remote Denial of Service Vulnerability
12363| [52635] Tiny Server HTTP HEAD Request Remote Denial of Service Vulnerability
12364| [52622] Gnuboard 'download.php' HTML Injection Vulnerability
12365| [52542] Xtreme RAT 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12366| [52512] TVersity Arbitrary File Download Vulnerability
12367| [52463] Mozilla Firefox/Thunderbird/SeaMonkey HTTP Header Security Bypass Vulnerability
12368| [52450] Ettercap NG 'wpcap.dll' DLL Loading Arbitrary Code Execution Vulnerability
12369| [52445] GoAhead WebServer HTTP Requests Denial Of Service Vulnerability
12370| [52421] WebKit HTTP Authentication Credentials Information Disclosure Vulnerability
12371| [52413] DVD Architect 'CFHDDecoder.dll' DLL Loading Arbitrary Code Execution Vulnerability
12372| [52412] moviEZ HD 'avrt.dll' DLL Loading Arbitrary Code Execution Vulnerability
12373| [52410] Vegas Movie Studio HD 'CFHDDecoder.dll' DLL Loading Arbitrary Code Execution Vulnerability
12374| [52402] Jam Trax Xpress 'sage.dll' DLL Loading Arbitrary Code Execution Vulnerability
12375| [52386] DotNetNuke Remote Arbitrary File Upload Vulnerability
12376| [52375] Microsoft Expression 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
12377| [52336] OSClass Directory Traversal and Arbitrary File Upload Vulnerabilities
12378| [52325] Apple Safari Plugin Unloading Remote Code Execution Vulnerability
12379| [52282] KoolUploader Remote Arbitrary File Upload Vulnerability
12380| [52279] phpCAS Proxy Authorization Security Bypass Vulnerability
12381| [52234] BrewBlogger Multiple Arbitrary File Upload Vulnerabilities
12382| [52212] Cisco Wireless LAN Controller CVE-2012-0368 HTTP Request Denial of Service Vulnerability
12383| [52208] NetDecision HTTP Server Long HTTP Request Remote Denial of Service Vulnerability
12384| [52194] NetDecision HTTP Server Stack-Based Buffer Overflow Vulnerability
12385| [52179] python-httplib2 CVE-2013-2037 SSL Certificate Validation Security Bypass Vulnerability
12386| [52174] Piwigo 'index.php' Remote Arbitrary File Upload Vulnerability
12387| [52173] Dotclear 'swfupload.swf' Remote Arbitrary File Upload Vulnerability
12388| [52156] The Uploader 'username' Parameter SQL Injection Vulnerability
12389| [52136] Mobile Mp3 Search Script 'dl.php' HTTP Response Splitting Vulnerability
12390| [52130] WordPress Magn WP Drag and Drop Upload Plugin Arbitrary Shell Upload Vulnerability
12391| [52106] Mercury MR804 Router Multiple HTTP Header Fields Denial Of Service Vulnerabilities
12392| [52087] WebsiteBaker HTTP 'Referer' Header Cross Site Scripting Vulnerabilities
12393| [52080] Mitra Iranian CMS 'manager.php' Remote Arbitrary File Upload Vulnerability
12394| [52070] 7T AQUIS DLL Loading Arbitrary Code Execution Vulnerability
12395| [52069] 7T TERMIS DLL Loading Arbitrary Code Execution Vulnerability
12396| [51990] PBBoard 'index.php' Arbitrary File Upload Vulnerability
12397| [51984] ALFTP Insecure Excutable File Loading Arbitrary Code Execution Vulnerability
12398| [51950] Sysax Multi Server 'uploadfile_name1.htm' Buffer Overflow Vulnerability
12399| [51943] CVS CVE-2012-0804 'proxy_connect()' Heap Buffer Overflow Vulnerability
12400| [51924] HDWiki 'attachement.php' Arbitrary File Upload Vulnerability
12401| [51910] Scientific Toolworks Understand 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
12402| [51838] TYPO3 Documents Download Extension Cross Site Scripting and SQL Injection Vulnerabilities
12403| [51767] Mindjet MindManager 2012 DLL Loading Arbitrary Code Execution Vulnerabilities
12404| [51725] phux Download Manager 'file' Parameter SQL Injection Vulnerability
12405| [51722] Ajax Upload Extension Wing Header Arbitrary File Upload Vulnerability
12406| [51706] Apache HTTP Server 'httpOnly' Cookie Information Disclosure Vulnerability
12407| [51705] Apache HTTP Server CVE-2012-0021 mod_log_config Denial Of Service Vulnerability
12408| [51677] Joomla! JE Story Submit 'update()' Function Arbitrary File Upload Vulnerability
12409| [51657] Joomla! 'com_jesubmit' Component 'index.php' Arbitrary File Upload Vulnerability
12410| [51650] glFusion SQL Injection and Arbitrary File Upload Vulnerabilities
12411| [51638] WordPress Guest Posting Plugin 'uploadify.php' Arbitrary File Upload Vulnerability
12412| [51631] Raven 'connector.asp' Arbitrary File Upload Vulnerability
12413| [51630] ARYADAD CMS fckeditor Arbitrary File Upload Vulnerability
12414| [51615] WordPress AllWebMenus Plugin 'actions.php' Arbitrary File Upload Vulnerability
12415| [51576] appRain CMF 'uploadify.php' Remote Arbitrary File Upload Vulnerability
12416| [51456] Oracle JD Edwards EnterpriseOne Tools CVE-2011-2317 Arbitrary File Upload Vulnerability
12417| [51438] 7T Interactive Graphical SCADA System DLL Loading Arbitrary Code Execution Vulnerability
12418| [51415] Pragyan CMS 'frmupload.html' Arbitrary File Upload Vulnerability
12419| [51407] Apache HTTP Server Scoreboard Local Security Bypass Vulnerability
12420| [51406] Tahoe-LAFS Mutable Downloader Security Bypass Vulnerability
12421| [51402] WordPress Count per Day Plugin Arbitrary File Download and Cross Site Scripting Vulnerabilities
12422| [51398] HP LoadRunner 'magentservice.exe' Remote Stack Buffer Overflow Vulnerability
12423| [51375] Multiple Cogent Datahub Products Unspecified HTTP Header Injection Vulnerability
12424| [51365] PHP-Fusion 'downloads.php' Cross Site Scripting Vulnerability
12425| [51347] dl Download Ticket Service Authentication Bypass Vulnerability
12426| [51320] AirTies Air 4450 'cgi-bin/loader' Denial of Service Vulnerability
12427| [51302] eFront 'download' Parameter Directory Traversal Vulnerability
12428| [51264] Moodle '/calendar/set.php' HTTP Response Splitting Vulnerability
12429| [51234] Joomla! Simple File Upload Arbitrary File Upload Vulnerability
12430| [51214] Joomla Simple File Upload 'index.php' Remote Code Execution Vulnerability
12431| [51188] WordPress WP Symposium Arbitrary File Upload Vulnerabilities
12432| [51164] IDAPython Script Loading Arbitrary Code Execution Vulnerability
12433| [51112] SecCommerce SecSigner Java Applet Arbitrary File Upload Vulnerability
12434| [51073] RSA SecurID Software Token DLL Loading Arbitrary Code Execution Vulnerability
12435| [51068] Google Chrome IFRAME Loading Information Disclosure Vulnerability
12436| [51066] Opera Web Browser IFRAME Loading Information Disclosure Vulnerability
12437| [51065] Microsoft Internet Explorer IFRAME Loading Information Disclosure Vulnerability
12438| [51063] FFFTP CVE-2011-4266 Insecure Executable File Loading Arbitrary Code Execution Vulnerability
12439| [51053] Mozilla Firefox IFRAME Loading Information Disclosure Vulnerability
12440| [51002] Joomla! JCE Component 'file.php' Arbitrary File Upload Vulnerability
12441| [50998] DoceboLMS Multiple Arbitrary File Upload and SQL Injection Vulnerabilities
12442| [50975] Microsoft Internet Explorer CVE-2011-2019 DLL Loading Arbitrary Code Execution Vulnerability
12443| [50967] Microsoft PowerPoint CVE-2011-3396 DLL Loading Arbitrary Code Execution Vulnerability
12444| [50925] Simple Machines Forum ''fckeditor' Arbitrary File Upload Vulnerability
12445| [50862] Manx HTTP Response Splitting and Cross Site Scripting Vulnerabilities
12446| [50851] lighttpd 'http_auth.c' Remote Denial of Service Vulnerability
12447| [50829] Linux GNU Debugger 'debug_gdb_scripts' Loading Arbitrary Code Execution Vulnerability
12448| [50828] Siemens SIMATIC WinCC Flexible Runtime 'HmiLoad.exe' Multiple Security Vulnerabilities
12449| [50823] Joomla! Fabrik Component 'importcsv.php' Arbitrary File Upload Vulnerability
12450| [50785] Prestashop 'displayImage.php' HTTP Response Splitting Vulnerability
12451| [50771] Namazu HTTP Cookie Cross Site Scripting Vulnerability
12452| [50768] Privoxy RFC 3986 HTTP Response Splitting Vulnerability
12453| [50706] V-CMS Multiple Cross Site Scripting Arbitrary File Upload and SQL Injection Vulnerabilities
12454| [50703] DVR Remote ActiveX Control 'DVRobot.dll' DLL Loading Arbitrary Code Execution Vulnerability
12455| [50695] FleaHttpd Remote Denial of Service Vulnerability
12456| [50673] QuiXplorer 'index.php' Arbitrary File Upload Vulnerability
12457| [50666] Seraphim Tech Upload Script 'uploadurl.php' Remote Arbitrary File Upload Vulnerability
12458| [50639] Apache HTTP Server 'ap_pregsub()' Function Local Denial of Service Vulnerability
12459| [50608] LabWiki Multiple Cross Site Scripting And Arbitrary File Upload Vulnerabilities
12460| [50589] Mozilla Firefox and Thunderbird 'loadSubScript()' Security Bypass Vulnerability
12461| [50587] 11in1 (Eleven in One) 'do.php' HTTP Response Splitting Vulnerability
12462| [50554] Barracuda Link Balancer Multiple Cross Site Scripting Vulnerabilities
12463| [50553] UBB.Threads Unspecified File Upload Vulnerability
12464| [50542] Mahara CVE-2011-2772 Upload Denial of Service Vulnerability
12465| [50509] EMC Documentum eRoom Arbitrary File Upload Vulnerability
12466| [50508] Web File Browser 'webFileBrowser.php' Arbitrary File Download Vulnerability
12467| [50507] Windows Mail and Windows Meeting Space DLL Loading Arbitrary Code Execution Vulnerability
12468| [50497] phpMyAdmin 'simplexml_load_string()' Function Information Disclosure Vulnerability
12469| [50496] Attachmate Reflection DLL Loading Arbitrary Code Execution Vulnerability
12470| [50494] Apache HTTP Server 'ap_pregsub()' Function Local Privilege Escalation Vulnerability
12471| [50449] Squid Proxy Caching Server CNAME Denial of Service Vulnerability
12472| [50447] IBM HTTP Server Multiple Cross Site Scripting Vulnerabilities
12473| [50412] FFFTP Insecure Excutable File Loading Arbitrary Code Execution Vulnerability
12474| [50363] Novell XTier Framework HTTP Header Remote Integer Overflow Vulnerability
12475| [50335] Cyclope Internet Filtering Proxy 'CEPMServer.exe' Denial of Service Vulnerability
12476| [50324] Mozilla NSS 'NSS_NoDB_Init()' Insecure Library Loading Arbitrary Code Execution Vulnerability
12477| [50317] Cyclope Internet Filtering Proxy 'user' HTML Injection Vulnerability
12478| [50306] TYPO3 pmkshadowbox and pmkslimbox Cross Site Scripting and Arbitrary File Download Vulnerabilities
12479| [50301] osCommerce Remote File Upload and File Disclosure Vulnerabilities
12480| [50290] fims File Management System 'f' Parameter Arbitrary File Download Vulnerability
12481| [50285] Cisco Show and Share CVE-2011-2585 Arbitrary File Upload Vulnerability
12482| [50275] 1024 CMS 1.1.0 Beta 'force_download.php' Local File Include Vulnerability
12483| [50084] Cisco TelePresence Video Communication Server 'User-Agent' HTTP Header HTML Injection Vulnerability
12484| [50078] Honeywell EBI TEMA Remote Installer ActiveX Control Arbitrary File Download Vulnerability
12485| [50027] eFront 'view_file.php' Multiple Arbitrary File Download Vulnerabilities
12486| [50007] VLC Media Player 'httpd_ClientRecv()' Heap Based Buffer Overflow Vulnerability
12487| [49985] WordPress Redirection Plug-in HTTP Referrer Header HTML Injection Vulnerability
12488| [49979] Microsoft Forefront Unified Access Gateway (CVE-2011-1895) HTTP Response Splitting Vulnerability
12489| [49976] Microsoft Windows Active Accessibility DLL Loading Arbitrary Code Execution Vulnerability
12490| [49962] Microsoft Internet Explorer OnLoad Event CVE-2011-1997 Memory Corruption Vulnerability
12491| [49955] Cisco Firewall Services Module Authentication Proxy Remote Denial of Service Vulnerability
12492| [49943] Microsoft Windows Media Center DLL Loading Arbitrary Code Execution Vulnerability
12493| [49908] Polipo POST/PUT Requests HTTP Header Processing Denial Of Service Vulnerability
12494| [49890] SabadKharid 'upload.php' Arbitrary File Upload Vulnerability
12495| [49882] TYPO3 'download.php' Local File Disclosure Vulnerability
12496| [49852] Mozilla Firefox and SeaMonkey 'loadSubScript()' Security Bypass Vulnerability
12497| [49849] Mozilla Firefox/Thunderbird/SeaMonkey CVE-2011-3000 HTTP Response Splitting Vulnerability
12498| [49817] TimeLive Time and Expense 'FileDownload.aspx' Arbitrary File Download Vulnerability
12499| [49779] Novell GroupWise Internet Agent HTTP Interface Stack Buffer Overflow Vulnerability
12500| [49762] Apache Tomcat HTTP DIGEST Authentication Multiple Security Weaknesses
12501| [49693] WordPress Relocate Upload Plugin 'abspath' Parameter Remote File Include Vulnerability
12502| [49673] Toko LiteCMS HTTP Response Splitting and Cross Site Scripting Vulnerabilities
12503| [49669] WordPress Filedownload Local File Disclosure Vulnerability
12504| [49633] Oracle Application Server 9i 'httpd.conf' Information Disclosure Vulnerability
12505| [49616] Apache HTTP Server CVE-2011-3348 Denial Of Service Vulnerability
12506| [49604] Movicon 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12507| [49557] TYPO3 WEC Staff Directory Extension Arbitrary File Upload Vulnerability
12508| [49556] WordPress Easy Comment Uploads Plugin 'upload.php' Arbitrary File Upload Vulnerability
12509| [49535] Spring Security HTTP Header Injection Vulnerability
12510| [49519] Microsoft Office Shared Component CVE-2011-1980 DLL Loading Arbitrary Code Execution Vulnerability
12511| [49516] TYPO3 Drag Drop Mass Upload Extension 'ameos_dragndropupload' Arbitrary File Upload Vulnerability
12512| [49504] WordPress Paid Downloads Plugin 'download_key' Parameter SQL Injection Vulnerability
12513| [49501] WordPress WP-Filebase Download Manager 'base' Parameter SQL Injection Vulnerability
12514| [49495] 1 Flash Gallery 'upload.php' Arbitrary File Upload Vulnerability
12515| [49488] WordPress wpcu3er Plugin 'ajaxReq.php' Arbitrary File Upload Vulnerability_
12516| [49487] GnuCash Insecure Excutable File Loading Arbitrary Code Execution Vulnerability
12517| [49479] Siemens SIMATIC WinCC Flexible Runtime Advanced Loader Heap Buffer Overflow Vulnerability
12518| [49449] GTK+ Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
12519| [49436] Microsoft Windows Script Host 'wshesn.dll' DLL Loading Arbitrary Code Execution Vulnerability
12520| [49434] Joomla! Simple File Uploader Module Arbitrary File Upload Vulnerability
12521| [49421] KaiBB SQL Injection and Arbitrary File Upload Vulnerabilities
12522| [49385] WordPress Image Gallery with Slideshow Plugin 'upload-file.php' Arbitrary File Upload Vulnerability
12523| [49384] WordPress Grapefile Plugin 'grapeupload.php' Arbitrary File Upload Vulnerability
12524| [49356] Squid Proxy Gopher Remote Buffer Overflow Vulnerability
12525| [49309] Zazavi 'filemanager/controller.php' Arbitrary File Upload Vulnerability
12526| [49303] Apache HTTP Server CVE-2011-3192 Denial Of Service Vulnerability
12527| [49274] JagoanStore CMS fckeditor Arbitrary File Upload Vulnerability
12528| [49185] Website Baker 'upload.php' Arbitrary File Upload Vulnerability
12529| [49026] Microsoft Windows Data Access Component DLL Loading Arbitrary Code Execution Vulnerability
12530| [48963] WordPress Timthumb Plugin 'timthumb' Cache Directory Arbitrary File Upload Vulnerability
12531| [48929] Linux Kernel Generic Receive Offload (GRO) CVE-2011-2723 Denial of Service Vulnerability
12532| [48911] Drupal Core File Download Security Bypass Vulnerability
12533| [48871] Download Accelerator Plus '.m3u' File Buffer Overflow Vulnerability
12534| [48863] PRADO 'TActiveFileUpload.php' Directory Traversal Vulnerability
12535| [48708] Joomla! AvReloaded Component SQL Injection Vulnerability
12536| [48643] Fire Soft Board 'User-Agent' HTTP Header HTML Injection Vulnerability
12537| [48614] Aruba Networks ArubaOS HTTP Response Splitting and HTML Injection Vulnerabilities
12538| [48608] Effective File Search (EFS) DLL Loading Arbitrary Code Execution Vulnerability
12539| [48579] F5 BIG-IP ASM Web Scraping Cross-Site Scripting Vulnerability
12540| [48577] HP-UX Dynamic Loader Unspecified Local Privilege Escalation Vulnerability
12541| [48562] XnView DLL Loading Arbitrary Code Execution Vulnerability
12542| [48535] Donar Player Multiple DLL Loading Arbitrary Code Execution Vulnerability
12543| [48514] IBM DB2 'DT_RPATH' Insecure Library Loading Arbitrary Code Execution Vulnerability
12544| [48484] Atlassian JIRA File Download Security Bypass Vulnerability
12545| [48432] xAurora 'RSRC32.DLL' DLL Loading Arbitrary Code Execution Vulnerability
12546| [48425] gdk-pixbuf 'gdk_pixbuf__gif_image_load()' Remote Denial of Service Vulnerability
12547| [48398] Drupal Download Count Module HTML Injection Vulnerability
12548| [48343] Retired: Blackice Cover Page 'DownloadImageFileURL()' Arbitrary File Download Vulnerability
12549| [48336] Blue Coat ProxySG core Files Local Information Disclosure Vulnerability
12550| [48331] Helium Music Manager DLL Loading Arbitrary Code Execution Vulnerability
12551| [48285] Gogago YouTube Video Converter ActiveX control 'Download()' Method Buffer Overflow Vulnerability
12552| [48274] WordPress Real WYSIWYG Plugin 'insert_file.php' Arbitrary File Upload Vulnerability
12553| [48257] Phpnuke 'upload.php' Arbitrary File Upload Vulnerability
12554| [48252] Adobe Acrobat and Reader CVE-2011-2100 DLL Loading Arbitrary Code Execution Vulnerability
12555| [48211] Microsoft Internet Explorer HTTP Redirect Uninitialized Memory Remote Code Execution Vulnerability
12556| [48194] PlotSoft PDFill Multiple DLL Loading Arbitrary Code Execution Vulnerability
12557| [48130] ACDSee Fotoslate DLL Loading Arbitrary Code Execution Vulnerability
12558| [48128] ACDSee Photo Editor 2008 DLL Loading Arbitrary Code Execution Vulnerability
12559| [48127] ACDSee Picture Frame Manager DLL Loading Arbitrary Code Execution Vulnerability
12560| [48111] Xitami HTTP Header Remote Buffer Overflow Vulnerability
12561| [48108] Joomla CCBoard SQL Injection and Arbitrary File Upload Vulnerabilities
12562| [48093] mcCMS 'manager.php' Arbitrary File Upload Vulnerability
12563| [48073] HP LoadRunner Virtual User Script Files Remote Buffer Overflow Vulnerability
12564| [48061] Belkin F5D7234-4V5 Wireless G Router 'login.stm' Administrator Password Disclosure Vulnerability
12565| [48055] Microsoft Windows Live Messenger 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12566| [48031] Lil' HTTP Server 'pbcgi.cgi' Cross Site Scripting Vulnerability
12567| [48022] Lil' HTTP Server Source Code Information Disclosure Vulnerability
12568| [48001] WalRack File Extension Handling Arbitrary File Upload Vulnerability
12569| [47970] MidiCMS Website Builder Local File Include and Arbitrary File Upload Vulnerabilities
12570| [47915] Drupal Webform Module Cross Site Scripting and Arbitrary File Upload Vulnerabilities
12571| [47908] Joomla! jDownloads Component Arbitrary File Upload Vulnerability
12572| [47897] Microsoft Windows 'nsiproxy.sys' Driver Local Denial of Service Vulnerability
12573| [47876] Web File Browser Arbitrary File Upload Vulnerability
12574| [47869] NoticeBoardPro SQL Injection and Arbitrary File Upload Vulnerabilities
12575| [47855] osCommerce 'banner_manager.php' Arbitrary File Upload Vulnerability
12576| [47805] Big Brother Arbitrary File Deletion Vulnerability and Arbitrary File Upload Vulnerability
12577| [47759] phpWebSite 'upload.php' Arbitrary File Upload Vulnerability
12578| [47757] Exponent CMS Local File Include and Arbitrary File Upload Vulnerabilities
12579| [47752] BlueFTP 'ProfUIS250m.dll' DLL Loading Arbitrary Code Execution Vulnerability
12580| [47751] FestOS 'upload.php' Arbitrary File Upload Vulnerability
12581| [47743] WP-DBManager Arbitrary File Download Vulnerability and Cross Site Request Forgery Vulnerability
12582| [47741] Multiple Microsoft Products DLL Loading Arbitrary Code Execution Vulnerability
12583| [47715] Tinyproxy 'conf.c' Integer Overflow Security Bypass Vulnerability
12584| [47709] WordPress '.phtml' Files Arbitrary File Upload Vulnerability
12585| [47701] SelectaPix 'uploadername' Parameter Cross Site Scripting Vulnerability
12586| [47689] WP-DBManager 'wp-config.php' Arbitrary File Download Vulnerability
12587| [47680] UDisks Kernel 'mount' Module Loading Security Vulnerability
12588| [47637] CMS Made Simple 'uploadview.php' Arbitrary File Upload Vulnerability
12589| [47636] ClanSphere Local File Include and Arbitrary File Upload Vulnerabilities
12590| [47624] libmodplug 'load_abc.cpp' Remote Stack Based Buffer Overflow Vulnerability
12591| [47591] Ariadne Multiple Arbitrary File Upload Vulnerabilities
12592| [47570] EasyPHP 'php5nsapi.dll' Loading Arbitrary Code Execution Vulnerability
12593| [47564] Xilisoft Video Converter Ultimate 'cmdProcess.dll' Loading Arbitrary Code Execution Vulnerability
12594| [47560] DynMedia Pro Web CMS 'downloadfile.php' Local File Disclosure Vulnerability
12595| [47508] PPLive TCP Port 9415 'tudouva.pac' Open Proxy Vulnerability
12596| [47487] Oracle Java System Access Manager Policy Agent CVE-2011-0846 Remote Web Proxy Agent Vulnerability
12597| [47406] SoftXMLCMS 'uploadfile1.asp' Arbitrary File Upload Vulnerability
12598| [47399] Joomla Component 'com_phocadownload' Local File Include Vulnerability
12599| [47379] cPassMan 'downloadfile.php' Arbitrary File Download Vulnerability
12600| [47358] Dotclear Media Manager Arbitrary File Upload Vulnerability
12601| [47349] EC Software Help & Manual 'ijl15.dll' DLL Loading Arbitrary Code Execution Vulnerability
12602| [47347] Open Text FirstClass Client 'FCP://' URI and DLL Loading Arbitrary Code Execution Vulnerabilities
12603| [47313] Joomla! Phoca Download Component Multiple SQL Injection Vulnerabilities
12604| [47309] eForum '/eforum.php' Arbitrary File Upload Vulnerability
12605| [47297] ManageEngine Applications Manager 'Upload.do' Arbitrary File Upload Vulnerability
12606| [47276] Tinyproxy ACL Security Bypass Vulnerability
12607| [47270] Simple Machines Forum Arbitrary File Upload Vulnerability
12608| [47259] WampServer 'index.php' Arbitrary File Download Vulnerability
12609| [47246] Microsoft Office Shared Component DLL Loading Arbitrary Code Execution Vulnerability
12610| [47199] Apache Tomcat HTTP BIO Connector Information Disclosure Vulnerability
12611| [47195] PHPBoost 'gallery.php' Arbitrary File Upload Vulnerability
12612| [47145] EasyPHP 'index.php' Arbitrary File Download Vulnerability
12613| [47101] Virtual DJ 'schannel.dll' DLL Loading Arbitrary Code Execution Vulnerability
12614| [47090] BigACE Multiple Arbitrary File Upload Vulnerabilities
12615| [47075] jHTTPd Directory Traversal Vulnerability
12616| [47069] Toon Boom Studio 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
12617| [47067] Ulead COOL 3D Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
12618| [47057] Alkacon OpenCms HTTPOnly Cookie Flag Information Disclosure Weakness
12619| [47056] Linux Kernel Generic Receive Offload (GRO) Local Denial of Service Vulnerability
12620| [47049] Feng Office Arbitrary File Upload and Cross Site Scripting Vulnerabilities
12621| [47031] Google Picasa Insecure Library Loading Arbitrary Code Execution Vulnerability
12622| [47011] Constructr CMS Arbitrary File Upload Vulnerability
12623| [47002] PHP-Nuke 'HTTP_REFERER' Header Cross Site Request Forgery Vulnerability
12624| [46979] Immunity Debugger HTTP Request Buffer Overflow Vulnerability
12625| [46974] Apache HttpComponents 'HttpClient' Information Disclosure Vulnerability
12626| [46956] Kleophatra 'users.php' Arbitrary File Upload Vulnerability
12627| [46955] Phpbuddies 'index.php' Arbitrary File Upload Vulnerability
12628| [46949] CMS Balitbang Multiple Arbitrary File Upload Vulnerabilities
12629| [46927] Douran Portal 'download.aspx' Arbitrary File Download Vulnerability
12630| [46915] CMS Lokomedia 'downlot.php' Arbitrary File Download Vulnerability
12631| [46907] Progea Movicon 'TCPUploadServer.exe' Security Bypass Vulnerability
12632| [46905] Sybase OneBridge Server and DMZ Proxy Format String Vulnerability
12633| [46891] TIBCO tibbr 'HTTP Request' Cross Site Scripting Vulnerability
12634| [46880] nostromo nhttpd Directory Traversal Remote Command Execution Vulnerability
12635| [46857] SAP GUI DLL Loading Arbitrary Code Execution Vulnerability
12636| [46827] Air Contacts Lite HTTP Packet Denial Of Service Vulnerability
12637| [46774] WS Interactive Automne 'admin/upload-controler.php' Remote Arbitrary File Upload Vulnerability
12638| [46760] PBlogEX Arbitrary File Upload and Authentication Bypass Vulnerabilities
12639| [46755] Hiawatha HTTP Header Processing Denial Of Service Vulnerability
12640| [46682] Microsoft DirectShow DLL Loading Arbitrary Code Execution Vulnerability
12641| [46678] Microsoft Remote Desktop Connection Client DLL Loading Arbitrary Code Execution Vulnerability
12642| [46541] Python CGIHTTPServer Module Information Disclosure Vulnerability
12643| [46538] Cisco Secure Desktop ActiveX Control (CVE-2011-0925) Arbitrary File Download Vulnerability
12644| [46536] Cisco Secure Desktop ActiveX Control Executable File Arbitrary File Download Vulnerability
12645| [46532] Bo-Blog SQL Injection and Arbitrary File Upload Vulnerabilities
12646| [46516] Multiple Cisco TelePresence Products Arbitrary File Upload Vulnerability
12647| [46499] ProQuiz 'functions.php' Arbitrary File Upload Vulnerability
12648| [46475] Joomla! JCE Component Arbitrary File Upload Vulnerability
12649| [46459] Icy Phoenix HTTP Referrer Header HTML Injection Vulnerability
12650| [46441] PHP-Nuke 'Downloads' Module SQL Injection Vulnerability
12651| [46430] WordPress User Photo 'user-photo.php' Arbitrary File Upload Vulnerability
12652| [46427] GetSimple CMS 'admin/upload-ajax.php' Remote Arbitrary File Upload Vulnerability
12653| [46423] Ruby on Rails 'WEBrick::HTTPRequest' Module HTTP Header Injection Vulnerability
12654| [46388] Oracle Java 'Applet2ClassLoader' Class Unsigned Applet Remote Code Execution Vulnerability
12655| [46374] A1 Website Download 'fwpuclnt.dll' DLL Loading Arbitrary Code Execution Vulnerability
12656| [46341] webERP 'InputSerialItemsFile.php' Arbitrary File Upload Vulnerability
12657| [46308] IDA Pro Mach-O loader Buffer Overflow Vulnerability
12658| [46286] WordPress Enable Media Replace Plugin SQL Injection and Arbitrary File Upload Vulnerabilities
12659| [46255] Adobe Acrobat and Reader CVE-2011-0570 DLL Loading Arbitrary Code Execution Vulnerability
12660| [46254] Adobe Acrobat and Reader CVE-2011-0588 DLL Loading Arbitrary Code Execution Vulnerability
12661| [46252] Adobe Acrobat and Reader CVE-2011-0562 DLL Loading Arbitrary Code Execution Vulnerability
12662| [46240] Media Player Classic 'iacenc.dll' DLL Loading Arbitrary Code Execution Vulnerability
12663| [46239] Cain & Abel 'dagc.dll' DLL Loading Arbitrary Code Execution Vulnerability
12664| [46197] Adobe Flash Player CVE-2011-0575 DLL Loading Arbitrary Code Execution Vulnerability
12665| [46176] JAKCMS 'User-Agent' HTTP Header HTML Injection Vulnerability
12666| [46159] Microsoft Internet Explorer DLL Loading Arbitrary Code Execution Vulnerability
12667| [46109] Xinha Multiple Remote Arbitrary File Upload Vulnerabilities
12668| [46058] SDP Downloader 'Content-Type' Header Remote Buffer Overflow Vulnerability
12669| [46054] Weborf 'get_param_value()' Function HTTP Header Handling Denial Of Service Vulnerability
12670| [46010] WordPress ImageManager Plugin 'manager.php' Arbitrary File Upload Vulnerability
12671| [46002] WordPress Recip.ly 'uploadImage.php' Arbitrary File Upload Vulnerability
12672| [45985] ActiveWeb Professional Arbitrary File Upload Vulnerability
12673| [45984] WordPress Uploader Plugin 'num' Parameter Cross Site Scripting Vulnerability
12674| [45964] Gallery Arbitrary File Upload Vulnerability
12675| [45945] Lunascape DLL Loading Arbitrary Code Execution Vulnerability
12676| [45939] DATEV Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
12677| [45933] PHPCMS 'flash_upload.php' SQL Injection Vulnerability
12678| [45916] MyProxy SSL Certificate Validation Security Bypass Vulnerability
12679| [45848] Oracle Fusion Middleware CVE-2010-4455 Remote Oracle HTTP Server Vulnerability
12680| [45799] LifeType HTTP 'Referer' Header Cross Site Scripting Vulnerability
12681| [45794] Contao 'X_FORWARDED_FOR' HTTP Header Arbitrary Script Injection Vulnerability
12682| [45792] HP LoadRunner 'magentproc.exe' Remote Code Execution Vulnerability
12683| [45782] Joomla! Easy File Uploader Module Arbitrary File Upload Vulnerability
12684| [45689] Quick Notes Plus Multiple DLL Loading Arbitrary Code Execution Vulnerability
12685| [45685] concrete5 'index.php' Arbitrary File Upload and HTML Injection Vulnerabilities
12686| [45675] Ace Video Workshop 'ir50_lcs.dll' DLL Loading Arbitrary Code Execution Vulnerability
12687| [45657] ImgBurn 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12688| [45651] Joomla! 'com_jotloader' Component 'section' Parameter Directory Traversal Vulnerability
12689| [45629] Linux Kernel 'load_mixer_volumes()' Multiple Vulnerabilities
12690| [45619] News Script PHP 'fckeditor' Arbitrary File Upload Vulnerability
12691| [45602] Mongoose 'Content-Length' HTTP Header Remote Denial Of Service Vulnerability
12692| [45599] httpdASM Directory Traversal Vulnerability
12693| [45584] SocialEngine Music Sharing Plugin Arbitrary File Upload Vulnerability
12694| [45573] HttpBlitz Server HTTP Request Remote Denial of Service Vulnerability
12695| [45550] Social Share 'vote.php' HTTP Response Splitting Vulnerability
12696| [45549] Ecava IntegraXor 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12697| [45525] S9Y Serendipity 'manager.php' Arbitrary File Upload Vulnerability
12698| [45494] MH Download Center Multiple SQL Injection Vulnerabilities
12699| [45492] Adobe Photoshop DLL Loading Arbitrary Code Execution Vulnerability
12700| [45483] CubeCart Arbitrary File Upload Vulnerability
12701| [45474] MHP Downloadshop 'view_item.php' SQL Injection Vulnerability
12702| [45471] AttacheCase DLL Loading Arbitrary Code Execution Vulnerability
12703| [45404] Microsoft Windows Remote Access Phonebook Executable Loading Arbitrary Code Execution Vulnerability
12704| [45354] Mozilla Firefox and SeaMonkey Firebug 'XMLHttpRequestSpy' Chrome Privilege Escalation Vulnerability
12705| [45313] JE Messenger 'compose.php' Arbitrary File Upload Vulnerability
12706| [45309] Allegro RomPager UPnP HTTP Request Remote Denial of Service Vulnerability.
12707| [45295] Microsoft Windows BranchCache DLL Loading Arbitrary Code Execution Vulnerability
12708| [45269] Microsoft Windows Kernel NDProxy Local Privilege Escalation Vulnerability
12709| [45265] WWWThreads 'reputation.php' HTTP Response Splitting Vulnerability
12710| [45251] Raven 'register.asp' Arbitrary File Upload Vulnerability
12711| [45248] Altova MapForce 2011 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12712| [45210] AWStats Unspecified 'LoadPlugin' Directory Traversal Vulnerability
12713| [45209] SOOP Portal 'assetman3.asp' Arbitrary File Upload Vulnerability
12714| [45207] Altova Diffdog 2011 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12715| [45205] Altova DatabaseSpy 2011 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12716| [45199] WebEx Meeting Manager WebexUCFObject ActiveX DLL Loading Arbitrary Code Execution Vulnerability
12717| [45198] Intel Threading Building Blocks 'tbbmalloc.dll' DLL Loading Arbitrary Code Execution Vulnerability
12718| [45196] Adobe Pixel Bender Toolkit 'd3d10.dll' DLL Loading Arbitrary Code Execution Vulnerability
12719| [45195] Adobe Device Central DLL Loading Arbitrary Code Execution Vulnerabilities
12720| [45191] WaveMax Sound Editor 'wnaspi32.dll' DLL Loading Arbitrary Code Execution Vulnerability
12721| [45171] Kindle for PC 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
12722| [45144] Perl CGI-Simple 'multipart/x-mixed-replace' MIME Boundary HTTP Response Splitting Vulnerability
12723| [45136] Digitalus CMS 'config.php' Arbitrary File Upload Vulnerability
12724| [45129] OsCSS 'categories.php' Arbitrary File Upload Vulnerability
12725| [45111] Duhok Forum Multiple Remote Arbitrary File Upload Vulnerabilities
12726| [45103] Orbis CMS 'fileman_file_upload.php' Arbitrary File Upload Vulnerability
12727| [45085] Lightweight Rich Text Editor Plugin for jQuery 'uploader.php' Arbitrary File Upload Vulnerability
12728| [45083] AOL Instant Messenger 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12729| [45082] Google Desktop 'schannel.dll' DLL Loading Arbitrary Code Execution Vulnerability
12730| [45080] McAfee VirusScan Enterprise 'traceapp.dll' DLL Loading Arbitrary Code Execution Vulnerability
12731| [45078] MemHT Portal User-Agent HTTP Header HTML Injection Vulnerability
12732| [45044] ImageMagick 'configure.c' Configuration File Loading Local Privilege Escalation Vulnerability
12733| [45017] Acidcat CMS Arbitrary File Upload Vulnerability
12734| [45013] JCMS 'downfile.jsp' Arbitrary File Download Vulnerabilities
12735| [44998] Free Simple Software 'download_id' SQL Injection Vulnerability
12736| [44995] osCommerce 'categories.php' Arbitrary File Upload Vulnerability
12737| [44989] Native Instruments Multiple Products DLL Loading Arbitrary Code Execution Vulnerability
12738| [44917] SystemTap 'Staprun' Module Unloading Local Denial of Service Vulnerability
12739| [44911] Sitefinity ASP.NET CMS Arbitrary File Upload Vulnerability
12740| [44892] Perl CGI.pm 'multipart/x-mixed-replace' MIME Boundary HTTP Response Splitting Vulnerability
12741| [44850] EasyJobPortal 'jobseeker_document.php' Arbitrary File Upload Vulnerability
12742| [44810] Mono 'loader.c' Library Loading Local Privilege Escalation Vulnerability
12743| [44728] FL Studio Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
12744| [44726] Silo 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
12745| [44717] Acoustica 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12746| [44708] WordPress DB Toolkit 'uploadify.php' Arbitrary File Upload Vulnerability
12747| [44671] Adobe Flash Player DLL Loading Arbitrary Code Execution Vulnerability
12748| [44629] NetSupport Manager Gateway HTTP Protocol Information disclosure vulnerability
12749| [44621] eLouai's Force Download Script 'force-download.php' Arbitrary File Download Vulnerability
12750| [44600] Sybase Advantage Data Architect DLL Loading Arbitrary Code Execution Vulnerability
12751| [44594] Douran Portal Arbitrary File Upload and Cross Site Scripting Vulnerabilities
12752| [44588] GVim DLL Loading Arbitrary Code Execution Vulnerability
12753| [44583] HP Insight Control Performance Management CVE-2010-4100 Arbitrary File Download Vulnerability
12754| [44572] ACDSee Canvas DLL Loading Arbitrary Code Execution Vulnerability
12755| [44566] IBM Tivoli Directory Server Proxy Server Use-After-Free Denial of Service Vulnerability
12756| [44559] Joomla! 'com_jfuploader' Arbitrary File Upload Vulnerability
12757| [44546] Webradev Download Protect 'GLOBALS[RootPath]' Parameter Multiple Remote File Include Vulnerabilities
12758| [44542] HP Insight Recovery Arbitrary File Download Vulnerability
12759| [44541] Microsoft Data Access Objects (DAO) 'dao360.dll' DLL Loading Arbitrary Code Execution Vulnerability
12760| [44540] Active! Mail HTTP Header Injection Vulnerability
12761| [44532] HP Insight Managed System Setup Wizard Arbitrary File Download Vulnerability
12762| [44526] eZoneScripts Hot or Not Script 'upload_banners.php' Arbitrary File Upload Vulnerability
12763| [44506] Weborf HTTP Request Denial Of Service Vulnerability
12764| [44487] HP LoadRunner Web Tours Unspecified Denial of Service Vulnerability
12765| [44480] Internet Download Manager 'Schannel.dll' DLL Loading Arbitrary Code Execution Vulnerability
12766| [44477] Orbit Downloader 'schannel.dll' DLL Loading Arbitrary Code Execution Vulnerability
12767| [44474] ACDSee Photo Manager DLL Loading Arbitrary Code Execution Vulnerability
12768| [44472] Nessus 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
12769| [44469] FlipAlbum Vista Pro 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12770| [44439] httpdx FTP Server Multiple Directory Traversal Vulnerabilities
12771| [44428] HP Virtual Server Environment Arbitrary File Download Vulnerability
12772| [44414] Microsoft Windows 'lpksetup.exe' 'oci.dll' DLL Loading Arbitrary Code Execution Vulnerability
12773| [44395] Festival Server 'LD_LIBRARY_PATH' Insecure Library Loading Arbitrary Code Execution Vulnerability
12774| [44394] AutoPlay Media Studio 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12775| [44391] Headlight Software GetRight 'SvcTagLib.dll' DLL Loading Arbitrary Code Execution Vulnerability
12776| [44389] Wondershare DVD Slideshow Builder 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12777| [44387] Wondershare Flash Gallery Factory 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12778| [44386] Photodex ProShow Producer Multiple DLL Loading Arbitrary Code Execution Vulnerability
12779| [44385] Blue Coat ProxyAV Multiple Cross Site Request Forgery Vulnerabilities
12780| [44328] Sleipnir Binary Loading Arbitrary Code Execution Vulnerability
12781| [44327] YokkaSoft Multiple Products Executable Loading Arbitrary Code Execution Vulnerability
12782| [44326] HP Virtual Connect Enterprise Manager Arbitrary File Download Vulnerability
12783| [44302] RealPage Module Upload ActiveX Control Multiple Vulnerabilities
12784| [44286] TeraPad 'atoklib.dll' DLL Loading Arbitrary Code Execution Vulnerability
12785| [44284] Apsaly Executable Loading Arbitrary Code Execution Vulnerability
12786| [44257] Explzh Executable Loading Arbitrary Code Execution Vulnerability
12787| [44250] Mozilla Firefox SeaMonkey and Thunderbird DLL Loading Arbitrary Code Execution Vulnerability
12788| [44244] Archive Decoder 'explorer.exe' Executable Loading Arbitrary Code Execution Vulnerability
12789| [44205] Cool iPhone Ringtone Maker 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12790| [44198] Phoenix Project Manager DLL Loading Arbitrary Code Execution Vulnerability
12791| [44194] Free 3GP Video Converter 'quserex.dll' DLL Loading Arbitrary Code Execution Vulnerability
12792| [44193] PowerDVD 'trigger.dll' DLL Loading Arbitrary Code Execution Vulnerability
12793| [44178] Sahar Money Manager 'unicows.dll' DLL Loading Arbitrary Code Execution Vulnerability
12794| [44177] Holoo Multiple DLL Loading Arbitrary Code Execution Vulnerability
12795| [44171] Accounting Pro 2003 Multiple DLL Loading Arbitrary Code Execution Vulnerability
12796| [44170] Xilisoft Video Converter Multiple DLL Loading Arbitrary Code Execution Vulnerability
12797| [44164] OpenConnect HTTP Status Code Remote Denial of Service Vulnerability
12798| [44163] 1CLICK DVD Converter Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
12799| [44162] PCDJ Karaoki 'saMon2.exe' Executable Loading Arbitrary Code Execution Vulnerability
12800| [44161] Audiotool Ease Jukebox 'wmaudsdk.dll' DLL Loading Arbitrary Code Execution Vulnerability
12801| [44157] Windows Server 2008 Color Control Panel DLL Loading Arbitrary Code Execution Vulnerability
12802| [44156] Blue Coat ProxySG Content Filtering Security Bypass Vulnerability
12803| [44141] httpdx dot Character Remote File Disclosure Vulnerability
12804| [44132] K2Editor DLL Loading Arbitrary Code Execution Vulnerability
12805| [44129] MEO Encryption Software 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12806| [44128] STDU Explorer 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12807| [44127] KCFinder Project Arbitrary File Upload Vulnerability
12808| [44125] XacRett 'explorer.exe' Executable Loading Arbitrary Code Execution Vulnerability
12809| [44121] The Uploader 'download_checker.php' Directory Traversal Vulnerability
12810| [44119] httpdx 'tolog' Function Multiple Remote Format String Vulnerabilities
12811| [44110] Resell Scripts Data/File Upload and Management Arbitrary File Upload Vulnerability
12812| [44106] Ardour 'LD_LIBRARY_PATH' Insecure Library Loading Arbitrary Code Execution Vulnerability
12813| [44098] HP Systems Insight Manager Arbitrary File Download Vulnerability
12814| [44086] curl 'Content-Disposition' HTTP Header Arbitrary File Overwrite Vulnerability
12815| [44054] Torrent DVD Creator 'quserex.dll' DLL Loading Arbitrary Code Execution Vulnerability
12816| [44052] Notepad++ 'libtidy.dll' DLL Loading Arbitrary Code Execution Vulnerability
12817| [44051] e2eSoft VCam DLL Loading Arbitrary Code Execution Vulnerability
12818| [44027] Oracle Java SE and Java for Business CVE-2010-3549 HTTP Response Splitting Vulnerability
12819| [43962] Oracle Fusion Middleware CVE-2010-2413 BI Publisher HTTP Response Splitting Vulnerability
12820| [43925] DiskPulse Server 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
12821| [43922] Lhasa 'explorer.exe' Executable Loading Arbitrary Code Execution Vulnerability
12822| [43921] Lhaplus '7-ZIP32.DLL' DLL Loading Arbitrary Code Execution Vulnerability
12823| [43914] Microsoft Visio 'mfc80esn.dll' DLL Loading Arbitrary Code Execution Vulnerability
12824| [43913] NetStumbler 'mfc71esn.dll' DLL Loading Arbitrary Code Execution Vulnerability
12825| [43912] IsoBuster 'wnaspi32.dll' DLL Loading Arbitrary Code Execution Vulnerability
12826| [43911] Adobe Dreamweaver CS4 'mfc80esn.dll' DLL Loading Arbitrary Code Execution Vulnerability
12827| [43878] Gravy Media Photo Host 'forcedownload.php' Local File Disclosure Vulnerability
12828| [43873] Joomla Community Builder Enhenced Local File Include and Arbitrary File Upload Vulnerabilities
12829| [43863] Dupehunter Professional 'Fwpuclnt.dll' DLL Loading Arbitrary Code Execution Vulnerability
12830| [43859] Feindura File Manager Arbitrary File Upload Vulnerability
12831| [43853] PC4arb pc4uploader 'file' Parameter Local File Disclosure Vulnerability
12832| [43830] Visual Synapse HTTP Server Directory Directory Traversal Vulnerability
12833| [43790] DeDeCMS 'uploads_edit.php' Arbitrary File Upload Vulnerability
12834| [43728] LFTP 'Content-Disposition' HTTP Header Arbitrary File Overwrite Vulnerability
12835| [43675] Blue Coat ProxySG Unspecified Cross Site Scripting Vulnerability
12836| [43672] Qt Creator Insecure Library Loading Arbitrary Code Execution Vulnerability
12837| [43635] Novell iManager 'getMultiPartParameters()' Arbitrary File Upload Vulnerability
12838| [43629] Joomla! JomSocial Component Arbitrary File Upload Vulnerability
12839| [43625] PHP AdminPanel 'download.php' Directory Traversal Vulnerability
12840| [43585] phpCAS Proxy Mode Multiple Security Vulnerabilities
12841| [43583] Traidnt UP 'upload.php' Information Disclosure Vulnerability
12842| [43567] Admin News Tools 'download.php' Remote File Download Vulnerability
12843| [43540] AtomatiCMS 'fckeditor' Multiple Arbitrary File Upload Vulnerabilities
12844| [43539] Nero DLL Loading Arbitrary Code Execution Vulnerability
12845| [43538] Digital Music Pad DLL Loading Arbitrary Code Execution Vulnerability
12846| [43534] Alien Arena 'download' Command Denial of Service Vulnerability
12847| [43533] Siemens SIMATIC Manager Step7 Project Folder DLL Loading Arbitrary Code Execution Vulnerability
12848| [43512] LINDO Systems LINGO Multiple Insecure Library Loading Arbitrary Code Execution Vulnerabilities
12849| [43509] TuneUp Utilities DLL Loading Arbitrary Code Execution Vulnerability
12850| [43506] VirIT eXplorer 'tg-scan.dll' DLL Loading Arbitrary Code Execution Vulnerability
12851| [43492] powerUpload Insecure Cookie Authentication Bypass Vulnerability
12852| [43489] Proxy List Script 'index.php' Cross Site Scripting Vulnerability
12853| [43468] Prof-UIS DLL Loading Arbitrary Code Execution Vulnerability
12854| [43467] Gromada Multimedia Conversion Library DLL Loading Arbitrary Code Execution Vulnerability
12855| [43454] FreePBX System Recordings Menu Arbitrary File Upload Vulnerability
12856| [43427] gmail-lite Arbitrary File Upload Vulnerability
12857| [43417] Sothink SWF Decompiler 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12858| [43416] Easy Office Recovery 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12859| [43414] GreenBrowser 'RSRC32.DLL' DLL Loading Arbitrary Code Execution Vulnerability
12860| [43390] Cisco IOS SSL VPN HTTP Redirect Memory Leak Remote Denial of Service Vulnerability
12861| [43387] Agrin All DVD Ripper 'wnaspi32.dll' DLL Loading Arbitrary Code Execution Vulnerability
12862| [43379] In-Portal Arbitrary File Upload Vulnerability
12863| [43365] PHPSugar PHP Melody 'upload_avatar.php' Arbitrary File Upload Vulnerability
12864| [43363] Qt 'QtCore.dll' DLL Loading Arbitrary Code Execution Vulnerability
12865| [43357] Personal.Net Portal Arbitrary File Upload and HTML Injection Vulnerabilities
12866| [43332] SWiSH Max3 DLL Loading Arbitrary Code Execution Vulnerability
12867| [43328] Fotobook Editor 'Fwpuclnt.dll' DLL Loading Arbitrary Code Execution Vulnerability
12868| [43325] OpenCart 'fckeditor' Arbitrary File Upload Vulnerability
12869| [43308] Ultrize TimeSheet 'downloadFile.php' Directory Traversal Vulnerability
12870| [43269] HP System Management Homepage Unspecified HTTP Response Splitting Vulnerability
12871| [43263] chillyCMS Arbitrary File Upload Vulnerability
12872| [43203] Joomla! Mosets Tree Component Arbitrary File Upload Vulnerability
12873| [43200] gDoc Fusion Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
12874| [43199] Nitro PDF Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
12875| [43198] E-PRESS ONE Multiple DLL Loading Arbitrary Code Execution Vulnerability
12876| [43196] ESTsoft ALShow Multiple DLL Loading Arbitrary Code Execution Vulnerability
12877| [43195] SoMud 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
12878| [43194] ESTsoft ALSee 'patchani.dll' DLL Loading Arbitrary Code Execution Vulnerability
12879| [43193] Luftguitar CMS 'ftb.imagegallery.aspx' Arbitrary File Upload Vulnerability
12880| [43192] ESTsoft ALZip Multiple DLL Loading Arbitrary Code Execution Vulnerability
12881| [43191] osDate 'uploadvideos.php' Arbitrary File Upload Vulnerability
12882| [43190] RETIRED: Apple Quicktime Player Multiple DLL Loading Arbitrary Code Execution Vulnerability
12883| [43189] Microsoft Visual C++ 2008 Redistributable Package DLL Loading Arbitrary Code Execution Vulnerability
12884| [43186] Adobe LiveCycle ES DLL Loading Arbitrary Code Execution Vulnerability
12885| [43185] Sorax Software Sorax Reader 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12886| [43184] Nuance PDF Reader 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12887| [43183] IDM Computer Solutions UltraEdit 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12888| [43181] Kingsoft Office 'plgpf.dll' DLL Loading Arbitrary Code Execution Vulnerability
12889| [43179] NCP Secure Entry Client DLL Loading Arbitrary Code Execution Vulnerabilities
12890| [43172] Celframe Office Suite DLL Loading Arbitrary Code Execution Vulnerability
12891| [43170] IBM Lotus Symphony 'eclipse_1114.dll' DLL Loading Arbitrary Code Execution Vulnerability
12892| [43141] AradBlog Security Bypass and Arbitrary File Upload Vulnerabilities
12893| [43139] BlackBerry Desktop Software DLL Loading Arbitrary Code Execution Vulnerability
12894| [43137] Intuit QuickBooks DLL Loading Arbitrary Code Execution Vulnerability
12895| [43133] RETIRED: ES Simple Download 'download.php' Local File Disclosure Vulnerability
12896| [43130] snom VoIP Phone Web Interface HTTP Request Authentication Bypass Vulnerability
12897| [43127] RETIRED: phplemon MyWeight 'user_photo.php' Arbitrary File Upload Vulnerability
12898| [43124] EnergyScripts ES Simple Download 'file' Parameter Local File Include Vulnerability
12899| [43123] Thomson SpeedTouch 585 'user.ini' Arbitrary File Download Vulnerability
12900| [43104] Multiple Mozilla Products 'XMLHttpRequest' Cross Domain Information Disclosure Vulnerability
12901| [43086] phplemon MyWeight 'user_photo.php' Arbitrary File Upload Vulnerability
12902| [43065] Cisco Wireless LAN Controller HTTP Packet Denial of Service Vulnerability
12903| [43043] Integard Home and Pro 'password' Parameter HTTP POST Request Remote Buffer Overflow Vulnerability
12904| [43018] DynPage 'dynpage_load.php' Local File Disclosure Vulnerability
12905| [43016] Weborf HTTP 'modURL()' Function Directory Traversal Vulnerability
12906| [42994] InterPhoto Image Gallery Arbitrary File Upload and HTML Injection Vulnerabilities
12907| [42982] Squid Proxy String Processing NULL Pointer Dereference Denial Of Service Vulnerability
12908| [42980] IfNuke Arbitrary File Upload and HTML Injection Vulnerabilities
12909| [42962] QxDM 'mfc71enu.dll' DLL Loading Arbitrary Code Execution Vulnerability
12910| [42961] IZArc '.ztv7z.dll' DLL Loading Arbitrary Code Execution Vulnerability
12911| [42960] jetAudio 'wnaspi32.dll' DLL Loading Arbitrary Code Execution Vulnerability
12912| [42958] PhotoImpact Pro 'bwsconst.dll' DLL Loading Arbitrary Code Execution Vulnerability
12913| [42955] L0phtCrack 'mfc90.dll' DLL Loading Arbitrary Code Execution Vulnerability
12914| [42935] Pixia 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
12915| [42931] Moovida Media Player 'libc.dll' and 'quserex.dll' DLL Loading Arbitrary Code Execution Vulnerability
12916| [42929] StivaSoft Ticket Support Script 'ticket.php' Remote File Upload Vulnerability
12917| [42928] Agoko CMS 'editpage-2.php' Multiple Arbitrary File Upload Vulnerabilities
12918| [42918] Toolbar Uninstaller Arbitrary File Download Vulnerability
12919| [42915] Artlantis Studio Multiple DLL Loading Arbitrary Code Execution Vulnerability
12920| [42913] BS Contact 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12921| [42912] HTTrack 'httrack-plugin.dll' DLL Loading Arbitrary Code Execution Vulnerability
12922| [42910] IBM Lotus Notes Multiple DLL Loading Arbitrary Code Execution Vulnerability
12923| [42905] GFI Backup 'ArmAccess.dll' DLL Loading Arbitrary Code Execution Vulnerability
12924| [42903] MPLAB IDE 'mfc71enu.dll' DLL Loading Arbitrary Code Execution Vulnerability
12925| [42899] Pthreads-win32 'quserex.dll' DLL Loading Arbitrary Code Execution Vulnerability
12926| [42893] KeePass 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12927| [42891] Techlogica HTTP Server Remote File Disclosure Vulnerability
12928| [42890] TortoiseSVN 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12929| [42889] Babylon 'besextension.dll' DLL Loading Arbitrary Code Execution Vulnerability
12930| [42886] httpdx 'h_readrequest()' Remote Format String Vulnerability
12931| [42884] Sophos Free Encryption 'pcrypt0406.dll' DLL Loading Arbitrary Code Execution Vulnerability
12932| [42871] WinImage 'wnaspi32.dll' DLL Loading Arbitrary Code Execution Vulnerability
12933| [42866] Kolibri+ HTTP GET Request Buffer Overflow Vulnerability
12934| [42861] Graffiti CMS Arbitrary File Upload Vulnerability
12935| [42858] PDF-XChange Viewer 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
12936| [42857] Virtual DJ 'hdjapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12937| [42856] PGP Desktop DLL Loading Arbitrary Code Execution Vulnerability
12938| [42855] Microsoft Windows Media Encoder 9 DLL Loading Arbitrary Code Execution Vulnerability
12939| [42854] IBM Rational License Key Administrator DLL Loading Arbitrary Code Execution Vulnerability
12940| [42853] Microsoft Remote Desktop Protocol 'ieframe.dll' DLL Loading Arbitrary Code Execution Vulnerability
12941| [42852] Guidance Software EnCase 'rsaenh.dll' DLL Loading Arbitrary Code Execution Vulnerability
12942| [42851] Adobe Captivate 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12943| [42850] Forensic Toolkit 'MFC90DEU.DLL' DLL Loading Arbitrary Code Execution Vulnerability
12944| [42849] Internet Download Manager 'idmmkb.dll' DLL Loading Arbitrary Code Execution Vulnerability
12945| [42848] CDisplay 'trace32.dll' DLL Loading Arbitrary Code Execution Vulnerability
12946| [42846] UltraVNC DLL Loading Arbitrary Code Execution Vulnerability
12947| [42832] Maxthon Browser 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12948| [42829] Notepad++ Multiple DLL Loading Arbitrary Code Execution Vulnerability
12949| [42828] QtWeb Browser 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
12950| [42818] RETIRED: Microsoft Windows Mail 'wab32res.dll' DLL Loading Arbitrary Code Execution Vulnerability
12951| [42816] NetStumbler 'mfc71enu.dll' DLL Loading Arbitrary Code Execution Vulnerability
12952| [42815] MAGIX Music Studio 12 Deluxe 'playripla6.dll' DLL Loading Arbitrary Code Execution Vulnerability
12953| [42814] Gretech GOM Player 'schannel.dll' DLL Loading Arbitrary Code Execution Vulnerability
12954| [42813] Adobe Audition (Cool Edit Pro) Multiple DLL Loading Arbitrary Code Execution Vulnerability
12955| [42812] Microsoft Windows Live Messenger 'msgsres.dll' DLL Loading Arbitrary Code Execution Vulnerability
12956| [42811] Microsoft ATL/MFC Trace Tool 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12957| [42810] Dassault Systemes CATIA 'hzs_lm.dll' DLL Loading Arbitrary Code Execution Vulnerability
12958| [42809] Microsoft Visio 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12959| [42808] TFTPD32 'IPHLPAPI.DLL' DLL Loading Arbitrary Code Execution Vulnerability
12960| [42807] Adobe Flash Player 'schannel.dll' DLL Loading Arbitrary Code Execution Vulnerability
12961| [42805] DivX Plus Player DLL Loading Arbitrary Code Execution Vulnerability
12962| [42804] SiSoftware Sandra 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12963| [42803] Steam 'steamgamesupport.dll' DLL Loading Arbitrary Code Execution Vulnerability
12964| [42802] SMPlayer 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
12965| [42800] Winmerge 'MFC71ESN.DLL' DLL Loading Arbitrary Code Execution Vulnerability
12966| [42799] Nokia PC Suite Applications 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
12967| [42797] UltraISO Premium 'daemon.dll' DLL Loading Arbitrary Code Execution Vulnerability
12968| [42796] Real Networks RealPlayer SP 'wnaspi32.dll' DLL Loading Arbitrary Code Execution Vulnerability
12969| [42794] Joomla! 'com_remository' Component Arbitrary File Upload Vulnerability
12970| [42788] RETIRED: Camtasia Studio DLL Loading Arbitrary Code Execution Vulnerability
12971| [42787] Sony Sound Forge Pro 'MtxParhVegasPreview.dll' DLL Loading Arbitrary Code Execution Vulnerability
12972| [42786] ArchiCAD 'srcsrv.dll' DLL Loading Arbitrary Code Execution Vulnerability
12973| [42777] Anantasoft Gazelle CMS 'frmupload.html' Arbitrary File Upload Vulnerability
12974| [42774] Apple QuickTime Pictureviewer Multiple DLL Loading Arbitrary Code Execution Vulnerability
12975| [42772] Nero 'bcgpoleacc.dll' DLL Loading Arbitrary Code Execution Vulnerability
12976| [42771] Real Networks RealPlayer SP 'rio500.dll' DLL Loading Arbitrary Code Execution Vulnerability
12977| [42770] PKZIP 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12978| [42769] Bentley Microstation Multiple DLL Loading Arbitrary Code Execution Vulnerability
12979| [42768] RETIRED: Mozilla SeaMonkey 'dwmapi.dll DLL Loading Arbitrary Code Execution Vulnerability
12980| [42765] Autodesk Design Review Multiple DLL Loading Arbitrary Code Execution Vulnerability
12981| [42763] Microsoft Windows Backup 'fveapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12982| [42762] Microsoft Windows Internet Communication Settings DLL Loading Arbitrary Code Execution Vulnerability
12983| [42760] Multiple CyberLink Products DLL Loading Arbitrary Code Execution Vulnerability
12984| [42759] Autodesk AutoCAD 'color.dll' DLL Loading Arbitrary Code Execution Vulnerability
12985| [42754] Camtasia Studio DLL Loading Arbitrary Code Execution Vulnerability
12986| [42753] Corel PHOTO-PAINT X3 'crlrib.dll' DLL Loading Arbitrary Code Execution Vulnerability
12987| [42752] DAEMON Tools Lite 'mfc80loc.dll' DLL Loading Arbitrary Code Execution Vulnerability
12988| [42751] Google Earth 'quserex.dll' DLL Loading Arbitrary Code Execution Vulnerability
12989| [42750] CorelDRAW X3 'crlrib.dll' DLL Loading Arbitrary Code Execution Vulnerability
12990| [42749] Adobe ExtendScript Toolkit CS5 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12991| [42747] Nullsoft Winamp 'wnaspi32.dll' DLL Loading Arbitrary Code Execution Vulnerability
12992| [42746] 010 Editor 'wintab32.dlll' DLL Loading Arbitrary Code Execution Vulnerability
12993| [42745] Adobe Extension Manager CS5 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12994| [42744] RETIRED: Mozilla Thunderbird 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
12995| [42743] Roxio MyDVD 'HomeUtils9.dll' DLL Loading Arbitrary Code Execution Vulnerability
12996| [42742] Microsoft PowerPoint 2007 Multiple DLL Loading Arbitrary Code Execution Vulnerability
12997| [42738] NVIDIA nView 'nview.dll' DLL Loading Arbitrary Code Execution Vulnerability
12998| [42737] Bloodshed Dev-C++ Multiple EXE Loading Arbitrary Code Execution Vulnerability
12999| [42736] Wing FTP Server HTTP Request Denial Of Service Vulnerability
13000| [42735] Skype 'wab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
13001| [42732] phpBugTracker SQL Injection and Arbitrary File Upload Vulnerabilities
13002| [42731] Microsoft Windows Contacts 'wab32res.dll' DLL Loading Arbitrary Code Execution Vulnerability
13003| [42730] Microsoft Windows Indeo Filter 'iacenc.dll' DLL Loading Arbitrary Code Execution Vulnerability
13004| [42729] TechSmith Snagit 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
13005| [42726] Cisco Packet Tracer 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
13006| [42721] Adobe Premier Pro 'ibfs32.dll' DLL Loading Arbitrary Code Execution Vulnerability
13007| [42719] Adobe OnLocation 'ibfs32.dll' DLL Loading Arbitrary Code Execution Vulnerability
13008| [42718] Adobe InDesign 'ibfs32.dll' DLL Loading Arbitrary Code Execution Vulnerability
13009| [42716] InterVideo WinDVD 'cpqdvd.dll' DLL Loading Arbitrary Code Execution Vulnerability
13010| [42715] Adobe Illustrator 'aires.dll' DLL Loading Arbitrary Code Execution Vulnerability
13011| [42714] Apple Safari 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
13012| [42713] Microsoft Internet Connection Wizard DLL Loading Arbitrary Code Execution Vulnerability
13013| [42712] Roxio Creator DE 'homeutils9.dll' DLL Loading Arbitrary Code Execution Vulnerability
13014| [42709] Microsoft Windows BitLocker Drive Encryption DLL Loading Arbitrary Code Execution Vulnerability
13015| [42708] Roxio Photosuite 'homeutils9.dll' DLL Loading Arbitrary Code Execution Vulnerability
13016| [42707] VLC Media Player 'wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
13017| [42706] Adobe Device Central CS5 'qtcf.dll' DLL Loading Arbitrary Code Execution Vulnerability
13018| [42705] Microsoft Windows Program Group Converter DLL Loading Arbitrary Code Execution Vulnerability
13019| [42704] ARC Logics TeamMate 'mfc71enu.dll' DLL Loading Arbitrary Code Execution Vulnerability
13020| [42697] Acunetix Web Vulnerability Scanner DLL Loading Arbitrary Code Execution Vulnerability
13021| [42695] Microsoft Groove 2007 'mso.dll' DLL Loading Arbitrary Code Execution Vulnerability
13022| [42694] Adobe Dreamweaver CS5 'mfc90loc.dll' DLL Loading Arbitrary Code Execution Vulnerability
13023| [42693] Adobe Photoshop 'Wintab32.dll' DLL Loading Arbitrary Code Execution Vulnerability
13024| [42691] Avast! Antivirus 'mfc90loc.dll' DLL Loading Arbitrary Code Execution Vulnerability
13025| [42690] Adobe Dreamweaver CS4 'ibfs32.dll' DLL Loading Arbitrary Code Execution Vulnerability
13026| [42688] BS.Player 'mfc71loc.dll' DLL Loading Arbitrary Code Execution Vulnerability
13027| [42687] TeamViewer 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
13028| [42686] Adobe Photoshop 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
13029| [42681] Microsoft Visio 2003 'mfc71enu.dll' DLL Loading Arbitrary Code Execution Vulnerability
13030| [42663] Opera 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
13031| [42659] Microsoft Windows Movie Maker 'hhctrl.ocx' DLL Loading Arbitrary Code Execution Vulnerability
13032| [42654] Mozilla Firefox/Thunderbird/SeaMonkey dwmapi.dll DLL Loading Arbitrary Code Execution Vulnerability
13033| [42648] Microsoft Windows Address Book 'wab32res.dll' DLL Loading Arbitrary Code Execution Vulnerability
13034| [42634] Microsoft Windows Live Email 'dwmapi.dll' DLL Loading Arbitrary Code Execution Vulnerability
13035| [42632] uTorrent Multiple DLL Loading Arbitrary Code Execution Vulnerability
13036| [42630] Wireshark 'airpcap.dll' DLL Loading Arbitrary Code Execution Vulnerability
13037| [42628] Microsoft Office 'pptimpconv.dll' DLL Loading Arbitrary Code Execution Vulnerability
13038| [42625] Oracle MySQL 'LOAD DATA INFILE' Denial Of Service Vulnerability
13039| [42555] QuickDev 4 Php 'download.php' Directory Traversal Vulnerability
13040| [42554] InterPhoto Image Gallery Directory Traversal and Arbitrary File Upload Vulnerabilities
13041| [42541] Apple iTunes DLL Loading Arbitrary Code Execution Vulnerability
13042| [42531] Blue Coat ProxySG Read-Only-Administrator Security Bypass Vulnerability
13043| [42521] KesionCMS Arbitrary File Upload Vulnerability
13044| [42514] PHPCMS2008 'download.php' Information Disclosure Vulnerability
13045| [42495] Uploaderr 'upload.php' Arbitrary File Upload Vulnerability
13046| [42490] Blue Coat ProxySG Privilege Enforcement Remote Security Bypass Vulnerability
13047| [42468] KnowledgeTree 'KTUploadManager.inc.php' Security Bypass Vulnerability
13048| [42465] CMSQLite 'admin/mediaAdmin.php' Arbitrary File Upload Vulnerability
13049| [42378] Cisco ACE 4710 HTTP, RTSP, and SIP Inspection Denial of Service Vulnerability
13050| [42337] RADactive I-Load Multiple Security Vulnerabilities
13051| [42300] Microsoft XML Core Service Msxml2.XMLHTTP.3.0 Response Handling Memory Corruption Vulnerability
13052| [42181] httpdx 'h_handlepeer()' Remote Buffer Overflow Vulnerability
13053| [42160] phpCAS CAS Proxy Mode Cross-Site Scripting Vulnerability
13054| [42153] D-Link WBR-2310 Web Server HTTP GET Request Remote Buffer Overflow Vulnerability
13055| [42104] Akamai Download Manager Arbitrary File Download Vulnerability
13056| [42090] NAS Uploader 'upload_multiple_js.php' Remote File Upload Vulnerability
13057| [42078] Lanai Core 'download.php' Directory Traversal Vulnerability
13058| [42055] WM Downloader '.m3u' File Buffer Overflow Vulnerability
13059| [42021] bozohttpd Security Bypass Vulnerability
13060| [41963] Apache HTTP Server Multiple Remote Denial of Service Vulnerabilities
13061| [41956] OrzHTTPd Remote Format String Vulnerability
13062| [41910] ZEEWAYS ZeeMatri 'uploadsnaps.php' Arbitrary File Upload Vulnerability
13063| [41909] LILDBI 'uploader.php' Remote File Upload Vulnerability
13064| [41908] ZEEWAYS ZeeNetworking 'member_photo.php' Arbitrary File Upload Vulnerability
13065| [41886] EllisLab CodeIgniter 'Upload.php' Arbitrary File Upload Vulnerability
13066| [41844] MultipleFileUpload Arbitrary File Upload Vulnerability
13067| [41838] RapidLeech Arbitrary File Upload Vulnerability
13068| [41820] Uploaderr Arbitrary File Upload Vulnerability
13069| [41795] Novell Teaming 'ajaxUploadImageFile' Remote Code Execution Vulnerability
13070| [41783] BOLDfx eUploader 'admin.php' Multiple Remote Vulnerabilities
13071| [41707] Novell GroupWise WebAccess Proxy Feature Stack Buffer Overflow Vulnerability
13072| [41706] Novell GroupWise Agents HTTP Interfaces Multiple Cross Site Scripting Vulnerabilities
13073| [41705] Novell GroupWise Agents HTTP Interface HTTP Header Injection Vulnerability
13074| [41688] RETIRED: Uploadscript Remote File Upload and Information Disclosure Vulnerabilities
13075| [41671] F5 FirePass Pre-logon Pages Cross Site Scripting Vulnerability
13076| [41670] Element-IT Software Ultimate Uploader Arbitrary File Upload Vulnerability
13077| [41665] F5 FirePass Pre-Login Token Security Bypass Vulnerability
13078| [41618] Oracle Sun Java System Web Proxy Server CVE-2010-2385 Administration Server Remote Vulnerability
13079| [41569] CMS Made Simple Antz Toolkit Module Arbitrary File Upload Vulnerability
13080| [41564] CMS Made Simple Download Manager Module Arbitrary File Upload Vulnerability
13081| [41535] Joomla! 'com_mysms' Component Arbitrary File Upload Vulnerability
13082| [41528] The Uploader Remote File Upload Vulnerability
13083| [41492] Multiple Inout Applications Multiple Arbitrary File Upload Vulnerabilities
13084| [41489] PG Social Networking 'myprofile.php' Arbitrary File Upload Vulnerability
13085| [41473] Podcast Generator 'download.php' Directory Traversal Vulnerability
13086| [41452] MySimpleFileUploader Remote File Upload Vulnerability
13087| [41445] GiantIsland VideoIsland Remote File Upload Vulnerability
13088| [41441] PHP Uploader Downloader 'updown.php' Cross Site Scripting Vulnerability
13089| [41440] phpFK - PHP Forum Script ohne MySQL 'upload.php' Arbitrary File Upload Vulnerability
13090| [41418] kandalf upper 'upper.php' Arbitrary File Upload Vulnerability
13091| [41396] SocialABC NetworX Arbitrary File Upload and Cross Site Scripting Vulnerabilities
13092| [41351] Joomla! Front-End Article Manager System Component Arbitrary File Upload Vulnerability
13093| [41331] Dren's PHP Uploader 'index.php' Remote File Upload Vulnerability
13094| [41328] iScripts SocialWare 'photos.php' Arbitrary File Upload Vulnerability
13095| [41309] Wiki Web Help 'uploadimage.php' Arbitrary File Upload Vulnerability
13096| [41262] EA Battlefield 2 and Battlefield 2142 Multiple Arbitrary File Upload Vulnerabilities
13097| [41258] Joomla! CKForms Component SQL Injection and Arbitrary File Upload Vulnerabilities
13098| [41201] IDA Pro QNX File Loader Denial of Service Vulnerability
13099| [41180] RM Downloader '.m3u' File Buffer Overflow Vulnerability
13100| [41179] Speedy Arbitrary File Upload Vulnerability
13101| [41176] Bilder Upload Script Arbitrary File Upload Vulnerability
13102| [41160] Python Paste 'paste.httpexceptions' Multiple Cross Site Scripting Vulnerabilities
13103| [41159] Cisco Adaptive Security Response HTTP Response Splitting Vulnerability
13104| [41145] WM Downloader '.m3u' File Remote Stack Buffer Overflow Vulnerability
13105| [41133] Big Forum Local File Include and Arbitrary File Upload Vulnerabilities
13106| [41132] Cimy Counter for WordPress HTTP Response Splitting and Cross Site Scripting Vulnerabilities
13107| [41104] Multiple Image Upload Module For Drupal Security Bypass Vulnerability
13108| [41103] Mozilla Firefox/SeaMonkey Attachment With Content-Disposition HTTP Header Bypass Vulnerability
13109| [41081] IBM WebSphere Application Server 'mod_ibm_ssl' HTTP Request Remote Denial Of Service Vulnerability
13110| [41064] Weborf HTTP Header Processing Denial Of Service Vulnerability
13111| [41020] The Uploader 'download_launch.php' Directory Traversal Vulnerability
13112| [40994] Belitsoft E-portfolio Joomla! Component Arbitrary File Upload Vulnerability
13113| [40971] MarketSaz 'fckeditor' Arbitrary File Upload Vulnerability
13114| [40965] H264 WebCam HTTP Server Buffer Overflow Vulnerability
13115| [40954] Spring Framework 'class.classLoader' Code Injection Vulnerability
13116| [40950] Atlassian JIRA HTTPOnly Cookie Flag Information Disclosure Weakness
13117| [40931] Novell Access Manager Administration Console 'getEntry()' Arbitrary File Upload Vulnerability
13118| [40930] Splunk HTTP 'Referer' Header Cross Site Scripting Vulnerability
13119| [40921] Omid Samadbin Software Index Image Upload Remote Arbitrary File Upload Vulnerability
13120| [40857] QuickOffice Malformed HTTP Request Remote Denial Of Service Vulnerability
13121| [40834] Yamamah Photo Gallery 'download.php' Local File Disclosure Vulnerability
13122| [40752] WebKit HTTP URI Clipboard Information Disclosure Vulnerability
13123| [40750] WebKit HTTPS Redirect Information Disclosure Vulnerability
13124| [40732] WebKit HTTP Redirects Information Disclosure Vulnerability
13125| [40712] Bits Video Script Multiple Arbitrary File Upload Vulnerabilities
13126| [40700] BTS-GI Read Excel 'upload.php' Arbitrary File Upload Vulnerability
13127| [40640] Cobra Scripts Greeting Cards Remote Arbitrary File Upload Vulnerability
13128| [40611] Symantec Workspace Streaming Server Authentication Arbitrary File Download Vulnerability
13129| [40607] Ronnie Garcia uploadify Plugin for jQuery Remote File Upload Vulnerability
13130| [40575] Weborf HTTP Ranger Header Denial Of Service Vulnerability
13131| [40555] osCSS Remote File Upload Vulnerability
13132| [40511] TCExam 'admin/code/tce_functions_tcecode_editor.php' Arbitrary File Upload Vulnerability
13133| [40496] Kodak Gallery Easy Upload Manager ActiveX Control Unspecified Security Vulnerability
13134| [40489] EvoCam HTTP GET Request Buffer Overflow Vulnerability
13135| [40465] Websense 'Via' HTTP Header Web Filtering Security Bypass Vulnerability
13136| [40463] x10media Image Hosting Script 'create_image_gallery.php' Arbitrary File Upload Vulnerability
13137| [40456] osCommerce Online Merchant 'file_manager.php' Remote Arbitrary File Upload Vulnerability
13138| [40382] Cisco Network Building Mediator HTTP Communication Remote Information Disclosure Vulnerability
13139| [40358] TinyBrowser Remote File Upload Vulnerability
13140| [40353] Webby HTTP GET Request Buffer Overflow Vulnerability
13141| [40345] Simple:Press Plugin for WordPress Security Bypass and Arbitrary File Upload Vulnerabilities
13142| [40344] Ziproxy Image Parsing Multiple Integer Overflow Vulnerabilities
13143| [40341] DotNetNuke Remote Arbitrary File Upload Vulnerability
13144| [40295] Spaw Editor 'spawfm' Module Arbitrary File Upload Vulnerability
13145| [40275] Drupal download_count Module Cross Site Scripting Vulnerability
13146| [40254] Battle Scrypt 'upload.php' Remote Arbitrary File Upload Vulnerability
13147| [40245] Orbit Downloader Metalink File Directory Traversal Vulnerability
13148| [40227] NPDS Revolution 'download.php' Cross Site Scripting Vulnerability
13149| [40198] SimpleDownload Joomla! Component 'fileid' Parameter Information Disclosure Vulnerability
13150| [40192] SimpleDownload Joomla! Component 'controller' Parameter Local File Include Vulnerability
13151| [40162] SphereCMS 'downloads.php' SQL Injection Vulnerability
13152| [40159] PHP File Uploader Remote File Upload Vulnerability
13153| [40156] NPDS Revolution 'download.php' SQL Injection Vulnerability
13154| [40152] Free Download Manager Metalink File Directory Traversal Vulnerability
13155| [40146] Free Download Manager Multiple Remote Buffer Overflow Vulnerabilities
13156| [40132] Zervit HTTP Server Source Code Information Disclosure Vulnerability
13157| [40068] HP OpenView Network Node Manager (CVE-2010-1552) 'doLoad()' Remote Buffer Overflow Vulnerability
13158| [40062] gdomap Arbitrary Configuration File Line Count 'load_iface()' Integer Overflow Vulnerability
13159| [40033] Xinha Dynamic Configuration Arbitrary File Upload Vulnerability
13160| [40026] Joomla! 'com_articleman' Component Arbitrary File Upload Vulnerability
13161| [40025] Geo++ GNCASTER HTTP Digest Authentication Information Disclosure Vulnerability
13162| [40022] Geo++ GNCASTER HTTP Digest Authentication Nonce Regeneration Replay Security Bypass Vulnerability
13163| [40018] Geo++ GNCASTER HTTP Digest Authentication Bypass Vulnerability
13164| [40012] Basml Okul Scripti 'banneryukle.asp' Remote File Upload Vulnerability
13165| [40009] Geo++ GNCASTER HTTP GET Request Denial Of Service Vulnerability
13166| [40002] Cisco Application Control Engine (ACE) HTTP Parsing Security Weakness
13167| [39967] Multiple Lexmark Laser Printers HTTP 'Authorization' Header Remote Denial of Service Vulnerability
13168| [39965] HP LoadRunner Agent 'magnetproc.exe' Remote Code Execution Vulnerability
13169| [39957] GetSimple CMS 'download.php' Local File Include Vulnerability
13170| [39945] Limny Avatar Arbitrary File Upload Vulnerability
13171| [39888] CH-CMS.ch Multiple Arbitrary File Upload Vulnerabilities
13172| [39877] PHP 'php_dechunk()' HTTP Chunked Encoding Integer Overflow Vulnerability
13173| [39874] OpenTTD Map Download File Descriptor Consumption Remote Denial of Service Vulnerability
13174| [39870] CF Image Hosting Script 'upload.php' Arbitrary File Upload Vulnerability
13175| [39863] Woltlab Burning Board Arbitrary File Upload Vulnerability
13176| [39858] Joomla! DJ-Classifieds Component Arbitrary File Upload Vulnerability
13177| [39822] Internet Download Manager FTP Buffer Overflow Vulnerability
13178| [39809] Google Chrome prior to 4.1.249.1059 HTTP Request Unspecified Security Vulnerability
13179| [39793] TaskFreak! Tirzen Framework 'LoadByKey()' SQL Injection Vulnerability
13180| [39787] iScripts SocialWare Arbitrary File Upload and Cross Site Scripting Vulnerabilities
13181| [39781] WM Downloader '.asx' File Remote Stack Buffer Overflow Vulnerability
13182| [39764] Portaneo Open Source Homepage 'fckeditor' Arbitrary File Upload Vulnerability
13183| [39761] Zyke CMS 'admin/controlpanel.php' Arbitrary File Upload Vulnerability
13184| [39757] OneHTTPD Directory Traversal Vulnerability
13185| [39754] Joomla! JE Section/Property Finder Component Arbitrary File Upload Vulnerability
13186| [39753] Custom CMS Gaming Arbitrary File Upload and Cross Site Scripting Vulnerabilities
13187| [39748] WM Downloader '.pls' File Remote Stack Buffer Overflow Vulnerability
13188| [39744] Wing FTP Server HTTP Request Directory Traversal Vulnerability
13189| [39726] Webessence CMS SQL Injection and Arbitrary File Upload Vulnerabilities
13190| [39714] Auto-Img-Gallery 'upload.cgi' Multiple Cross-Site Scripting Vulnerabilities
13191| [39713] PostNuke modload Module 'sid' Parameter SQL Injection Vulnerability
13192| [39706] iNetScripts Arbitrary File Upload Vulnerability
13193| [39686] PHPegasus 'connectors/php/config.php' Remote File Upload Vulnerability
13194| [39674] Satellite-X 'admin/index.php' Arbitrary File Upload Vulnerability
13195| [39669] Google Chrome 'chrome://downloads' Cross Domain Scripting Vulnerability
13196| [39652] In-Portal 'config.php' Arbitrary File Upload Vulnerability
13197| [39638] Tembria Server Monitor HTTP Request Remote Buffer Overflow Vulnerability
13198| [39618] v2marketplacescript Arbitrary File Upload Vulnerability
13199| [39615] Adobe Download Manager 'gp.ocx' ActiveX Control Buffer Overflow Vulnerability
13200| [39596] Momche YUI Image Upload Script Arbitrary File Upload Vulnerability
13201| [39595] Uploader 0.7 Arbitrary File Upload Vulnerability
13202| [39590] HTTP 1.1 GET Request Directory Traversal Vulnerability
13203| [39568] Flex File Manager Arbitrary File Upload Vulnerability
13204| [39544] HTTP File Server Security Bypass and Denial of Service Vulnerabilities
13205| [39540] e107 Avatar/Photograph Arbitrary File Upload Vulnerability
13206| [39530] Ziggurat Farsi CMS Arbitrary File Upload Vulnerability
13207| [39478] Cisco Secure Desktop ActiveX Control Executable File Arbitrary File Download Vulnerability
13208| [39415] Vana CMS 'filename' Parameter Remote File Download Vulnerability
13209| [39365] Uiga Proxy 'template.php' Remote File Include Vulnerability
13210| [39362] MassMirror Uploader 'MM_ROOT_DIRECTORY' Parameter Multiple Remote File Include Vulnerabilities
13211| [39355] TYPO3 'autoloader' Remote File Include Vulnerability
13212| [39317] Pulse CMS Arbitrary File Upload Vulnerability
13213| [39296] velhost uploader script 'language' Parameter Local File Include Vulnerability
13214| [39294] vel File Uploader Remote File Upload Vulnerability
13215| [39289] Apple Mac OS X Wiki Server File Upload Security Bypass Vulnerability
13216| [39224] LionWiki Remote File Upload Vulnerability
13217| [39218] Free Image Hosting and Free File Hosting Remote File Upload Vulnerability
13218| [39182] uTorrent WebUI HTTP 'Authorization' Header Remote Denial of Service Vulnerability
13219| [39179] Musicbox 'up.php' Arbitrary File Upload Vulnerability
13220| [39124] Mozilla Firefox And SeaMonkey 'XMLHttpRequestSpy' Arbitrary Code Execution Vulnerability
13221| [39099] Snipe Gallery Arbitrary File Upload Vulnerability
13222| [39007] RETIRED: Simple Machines Forum Avatar Upload Arbitrary File Upload Vulnerability
13223| [38986] uHTTP Server GET Request Directory Traversal Vulnerability
13224| [38960] Interchange HTTP Response Splitting Vulnerability
13225| [38927] Mozilla Firefox Image Preloading Content-Policy Check Security Bypass Vulnerability
13226| [38920] Mozilla Firefox Asynchronous HTTP Authorization Prompt Information Disclosure Vulnerability
13227| [38875] Remote Help HTTP GET Request Format String Denial Of Service Vulnerability
13228| [38873] Wazzum Dating Software Arbitrary File Upload Vulnerabilities
13229| [38826] PHP-Nuke Downloads Module 'lid' Parameter SQL Injection Vulnerability
13230| [38744] Subdreamer CMS Image Gallery Remote File Upload Vulnerability
13231| [38741] Joomla! RokDownloads Component 'controller' Parameter Local File Include Vulnerability
13232| [38718] httpdx Multiple Remote Denial Of Service Vulnerabilities
13233| [38705] eZoneScripts Game Room Script Admin Upload Remote File Upload Vulnerability
13234| [38700] dl Download Ticket Service 'index.php' Cross Site Scripting Vulnerability
13235| [38670] lukeonweb.net MRW PHP Upload 'upload.html' Remote File Upload Vulnerability
13236| [38638] httpdx PNG File Handling Remote Denial of Service Vulnerability
13237| [38614] Php Toys Micro Upload 'microUpload.php' Remote File Upload Vulnerability
13238| [38610] wh-em.com upload Insecure Cookie Authentication Bypass Vulnerability
13239| [38600] TopDownloads MP3 Player '.mp3' File Remote Buffer Overflow Vulnerability
13240| [38527] DosyaYukle Scripti Remote File Upload Vulnerability
13241| [38491] Apache mod_proxy_ajp Module Incoming Request Body Denial Of Service Vulnerability
13242| [38488] RCA Digital Cable Modem DCM425 'micro_httpd' Remote Denial Of Service Vulnerability
13243| [38467] Linux Kernel KVM Segment Selector Loading Local Privilege Escalation Vulnerability
13244| [38450] SLAED CMS Remote File Upload Vulnerability
13245| [38443] Nemo Multiple File Attachments Mail Form 'upload.php' Arbitrary File Upload Vulnerability
13246| [38416] JSK Internet WebAdministrator 'download.php' SQL Injection Vulnerability
13247| [38406] PBoard 'upload/index.php' Remote File Upload Vulnerability
13248| [38400] PHP F1 Max's Photo Album 'admin.php' Arbitrary File Upload Vulnerability
13249| [38393] Linux Kernel TSB I-TLB Load Local Privilege Escalation Vulnerability
13250| [38370] WorkSimple 'uploader.php' Remote File Upload Vulnerability
13251| [38313] NOS getPlus Downloader Domain Validation Arbitrary File Download Vulnerability
13252| [38308] PortWise SSL VPN 'reloadFrame' Parameter Cross Site Scripting Vulnerability
13253| [38292] Drupal iTweak Upload Module HTML Injection Vulnerability
13254| [38242] httpdx 'MKD' Command Directory Traversal Vulnerability
13255| [38222] Symantec Client Proxy ActiveX Control Buffer Overflow Vulnerability
13256| [38212] Squid Web Proxy Cache HTCP Request Processing Remote Denial of Service Vulnerability
13257| [38173] Coppermine Photo Gallery 'upload.php' Cross Site Scripting Vulnerability
13258| [38169] Cisco IronPort Encryption Appliance HTTPS Server Unspecified Remote Code Execution Vulnerability
13259| [38143] JDownloader 'JDExternInterface.java' Remote Code Execution Vulnerability
13260| [38135] httpdx 'USER' Command Remote Format String Vulnerability
13261| [38128] odlican.net CMS 'upload.php' Arbitrary File Upload Vulnerability
13262| [38036] lighttpd Slow Request Handling Remote Denial Of Service Vulnerability
13263| [38021] C++ Sockets Library HTTP Headers Remote Denial Of Service Vulnerability
13264| [38008] Maian Greetings Arbitrary File Upload Vulnerability
13265| [37995] Sun Java System Application Server HTTP TRACE Information Disclosure Vulnerability
13266| [37940] boastMachine Arbitrary File Upload Vulnerability
13267| [37908] Windows Live Messenger ActiveX Control 'RichUploadControlContextData' Buffer Overflow Vulnerability
13268| [37902] cPanel and WHM 'failurl' Parameter HTTP Response Splitting Vulnerability
13269| [37860] XOOPS Arbitrary File Deletion and HTTP Header Injection Vulnerabilities
13270| [37840] Joomla! 'com_uploader' Component Arbitrary File Upload Vulnerability
13271| [37772] TYPO3 SB Folderdownload Unspecified Information Disclosure Vulnerability
13272| [37767] NetBSD VFS Filesystem Autoloading Local Denial of Service Vulnerability
13273| [37761] Adobe Reader and Acrobat DLL Loading in 3D Remote Code Execution Vulnerability
13274| [37714] Acme thttpd and mini_httpd Terminal Escape Sequence in Logs Command Injection Vulnerability
13275| [37699] Sun Java System Directory Server 'core_get_proxyauth_dn' Denial of Service Vulnerability
13276| [37648] Sun Java System Web Server HTTP 'TRACE' Heap Buffer Overflow Vulnerability
13277| [37604] Joomla! 'com_cartikads' Component Arbitrary File Upload Vulnerability
13278| [37586] httpdx Space Character Remote File Disclosure Vulnerability
13279| [37549] phpYellow Arbitrary File Upload Vulnerability
13280| [37548] Run Digital Download Component for Joomla! Unspecified Unauthorized Access Vulnerability
13281| [37538] Joomla! 'com_rd_download' Component Directory Traversal Vulnerability
13282| [37533] Avatar Studio PHP-Fusion Module Local File Include and Arbitrary File Upload Vulnerabilities
13283| [37530] I-RATER Basic 'poza.php' Arbitrary File Upload Vulnerability
13284| [37512] Barbo91 'upload.php' Cross Site Scripting Vulnerability
13285| [37496] Memory Book Component for Joomla! SQL Injection and Arbitrary File Upload Vulnerabilities
13286| [37465] Kolab Groupware Server Image Upload Form Unspecified Vulnerability
13287| [37454] CoreHTTP CGI Support Remote Command Execution Vulnerability
13288| [37452] F5 BIG-IP ASM and PSM Remote Buffer Overflow Vulnerability
13289| [37446] ClarkConnect Linux 'proxy.php' Cross Site Scripting Vulnerability
13290| [37436] PHPPhotoalbum 'upload.php' Arbitrary File Upload Vulnerability
13291| [37424] Simplicity oF Upload 'upload.php' Arbitrary File Upload Vulnerability
13292| [37406] Celerondude Uploader 'index.php' Arbitrary File Upload Vulnerability
13293| [37382] IDevSpot PhpLinkExchange 'add_images.php' Arbitrary File Upload Vulnerability
13294| [37377] OSSIM 'repository_attachment.php' Arbitrary File Upload Vulnerability
13295| [37326] Google Chrome DNS Pre-Fetching Proxy Cache Information Disclosure Vulnerability
13296| [37320] DigitalHive 'base.php' Arbitrary File Upload Vulnerability
13297| [37314] Open Flash Chart 'ofc_upload_image.php' Remote PHP Code Execution Vulnerability
13298| [37307] Monkey HTTP Daemon Invalid HTTP 'Connection' Header Denial Of Service Vulnerability
13299| [37237] Corehttp 'src/http.c ' Buffer Overflow Vulnerability
13300| [37226] Polipo Malformed HTTP GET Request Memory Corruption Vulnerability
13301| [37224] LightNEasy fckeditor Arbitrary File Upload Vulnerability
13302| [37219] Achievo Document Types Section Arbitrary File Upload Vulnerability
13303| [37187] Photobox Uploader ActiveX Control URL Parsing Stack Buffer Overflow Vulnerability
13304| [37168] TYPO3 Simple download-system (kk_downloader) Unspecified Information Disclosure Vulnerability
13305| [37110] OpenX Arbitrary File Upload Vulnerability
13306| [37064] Xerver HTTP Response Splitting Vulnerability
13307| [37042] Novell eDirectory '/dhost/httpstk' Multiple Stack Buffer Overflow Vulnerabilities
13308| [37005] WordPress 'wp-admin/includes/file.php' Arbitrary File Upload Vulnerability
13309| [36996] WebKit Resource Load Callback Information Disclosure Weakness
13310| [36990] Apache HTTP TRACE Cross Site Scripting Vulnerability
13311| [36977] Apple Mac OS X Help Viewer Spoofed HTTP Response Remote Code Execution Vulnerability
13312| [36895] RhinoSoft Serv-U Web Client HTTP Request Remote Buffer Overflow Vulnerability
13313| [36867] Mozilla Firefox and SeaMonkey Download Filename Spoofing Vulnerability
13314| [36856] Mozilla Firefox and SeaMonkey Proxy Auto-Configuration File Remote Code Execution Vulnerability
13315| [36852] Mozilla Firefox Download Manager World Writable File Local Privilege Escalation Vulnerability
13316| [36839] nginx 'ngx_http_process_request_headers()' Remote Buffer Overflow Vulnerability
13317| [36817] Microsoft SharePoint Team Services Download Feature Source Code Information Disclosure Vulnerability
13318| [36802] MapServer HTTP Request Processing Integer Overflow Vulnerability
13319| [36656] Acritum Femitter Server HTTP Request Remote File Disclosure Vulnerability
13320| [36622] Microsoft Internet Explorer 'deflate' HTTP Content Encoding Remote Code Execution Vulnerability
13321| [36596] Apache HTTP Server Solaris Event Port Pollset Support Remote Denial Of Service Vulnerability
13322| [36438] nginx Proxy DNS Cache Domain Spoofing Vulnerability
13323| [36431] Drupal Arbitrary File Upload and Session Fixation Vulnerabilities
13324| [36407] BigAnt IM Server HTTP GET Request Buffer Overflow Vulnerability
13325| [36406] Belkin F5D7632-4V6 Wireless G Router Multiple Authentication Bypass Vulnerabilities
13326| [36384] nginx HTTP Request Remote Buffer Overflow Vulnerability
13327| [36348] Nicecoder iDesk 'download.php' SQL Injection Vulnerability
13328| [36346] Symantec Altiris eXpress NS SC Download ActiveX Control Arbitrary File Download Vulnerability
13329| [36301] Novell eDirectory HTTP GET Request Unicode Strings Denial Of Service Vulnerability
13330| [36297] Ipswitch WS_FTP Professional HTTP Server Response Format String Vulnerability
13331| [36295] The Rat CMS 'admin/add_album.php' Arbitrary File Upload Vulnerability
13332| [36260] Apache mod_proxy_ftp Module NULL Pointer Dereference Denial Of Service Vulnerability
13333| [36254] Apache mod_proxy_ftp Remote Command Injection Vulnerability
13334| [36199] VMware Studio Virtual Appliance Web Interface File Upload Directory Traversal Vulnerability
13335| [36197] MailEnable 'MEHTTPS.EXE' Stack-Based Buffer Overflow Vulnerability
13336| [36194] SILC Toolkit HTTP Server Format String Vulnerability
13337| [36180] PHP-Fusion 'Download System mSF' module SQL Injection Vulnerability
13338| [36174] OpenAutoClassifieds Arbitrary File Upload Vulnerability
13339| [36167] PHP-Fusion 'downloads.php' SQL Injection Vulnerability
13340| [36091] Squid Web Proxy Cache Authentication Header Parsing Remote Denial of Service Vulnerability
13341| [36074] ntop HTTP Basic Authentication NULL Pointer Dereference Denial Of Service Vulnerability
13342| [36045] Blue Coat ProxySG Proxy Authentication Bypass Vulnerability
13343| [36006] Papoo Upload Images Arbitrary File Upload Vulnerability
13344| [35943] Sun Java Runtime Environment Proxy Mechanism Implementation Privilege Escalation Vulnerabilities
13345| [35925] Mozilla Firefox SOCKS5 Proxy Response Denial of Service Vulnerability
13346| [35904] Adobe Flash Player and AIR Loader Object Heap Memory Corruption Vulnerability
13347| [35881] TYPO3 Myth download Extension Unspecified SQL Injection Vulnerability
13348| [35840] Apache HTTP Server HTTP-Basic Authentication Bypass Vulnerability
13349| [35825] Automatic Image Upload with Thumbnails for PunBB 'uploadimg.php' Arbitrary File Delete Vulnerability
13350| [35824] MODx Context Policy Loading Unspecified Vulnerability
13351| [35823] Automatic Image Upload with Thumbnails 'uploadimg_view.php' SQL Injection Vulnerability
13352| [35818] Cisco Wireless LAN Controller HTTP/HTTPS Denial of Service Vulnerability
13353| [35805] Cisco Wireless LAN Controller HTTP Authorization Denial of Service Vulnerability
13354| [35784] Joomla! 'com_joomloads' Component 'packageId' Parameter SQL Injection Vulnerability
13355| [35781] RaidenHTTPD Cross Site Scripting and Local File Include Vulnerabilities
13356| [35780] Joomla! Remote File Upload Vulnerability And Information Disclosure Weakness
13357| [35778] Akamai Download Manager ActiveX Control Redswoosh Download Stack Buffer Overflow Vulnerability
13358| [35767] Mozilla Firefox Flash Player Unloading Remote Code Execution Vulnerability
13359| [35757] ZNC File Upload Directory Traversal Vulnerability
13360| [35740] NOS getPlus Download Manager Insecure File Permissions Local Privilege Escalation Vulnerability
13361| [35735] Crysis HTTP/XML-RPC Service Access Violation Remote Denial of Service Vulnerability
13362| [35701] Scriptsez Easy Image Downloader 'id' Parameter Cross Site Scripting Vulnerability
13363| [35688] Oracle Application Server CVE-2009-1976 Remote HTTP Server Vulnerability
13364| [35663] Hitachi Web Server Reverse Proxy Remote Denial of Service Vulnerability
13365| [35653] HP ProCurve Threat Management Services zl Module 'httpd' Denial of Service Vulnerability
13366| [35646] RunCMS 'upload.php' Arbitrary File Upload Vulnerability
13367| [35595] Winds3D Viewer 'GetURL()' Arbitrary File Download Vulnerability
13368| [35579] Ruby on Rails 'http_authentication.rb' Nil Credentials Authentication Bypass Vulnerability
13369| [35565] Apache 'mod_proxy' Remote Denial Of Service Vulnerability
13370| [35555] Apple Safari 'reload()' Denial of Service Vulnerability
13371| [35485] PinME! Joomla! Component Arbitrary File Upload Vulnerability
13372| [35462] Google Chrome HTTP Response Handling Remote Code Execution Vulnerability
13373| [35412] Multiple Browsers Web Proxy Redirect Handling Man In The Middle Vulnerability
13374| [35411] Multiple Browsers Cached Certificate HTTP Site Spoofing Vulnerability
13375| [35403] Multiple Browser HTTP Resource in HTTPS Context Security Bypass Vulnerability
13376| [35361] SugarCRM Email Attachment Arbitrary File Upload Vulnerability
13377| [35347] Apple Safari CFNetwork Downloaded Files Information Disclosure Vulnerability
13378| [35337] Serena Dimensions CM 'DOWNLOAD' Command Security Bypass Vulnerability
13379| [35315] WebKit JavaScript 'onload()' Event Cross Domain Scripting Vulnerability
13380| [35312] F5 Networks FirePass SSL VPN 'password' Field Cross-Site Scripting Vulnerability
13381| [35270] WebKit 'XMLHttpRequest' HTTP Response Splitting Vulnerability
13382| [35236] LogMeIn 'cfgadvanced.html' HTTP Header Injection Vulnerability
13383| [35222] Microsoft Internet Explorer XMLHttpRequest Uninitialized Memory Remote Code Execution Vulnerability
13384| [35217] Sun GlassFish Enterprise Server HTTP Engine/Admin Interface Local Denial of Service Vulnerability
13385| [35216] Hitachi Web Server Reverse Proxy Denial of Service Vulnerability
13386| [35204] Sun Java System Web Server Reverse Proxy Plug-in Cross-Site Scripting Vulnerability
13387| [35180] PHP-Nuke Downloads Module 'query' Parameter Cross Site Scripting Vulnerability
13388| [35177] AlstraSoft Article Manager Pro 'article/register.php' Remote File Upload Vulnerability
13389| [35155] eliteCMS Arbitrary File Upload and Cross Site Scripting Vulnerabilities
13390| [35097] Lighttpd Trailing Slash Information Disclosure Vulnerability
13391| [35078] ZaoCMS 'upload.php' Arbitrary File Upload Vulnerability
13392| [35058] Job Script 'mycv.php' Arbitrary File Upload Vulnerability
13393| [35047] CGI Rescue Web Mailer HTTP Header Injection Vulnerability
13394| [35039] DMXReady Registration Manager 'assetmanager.asp' Arbitrary File Upload Vulnerability
13395| [35026] Namad 'SecureDownloads.aspx' Arbitrary File Download Vulnerability
13396| [35024] VidsharePro Arbitrary File Upload Vulnerability
13397| [35006] httpdx Multiple Commands Remote Buffer Overflow Vulnerabilities
13398| [35004] Pc4Uploader 'code.php' SQL Injection Vulnerability
13399| [34995] Rama Zaiten CMS 'download.php' Local File Disclosure Vulnerability
13400| [34958] Apple Mac OS X CFNetwork HTTP Header Handling Heap Buffer Overflow Vulnerability
13401| [34929] Matt Wright FormMail HTTP Response Splitting and Cross Site Scripting Vulnerabilities
13402| [34913] openWYSIWYG 'addons/imagelibrary/insert_image.php' Arbitrary File Upload Vulnerability
13403| [34887] Battle Blog 'uploadform.asp' Arbitrary File Upload Vulnerability
13404| [34813] eLitius Arbitrary File Upload and Authentication Bypass Vulnerabilities
13405| [34794] RM Downloader '.smi' File Buffer Overflow Vulnerability
13406| [34789] BaoFeng Storm ActiveX Control 'OnBeforeVideoDownload()' Buffer Overflow Vulnerability
13407| [34773] Zubrag Smart File Download 'download.php' File Download Security Bypass Vulnerability
13408| [34747] libmodplug 'load_pat.c' Remote Buffer Overflow Vulnerability
13409| [34712] SDP Downloader 'ASX' File Heap Buffer Overflow Vulnerability
13410| [34681] Xitami HTTP Server Multiple Socket HEAD Request Remote Denial Of Service Vulnerability
13411| [34679] Elkagroup Image Gallery 'upload.php' Arbitrary File Upload Vulnerability
13412| [34663] Apache 'mod_proxy_ajp' Information Disclosure Vulnerability
13413| [34653] Download Center Lite Unspecified Security Vulnerability
13414| [34643] Sun Java System Delegated Administrator HTTP Response Splitting Vulnerability
13415| [34640] CRE Loaded 'product_info.php' SQL Injection Vulnerability
13416| [34637] Zervit HTTP Server Malformed URI Remote Denial Of Service Vulnerability
13417| [34601] Adam Patterson Address Book 'upload-file.php' Arbitrary File Upload Vulnerability
13418| [34600] Multi-lingual E-Commerce System Local File Include and Arbitrary File Upload Vulnerabilities
13419| [34599] Flatnux Arbitrary File Upload and Multiple Local File Include Vulnerabilities
13420| [34590] e-cart 'admin/editor/image.php' Arbitrary File Upload Vulnerability
13421| [34575] SPIP Security Bypass and Arbitrary File Upload Vulnerability
13422| [34570] Zervit HTTP Server Directory Traversal Vulnerability
13423| [34535] Job2C Profile Arbitrary File Upload Vulnerability
13424| [34530] Zervit 'http.c' Remote Buffer Overflow Vulnerability
13425| [34520] Nortel Application Gateway 2000 'adminDownloads.htm' Password Disclosure Vulnerability
13426| [34510] Mongoose HTTP Server Directory Traversal Vulnerability
13427| [34478] Microsoft Internet Explorer File Download Denial of Service Vulnerability
13428| [34437] Microsoft WinHTTP Server Name Mismatch Certificate Validation Security Bypass Vulnerability
13429| [34435] Microsoft WinHTTP Integer Underflow Memory Corruption Remote Code Execution Vulnerability
13430| [34434] Photo-Graffix 'mp3upload.htm' Arbitrary File Upload Vulnerability
13431| [34415] Lanius CMS 'upload.php' Arbitrary File Upload Vulnerability
13432| [34368] Family Connections 'fcms/upload.php' Arbitrary File Upload Vulnerability
13433| [34356] TinyPHPForum Avatar Upload Arbitrary File Upload Vulnerability
13434| [34347] File Thingie '.sql' Extension Arbitrary File Upload Vulnerability
13435| [34277] Squid Proxy Cache ICAP Adaptation Denial of Service Vulnerability
13436| [34255] PHPizabi 'modules/interact/file.php' Arbitrary File Upload Vulnerability
13437| [34254] WeBid 'upldgallery.php' Arbitrary File Upload Vulnerability
13438| [34222] PHP Classifieds Arbitrary File Upload and Cross Site Scripting Vulnerabilities
13439| [34221] ZyXEL G570S Crafted HTTP Requests Multiple Vulnerabilities
13440| [34212] Free Arcade Script SQL Injection and Arbitrary File Upload Vulnerabilities
13441| [34200] Orbit Downloader ActiveX Control 'download()' Method Arbitrary File Delete Vulnerability
13442| [34188] SW-HTTPD Incomplete HTTP Request Remote Denial of Service Vulnerability
13443| [34135] HP OpenView Network Node Manager 'Accept-Language' HTTP Header Heap Buffer Overflow Vulnerability
13444| [34128] PPLive URI Handlers 'LoadModule' Parameter Multiple Remote Code Execution Vulnerabilities
13445| [34119] Rapid Leech Upload Function Multiple Remote Input Validation Vulnerabilities
13446| [34087] Traidnt UP 'uploadcp/files.php' Insecure Cookie Authentication Bypass Vulnerability
13447| [33993] Imera Systems ImeraIEPlugin ActiveX Control Arbitrary File Download Vulnerability
13448| [33964] WikyBlog Arbitrary File Upload Vulnerability
13449| [33962] cURL/libcURL HTTP 'Location:' Redirect Security Bypass Vulnerability
13450| [33956] access2asp 'default_Image.asp' Arbitrary File Upload Vulnerability
13451| [33934] Internet Download Manager Language File Parsing Buffer Overflow Vulnerability
13452| [33924] APC PowerChute Network Shutdown HTTP Response Splitting and Cross Site Scripting Vulnerabilities
13453| [33894] Orbit Downloader 'Connecting' Log Message Creation Remote Buffer Overflow Vulnerability
13454| [33874] M5zn Arbitrary File Upload Vulnerability
13455| [33862] PayPal Download Shop SQL Injection and Arbitrary File Upload Vulnerabilities
13456| [33832] Fujitsu Jasmine2000 Enterprise Edition WebLink HTTP Response Splitting Vulnerability
13457| [33823] Firepack User-Agent HTTP Header PHP Code Injection Vulnerability
13458| [33820] Apple Mac OS X Insecure Downloads Folder Permissions Information Disclosure Vulnerability
13459| [33817] SAS Hotel Management System Arbitrary File Upload Vulnerability
13460| [33804] WebKit XMLHttpRequest Cookie Information Disclosure Vulnerability
13461| [33803] Microsoft XML Core Services XMLHttpRequest 'SetCookie2' Header Information Disclosure Vulnerability
13462| [33773] Google Chrome XMLHttpRequest Cookie Information Disclosure Vulnerability
13463| [33761] Sun Java System Directory Server Directory Proxy Server JDBC Backend Denial Of Service Vulnerability
13464| [33742] SkaDate 'photo' Arbitrary File Upload Vulnerability
13465| [33724] libvirt 'libvirt_proxy.c' Local Privilege Escalation Vulnerability
13466| [33712] Varnish HTTP Request Parsing Denial of Service Vulnerability
13467| [33699] Hedgehog-CMS 'specialacts.php' Arbitrary File Upload Vulnerability
13468| [33691] Taridnt UP Remote File Upload Vulnerability
13469| [33665] Ilch CMS 'HTTP_X_FORWARDED_FOR' SQL Injection Vulnerability
13470| [33663] BlackBerry Application Web Loader ActiveX Control Remote Buffer Overflow Vulnerability
13471| [33647] WikkiTikkiTavi 'upload.php' Arbitrary File Upload Vulnerability
13472| [33625] Cisco IOS HTTP Server Multiple Cross Site Scripting Vulnerabilities
13473| [33591] AJA Portal Rapidshare Module Arbitrary File Upload Vulnerability
13474| [33570] Small HTTP server FTP Directory Traversal Vulnerability
13475| [33559] Novell GroupWise HTTP POST/GET Request Information Disclosure Vulnerability
13476| [33555] Free Download Manager Torrent File Parsing Multiple Remote Buffer Overflow Vulnerabilities
13477| [33554] Free Download Manager Remote Control Server Stack Buffer Overflow Vulnerability
13478| [33542] PHP 'mbstring.func_overload' Webserver Denial Of Service Vulnerability
13479| [33516] Trickle 'LD_PRELOAD' Arbitrary Code Execution Vulnerability
13480| [33514] Coppermine Photo Gallery 'picEditor.php' Remote File Upload Vulnerability
13481| [33476] Flaxweb Article Manager Avatar Arbitrary File Upload Vulnerability
13482| [33450] Simple Machines Forum Package Upload Multiple HTML Injection Vulnerabilities
13483| [33424] MemHT Portal Avatar Upload Arbitrary File Upload Vulnerability
13484| [33410] PHP-Nuke Downloads Module 'url' Parameter SQL Injection Vulnerability
13485| [33374] Microsoft IIS HTTP TRACK Method Information Disclosure Vulnerability
13486| [33328] Multiple AJ Classifieds Scripts 'index.php' Arbitrary File Upload Vulnerability
13487| [33295] DMXReady Billboard Manager 'upload_document.asp' Arbitrary File Upload Vulnerability
13488| [33281] DMXReady SDK Arbitrary File Download Vulnerability
13489| [33260] Cisco IOS HTTP Server Multiple Cross Site Scripting Vulnerabilities
13490| [33255] DMXReady Members Area Manager 'upload_image_security_level.asp' SQL Injection Vulnerability
13491| [33253] DMXReady Multiple Products 'upload_image_category.asp' SQL Injection Vulnerability
13492| [33247] Symantec AppStream Client 'LaunchObj' ActiveX Control Arbitrary File Download Vulnerability
13493| [33225] PWP Wiki Processor 'run.php' Arbitrary File Upload Vulnerability
13494| [33198] Silentum Uploader Arbitrary File Deletion Vulnerability
13495| [33147] HP OpenView Network Node Manager HTTP Request Multiple Buffer Overflow Vulnerabilities
13496| [33094] Built2Go PHP Link Portal 'member.php' Arbitrary File Upload Vulnerability
13497| [33093] Built2Go PHP Rate My Photo 'member.php' Arbitrary File Upload Vulnerability
13498| [33088] MemberKit My Picture Album Arbitrary File Upload Vulnerability
13499| [33057] ThePortal '/admin/galeria.php' Arbitrary File Upload Vulnerability
13500| [33034] Flexphplink Pro 'submitlink.php' Arbitrary File Upload Vulnerability
13501| [33005] doop Administration Page Arbitrary File Upload Vulnerability
13502| [33000] W2B phpEmployment 'auth.php' Arbitrary File Upload Vulnerability
13503| [32998] W2B phpAdBoard 'index.php' Arbitrary File Upload Vulnerability
13504| [32995] W2B phpGreetCards 'index.php' Arbitrary File Upload Vulnerability
13505| [32968] Text Lines Rearrange Script 'download.php' Information Disclosure Vulnerability
13506| [32959] OneOrZero Arbitrary File Upload Vulnerability
13507| [32954] ReVou Arbitrary File Upload Vulnerability
13508| [32953] BLOG 'image_upload.php' Arbitrary File Upload Vulnerability
13509| [32936] Extract Website 'download.php' Local File Include Vulnerability
13510| [32932] Online Keyword Research Tool 'download.php' Local File Include Vulnerability
13511| [32911] 2532designs 2532|Gigs Local File Include and Arbitrary File Upload Vulnerabilities
13512| [32907] Irrlicht B3D loader Buffer Overflow Vulnerability
13513| [32888] K&S Shopsystem 'images.php' Arbitrary File Upload Vulnerability
13514| [32858] Faupload 'download.php' SQL Injection Vulnerability
13515| [32821] Multiple AvailScript Products Arbitrary File Upload Vulnerabilities
13516| [32803] Joomla Live Chat Multiple SQL Injection and Open Proxy Vulnerabilities
13517| [32795] Social Groupie 'create_album.php' Arbitrary File Upload Vulnerability
13518| [32785] PHP Support Tickets New Ticket Arbitrary File Upload Vulnerability
13519| [32760] eZoneScripts Living Local Arbitrary File Upload Vulnerability
13520| [32706] dotnetindex Professional Download Assistant SQL Injection Vulnerability
13521| [32699] Secure Downloads for vBulletin 'fileinfo.php' SQL Injection Vulnerability
13522| [32697] SIU Guarani SQL Injection and Arbitrary File Upload Vulnerabilities
13523| [32696] Neostrada Livebox ADSL Router HTTP Request Denial of Service Vulnerability
13524| [32675] w3blabor Local File Include and Arbitrary File Upload Vulnerabilities
13525| [32661] Tizag Countdown Creater 'index.php' Arbitrary File Upload Vulnerability
13526| [32560] Rumpus FTP Server HTTP Command Remote Denial of Service Vulnerability
13527| [32559] Andy's PHP Knowledgebase 'saa.php' Arbitrary File Upload Vulnerability
13528| [32537] Minimal ABlog SQL Injection and Arbitrary File Upload Vulnerabilities
13529| [32509] Star Articles 'user.modify.profile.php' Arbitrary File Upload Vulnerability
13530| [32452] Quicksilver Forums Local File Include and Arbitrary File Upload Vulnerabilities
13531| [32439] MauryCMS Unspecified Arbitrary File Upload Vulnerability
13532| [32433] getaphpsite.com Real Estate Arbitrary File Upload Vulnerability
13533| [32432] getaphpsite.com Auto Dealers Arbitrary File Upload Vulnerability
13534| [32428] Goople CMS '/win/content/upload.php' Arbitrary File Upload Vulnerability
13535| [32382] SocialEngine HTTP Response Splitting and SQL-injection Vulnerabilities
13536| [32371] 'imlib2' Library 'load()' Function Buffer Overflow Vulnerability
13537| [32367] wPortfolio '/admin/upload_form.php' Arbitrary File Upload Vulnerability
13538| [32359] Ruby on Rails 'redirect_to()' HTTP Header Injection Vulnerability
13539| [32318] GungHo LoadPrgAx ActiveX Control Unspecified Vulnerability
13540| [32293] Multiple Scriptsfeed Scripts Arbitrary File Upload Vulnerability
13541| [32277] AlstraSoft SendIt Pro Arbitrary File Upload Vulnerability
13542| [32275] Belkin F5D8233-4 Wireless N Router Multiple Scripts Authentication Bypass Vulnerabilities
13543| [32273] Belkin F5D8233-4 Wireless N Router IP-Based Authentication Session Hijacking Vulnerability
13544| [32257] Pre Real Estate Listings Seller Logo Arbitrary File Upload Vulnerability
13545| [32247] sISAPILocation HTTP Header Rewrite Security Bypass Vulnerability
13546| [32242] Multiple phpstore.info Scripts Arbitrary File Upload Vulnerability
13547| [32234] rtgdictionary for TYPO3 Arbitrary File Upload Vulnerability
13548| [32225] Zeeways ZEEJOBSITE Arbitrary File Upload Vulnerability
13549| [32224] Zeeways ZEEPROPERTY Arbitrary File Upload and Cross Site Scripting Vulnerabilities
13550| [32211] Multiple 2Wire DSL Routers 'xslt' HTTP Request Denial of Service Vulnerability
13551| [32203] Siemens SpeedStream 5200 HTTP Host Spoofing Authentication Bypass Vulnerability
13552| [32152] BigDump '.sql' Arbitrary File Upload Vulnerability
13553| [32105] NOS Microsystems getPlus Download Manager ActiveX Control Buffer Overflow Vulnerability
13554| [32103] NOS Microsystems getPlus Download Manager Unauthorized Access Vulnerability
13555| [32065] Apartment Search Script Arbitrary File Upload and Cross Site Scripting Vulnerabilities
13556| [32013] ComingChina.com U-Mail 'edit.php' Arbitrary File Upload Vulnerability
13557| [31982] Instinct WP e-Commerce 'image_processing.php' Arbitrary File Upload Vulnerability
13558| [31981] Mambo and Joomla! SimpleBoard 'image_upload.php' Arbitrary File Upload Vulnerability
13559| [31978] 7-Shop 'imageupload.php' Arbitrary File Upload Vulnerability
13560| [31914] BuzzScripts BuzzyWall 'download.php' Directory Traversal Vulnerability
13561| [31909] New Earth Programming Team Image Upload Script Arbitrary File Upload Vulnerability
13562| [31887] Snoopy '_httpsrequest()' Arbitrary Command Execution Vulnerability
13563| [31877] Joomla! ionFiles Component 'download.php' Directory Traversal Vulnerability
13564| [31873] Iamma Nuke Simple Gallery 'upload.php ' Arbitrary File Upload Vulnerability
13565| [31852] Bahar Download Script 'aspkat.asp' SQL Injection Vulnerability
13566| [31812] FCKeditor 'CurrentFolder' Parameter Arbitrary File Upload Vulnerability
13567| [31805] Apache HTTP Server OS Fingerprinting Unspecified Security Vulnerability
13568| [31696] KDE Konqueror JavaScript 'load' Function Denial of Service Vulnerability
13569| [31695] Scriptsez Easy Image Downloader 'main.php' Local File Include Vulnerability
13570| [31691] Sun Java System Web Proxy Server FTP Subsytem Heap Based Buffer Overflow Vulnerability
13571| [31685] Kusaba 'load_receiver.php' Remote Code Execution Vulnerability
13572| [31632] Microsoft PicturePusher 'PipPPush.dll' ActiveX Control Arbitrary File Download Vulnerability
13573| [31603] Internet Download Manager File Parsing Buffer Overflow Vulnerability
13574| [31600] Lighttpd 'mod_userdir' Case Sensitive Comparison Security Bypass Vulnerability
13575| [31599] Lighttpd URI Rewrite/Redirect Information Disclosure Vulnerability
13576| [31594] Simple Machines Forum HTTP POST Request Filter Security Bypass Vulnerability
13577| [31577] OpenNMS HTTP Response Splitting Vulnerability
13578| [31574] FOSS Gallery Arbitrary File Upload Vulnerability
13579| [31568] Kwalbum 'UploadItems' Parameter Arbitrary File Upload Vulnerability
13580| [31491] eFront Multiple Arbitrary File Upload Vulnerabilities
13581| [31487] Autodesk DWF Viewer Control 'AdView.dll' Arbitrary File Download Vulnerability
13582| [31456] Camera Life Arbitrary File Upload Vulnerability
13583| [31445] E-Uploader PRO 'id' Parameter Multiple SQL Injection Vulnerabilities
13584| [31434] Lighttpd Duplicate Request Header Denial of Service Vulnerability
13585| [31406] Mass Downloader Malformed Executable Denial Of Service Vulnerability
13586| [31393] Vikingboard 'upload/index.php' Local File Include Vulnerability
13587| [31354] Cisco IOS AIC HTTP Transit Packet Remote Denial of Service Vulnerability
13588| [31351] osCMax 'test.html' Arbitrary File Upload Vulnerability
13589| [31297] AvailScript Job Portal Script Remote File Upload Vulnerability
13590| [31265] fhttpd Basic Authorization Remote Denial Of Service Vulnerability
13591| [31171] phsdev phsBlog 'upload/index.php' SQL Injection Vulnerability
13592| [31156] WebPortal CMS 'download.php' SQL Injection Vulnerability
13593| [31127] minb Multiple Arbitrary File Upload Vulnerabilities
13594| [31122] Ananta 'connectors.php' Arbitrary File Upload Vulnerability
13595| [31106] Red Hat Fedora Directory Server HTTP Unescaping Functions Buffer Overflow Vulnerability
13596| [31047] Samsung DVR SHR-2040 HTTPD Denial of Service Vulnerability
13597| [31035] Google Chrome Malformed 'view-source' HTTP Header Remote Denial of Service Vulnerability
13598| [31028] eZoneScripts Dating Website Remote File Upload Vulnerability
13599| [31010] Celerondude Uploader 'account.php' Cross-Site Scripting Vulnerability
13600| [31000] Google Chrome Arbitrary File Download Vulnerability
13601| [30988] 3Com Wireless 8760 Dual-Radio 11a/b/g PoE HTTP POST Request Denial of Service Vulnerability
13602| [30950] WeBid 'config.php' Arbitrary File Upload Vulnerability
13603| [30869] Red Hat Directory Server Accept Language HTTP Headers Buffer Overflow Vulnerability
13604| [30867] Mono 'System.Web' HTTP Header Injection Vulnerability
13605| [30839] Kolifa.net Download Script 'indir.php' SQL Injection Vulnerability
13606| [30754] GE Fanuc Proficy Information Portal HTTP Basic Authentication Information Disclosure Vulnerability
13607| [30721] VidiScript Remote File Upload Vulnerability
13608| [30677] Cardinal CMS 'upload.php' Arbitrary File Upload Vulnerability
13609| [30671] Sun Java System Web Proxy Server FTP Subsystem Denial of Service Vulnerability
13610| [30662] Amarok 'MagnatuneBrowser::listDownloadComplete()' Insecure Temporary File Creation Vulnerability
13611| [30652] Alcatel-Lucent OmniSwitch Products HTTP Header Remote Buffer Overflow Vulnerability
13612| [30620] RMSOFT Downloads Plus Multiple Cross-Site Scripting Vulnerabilities
13613| [30601] e107 CMS 'download.php' Arbitrary Variable Overwrite Vulnerability
13614| [30560] Apache 'mod_proxy_ftp' Wildcard Characters Cross-Site Scripting Vulnerability
13615| [30548] Aurigma Image Uploader Multiple ActiveX Controls Multiple Unspecified Security Vulnerabilities
13616| [30526] moziloCMS 'download.php' File Disclosure Vulnerability
13617| [30515] Max File Upload File Extension Arbitrary File Upload Vulnerability
13618| [30496] Apache Tomcat 'HttpServletResponse.sendError()' Cross Site Scripting Vulnerability
13619| [30464] Blue Coat K9 Web Protection Centralized Server HTTP Responses Buffer Overflow Vulnerability
13620| [30365] WordPress Wp Downloads Manager Module 'upload.php' Arbitrary File Upload Vulnerability
13621| [30362] ibase 'download.php' Local File Include Vulnerability
13622| [30338] Ceica Groupware Multiple Remote File Upload Vulnerabilities
13623| [30336] AtomatiCMS 'upload.php' Arbitrary File Upload Vulnerability
13624| [30311] EZWebAlbum 'download.php' Local File Include Vulnerability
13625| [30283] LunarNight Laboratory WebProxy Cross Site Scripting Vulnerability
13626| [30273] Oracle mod_wl HTTP POST Request Remote Buffer Overflow Vulnerability
13627| [30265] Citrix XenServer XenAPI HTTP Interfaces Cross-Site Scripting Vulnerability
13628| [30261] Velocity Security Management System HTTP Server Directory Traversal Vulnerability
13629| [30249] PhotoPost vBGallery 'upload.php' Arbitrary File Upload Vulnerability
13630| [30223] Sina DLoader Class ActiveX Control 'DonwloadAndInstall' Method Arbitrary File Download Vulnerability
13631| [30220] Edit-Point 'upload.php' Arbitrary File Upload Vulnerability
13632| [30210] Maian Uploader 'uploader_cookie' Authentication Bypass Vulnerability
13633| [30193] Apple Safari HTTPS to HTTPS Referer Information Disclosure Vulnerability
13634| [30182] File Store PRO 'download.php' SQL Injection Vulnerability
13635| [30138] Download Accelerator Plus '.m3u' File Buffer Overflow Vulnerability
13636| [30117] WebXell Editor 'upload_pictures.php' Arbitrary File Upload Vulnerability
13637| [30114] Snapshot Viewer for Microsoft Access ActiveX Control Arbitrary File Download Vulnerability
13638| [30105] BlueZ SDP Payload Processing Multiple Buffer Overflow Vulnerabilities
13639| [30100] ImperialBB Remote File Upload Vulnerability
13640| [30094] THELIA Arbitrary File Upload and Authentication Bypass Vulnerabilities
13641| [30090] F5 FirePass SSL VPN SNMP Daemon Remote Denial of Service Vulnerability
13642| [29982] Seagull Arbitrary File Upload Vulnerability
13643| [29963] UUSee UUUpgrade ActiveX Control 'Update' Method Arbitrary File Download Vulnerability
13644| [29949] RETIRED: PHPmotion SQL Injection and Arbitrary File Upload Vulnerabilities
13645| [29946] Google Talk 'http' and 'mailto' Remote Script Code Injection Vulnerability
13646| [29929] Page Manager 'upload.php' Arbitrary File Upload Vulnerability
13647| [29917] Php F1 Max's Image Uploader 'index.php' Arbitrary File Upload Vulnerability
13648| [29914] cmsWorks 'config.php' Arbitrary File Upload Vulnerability
13649| [29892] emuCMS 'upload.php' Arbitrary File Upload Vulnerability
13650| [29867] le.cms 'admin/upload.php' Arbitrary File Upload Vulnerability
13651| [29849] GL-SH Deaf Forum Cross-Site Scripting Vulnerability and Arbitrary File Upload Vulnerability
13652| [29825] TYPO3 Download system Extension SQL Injection Vulnerability
13653| [29809] OFFSystem HTTP Headers Remote Buffer Overflow Vulnerability
13654| [29795] aspWebCalendar 'calendar_admin.asp' Arbitrary File Upload Vulnerability
13655| [29786] CRE Loaded Multiple HTML Injection Vulnerabilities
13656| [29759] Crysis HTTP/XML-RPC Service Remote Denial of Service Vulnerability
13657| [29734] Simple Machines Forum 'load.php' SQL Injection Vulnerability
13658| [29707] Easy-Clanpage Arbitrary File Upload and Local File Include Vulnerabilities
13659| [29698] X-Poll 'admin/images/index.php' Arbitrary File Upload Vulnerability
13660| [29661] uTorrent and BitTorrent HTTP 'Range' Header Remote Denial of Service Vulnerability
13661| [29657] TYPO3 Cross-Site Scripting Vulnerability and File Upload Vulnerability
13662| [29621] Achievo 'config.php' Arbitrary File Upload Vulnerability
13663| [29618] Flux CMS 'loadsave.php' Arbitrary File Overwrite Vulnerability
13664| [29600] XOOPS Uploader Module 'filename' Parameter Directory Traversal Vulnerability
13665| [29577] Black Ice Multiple Applications 'BiDib.dll' ActiveX Control Arbitrary File Download Vulnerability
13666| [29574] F5 FirePass SSL VPN Multiple Cross-Site Request Forgery Vulnerabilities
13667| [29570] Linksys WRH54G Wireless-G Router Malformed HTTP Request Denial of Service Vulnerability
13668| [29554] Joomla! and Mambo JotLoader Component 'cid' Parameter SQL Injection Vulnerability
13669| [29530] HP Instant Support 'HPISDataManager.dll' ActiveX Control Arbitrary File Download Vulnerability
13670| [29519] C6 Messenger Installation URL Downloader ActiveX Control Arbitrary File Download Vulnerability
13671| [29497] RETIRED: SiteXS CMS 'adm/visual/upload.php' Arbitrary File Upload Vulnerability
13672| [29476] Kaya CGI Framework HTTP Header Cross Site Scripting Vulnerability
13673| [29438] PHP Booking Calendar 'upload.php' Arbitrary File Upload Vulnerability
13674| [29434] CMS from Scratch 'image.php' Directory Traversal and Arbitrary File Upload Vulnerabilities
13675| [29431] CMS from Scratch 'upload.php' Arbitrary File Upload Vulnerability
13676| [29422] SyntaxCMS 'upload.php' Arbitrary File Upload Vulnerability
13677| [29419] FlashBlog 'imgupload.php' Arbitrary File Upload Vulnerability
13678| [29390] trombyn 'demoupload.php' Arbitrary File Upload Vulnerability
13679| [29374] OneCMS 'load' Parameter Local File Include Vulnerability
13680| [29372] ClassSystem Multiple SQL Injection Vulnerabilities and Arbitrary File Upload Vulnerability
13681| [29352] WordPress Upload File Plugin 'wp-uploadfile.php' SQL Injection Vulnerability
13682| [29341] WWW File Share Pro Unspecified Arbitrary File Upload Vulnerability
13683| [29334] Interchange Unspecified HTTP POST Request Denial Of Service Vulnerability
13684| [29310] IBM Lotus Domino Web Server 'Accept Language' HTTP Header Buffer Overflow Vulnerability
13685| [29279] PhotoStockPlus Uploader Tool ActiveX Control Multiple Stack Based Buffer Overflow Vulnerabilities
13686| [29276] RETIRED: WordPress 'Blog' Module 'Write Tab' Arbitrary File Upload Vulnerability
13687| [29222] Cisco Unified Presence SIP Proxy Denial of Service Vulnerability
13688| [29216] Cisco Content Switching Module Layer 7 Load Balancing Denial of Service Vulnerability
13689| [29170] CMS Made Simple 'modules/FileManager/postlet/javaUpload.php' Arbitrary File Upload Vulnerability
13690| [29121] Microsoft Outlook Web Access 'no-store' HTTP Directive Information Disclosure Weakness
13691| [29112] Microsoft Internet Explorer UTF-7 HTTP Response Handling Weakness
13692| [29110] ZyWALL 100 HTTP Referer Header Cross Site Scripting Vulnerability
13693| [29072] QTO File Manager 'qtofm.php' Arbitrary File Upload Vulnerability
13694| [29051] Maian Uploader Multiple Cross Site Scripting Vulnerabilities
13695| [29029] SiteXS CMS 'upload.php' Arbitrary File Upload Vulnerability
13696| [28993] Akamai Download Manager ActiveX Control Remote Code Execution Vulnerability
13697| [28975] WordPress Download Monitor Plugin 'id' Parameter SQL Injection Vulnerability
13698| [28955] PHPG Upload 'form_upload.php' Arbitrary File Upload Vulnerability
13699| [28941] Sun Java System Directory Proxy Server Remote Unauthorized Access Vulnerability
13700| [28937] KDE KHTML PNGLoader Heap Buffer Overflow Vulnerability
13701| [28922] PHCDownload Multiple SQL Injection and Cross-Site Scripting Vulnerabilities
13702| [28919] PHP-Nuke DownloadsPlus Module Arbitrary File Upload Vulnerability
13703| [28902] F5 Networks FirePass 4100 SSL VPN 'installControl.php3' Cross-Site Scripting Vulnerability
13704| [28887] EncapsGallery Cross-Site Scripting Vulnerability and File Upload Vulnerability
13705| [28817] eGroupWare Unspecified Arbitrary File Upload Vulnerability
13706| [28813] Apple Safari File Download Remote Memory Corruption Vulnerability
13707| [28795] BigAnt IM Server HTTP GET Request Remote Buffer Overflow Vulnerability
13708| [28788] KwsPHP Eskuel Module Arbitrary File Upload Vulnerability
13709| [28787] Dotclear 'ecrire/images.php' Arbitrary File Upload Vulnerability
13710| [28766] Coppermine Photo Gallery 'upload.php' SQL Injection Vulnerability
13711| [28757] Novell eDirectory HTTP 'Connection' Header Denial Of Service Vulnerability
13712| [28718] ARWScripts Gallery Script Lite 'download.html' File Disclosure Vulnerability
13713| [28696] Adobe Flash Player Arbitrary Cross Domain HTTP Request Headers Security Vulnerability
13714| [28693] Squid Web Proxy Cache 'arrayShrink()' Remote Denial of Service Vulnerability
13715| [28685] phpTournois Avatar Arbitrary File Upload Vulnerability
13716| [28670] iScripts SocialWare Arbitrary File Upload Vulnerability
13717| [28666] CDNetworks Nefficient Download 'NeffyLauncher.dll' ActiveX Control Multiple Vulnerabilities
13718| [28656] Drake CMS HTTP 'Via' Header SQL Injection Vulnerability
13719| [28646] Pixel Motion Blog Arbitrary File Upload Vulnerability
13720| [28639] F5 BIG-IP Web Management Interface 'NEW_VALUE' Parameter Remote Code Injection Vulnerability
13721| [28610] SmarterTools SmarterMail HTTP Request Handling Denial Of Service Vulnerability
13722| [28578] Nuked-Klan HTTP Referer Header SQL Injection Vulnerability
13723| [28572] Novell eDirectory HTTP HEAD Request Handling Denial Of Service Vulnerability
13724| [28546] Chilkat HTTP 'ChilkatHttp.dll' ActiveX Control Insecure Method Vulnerabilities
13725| [28541] Orbit Downloader 'Download Failed' Remote Buffer Overflow Vulnerability
13726| [28516] WordPress 'wp-download' Plugin 'dl_id' Parameter SQL Injection Vulnerability
13727| [28491] Perlbal Buffered Upload Remote Denial Of Service Vulnerability
13728| [28490] Siemens SpeedStream 6520 HTTP Request Remote Denial Of Service Vulnerability
13729| [28489] Lighttpd SSL Error Denial of Service Vulnerability
13730| [28440] e107 My_Gallery Plugin 'dload.php' Arbitrary File Download Vulnerability
13731| [28428] Joomla! and Mambo Download3000 Component 'id' Parameter SQL Injection Vulnerability
13732| [28416] F5 Big-IP Web Management Audit Log HTML Injection Vulnerability
13733| [28404] Apple Safari File Download Remote Denial of Service Vulnerability
13734| [28394] ASUS Remote Console DPC Proxy Buffer Overflow Vulnerability
13735| [28355] Yehe 'envoyer' Arbitrary File Upload Vulnerability
13736| [28354] Piczo Fast Picture Uploader 'ImageUploader4.ocx' ActiveX Control Buffer Overflow Vulnerability
13737| [28346] PEEL Multiple SQL Injection Vulnerabilities and Arbitrary File Upload Vulnerability
13738| [28322] Belkin F5D7230-4 Wireless G Router 'setup_virtualserver.exe' Denial of Service Vulnerability
13739| [28319] Belkin F5D7230-4 Wireless G Router 'setup_dns.exe' Authentication Vulnerability
13740| [28317] Belkin F5D7230-4 Wireless G Router IP-Based Authentication State Authentication Bypass Vulnerability
13741| [28316] Asterisk Predictable HTTP Manager Session ID Security Bypass Vulnerability
13742| [28308] Asterisk RTP Codec Payload Handling Multiple Buffer Overflow Vulnerabilities
13743| [28257] AuraCMS 'HTTP_X_FORWARDED_FOR' SQL Injection Vulnerability
13744| [28226] Lighttpd mod_userdir Information Disclosure Vulnerability
13745| [28219] Download Center Multiple Cross Site Scripting Vulnerabilities
13746| [28199] RemotelyAnywhere HTTP Service Cross-Site Scripting Vulnerability
13747| [28151] F5 BIG-IP Web Management Interface Console HTML Injection Vulnerability
13748| [28129] SmartFactory WF-Downloads XOOPS Module 'viewcat.php' SQL Injection Vulnerability
13749| [28100] Lighttpd 'mod_cgi' Information Disclosure Vulnerability
13750| [28081] Timbuktu Pro File Upload and Log Input Manipulation Vulnerabilities
13751| [28051] netOffice Dwins Authentication Bypass Vulnerability and Arbitrary File Upload Vulnerability
13752| [27981] MyServer Mutltiple HTTP Methods '204 Not Content' Error Remote Denial of Service Vulnerabilities
13753| [27961] LWS php Download Manager 'body.inc.php' Local File Include Vulnerability
13754| [27943] Lighttpd File Descriptor Array Remote Denial of Service Vulnerability
13755| [27932] PHP-Nuke Downloads Module 'sid' Parameter SQL Injection Vulnerability
13756| [27877] Google Hack Honeypot File Upload Manager 'delall' Unauthorized File Access Vulnerability
13757| [27860] Joomla! and Mambo com_downloads Component 'cat' Parameter SQL Injection Vulnerability
13758| [27847] PHPizabi 'image.php' Arbitrary File Upload Vulnerability
13759| [27839] TRUC Tracking Requirements & Use Cases 'download.php' File Disclosure Vulnerability
13760| [27838] XPWeb 'Download.php' File Disclosure Vulnerability
13761| [27792] Dokeos Multiple SQL Injection, HTML Injection, Cross-Site Scripting, and File Upload Vulnerabilities
13762| [27788] ITheora 'download.php' Information Disclosure Vulnerability
13763| [27780] Joomla! User Home Pages Component 'com_uhp' Arbitrary File Upload Vulnerability
13764| [27756] Facebook Photo Uploader 'ImageUploader4.1.ocx' FileMask Method ActiveX Buffer Overflow Vulnerability
13765| [27747] Counter Strike Portals 'download' SQL Injection Vulnerability
13766| [27737] AliBOARD Arbitrary File Upload Vulnerability
13767| [27720] F5 BIG-IP Web Management Interface Cross-Site Request Forgery Vulnerability
13768| [27715] Sony ImageStation 'AxRUploadServer.dll' ActiveX Control Remote Buffer Overflow Vulnerability
13769| [27708] Spam Board Arbitrary File Upload Vulnerability
13770| [27701] Multiple IEA Software Products HTTP POST Request Denial of Service Vulnerability
13771| [27665] IBM WebSphere Edge Server Caching Proxy Cross-Site Scripting Vulnerability
13772| [27648] Joomla! and Mambo com_downloads Component 'filecatid' Parameter SQL Injection Vulnerability
13773| [27628] RaidenHTTPD Prior to 2.0.22 Unspecified Cross Site Scripting Vulnerability
13774| [27618] Download Management for PHP-Fusion Multiple Local File Include Vulnerabilities
13775| [27598] HispaH Youtube Clone 'load_message.php' Cross-Site Scripting Vulnerability
13776| [27595] IBM OS/400 HTTP Server Expect Header Cross-Site Scripting Vulnerability
13777| [27593] Anon Proxy Server Remote Authentication Buffer Overflow Vulnerability
13778| [27577] Aurigma Image Uploader ActiveX Controls 'ExtractIptc/ExtractExif' Buffer Overflow Vulnerabilities
13779| [27576] Facebook Photo Uploader 4 ActiveX Control 'ExtractIptc/ExtractExif' Buffer Overflow Vulnerabilities
13780| [27562] LightBlog 'cp_upload_image.php' Arbitrary File Upload Vulnerability
13781| [27550] Liferay Enterprise Portal 'User-Agent' HTTP Header Script Injection Vulnerability
13782| [27547] Liferay Enterprise Portal User-Agent HTTP Header Cross Site Scripting Vulnerability
13783| [27544] Drupal Comment Upload Module Upload Validation Function Arbitrary File Upload Vulnerability
13784| [27539] Aurigma Image Uploader 'ImageUploader4.ocx' ActiveX Control Buffer Overflow Vulnerability
13785| [27534] Facebook Photo Uploader 4 'ImageUploader4.1.ocx' ActiveX Control Buffer Overflow Vulnerability
13786| [27533] MySpace Uploader 'MySpaceUploader.ocx' ActiveX Control Buffer Overflow Vulnerability
13787| [27487] Symantec Backup Exec System Recovery Manager FileUpload Class Unauthorized File Upload Vulnerability
13788| [27472] Mambo MOStlyCE Module Image Manager Utility Arbitrary File Upload Vulnerability
13789| [27462] F5 BIG-IP Application Security Manager 'report_type' Cross-Site Scripting Vulnerability
13790| [27456] Persits Software XUpload 'AddFile()' Method ActiveX Control Remote Buffer Overflow Vulnerability
13791| [27423] HFS HTTP File Server Multiple Security Vulnerabilities
13792| [27411] Lycos File Upload Component 'FileUploader.dll' ActiveX Control Buffer Overflow Vulnerability
13793| [27409] Apache 'mod_negotiation' HTML Injection and HTTP Response Splitting Vulnerability
13794| [27391] Fujitsu Interstage HTTP Server Multiple Unspecified Denial Of Service Vulnerabilities
13795| [27379] IDMOS CMS 'download.php' Local File Include Vulnerability
13796| [27373] Numara FootPrints 'MRchat.pl' and 'MRABLoad2.pl' Multiple Remote Command Execution Vulnerabilities
13797| [27368] MegaBBS 'upload.asp' Cross-Site Scripting Vulnerability
13798| [27366] Galaxy Scripts Mini File Host 'upload.php' POST Parameter Local File Include Vulnerability
13799| [27358] BitDefender Products Update Server HTTP Daemon Directory Traversal Vulnerability
13800| [27348] Mahara HTML Arbitrary File Upload Vulnerability
13801| [27327] GalaxyScripts Mini File Host 'upload.php' Local File Include Vulnerability
13802| [27312] MailBee WebMail Pro 'download_view_attachment.aspx' Local File Include Vulnerability
13803| [27285] PHP F1 Max's File Uploader 'index.php' Arbitrary File Upload Vulnerability
13804| [27279] Macrovision FLEXnet Connect ActiveX Control Multiple Arbitrary File Download Vulnerabilities
13805| [27272] F5 BIG-IP 'SearchString' Multiple Cross-Site Scripting Vulnerabilities
13806| [27247] StreamAudio ProxyManager 'InternalTuneIn()' ActiveX Control Buffer Overflow Vulnerability
13807| [27237] Apache HTTP Server 2.2.6, 2.0.61 and 1.3.39 'mod_status' Cross-Site Scripting Vulnerability
13808| [27234] Apache 'mod_proxy_ftp' Undefined Charset UTF-7 Cross-Site Scripting Vulnerability
13809| [27203] UploadScript and UploadImage 'admin.php' Unauthorized Access Vulnerability
13810| [27186] Zero CMS Arbitrary File Upload Vulnerability and Multiple SQL-Injection Vulnerabilities
13811| [27166] ekinboard Multiple Authentication Bypass And Arbitrary File Upload Vulnerabilities
13812| [27158] OneCMS Arbitrary File Upload Vulnerability and Multiple SQL-injection Vulnerabilities
13813| [27151] WordPress Plugin Wp-FileManager 'ajaxfilemanager.php' Arbitrary File Upload Vulnerability
13814| [27128] ExpressionEngine HTTP Response Splitting and Cross Site Scripting Vulnerabilities
13815| [27107] Camtasia Studio 'csPreloader' Remote Code Execution Vulnerability
13816| [27106] DivX Web Player 'npUpload.dll' ActiveX Control Remote Denial of Service Vulnerability
13817| [27092] AGENCY4NET WEBFTP 'download2.php' Local File Include Vulnerability
13818| [27079] Bitweaver 'upload.php' Arbitrary File Upload Vulnerability
13819| [27076] Mihalism Multi Host 'download.php' Directory Traversal Vulnerability
13820| [27066] PHCDownload 'search.php' SQL Injection and Cross-Site Scripting Vulnerability
13821| [27062] MySpace Content Zone 'uploadgames.php' Arbitrary File Upload Vulnerability
13822| [27060] XCMS Multiple Local File Include Vulnerabilities and Arbitrary File Upload Vulnerability
13823| [27047] Extended Module Player (xmp) 'oxm.c' And 'dtt_load.c' Multiple Local Buffer Overflow Vulnerabilities
13824| [27025] Persits Software XUpload ActiveX Control Remote Buffer Overflow Vulnerability
13825| [26998] Agares Media ThemeSiteScript 'loadadminpage' Parameter Remote File Include Vulnerability
13826| [26991] PHCDownload Username HTML Injection Vulnerability
13827| [26978] Sun Java Web Proxy Server and Sun Java Web Server Multiple Cross-Site Scripting Vulnerabilities
13828| [26969] Adobe Flash Player HTTP Response Splitting Vulnerability
13829| [26940] Dokeos 'My production' Arbitrary File Upload Vulnerability
13830| [26939] Apache HTTP Server Windows Share PHP File Extension Mapping Information Disclosure Vulnerability
13831| [26925] Automatic Image Upload with Thumbnails for PunBB 'uploadimg.php' Arbitrary File Upload Vulnerability
13832| [26907] Uber-Uploader Multiple Arbitrary File Upload Vulnerabilities
13833| [26903] RaidenHTTPD 'workspace.php' Directory Traversal Vulnerability
13834| [26899] PeerCast HandshakeHTTP Multiple Buffer Overflow Vulnerabilities
13835| [26882] Anon Proxy Server Remote Shell Command Execution Vulnerabilities
13836| [26851] Kerio WinRoute Firewall Unspecified Proxy Authentication Bypass Weakness
13837| [26849] xml2owl 'filedownload.php' Directory Traversal Vulnerability
13838| [26827] ES Simple Uploader Arbitrary File Upload Vulnerability
13839| [26813] Simple HTTPD Aux Remote Denial of Service Vulnerability
13840| [26810] KLab HttpLogger Unspecified Cross Site Scripting Vulnerability
13841| [26775] PolDoc Document Management System Download_File.PHP Directory Traversal Vulnerability
13842| [26768] SHTTPD Multiple File Access And Directory Traversal Vulnerabilities
13843| [26740] RETIRED: phpBB .PNG and .RAR Multiple Arbitrary File Upload Vulnerabilities
13844| [26700] Apple Mac OS X Mach_Loader.C Local Denial of Service Vulnerability
13845| [26696] Jetty Unspecified HTTP Response Splitting Vulnerability
13846| [26687] Squid Proxy Cache Update Reply Processing Remote Denial of Service Vulnerability
13847| [26686] Microsoft Web Proxy Auto-Discovery Proxy Spoofing Vulnerability
13848| [26663] Apache HTTP Server 413 Error HTTP Request Method Cross-Site Scripting Weakness
13849| [26659] F5 Networks FirePass 4100 SSL VPN My.Logon.PHP3 Cross-Site Scripting Vulnerability
13850| [26651] LearnLoop File_download.PHP Remote File Include Vulnerability
13851| [26589] Mozilla Firefox and SeaMonkey Windows.Location Property HTTP Referer Header Spoofing Weakness
13852| [26559] PBLang NTopic.PHP Arbitrary File Upload Vulnerability
13853| [26537] Aurigma Image Uploader ActiveX Control Multiple Remote Stack Buffer Overflow Vulnerabilities
13854| [26483] IceBB HTTP_X_FORWARDED_FOR SQL Injection Vulnerability
13855| [26457] IBM WebSphere Application Server WebContainer HTTP Request Header Security Weakness
13856| [26361] C++ Sockets Library HTTPSocket Class Remote Denial Of Service Vulnerability
13857| [26329] Galmeta Post Upload_Config.PHP Remote File Include Vulnerability
13858| [26286] Blue Coat ProxySG Management Console URI Handler Multiple Cross-Site Scripting Vulnerabilities
13859| [26278] RETIRED: phpMyConferences PageTraiteDownload.PHP Local File Include Vulnerability
13860| [26277] ISPworker Download.PHP Multiple Directory Traversal Vulnerabilities
13861| [26242] ProfileCMS Profile Creation Arbitrary File Upload Vulnerability
13862| [26212] Shttp Remote Directory Traversal Vulnerability
13863| [26186] FCKeditor Unspecified Arbitrary File Upload Vulnerability
13864| [26184] efileman Arbitrary File Upload And Access Validation Vulnerabilities
13865| [26180] 3proxy FTP Proxy Double Free Memory Corruption Vulnerability
13866| [26179] Japanese PHP Gallery Hosting Arbitrary File Upload Vulnerability
13867| [26171] Jeebles Technology Jeebles Directory Download.PHP Local File Include Vulnerability
13868| [26143] ReloadCMS Index.PHP Local File Include Vulnerability
13869| [26062] Microsoft Internet Explorer Extension Filter Bypass Arbitrary File Download Vulnerability
13870| [26044] Joomla! Flash Uploader mosConfig_Absolute_Path Multiple Remote File Include Vulnerabilities
13871| [26024] PHP ionCube Loader Extension Safe_Mode and Disable_Functions Restriction Bypass Vulnerability
13872| [25990] LightBlog Privilege Escalation and Arbitrary File Upload Vulnerabilities
13873| [25975] TYPOlight webCMS preview.php Arbitrary File Download Vulnerability
13874| [25928] Cart32 GetImage Arbitrary File Download Vulnerability
13875| [25903] Altnet Download Manager ADM4 ActiveX Buffer Overflow Vulnerability
13876| [25892] EDraw Office Viewer Component FtpDownloadFile ActiveX Buffer Overflow Vulnerability
13877| [25878] XOOPS Uploader Class Arbitrary File Upload Vulnerability
13878| [25861] Zomplog admin/upload_files.php Unauthorized Access Vulnerability
13879| [25847] Ruby Net::HTTP SSL Insecure Certificate Validation Weakness
13880| [25836] Microsoft Internet Explorer File Upload Vulnerability
13881| [25799] ELinks HTTPS POST Request Information Disclosure Weakness
13882| [25753] Microsoft ISA Server SOCKS4 Proxy Connection Remote Information Disclosure Vulnerability
13883| [25747] SimplePHPBlog img_upload_cgi.php Arbitrary File Upload Vulnerability
13884| [25727] Yahoo! Messenger CYFT FT60.DLL ActiveX Control GetFile Method Arbitrary File Upload Vulnerability
13885| [25685] PhotoChannel Networks Photo Upload Plugin ActiveX Control Multiple Buffer Overflow Vulnerabilities
13886| [25681] Chupix CMS download.php Arbitrary File Download Vulnerability
13887| [25622] Lighttpd Mod_FastCGI Request Headers Remote Header Overflow Vulnerability
13888| [25621] AuraCMS mod/contak.php Arbitrary File Upload Vulnerability
13889| [25618] QGit DataLoader::doStart Function Local Privilege Escalation Vulnerability
13890| [25617] SisfoKampus dwoprn.php Arbitrary File Download Vulnerability
13891| [25613] Proxy Anket anket.asp SQL Injection Vulnerability
13892| [25612] Joomla! Comp Restaurante Component Index.PHP Arbitrary File Upload Vulnerability
13893| [25589] RW::Download Index.PHP Multiple SQL Injection Vulnerabilities
13894| [25551] Barbo91 upload.php Arbitrary File Upload Vulnerability
13895| [25509] RETIRED: Olate Download Arbitrary File Upload Vulnerability
13896| [25491] Pakupaku CMS Index.PHP Arbitrary File Upload Vulnerability
13897| [25487] Our Space UploadMedia.CGI Arbitrary File Upload Vulnerability
13898| [25455] Dale Mooney Moon Gallery Upload.PHP Arbitrary File Upload Vulnerability
13899| [25412] Olate Download FLDM.PHP Cross-Site Scripting Vulnerability
13900| [25410] Olate Download Download.PHP Multiple SQL Injection Vulnerabilities
13901| [25405] phUploader 'phUploader.php' Arbitrary File Upload Vulnerability
13902| [25404] American Financing eMail Image Upload Output.PHP Arbitrary File Upload Vulnerability
13903| [25384] Olate Download Admin.PHP SQL Injection Vulnerability
13904| [25356] Olate Download Environment.PHP Arbitrary Script Code Execution Vulnerability
13905| [25343] Olate Download Admin.PHP Remote Authentication Bypass Vulnerability
13906| [25293] Szymon Kosok Best Top List Banner-Upload.PHP Arbitrary File Upload Vulnerability
13907| [25278] Streamripper HTTP Header Parsing Buffer Overflow Vulnerabilities
13908| [25253] Mapos-Scripts.de File Uploader Multiple Remote File Include Vulnerabilities
13909| [25192] Xunlei Web Thunder ThunderServer.webThunder.1 ActiveX AddCategory File Download Vulnerability
13910| [25190] Sun Java System Web Server Multiple HTTP Redirect Vulnerabilities
13911| [25164] WikiWebWeaver Index.PHP Arbitrary File Upload Vulnerability
13912| [25158] WordPress Upload.PHP Cross-Site Scripting Vulnerability
13913| [25142] Mozilla Firefox/Thunderbird/SeaMonkey Chrome-Loaded About:Blank Script Execution Vulnerability
13914| [25137] RETIRED: Holotech Phorm FileUpload.PHP Arbitrary File Upload Vulnerability
13915| [25130] Neocrome Seditio PFS.PHP Arbitrary File Upload Vulnerability
13916| [25120] CoreHTTP Http.C Buffer Overflow Vulnerability
13917| [25084] IBM AIX Pioout Arbitrary Library Loading Code Execution Vulnerability
13918| [25070] Sun Solaris Low Bandwidth X Proxy Information Disclosure Vulnerability
13919| [25063] Clever Internet ActiveX Suite CLINetSuiteX6.OCX Arbitrary File Download Or Overwrite Vulnerability
13920| [25030] xserver HTTP Post Request Buffer Overflow Vulnerability
13921| [25028] StatCounter HTTP Referrer Field HTML Injection Vulnerability
13922| [24967] Lighttpd Multiple Code Execution, Denial of Service and Information Disclosure Vulnerabilities
13923| [24958] Joomla Expose Component Uploadimg.PHP Arbitrary File Upload Vulnerability
13924| [24911] Microsoft Internet Explorer OnBeforeUnload Javascript Browser Entrapment Vulnerability
13925| [24778] Microsoft .NET Framework PE Loader Remote Buffer Overflow Vulnerability
13926| [24773] SAP DB Web Server WAHTTP.EXE Multiple Buffer Overflow Vulnerabilities
13927| [24764] FarsiNews Admin.PHP Arbitrary File Upload Vulnerability
13928| [24758] GNU GLibC LD.SO Mask Dynamic Loader Integer Overflow Vulnerability
13929| [24752] LightBlog Main.PHP Arbitrary File Upload Vulnerability
13930| [24750] ImLib BMP Image _LoadBMP Function Denial of Service Vulnerability
13931| [24725] Mozilla Firefox OnKeyDown Event File Upload Vulnerability
13932| [24683] SHTTPd Unspecified Cross Site Scripting Vulnerability
13933| [24649] Apache HTTP Server Mod_Cache Denial of Service Vulnerability
13934| [24648] SlackRoll GnuPG And HTTP Codes Signature Validation Bypass Vulnerability And Weakness
13935| [24645] Apache HTTP Server Mod_Status Cross-Site Scripting Vulnerability
13936| [24642] WordPress Custom Field Arbitrary File Upload Vulnerability
13937| [24639] Dreamlog Upload.PHP Arbitrary File Upload Vulnerability
13938| [24618] SHTTPD Filename Parse Error Information Disclosure Vulnerability
13939| [24609] E107 Signup.PHP Arbitrary File Upload Vulnerability
13940| [24598] Apple WebCore XMLHTTPRequest Cross-Site Scripting Vulnerability
13941| [24589] POWL Load_Lang.PHP Remote File Include Vulnerability
13942| [24581] SerWeb Load_Lang.PHP Remote File Include Vulnerability
13943| [24576] HTTP Server Request Handling Remote Denial Of Service Vulenrability
13944| [24568] RaidenHTTPD Unspecified Cross Site Scripting Vulnerability
13945| [24566] BugHunter HTTP Server Parse Error Information Disclosure Vulnerability
13946| [24552] Xunlei Web Thunder ThunderServer.webThunder.1 ActiveX Control Arbitrary File Download Vulnerability
13947| [24510] FCKeditor Alternative Data Stream Arbitrary File Upload Vulnerability
13948| [24492] Astaro Up2Date Secure Gateway SMTP Proxy Malformed Email Remote Denial of Service Vulnerability
13949| [24483] Microsoft Internet Explorer 7 HTTP Authentication International Domain Name Spoofing Weakness
13950| [24475] Apache Tomcat Manager and Host Manager Upload Script Cross-Site Scripting Vulnerability
13951| [24456] Mbedthis AppWeb HTTP TRACE Information Disclosure Vulnerability
13952| [24408] Link Request Contact Form Arbitrary File Upload Vulnerability
13953| [24404] GeometriX Download Portal Down_Indir.ASP SQL Injection Vulnerability
13954| [24400] Internet Download Accelerator ActiveX Control Buffer Overflow Vulnerability
13955| [24375] MiniWeb HTTP POST Headers Remote Denial of Service Vulnerability
13956| [24354] Yahoo! Messenger Webcam Upload ActiveX Control Buffer Overflow Vulnerability
13957| [24345] ASP Folder Gallery Download_Script.ASP Arbitrary File Download Vulnerability
13958| [24306] F5 FirePass 4100 SSL VPN My.Activiation.PHP3 Remote Command Injection Vulnerability
13959| [24268] PHP EXT/Session HTTP Response Header Injection Vulnerability
13960| [24228] FileCloset Unspecified Arbitrary File Upload Vulnerability
13961| [24215] Apache HTTP Server Worker Process Multiple Denial of Service Vulnerabilities
13962| [24172] Ademco ATNBaseLoader100 ActiveX Control Buffer Overflow Vulnerability
13963| [24165] Sun Java Web Proxy Server Multiple Buffer Overflow Vulnerabilities
13964| [24074] FreeType TT_Load_Simple_Glyph() TTF File Integer Overflow Vulnerability
13965| [24034] PHP Soap Engine Make_HTTP_Soap_Request Weak Nonce HTTP Authentication Weakness
13966| [23996] Jetbox CMS Arbitrary File Upload Vulnerability
13967| [23975] W2Box Arbitrary File Upload Vulnerability
13968| [23962] Webdesproxy GET Request Buffer Overflow Vulnerability
13969| [23932] Interchange HTTP POST Requests Denial Of Service Vulnerability
13970| [23927] LibEXIF Exif_Data_Load_Data_Entry Remote Integer Overflow Vulnerability
13971| [23852] CubeCart Multiple HTTP Response Splitting Vulnerabilities
13972| [23851] Drake CMS Index.PHP HTTP Response Splitting Vulnerability
13973| [23840] Nuked-Klan Upload.PHP Arbitrary File Upload Vulnerability
13974| [23818] PHP FTP_Putcmd Function HTTP Response Splitting Vulnerability
13975| [23774] 1024 CMS Upload Manager Download.PHP Directory Traversal Vulnerability
13976| [23757] Motobit ASP Upload Manager Download.ASP Directory Traversal Vulnerability
13977| [23739] Psi-labs Photo Upload Share Script SQL Injection and Unauthorized Access Vulnerability
13978| [23714] Gazi Download Portal Down_Indir.ASP SQL Injection Vulnerability
13979| [23713] Pi3Web Overly Long HTTP Request Denial Of Service Vulnerability
13980| [23668] Multiple Web Browsers Digest Authentication HTTP Response Splitting Vulnerability
13981| [23643] Ext Feed-Proxy.PHP Directory Traversal Vulnerability
13982| [23636] Wavewoo Loading.PHP Remote File Include Vulnerability
13983| [23632] USP FOSS Distribution Download.PHP Directory Traversal Vulnerability
13984| [23628] DMCMS Upload_File.PHP Arbitrary File Upload Vulnerability
13985| [23614] Maran PHP Forum Forum_write.PHP Arbitrary File Upload Vulnerability
13986| [23595] Microgaming Download Helper ActiveX Control Remote Buffer Overflow Vulnerability
13987| [23553] Zomplog 'upload/force_download.php' Directory Traversal Vulnerability
13988| [23522] Akamai Download Manager ActiveX Control Multiple Buffer Overflow Vulnerabilities
13989| [23515] Lighttpd Multiple Remote Denial of Service Vulnerabilities
13990| [23480] Openads Max Media Manager CK.PHP HTTP Response Splitting Vulnerability
13991| [23463] Ice Download Gallery Arbitrary File Upload Vulnerability
13992| [23453] ToendaCMS HTTP Get And Post Forms HTML Injection Vulnerability
13993| [23445] KarjaSoft Sami HTTP Server Request Remote Denial of Service Vulnerabilities
13994| [23442] Openads Adclick.PHP HTTP Response Splitting Vulnerability
13995| [23438] Apache HTTPD suEXEC Local Multiple Privilege Escalation Weaknesses
13996| [23387] Xrousse Beryo Downloadpic.PHP Arbitrary File Download Vulnerability
13997| [23341] Wserve HTTP Server GET Request Buffer Overflow Vulnerability
13998| [23320] XOOPS Rha7 Downloads Module Visit.PHP SQL Injection Vulnerability
13999| [23290] SolidWorks SLDimdownload ActiveX Control Arbitrary Code Execution Vulnerability
14000| [23243] DProxy DNS_Decode_Reverse_Name Buffer-Overflow Vulnerability
14001| [23201] IBM Lotus SameTime STJNILoader.OCX ActiveX Control LoadLibrary Input Validation Vulnerability
14002| [23166] JBrowser Upload.PHP3 Arbitrary File Upload Vulnerability
14003| [23158] IceBB Avatar Upload Index.PHP SQL Injection Vulnerability
14004| [23151] IceBB Avatar Upload Remote PHP Code Execution Vulnerability
14005| [23132] Image_Upload Script Multiple Remote File Include Vulnerabilities
14006| [23112] DProxy Stack-Based Buffer-Overflow Vulnerability
14007| [23086] IBM WebSphere Application Server Unspecified HTTP Response Splitting Vulnerability
14008| [23085] Squid Proxy TRACE Request Remote Denial of Service Vulnerability
14009| [23084] Zope HTTP Get Request HTML Injection Vulnerability
14010| [23055] W-Agora Multiple Arbitrary File Upload Vulnerabilities
14011| [23032] MetaForum Arbitrary File Upload Vulnerability
14012| [22989] McGallery Download.PHP Information Disclosure Vulnerability
14013| [22960] Apache HTTP Server Tomcat Directory Traversal Vulnerability
14014| [22956] PHProjekt Arbitrary File Upload Vulnerability
14015| [22933] Xine DirectShow Loader Remote Buffer Overflow Vulnerability
14016| [22888] Trac Download Function Cross-Site Scripting Vulnerability
14017| [22763] Wiclear Upload Tool Unspecified Vulnerability
14018| [22741] NetProxy Security Restriction Bypass Vulnerability
14019| [22723] STWC-Counter Downloadcounter.PHP Remote File Include Vulnerability
14020| [22703] Pickle Download.PHP Local File Include Vulnerability
14021| [22688] Mozilla Firefox OnUnload Javascript Browser Entrapment Vulnerability
14022| [22686] Novell Zenworks Desktop Management Image Upload Security Bypass Vulnerability
14023| [22680] Microsoft Internet Explorer OnUnload Javascript Browser Entrapment Vulnerability
14024| [22679] Mozilla Firefox OnUnload Memory Corruption Vulnerability
14025| [22678] Microsoft Internet Explorer OnUnload Null Pointer Dereference Vulnerability
14026| [22527] RETIRED: LightTPD Search.PHP Cross-Site Scripting Vulnerability
14027| [22498] eXtreme File Hosting Arbitrary RAR File Upload Vulnerability
14028| [22445] FreeProxy Proxy Request Denial of Service Vulnerability
14029| [22393] Blue Coat Systems WinProxy Connect Remote Heap Overflow Vulnerability
14030| [22382] Ublog Reload HTML Injection and SQL Injection Vulnerabilities
14031| [22349] Gentoo Linux Acme Thttpd File Access Information Dislosure Vulnerability
14032| [22327] Modx FileDownload Snippet Arbitrary File Download Vulnerability
14033| [22298] HTTP Commander Multiple Cross-Site Scripting Vulnerabilities
14034| [22274] MPG123 HTTP_Open() Connection Handling Denial of Service Vulnerability
14035| [22255] PHProxy Index.Inc.PHP HTML Injection Vulnerability
14036| [22249] Apple CFNetwork HTTP NULL Pointer Dereference Denial of Service Vulnerability
14037| [22236] DokuWiki Fetch.PHP HTTP Response Splitting Vulnerability
14038| [22209] GTK2 GDKPixBufLoader Remote Denial of Service Vulnerability
14039| [22189] Bild Bearbeiten Online Upload Service Top.PHP Remote File Include Vulnerability
14040| [22185] Atozed Software Intraweb Component HTTP Request Handling Remote Denial of Service Vulnerability
14041| [22159] KarjaSoft Sami HTTP Server Request Remote Denial of Service Vulnerability
14042| [22150] Upload Service Top.PHP Remote File Include Vulnerability
14043| [22079] Squid Proxy FTP URI Remote Denial of Service Vulnerability
14044| [22034] LibSoup Library HTTP Headers Remote Denial of Service Vulnerability
14045| [21957] F5 Firepass Multiple Input Validation Vulnerabilities
14046| [21889] Kolayindir Download Down.ASP SQL Injection Vulnerability
14047| [21831] Rediff Bol Downloader ActiveX Control Remote Code Execution Vulnerability
14048| [21827] IMGallery Start.PHP Arbitrary File Upload Vulnerability
14049| [21816] AIDeX Mini-Webserver HTTP Request Remote Denial of Service Vulnerability
14050| [21789] PHP-Update Admin Upload.PHP Arbitrary File Upload Vulnerability
14051| [21754] Mxmania File Upload Manager Detail.ASP SQL Injection Vulnerability
14052| [21743] Logahead UNU Edition _Widged.PHP Arbitrary File Upload Vulnerability
14053| [21712] HTTP Explorer Web Server Directory Traversal Vulnerability
14054| [21696] PgmReloaded Multiple Remote File Include Vulnerabilities
14055| [21686] Oracle Portal Calendar.JSP Multiple HTTP Response Splitting Vulnerabilities
14056| [21679] Ozeki HTTP-SMS Gateway Password Information Disclosure Vulnerability
14057| [21676] Burak Yilmaz Download Portal Down.ASP SQL Injection Vulnerability
14058| [21648] Upload_download_de_fichiers Administre2.PHP SQL Injection Vulnerability
14059| [21639] EyeOS Aplic.PHP Arbitrary File Upload Vulnerability
14060| [21528] DadaIMC Default .HTAccess Configuration Arbitrary File Upload Vulnerability
14061| [21525] TorrentFlux Downloaddetails.PHP Directory Traversal Vulnerability
14062| [21473] Novell ZENworks Patch Management Downloadreport.ASP SQL Injection Vulnerability
14063| [21453] Adobe Download Manager AOM Buffer Overflow Vulnerability
14064| [21421] PHPMyAdmin Multiple HTTP Response Splitting Vulnerabilities
14065| [21417] PHP Upload Progress Meter UploadProgress.C Remote Buffer Overflow Vulnerability
14066| [21412] PHP Upload Center Remote File Include Vulnerability
14067| [21389] DZCP Clanportal Index.PHP Arbitrary File Upload Vulnerability
14068| [21344] P-News Profile Editory Arbitrary File Upload Vulnerability
14069| [21291] Apple Mac OS X Mach-O Binary Loading Integer Overflow Vulnerability
14070| [21272] Apple Mac OS X Mach-O Binary Loading Privilege Escalation Vulnerability
14071| [21179] PHP Easy Download Remote Code Execution Vulnerability
14072| [21150] PHP Upload Tool Arbitrary File Upload and Directory Traversal Vulnerabilities
14073| [21130] Bloo Googlespell_Proxy.PHP Cross-Site Scripting Vulnerability
14074| [21120] Verity Ultraseek Information Disclosure and Request Proxying Vulnerabilities
14075| [20950] GreenBeast CMS Up_Loader.PHP Arbitrary File Upload Vulnerability
14076| [20915] Microsoft XML Core Service XMLHTTP ActiveX Control Remote Code Execution Vulnerability
14077| [20896] RapidKill Arbitrary File Upload Vulnerability
14078| [20891] Acme Thttpd Insecure Temporary Logfile Creation Vulnerability
14079| [20881] ELOG Nonexistent File Download Cross-Site Scripting Vulnerability
14080| [20874] RunCMS Avatar Arbitrary File Upload Vulnerability
14081| [20784] Aktueldownload Haber Scripti HaberDetay.ASP SQL Injection Vulnerability
14082| [20754] MAXdev MD-Pro Multiple HTTP Response Splitting Vulnerabilities
14083| [20747] AOL YGPPDownload AddPictureNoAlbum ActiveX Controls Buffer Overflow Vulnerability
14084| [20745] AOL YGGPDownload DownloadFileDirectory ActiveX Controls Buffer Overflow Vulnerability
14085| [20743] MiniHTTPServer Web Forum and File Sharing Server Add User Authentication Bypass Vulnerability
14086| [20685] Shop-Script Multiple HTTP Response Splitting Vulnerabilities
14087| [20655] Novell eDirectory iMonitor HTTPSTK Buffer Overflow Vulnerability
14088| [20616] PHP-Post Avatar Arbitrary File Upload Vulnerability
14089| [20593] RETIRED: Adobe Flash Player Plugin Multiple HTTP Response Splitting Vulnerabilities
14090| [20592] Adobe Flash Player Plugin HTTP Header Injection Weakness
14091| [20586] WSN Forum Avatar Upload PHP Code Execution Vulnerability
14092| [20583] F5 FirePass 1000 SSL VPN My.AccTab.PHP3 Cross-Site Scripting Vulnerability
14093| [20500] Alex DownloadEngine Spaw_Root Remote File Include Vulnerability
14094| [20494] FreeWPS Upload.PHP Remote Command Execution Vulnerability
14095| [20481] E-Uploader Pro Config.PHP Remote File Include Vulnerability
14096| [20466] FlatNuke Index.PHP Arbitrary File Upload Vulnerability
14097| [20393] SHTTPD Remote Buffer Overflow Vulnerability
14098| [20351] PolyCom IP-301 VoIP Desktop Phone HTTP Server Denial Of Service Vulnerabilities
14099| [20346] Linksys SPA921 VoIP Phone HTTP Server Denial Of Service Vulnerabilities
14100| [20288] McAfee EPolicy Orchestrator and ProtectionPilot HTTP Server Remote Buffer Overflow Vulnerability
14101| [20278] OlateDownload Multiple Input Validation Vulnerabilities
14102| [20174] Opial AV Download Management Index.PHP Cross-Site Scripting Vulnerability
14103| [20151] Simple HTTP Scanner Multiple Unspecified Vulnerabilities
14104| [20098] OSU HTTP Server Multiple Information Disclosure Vulnerabilities
14105| [20077] Mambo Hotornot Component Uploadfile.PHP Arbitrary File Upload Vulnerability
14106| [20067] BusyBox HTTPD Directory Traversal Vulnerability
14107| [20044] Limbo CMS Frontpage Arbitrary File Upload Vulnerability
14108| [20034] Apple Mac OS X KExtLoad Buffer Overflow Weakness
14109| [20031] Apple Mac OS X KExtLoad Format String Weakness
14110| [20011] NX5Linkx Links.PHP HTTP Response Splitting Vulnerability
14111| [19987] Microsoft Internet Explorer HTTP 1.1 and Compression Long URI Buffer Overflow Variant Vulnerability
14112| [19952] OPENi-CMS Fileloader.PHP Remote File Include Vulnerability
14113| [19918] RaidenHTTPD Check.PHP Remote File Include Vulnerability
14114| [19890] PHP-Nuke Book Catalog Module 'upload.php' Arbitrary File Upload Vulnerability
14115| [19872] PHP Download Download.PHP Directory Traversal Vulnerability
14116| [19867] SZEWO PhpCommander Download.PHP Local File Include Vulnerability
14117| [19810] Retro64 CR64Loader ActiveX Remote Buffer Overflow Vulnerability
14118| [19716] Fuji Xerox Printing Systems Embedded HTTP Server Multiple Vulnerabilities
14119| [19707] Streamripper HTTP Header Parsing Buffer Overflow Vulnerability
14120| [19667] Microsoft Internet Explorer HTTP 1.1 and Compression Long URI Buffer Overflow Vulnerability
14121| [19661] Apache HTTP Server Arbitrary HTTP Request Headers Security Weakness
14122| [19545] Anti-Spam SMTP Proxy Server Unauthorized File Access Vulnerability
14123| [19539] Mensajeitor HTTP CLIENT IP HTML Injection Vulnerability
14124| [19537] WikiWebWeaver Index.PHP Arbitrary File Upload Vulnerability
14125| [19433] Comet WebFileManager CheckUpload.PHP Remote File Include Vulnerability
14126| [19380] The Address Book Reloaded Unspecified Multiple SQL Injection Vulnerabilities
14127| [19344] ChaosSoft CounterChaos HTTP_Referer SQL Injection Vulnerability
14128| [19336] ME Download System Header.PHP Remote File Include Vulnerability
14129| [19334] VBulletin Arbitrary File Upload Vulnerability
14130| [19270] Knusperleicht FileManager DWL_Download Remote File Include Vulnerability
14131| [19175] EzUpload Multiple Unauthorized Access Vulnerabilities
14132| [19157] Etomite CMS Rfiles.PHP Arbitrary File Upload Vulnerability
14133| [19115] Cheese Tracker XM Loader Buffer Overflow Vulnerability
14134| [19091] PlanetGallery Gallery_Admin.PHP Arbitrary File Upload Vulnerability
14135| [19072] ToendaCMS Connector.PHP Arbitrary File Upload Vulnerability
14136| [18901] RW::Download Stats.PHP Remote File Include Vulnerability
14137| [18877] Gimp XCF_load_vector Function Buffer Overflow Vulnerability
14138| [18854] TWiki Arbitrary File Upload Vulnerability
14139| [18799] F5 Firepass 4100 SSL VPN Multiple Unspecified Cross-Site Scripting Vulnerabilities
14140| [18768] PHPFormGenerator Arbitrary File Upload Vulnerability
14141| [18767] Geeklog Connector.PHP Arbitrary File Upload Vulnerability
14142| [18764] SturGeoN Upload Arbitrary File Upload Vulnerability
14143| [18723] PatchLink Update Server Proxyreg.ASP Authentication Bypass Vulnerability
14144| [18570] Fortinet FortiGate FTP Proxy Antivirus Engine Bypass Vulnerability
14145| [18499] Eduha Meeting Index.PHP Arbitrary File Upload Vulnerability
14146| [18496] Easy CMS Choose_file.PHP Arbitrary File Upload Vulnerability
14147| [18465] Zeroboard Arbitrary File Upload Vulnerability
14148| [18449] Cisco Secure ACS LoginProxy.CGI Cross-Site Scripting Vulnerability
14149| [18312] Qbik WinGate Remote HTTP Request Buffer Overflow Vulnerability
14150| [18301] TIBCO Rendezvous HTTP Interface Remote Buffer Overflow Vulnerability
14151| [18293] Alex DownloadEngine Comments.PHP SQL Injection Vulnerability
14152| [18279] ESTsoft InternetDisk Arbitrary File Upload and Script Execution Vulnerability
14153| [18271] Quake 3 Engine CL_ParseDownload Remote Buffer Overflow Vulnerability
14154| [18187] Xine-Lib HTTP Response Buffer Overflow Vulnerability
14155| [18174] Linux Kernel ELF Loader Mismatched Architecture Local Denial of Service Vulnerability
14156| [18135] EZUpload Path Parameter Multiple Remote File Include Vulnerabilities
14157| [18130] Seditio Referer HTTP Header HTML Injection Vulnerability
14158| [18089] Russcom PHPImages Arbitrary File Upload Vulnerability
14159| [18041] JemWeb DownloadControl DC.PHP SQL Injection Vulnerability
14160| [18038] Skype Technologies Skype URI Handling Remote File Download Vulnerability
14161| [18029] FCKeditor Arbitrary File Upload Vulnerability
14162| [18014] Snitz Forums Avatar Mod Arbitrary File Upload Vulnerability
14163| [17993] DUware DUbanner Arbitrary File Upload Vulnerability
14164| [17946] Ozzywork Galeri Arbitrary File Upload Vulnerability
14165| [17937] Cisco Application Velocity System Open TCP Proxy Vulnerability
14166| [17814] zawhttpd Remote HTTP GET Denial Of Service Vulnerability
14167| [17749] PHPNuke Downloads Module SQL Injection Vulnerability
14168| [17431] SIRE Arbitrary File Upload Vulnerability
14169| [17430] Shadowed Portal Load.PHP Cross-Site Scripting Vulnerability
14170| [17383] Cisco 11500 Content Services Switch HTTP Compression Remote Denial of Service Vulnerability
14171| [17372] Kaffeine Remote HTTP_Peek Buffer Overflow Vulnerability
14172| [17371] AngelineCMS Loadkernel.PHP Remote File Include Vulnerability
14173| [17353] ReloadCMS User-Agent HTML Injection Vulnerability
14174| [17350] AN HTTPD Source Disclosure Vulnerability
14175| [17271] Noah Grey Greymatter Arbitrary File Upload Vulnerability
14176| [17175] F5 Firepass 4100 SSL VPN Cross-Site Scripting Vulnerability
14177| [17163] BEA WebLogic Server and WebLogic Express HTTP Response Splitting Vulnerability
14178| [17156] Skull-Splitter Download Counter for Wallpapers Count.PHP SQL Injection Vulnerability
14179| [17129] php iCalendar Arbitrary File Upload Vulnerability
14180| [17123] Dwarf HTTP Server Multiple Input Validation Vulnerabilities
14181| [17116] DSDownload Multiple SQL-Injection Vulnerabilities
14182| [16972] Acme Labs thttpd HTPasswd Multiple Vulnerabilities
14183| [16934] RaidenHTTPD Remote Script Disclosure Vulnerability
14184| [16893] Lighttpd Remote Script Disclosure Vulnerability
14185| [16823] FreeHostShop Website Generator Arbitrary File Upload Vulnerability
14186| [16796] CubeCart Arbitrary File Upload Vulnerability
14187| [16690] D-Link DWL-G700AP HTTPD Denial Of Service Vulnerability
14188| [16509] PHPBB HTTP Referer Information Disclosure Vulnerability
14189| [16415] CRE Loaded Files.PHP Access Validation Vulnerability
14190| [16394] Cisco VPN 3000 Concentrator Malformed HTTP/TCP Packet Remote Denial of Service Vulnerability
14191| [16377] PMachine ExpressionEngine HTTP Referrer HTML Injection Vulnerability
14192| [16331] Rockliffe MailSite HTTP Mail Management Agent Denial Of Service Vulnerability
14193| [16330] Rockliffe MailSite HTTP Mail Management Cross-Site Scripting Vulnerability
14194| [16317] Ecartis PantoMIME Arbitrary Attachment Upload Vulnerability
14195| [16291] Cisco IOS HTTP Service CDP Status Page HTML Injection Vulnerability
14196| [16265] Widexl Download Tracker Down.PL Cross-Site Scripting Vulnerability
14197| [16236] Toshiba Bluetooth Stack Object Push Service File Upload Directory Traversal Vulnerability
14198| [16226] SuSE Open Enterprise Server Novell Remote Manager HTTP Request Header Heap Overflow Vulnerability
14199| [16208] MyPhPim Addresses.PHP3 Arbitrary File Upload Vulnerability
14200| [16149] Blue Coat Systems WinProxy Telnet Remote Denial Of Service Vulnerability
14201| [16148] Blue Coat Systems WinProxy Remote Denial Of Service Vulnerability
14202| [16147] Blue Coat Systems WinProxy Remote Host Header Buffer Overflow Vulnerability
14203| [16097] MyBB File Upload SQL Injection Vulnerability
14204| [16031] Httprint HTTP Response Handling Multiple Vulnerabilities
14205| [16025] Cisco Downloadable RADIUS Policies Information Disclosure Vulnerability
14206| [16001] Interaction SIP Proxy Remote Heap Corruption Denial Of Service Vulnerability
14207| [15981] Blender BlenLoader File Processing Integer Overflow Vulnerability
14208| [15919] EZUpload SQL Injection Vulnerability
14209| [15918] EZUpload Remote File Include Vulnerability
14210| [15835] Opera Web Browser Download Dialog Manipulation File Execution Vulnerability
14211| [15814] Blackboard Academic Suite Frameset.JSP Cross-Domain Frameset Loading Vulnerability
14212| [15810] Horde Application Framework CSV File Upload Code Execution Vulnerability
14213| [15788] Lyris Listmanager TCLHTTPd Service Multiple Information Disclosure Vulnerabilities
14214| [15772] Sun Solaris Sun Update Connection Web Proxy Password Disclosure Vulnerability
14215| [15744] DoceboLMS Arbitrary File Upload Vulnerability
14216| [15728] Sun Java System Application Server Reverse SSL Proxy Plug-in Man In The Middle Vulnerability
14217| [15673] WebCalendar Layers_Toggle.PHP HTTP Response Splitting Vulnerability
14218| [15663] Drupal Image Upload HTML Injection Vulnerability
14219| [15626] PHP Upload Center Directory Traversal Vulnerability
14220| [15621] PHP Upload Center Index.PHP Directory Traversal Vulnerability
14221| [15602] Cisco IOS HTTP Service HTML Injection Vulnerability
14222| [15517] PHP Download Manager Files.PHP SQL Injection Vulnerability
14223| [15509] Google Search Appliance ProxyStyleSheet Multiple Remote Vulnerabilities
14224| [15484] Revize CMS HTTPTranslatorServlet Cross-Site Scripting Vulnerability
14225| [15470] PHP Easy Download Edit.PHP Authentication Bypass Vulnerability
14226| [15422] PHPMyAdmin Header_HTTP_Inc.PHP HTTP Response Splitting Vulnerability
14227| [15399] PHPWebThings Download.PHP File Parameter SQL Injection Vulnerability
14228| [15391] Exponent CMS Image Upload Arbitrary Script Execution Vulnerability
14229| [15368] YaBB Image Upload HTML Injection Vulnerability
14230| [15360] SAP Web Application Server HTTP Response Splitting Vulnerability
14231| [15351] toendaCMS Remote File Upload Vulnerability
14232| [15335] PHPFM Arbitrary File Upload Vulnerability
14233| [15322] PunBB/Blog:CMS Image Upload HTML Injection Vulnerability
14234| [15320] Acme Thttpd Insecure Temporary File Creation Vulnerability
14235| [15301] PHP Handicapper Process_signup.PHP HTTP Response Splitting Vulnerability
14236| [15296] vBulletin Image Upload HTML Injection Vulnerability
14237| [15286] Invision Gallery Image Upload HTML Injection Vulnerability
14238| [15269] Cisco Management Center for IPS Sensors Configuration Download Weakness
14239| [15250] PHP File Upload GLOBAL Variable Overwrite Vulnerability
14240| [15230] Rockliffe MailSite Express Arbitrary Script File Upload Vulnerability
14241| [15225] Hasbani Web Server Malformed HTTP GET Request Remote Denial of Service Vulnerability
14242| [15222] Sun Solaris Management Console HTTP TRACE Information Disclosure Vulnerability
14243| [15170] phpBB Avatar Upload HTML Injection Vulnerability
14244| [15165] SUSE Linux Squid Proxy SSL Handling Denial of Service Vulnerability
14245| [15163] Oracle Application Server HTTP Response Splitting Vulnerability
14246| [15129] Rockliffe MailSite Express Arbitrary File Upload Vulnerability
14247| [15074] PHP Advanced Transfer Manager Arbitrary File Upload Vulnerability
14248| [15051] XLoadImage Multiple Remote Buffer Overflow Vulnerabilities
14249| [15048] Up-IMAPProxy Multiple Unspecified Remote Format String Vulnerabilities
14250| [15025] Computer Associates Multiple Product HTTP Request Remote Buffer Overflow Vulnerability
14251| [15019] Debian Linux Mason Init.d Firewall Loading Failure Vulnerability
14252| [14979] NTLM Authorization Proxy Server Insecure Configuration File Permissions Vulnerability
14253| [14977] Squid Proxy Client NTLM Authentication Denial Of Service Vulnerability
14254| [14974] NateOn Messenger Arbitrary File Download And Buffer Overflow Vulnerabilities
14255| [14969] Microsoft Internet Explorer XmlHttpRequest Parameter Validation Weakness
14256| [14926] JPortal Download.PHP SQL Injection Vulnerability
14257| [14924] Multiple Browser Proxy Auto-Config Script Handling Remote Denial of Service Vulnerability
14258| [14923] Mozilla Browser/Firefox Arbitrary HTTP Request Injection Vulnerability
14259| [14920] Mozilla Browser/Firefox Chrome Page Loading Restriction Bypass Privilege Escalation Weakness
14260| [14884] Opera Web Browser Unspecified Drag And Drop File Upload Vulnerability
14261| [14821] Mail-it Now! Upload2Server Arbitrary File Upload Vulnerability
14262| [14814] PHPTagCool HTTP Header SQL Injection Vulnerability
14263| [14788] Sun Java System Web Proxy Server Unspecified Remote Denial Of Service Vulnerability
14264| [14770] Cisco IOS Firewall Authentication Proxy Buffer Overflow Vulnerability
14265| [14764] Microsoft IIS WebDAV HTTP Request Source Code Disclosure Vulnerability
14266| [14761] Squid Proxy Aborted Requests Remote Denial Of Service Vulnerability
14267| [14750] MAXdev MD-Pro Arbitrary Remote File Upload Vulnerability
14268| [14731] Squid Proxy SSLConnectTimeout Remote Denial Of Service Vulnerability
14269| [14678] FUDforum Avatar Upload Arbitrary Script Upload Vulnerability
14270| [14667] Simple PHP Blog Remote Arbitrary File Upload Vulnerability
14271| [14666] Simpleproxy Remote Syslog() Format String Vulnerability
14272| [14665] Astaro Security Linux HTTP CONNECT Unauthorized Access Weakness
14273| [14645] ZipTorrent Proxy Server Password Disclosure Vulnerability
14274| [14636] PostNuke DL-viewdownload.PHP SQL Injection Vulnerability
14275| [14577] CPaint xmlhttp Request Input Validation Vulnerability
14276| [14571] HP Ignite-UX TFTP File Upload Vulnerability
14277| [14564] Discuz! Arbitrary File Upload Vulnerability
14278| [14551] Veritas Backup Exec For Windows And NetWare Arbitrary File Download Vulnerability
14279| [14534] EZUpload Multiple Remote File Include Vulnerabilities
14280| [14479] Comdev eCommerce WCE.Download.PHP Directory Traversal Vulnerability
14281| [14424] Simplicity oF Upload Download.PHP Remote File Include Vulnerability
14282| [14406] Website Baker Arbitrary File Upload Vulnerability
14283| [14402] Opera Web Browser Content-Disposition Header Download Dialog File Extension Spoofing Vulnerability
14284| [14277] Oracle HTTP Server MOD_ORADAV ORAALTPASSWORD Obfuscation Weakness
14285| [14273] Oracle HTTP Server MOD_OSSO Partner Application Cookie Expiration Weakness
14286| [14272] Oracle HTTP Server Unspecified Malformed Request Denial Of Service Vulnerability
14287| [14215] F5 BIG-IP Unspecified SSL Authentication Bypass Vulnerability
14288| [14211] DownloadProtect Download.PHP Directory Traversal Vulnerability
14289| [14176] eRoom Plug-In Insecure File Download Handling Vulnerability
14290| [14159] Internet Download Manager Buffer Overflow Vulnerability
14291| [14132] SlimServe HTTPD Directory Traversal Vulnerability
14292| [14106] Apache HTTP Request Smuggling Vulnerability
14293| [14070] ASPPlayground.NET Remote Arbitrary File Upload Vulnerability
14294| [14063] ASPNuke Language_Select.ASP HTTP Response Splitting Vulnerability
14295| [14053] UBBCentral UBB.Threads Multiple HTTP Response Splitting Vulnerabilities
14296| [14032] HP VCRM Proxy Server Potential Password Disclosure Vulnerability
14297| [13994] Uapplication Ublog Reload Trackback.ASP Cross-Site Scripting Vulnerability
14298| [13991] Uapplication Ublog Reload Multiple SQL Injection Vulnerabilities
14299| [13990] Edgewall Software Trac Unauthorized File Upload/Download Vulnerability
14300| [13985] JBoss Malformed HTTP Request Remote Information Disclosure Vulnerability
14301| [13979] osCommerce Multiple HTTP Response Splitting Vulnerabilities
14302| [13970] Opera Web Browser XMLHttpRequest Object Cross-Domain Access Vulnerability
14303| [13956] Microsoft ISA Server HTTP Request Smuggling Vulnerability
14304| [13955] Microsoft ISA Server HTTP/HTTPS Service Basic Auth Information Disclosure Vulnerability
14305| [13936] RedHat Linux SysReport Proxy Information Disclosure Vulnerability
14306| [13931] Gaim Yahoo! Protocol Support File Download Denial of Service Vulnerability
14307| [13900] Loki Download Manager Catinfo.ASP SQL Injection Vulnerability
14308| [13898] Loki Download Manager Default.ASP SQL Injection Vulnerability
14309| [13877] YaPiG Upload.PHP Directory Traversal Vulnerability
14310| [13873] Multiple Vendor Multiple HTTP Request Smuggling Vulnerabilities
14311| [13871] YaPiG Upload.PHP Remote Arbitrary File Upload Vulnerability
14312| [13833] JiRo's Upload System Login.ASP SQL Injection Vulnerability
14313| [13822] PowerDownload IncDir Remote File Include Vulnerability
14314| [13799] Microsoft Internet Explorer JavaScript OnLoad Handler Remote Code Execution Vulnerability
14315| [13694] Apple Mac OS X Safari Dashboard Widget Download Validation Bypass Vulnerability
14316| [13630] Keyvan1 ImageGallery Database Download Vulnerability
14317| [13600] BoastMachine Remote Arbitrary File Upload Vulnerability
14318| [13592] Squid Proxy Unspecified DNS Spoofing Vulnerability
14319| [13562] IETF IPSEC Protocol Encapsulating Security Payload Vulnerability
14320| [13549] Orenosv HTTP/FTP Server CGISSI.EXE Remote Buffer Overflow Vulnerability
14321| [13546] Orenosv HTTP/FTP Server FTP Commands Remote Buffer Overflow Vulnerability
14322| [13542] PHP Advanced Transfer Manager Arbitrary File Upload Vulnerability
14323| [13450] DotText HTTP Referer HTML Injection Vulnerability
14324| [13434] Squid Proxy Synchronization Remote Cache Poisoning Vulnerability
14325| [13428] Just William's Amazon Webstore HTTP Response Splitting Vulnerability
14326| [13418] Oracle Application Server HTTP Service Mod_Access Restriction Bypass Vulnerability
14327| [13374] SQWebmail HTTP Response Splitting Vulnerability
14328| [13368] MySQL MaxDB HTTP GET Request Remote Buffer Overflow Vulnerability
14329| [13350] MailEnable HTTP Authorization Buffer Overflow Vulnerability
14330| [13348] SNMPPD SNMP Proxy Daemon Remote Format String Vulnerability
14331| [13314] MailEnable HTTPMail Connector Unspecified Security Vulnerability
14332| [13289] Coppermine Photo Gallery ZipDownload.PHP SQL Injection Vulnerability
14333| [13268] Sun Java System Web Proxy Server Multiple Unspecified Remote Buffer Overflow Vulnerabilities
14334| [13261] CityPost Simple PHP Upload Simple-upload-53.PHP Cross-Site Scripting Vulnerability
14335| [13240] F5 BIG-IP User Interface Login Credential Caching Vulnerability
14336| [13202] Apple WebCore Framework XMLHttpRequests Remote Code Execution Vulnerability
14337| [13201] PHP-Nuke Surveys Module HTTP Response Splitting Vulnerability
14338| [13188] Monkey HTTP Daemon Zero Length File Request Denial Of Service Vulnerability
14339| [13187] Monkey HTTP Daemon CGI Processor Format String Vulnerability
14340| [13172] Oops! Proxy Server Auth Remote Format String Vulnerability
14341| [13166] Squid Proxy Aborted Connection Remote Denial Of Service Vulnerability
14342| [13088] DC++ Unspecified Download Drive File Appending Vulnerability
14343| [13084] File Upload Script PHPBB Module Arbitrary Script Upload Vulnerability
14344| [13069] AN HTTPD Arbitrary Log Content Injection Vulnerability
14345| [13066] AN HTTPD CMDIS.DLL Remote Buffer Overflow Vulnerability
14346| [13061] PHP-Nuke Downloads Module Multiple SQL Injection Vulnerabilities
14347| [13059] Axel HTTP Redirection Buffer Overflow Vulnerability
14348| [13027] RunCMS Remote Arbitrary File Upload Vulnerability
14349| [13011] PHP-Nuke Downloads Module Lid Parameter Cross-Site Scripting Vulnerability
14350| [12989] Adobe Acrobat Reader ActiveX Control LoadFile Information Disclosure Vulnerability
14351| [12961] BlueSoleil Object Push Service Bluetooth File Upload Directory Traversal Vulnerability
14352| [12935] Linux Kernel Elf Binary Loading Local Denial of Service Vulnerability
14353| [12890] Cerulean Studios Trillian Multiple Remote HTTP Response Buffer Overflow Vulnerabilities
14354| [12885] Mozilla Browser Remote Insecure XUL Start Up Script Loading Vulnerability
14355| [12869] Phorum HTTP Response Splitting Vulnerability
14356| [12866] NetWin SurgeMail Multiple Remote HTML Injection and File Upload Vulnerabilities
14357| [12769] KDE Konqueror Remote Download Dialog Box Source URI Spoofing Vulnerability
14358| [12754] Xoops Custom Avatar Remote Arbitrary PHP File Upload Vulnerability
14359| [12728] Mozilla Suite/Firefox HTTP Authentication Dialogs Tab Focus Vulnerability
14360| [12726] Stadtaus.Com Download Center Lite Arbitrary Remote PHP File Include Vulnerability
14361| [12722] Computalynx CProxy Directory Traversal Vulnerability
14362| [12716] Squid Proxy Set-Cookie Headers Information Disclosure Vulnerability
14363| [12712] XLoadImage Compressed Image Command Execution Vulnerability
14364| [12688] RaidenHTTPD Multiple Remote Vulnerabilities
14365| [12685] PostNuke Phoenix Download Module Multiple Cross-Site Scripting Vulnerabilities
14366| [12676] FCKeditor For PHP-Nuke Arbitrary File Upload Vulnerability
14367| [12667] Gaim File Download Denial of Service Vulnerability
14368| [12653] PHPWebSite Image File Processing Remote Arbitrary PHP File Upload Vulnerability
14369| [12632] ArGoSoft FTP Server Site Copy Shortcut File Upload Vulnerability
14370| [12587] Yahoo! Messenger Download Dialogue Box File Name Spoofing Vulnerability
14371| [12567] Lighttpd Remote CGI Script Disclosure Vulnerability
14372| [12566] HP HTTP Server Remote Unspecified Buffer Overflow Vulnerability
14373| [12559] KarjaSoft Sami HTTP Server Multiple Remote Vulnerabilities
14374| [12557] CitrusDB CSV File Upload Access Validation Vulnerability
14375| [12551] Squid Proxy DNS Name Resolver Remote Denial Of Service Vulnerability
14376| [12495] Software602 602 Lan Suite Arbitrary File Upload Vulnerability
14377| [12451] RaidenHTTPD Remote File Disclosure Vulnerability
14378| [12443] Linksys PSUS4 PrintServer Malformed HTTP POST Request Denial Of Service
14379| [12432] Squid Proxy WCCP recvfrom() Buffer Overflow Vulnerability
14380| [12431] Squid Proxy squid_ldap_auth Authentication Bypass Vulnerability
14381| [12411] PostgreSQL LOAD Extension Local Privilege Escalation Vulnerability
14382| [12398] phpPGAds HTTP Response Splitting Vulnerability
14383| [12394] WebWasher Classic HTTP CONNECT Unauthorized Access Weakness
14384| [12374] BNC IRC Server Proxy select() Bit-Array Remote Buffer Overflow Vulnerability
14385| [12351] 3proxy select() Bitmap Remote Buffer Overflow Vulnerability
14386| [12339] Help Desk Reloaded Unspecified Remote Vulnerability
14387| [12324] Squid Proxy NTLM Fakeauth_Auth Memory Leak Remote Denial Of Service Vulnerability
14388| [12276] Squid Proxy Gopher To HTML Remote Buffer Overflow Vulnerability
14389| [12275] Squid Proxy Web Cache Communication Protocol Denial Of Service Vulnerability
14390| [12264] Microsoft Internet Explorer Dynamic IFRAME File Download Security Warning Bypass Weakness
14391| [12251] OpenBSD HTTPD mod_include Local Buffer Overflow Vulnerability
14392| [12220] Squid Proxy Malformed NTLM Type 3 Message Remote Denial of Service Vulnerability
14393| [12200] Easy Software Products CUPS HTTP GET Denial Of Service Vulnerability
14394| [12153] Mozilla/Firefox File Download Dialog Spoofing Vulnerability
14395| [12149] SIR GNUBoard File Upload Extension Restriction Bypass Vulnerability
14396| [12141] Microsoft FrontPage 2000 Internet Publishing Service Provider DAV File Upload Vulnerability
14397| [12137] Macallan Mail Solution HTTP GET Request Buffer Overflow Vulnerability
14398| [12115] PHProxy Error Parameter Cross-Site Scripting Vulnerability
14399| [12111] E107 Image Manager Unauthorized File Upload Vulnerability
14400| [12110] TikiWiki Unauthorized File Upload Vulnerability
14401| [12101] Linux Kernel ELF Binary Loading Denial Of Service Vulnerability
14402| [12095] Microsoft Windows LoadImage API Function Integer Overflow Vulnerability
14403| [12040] IMG2ASCII Unauthorized File Upload Vulnerability
14404| [12011] Junkie FTP Client Server Response Download Filename File Corruption Vulnerability
14405| [11985] MediaWiki Remote Arbitrary Script Upload Vulnerability
14406| [11983] JSBoard Remote Arbitrary Script Upload Vulnerability
14407| [11978] Junkie FTP Client Server Response Download Filename Command Execution Vulnerability
14408| [11975] Yanf HTTP Response Buffer Overflow Vulnerability
14409| [11961] IglooFTP File Upload Insecure Temporary File Vulnerability
14410| [11960] IglooFTP Server Response Download Filename File Corruption Vulnerability
14411| [11897] MediaWiki Images Directory Arbitrary Script Upload and Execution Vulnerability
14412| [11883] Opera Web Browser Download Dialogue Box File Name Spoofing Vulnerability
14413| [11877] OpenText FirstClass HTTP Daemon Search Function Remote Denial Of Service Vulnerability
14414| [11865] Squid Proxy Failed DNS Lookup Random Error Messages Information Disclosure Vulnerability
14415| [11843] MySQL MaxDB WAHTTP Server Remote Denial Of Service Vulnerability
14416| [11839] Blog Torrent BTDownload.PHP Cross-Site Scripting Vulnerability
14417| [11786] ACPID Proxy Unspecified Local Denial Of Service Vulnerability
14418| [11779] IPCop Web Administration Interface Proxy Log HTML Injection Vulnerability
14419| [11768] Microsoft Internet Explorer Image Download Filename Extension Spoofing Vulnerability
14420| [11723] ZyXEL Prestige Router HTTP Remote Administration Configuration Reset Vulnerability
14421| [11686] Microsoft Internet Explorer File Download Security Warning Bypass Vulnerability
14422| [11673] PHPWebSite User Module HTTP Response Splitting Vulnerability
14423| [11666] Youngzsoft CCProxy Logging Function Unspecified Remote Buffer Overflow Vulnerability
14424| [11650] BNC IRC Server Proxy Authentication Bypass Vulnerability
14425| [11646] Linux Kernel BINFMT_ELF Loader Local Privilege Escalation Vulnerabilities
14426| [11643] Mozilla Firefox Download Dialogue Box File Name Spoofing Vulnerability
14427| [11630] Up-IMAPProxy Multiple Remote Vulnerabilities
14428| [11605] Microsoft ISA and Proxy Server Web Site Spoofing Vulnerability
14429| [11604] Sun Java System Application Server HTTP TRACE Information Disclosure Vulnerability
14430| [11592] Proxytunnel Remote Format String Vulnerability
14431| [11589] ArGoSoft FTP Server Shortcut File Upload Vulnerability
14432| [11585] Minihttp Forum Web Server Plain Text Password Storage Vulnerability
14433| [11574] Cherokee HTTPD Auth_Pam Authentication Remote Format String Vulnerability
14434| [11566] Sun Java System Web Proxy Server Multiple Unspecified Buffer Overflow Vulnerabilities
14435| [11547] Mega Upload Progress Bar Unspecified File Upload Vulnerability
14436| [11514] OpenWFE Remote Cross-Site Scripting And Connection Proxy Vulnerabilities
14437| [11497] Serendipity Exit.PHP HTTP Response Splitting Vulnerability
14438| [11486] DokuWiki Remote Arbitrary File Upload Vulnerability
14439| [11413] Macromedia JRun Session ID Cookie HTTP Response Splitting Vulnerability
14440| [11385] Squid Proxy SNMP ASN.1 Parser Denial Of Service Vulnerability
14441| [11348] Wordpress Wp-login.PHP HTTP Response Splitting Vulnerability
14442| [11340] DCP-Portal Calendar.PHP HTTP Response Splitting Vulnerability
14443| [11299] Proxytunnel Local Proxy Credential Disclosure Vulnerability
14444| [11271] Icecast Server HTTP Header Buffer Overflow Vulnerability
14445| [11201] Snitz Forums Down.ASP HTTP Response Splitting Vulnerability
14446| [11190] PHP Remote Arbitrary Location File Upload Vulnerability
14447| [11180] SnipSnap HTTP Response Splitting Vulnerability
14448| [11140] Apple Safari Cross-Domain Frame Loading Vulnerability
14449| [11099] Oracle Database Server ctxsys.driload Access Validation Vulnerability
14450| [11098] Squid Proxy NTLM Authentication Denial Of Service Vulnerability
14451| [11087] TorrentTrader Download.PHP SQL Injection Vulnerability
14452| [11085] Cerb\xC3\xA8re Proxy Server Long Host Header Field Remote Denial of Service Vulnerability
14453| [11083] Comersus Cart HTTP Response Splitting Vulnerability
14454| [11030] Working Resources BadBlue Unauthorized Proxy Relay Vulnerability
14455| [11024] SWsoft Plesk Reloaded Login_name Parameter Cross-Site Scripting Vulnerability
14456| [11017] Gadu-Gadu File Download Filename Obfuscation Weakness
14457| [11006] Music Daemon LOAD Command File Disclosure Vulnerability
14458| [10999] Safari/WebCore HTTP Content Filtering Bypass Vulnerability
14459| [10936] Kerio Mailserver Embedded HTTP Server Multiple Unspecified Vulnerabilities
14460| [10921] KDE Konqueror Cross-Domain Frame Loading Vulnerability
14461| [10902] Microsoft Exchange Outlook Web Access HTTP Response Splitting Vulnerability
14462| [10877] Mozilla Cross-Domain Frame Loading Vulnerability
14463| [10862] Acme thttpd Directory Traversal Vulnerability
14464| [10812] RiSearch/RiSearch Pro Open Proxy Vulnerability
14465| [10788] Sun Java System Calendar Server Authentication Proxy Privilege Escalation Vulnerability
14466| [10765] Lexmark Network Printer HTTP Server Denial Of Service Vulnerability
14467| [10763] Opera Web Browser Cross-Domain Frame Loading Vulnerability
14468| [10753] PHPBB Multiple HTTP Response Splitting Vulnerabilities
14469| [10679] Opera Web Browser IFrame OnLoad Address Bar URL Obfuscation Weakness
14470| [10673] Mbedthis Software AppWeb HTTP Server Multiple Vulnerabilities
14471| [10627] Microsoft Internet Explorer Cross-Domain Frame Loading Vulnerability
14472| [10604] giFT-FastTrack HTTP Header Parser Remote Denial Of Service Vulnerability
14473| [10592] ArbitroWeb PHP Proxy Cross-Site Scripting Vulnerability
14474| [10550] Thy HTTP Daemon Null Pointer Exception Denial Of Service Vulnerability
14475| [10515] Blackboard Learning System Dropbox File Download Vulnerability
14476| [10509] SMTP.Proxy Remote Format String Vulnerability
14477| [10508] Apache Mod_Proxy Remote Negative Content-Length Buffer Overflow Vulnerability
14478| [10500] Squid Proxy NTLM Authentication Buffer Overflow Vulnerability
14479| [10496] OpenBSD ISAKMPD Security Association Piggyback Delete Payload Denial Of Service Vulnerability
14480| [10482] Microsoft ISA Server Redirect URI Handler Web Proxy Service Remote Denial Of Service Vulnerability
14481| [10481] Microsoft ISA Server HTTP Authentication Scheme Vulnerability
14482| [10477] Microsoft ISA Server Web Proxy Malformed SSL Packet Remote Denial of Service Vulnerability
14483| [10420] Orenosv HTTP/FTP Server HTTP GET Denial Of Service Vulnerability
14484| [10418] IRIX Checkpoint and Restart libcpr Library Loading Privilege Escalation Vulnerability
14485| [10376] Omnicron OmniHTTPD Get Request Buffer Overflow Vulnerability
14486| [10351] Microsoft Internet Explorer http-equiv Meta Tag Denial of Service Vulnerability
14487| [10315] National Science Foundation Squid Proxy Internet Access Control Bypass Vulnerability
14488| [10312] MailEnable Mail Server HTTPMail Remote Heap Overflow Vulnerability
14489| [10303] MyWeb HTTP Server GET Request Buffer Overflow Vulnerability
14490| [10292] Microsoft ASP.NET Malformed HTTP Request Information Disclosure Vulnerability
14491| [10256] Sambar Open Proxy and Authentication Bypass Vulnerability
14492| [10249] Rosiello Security Sphiro HTTPD Remote Heap Buffer Overflow Vulnerability
14493| [10218] OpenBB Arbitrary Avatar File Upload Vulnerability
14494| [10174] Softwin BitDefender AvxScanOnlineCtrl COM Object Remote File Upload And Execution Vulnerability
14495| [10158] Macromedia ColdFusion MX File Upload Denial Of Service Vulnerability
14496| [10123] Microsoft Windows COM Internet Service/RPC Over HTTP Remote Denial Of Service Vulnerability
14497| [10091] IBM HTTP Server PQ86671 and PQ85834 Fixes Released - Multiple Vulnerabilities Fixed
14498| [10031] OpenBSD ISAKMPD Delete Payload Denial Of Service Vulnerability
14499| [10030] OpenBSD ISAKMPD Malformed CERT Request Payload Denial Of Service Vulnerability
14500| [10029] OpenBSD ISAKMPD Malformed IPSEC SA Payload Denial Of Service Vulnerability
14501| [10028] OpenBSD ISAKMPD Zero Payload Length Denial Of Service Vulnerability
14502| [10027] ADA IMGSVR Remote File Download Vulnerability
14503| [10014] Cisco IOS HTTP Router Management Service Malformed Request Denial Of Service Vulnerability
14504| [10008] MPlayer Remote HTTP Header Buffer Overflow Vulnerability
14505| [10004] TCPDump ISAKMP Identification Payload Integer Underflow Vulnerability
14506| [10003] TCPDump ISAKMP Delete Payload Buffer Overrun Vulnerability
14507| [9971] HP Web Jetadmin Printer Firmware Update Script Arbitrary File Upload Weakness
14508| [9964] Kerio WinRoute Firewall Unspecified Malformed HTTP Header Denial of Service Vulnerability
14509| [9950] Centrinity FirstClass HTTP Server TargetName Parameter Cross-Site Scripting Vulnerability
14510| [9948] PHP-Nuke MS-Analysis Module HTTP Referrer Field SQL Injection Vulnerability
14511| [9901] IBM Lotus Domino HTTP webadmin.nsf Quick Console Cross-Site Scripting Vulnerability
14512| [9900] IBM Lotus Domino HTTP webadmin.nsf Directory Traversal Vulnerability
14513| [9868] Oracle Application Server Web Cache HTTP Request Method Heap Overrun Vulnerability
14514| [9867] OpenBSD httpd Access Rule Bypass Vulnerability
14515| [9859] HP HTTP Server Trusted Certificate Compromise Vulnerability
14516| [9846] GNU MyProxy Cross-Site Scripting Vulnerability
14517| [9826] Apache Mod_SSL HTTP Request Remote Denial Of Service Vulnerability
14518| [9804] Multiple Vendor HTTP Response Splitting Vulnerability
14519| [9778] Squid Proxy NULL URL Character Unauthorized Access Vulnerability
14520| [9742] GWeb HTTP Server Directory Traversal Vulnerability
14521| [9724] Platform Load Sharing Facility EAuth Privilege Escalation Vulnerability
14522| [9723] Avirt Soho Web Service HTTP GET Buffer Overrun Vulnerability
14523| [9722] Avirt Soho Server HTTP GET Buffer Overrun Vulnerability
14524| [9721] Avirt Voice HTTP GET Remote Buffer Overrun Vulnerability
14525| [9719] Platform Load Sharing Facility EAuth Component Buffer Overflow Vulnerability
14526| [9716] Proxy-Pro Professional GateKeeper Web Proxy Buffer Overrun Vulnerability
14527| [9706] PSOProxy Remote Buffer Overflow Vulnerability
14528| [9679] KarjaSoft Sami HTTP Server GET Request Buffer Overflow Vulnerability
14529| [9642] Monkey HTTP Daemon Missing Host Field Denial Of Service Vulnerability
14530| [9611] Microsoft Internet Explorer LoadPicture File Enumeration Weakness
14531| [9608] Shaun2k2 Palmhttpd Server Remote Denial of Service Vulnerability
14532| [9591] Joe Lumbroso Jack's Formmail.php Unauthorized Remote File Upload Vulnerability
14533| [9582] Check Point VPN-1/SecuRemote ISAKMP Large Certificate Request Payload Buffer Overflow Vulnerability
14534| [9581] Multiple Check Point Firewall-1 HTTP Security Server Remote Format String Vulnerabilities
14535| [9561] Sun ONE/iPlanet Web Server HTTP TRACE Credential Theft Vulnerability
14536| [9545] MiniHTTPServer WebForums Forum HTML Injection Vulnerability
14537| [9528] Bodington Uploaded File Disclosure Vulnerability
14538| [9519] Loom Software SurfNow Remote HTTP GET Request Denial Of Service Vulnerability
14539| [9506] WebLogic Server and Express HTTP TRACE Credential Theft Vulnerability
14540| [9500] InternetNow ProxyNow Multiple Stack and Heap Overflow Vulnerabilities
14541| [9494] Mbedthis Software AppWeb HTTP Server Empty Options Request Denial Of Service Vulnerability
14542| [9484] Oracle HTTP Server isqlplus Cross-Site Scripting Vulnerability
14543| [9478] Finjan SurfinGate FHTTP Restart Command Execution Vulnerability
14544| [9477] Sun Solaris modload() Unauthorized Kernel Module Loading Vulnerability
14545| [9476] McAfee ePolicy Orchestrator Agent HTTP POST Buffer Mismanagement Vulnerability
14546| [9475] Netbus Directory Listings Disclosure and File Upload Vulnerability
14547| [9474] Acme thttpd CGI Test Script Cross-Site Scripting Vulnerability
14548| [9470] Mephistoles HTTPD Cross-Site Scripting Vulnerability
14549| [9421] Real Networks Helix Server/Gateway Administration Service HTTP Post System Compromise Vulnerability
14550| [9390] Hand-Crafted Software FreeProxy FreeWeb CreateFile Function Denial of Service Vulnerability
14551| [9388] Hand-Crafted Software FreeProxy FreeWeb Directory Traversal Vulnerability
14552| [9345] Cherokee HTTP Post Remote Content Length Denial Of Service Vulnerability
14553| [9326] Mozilla Browser Proxy Server Authentication Credential Disclosure Vulnerability
14554| [9299] Surfboard httpd Remote Buffer Overflow Vulnerability
14555| [9295] Microsoft Internet Explorer HTTP Referer Information Disclosure Vulnerability
14556| [9278] Microsoft Internet Explorer File Download Warning Bypass Vulnerability
14557| [9218] MVDSV Quake Server Download Buffer Overrun Vulnerability
14558| [9210] lftp Try_Netscape_Proxy Buffer Overflow Vulnerability
14559| [9172] MyServer HTTP File Name Request Handler Remote Denial Of Service Vulnerability
14560| [9167] EZMeeting EZNet.EXE Long HTTP Request Remote Buffer Overflow Vulnerability
14561| [9152] Linksys WRT54G Router Blank HTTP GET Request Denial Of Service Vulnerability
14562| [9121] Bitfolge Snif Downloads Directory Traversal Vulnerability
14563| [9099] Monit Overly Long HTTP Request Buffer Overrun Vulnerability
14564| [9098] Monit HTTP Content-Length Parameter Denial of Service Vulnerability
14565| [9055] PostMaster Proxy Service Cross-Site Scripting Vulnerability
14566| [9020] Nokia IPSO Voyager HTTPDAccessLog.TCL Remote Script injection Vulnerability
14567| [8964] OpenBSD isakmpd Multiple IKE Payload Handling Security Weaknesses
14568| [8949] HTTP Commander Path Disclosure Vulnerability
14569| [8948] HTTP Commander Directory Traversal Vulnerability
14570| [8947] BRS WebWeaver httpd `User-Agent` Remote Denial of Service Vulnerability
14571| [8927] Multiple Vendor HTTP Server IPv6 Socket IPv4 Mapped Address Handling Vulnerability
14572| [8925] TelCondex SimpleWebserver HTTP Referer Remote Buffer Overflow Vulnerability
14573| [8924] Acme thttpd/mini_httpd Virtual Hosting File Disclosure Vulnerability
14574| [8920] Centrinity FirstClass HTTP Server Directory Disclosure Vulnerability
14575| [8906] thttpd defang Remote Buffer Overflow Vulnerability
14576| [8897] SH-HTTPD Character Filtering Remote Information Disclosure Vulnerability
14577| [8858] Gast Arbeiter File Upload Validation Vulnerability
14578| [8854] Emule Web Control Panel HTTP Login Long Password Denial of Service Vulnerability
14579| [8841] Bajie HTTP Server Example Scripts And Servlets Cross-Site Scripting Vulnerability
14580| [8824] Apache Tomcat Non-HTTP Request Denial Of Service Vulnerability
14581| [8793] Centrinity FirstClass HTTP Server Long Version Field Denial Of Service Vulnerability
14582| [8782] MiniHTTPServer WebForums Forum HTML Injection Vulnerability
14583| [8781] MiniHTTPServer File-Sharing for NET Forum HTML Injection Vulnerability
14584| [8764] PHP-Nuke mailattach.php Remote File Upload Vulnerability
14585| [8742] IBM DB2 Remote LOAD Command Buffer Overrun Vulnerability
14586| [8724] Webfs HTTP Server Information Disclosure Vulnerability
14587| [8709] Athttpd Remote GET Request Buffer Overrun Vulnerability
14588| [8697] NullLogic Null HTTPd Remote Denial Of Service Vulnerability
14589| [8695] NullLogic Null HTTPd Error Page Long HTTP Request Cross-Site Scripting Vulnerablity
14590| [8688] TCLHttpd Multiple Cross-Site Scripting Vulnerabilities
14591| [8687] TCLhttpd Directory Listing Disclosure Vulnerability
14592| [8633] MiniHTTPServer WebForum Server Unauthorized Administrative Access Vulnerability
14593| [8620] MiniHTTPServer WebForums Server Default Password Vulnerability
14594| [8619] MiniHTTPServer WebForums/File-Sharing for NET Servers Directory Traversal Vulnerability
14595| [8617] WideChapter HTTP Request Buffer Overflow Vulnerability
14596| [8564] Kukol E.V. HTTP & FTP Server Suite File Disclosure Vulnerability
14597| [8487] AnalogX Proxy DNS Lookup Error Page Cross-Site Scripting Vulnerability
14598| [8471] Avant Browser Long HTTP Request Buffer Overflow Vulnerability
14599| [8438] DWebPro Http.ini Plaintext Password Storage Vulnerability
14600| [8432] cURL Proxy Authentication Header Information Leakage Vulnerability
14601| [8408] SurgeLDAP HTTP GET Denial Of Service Vulnerability
14602| [8375] Multiple Oracle XDB FTP / HTTP Services Buffer Overflow Vulnerabilities
14603| [8374] PostNuke Downloads / Web_Links Modules TTitle Cross-site Scripting Vulnerability
14604| [8373] Cisco IOS 2GB HTTP GET Buffer Overflow Vulnerability
14605| [8363] MiniHTTPServer WebForums Server Null Default Password Vulnerability
14606| [8361] Postfix Connection Proxying Vulnerability
14607| [8305] Sun Solaris Runtime Linker LD_PRELOAD Local Buffer Overflow Vulnerability
14608| [8297] KDE Konqueror HTTP REFERER Authentication Credential Leak Vulnerability
14609| [8290] Cisco Aironet AP1x00 Malformed HTTP GET Denial Of Service Vulnerability
14610| [8271] PHP Arena paFileDB Arbitrary File Upload And Execution Vulnerability
14611| [8226] Apache HTTP Server Multiple Vulnerabilities
14612| [8222] WatchGuard ServerLock Unauthorized Kernel Module Loading Vulnerability
14613| [8197] NetSuite HTTP Server Directory Traversal Vulnerability
14614| [8166] Mabry Software HTTPServer/X File Disclosure Vulnerability
14615| [8155] ChangshinSoft EZTrans Server Download.PHP Directory Traversal Vulnerability
14616| [8135] Apache Web Server FTP Proxy IPV6 Denial Of Service Vulnerability
14617| [8121] Canon GP300 Remote Malformed HTTP Get Denial Of Service Vulnerability
14618| [8064] Abyss Web Server HTTP Header Injection Vulnerability
14619| [8062] Abyss Web Server HTTP GET Heap Overrun Vulnerability
14620| [8061] GTKSee PNG Image Loading Heap Corruption Vulnerability
14621| [8048] iXmail Arbitrary File Upload Vulnerability
14622| [8043] MoreGroupWare Arbitrary File Upload Vulnerability
14623| [8012] Tutos File_New Arbitrary File Upload Vulnerability
14624| [7998] Zope Empty Upload Information DisclosureVulnerability
14625| [7955] MiniHTTPServer WebForums Server Remote Directory Traversal Vulnerability
14626| [7954] Proxomitron Proxy Server Long Get Request Remote Denial Of Service Vulnerability
14627| [7945] Dune HTTP Get Remote Buffer Overrun Vulnerability
14628| [7944] MyServer HTTP Server Directory Traversal Vulnerability
14629| [7939] Microsoft Internet Explorer Custom HTTP Error HTML Injection Vulnerability
14630| [7851] Sun Microsystems JRE HTTP Property Access Vulnerability
14631| [7841] Novell HTTPSTK.NLM Remote Abend Vulnerability
14632| [7830] Monkey HTTP Daemon Sample Script Cross-Site Scripting Vulnerability
14633| [7818] AdSubtract Proxy ACL Bypass Connection Proxying Vulnerability
14634| [7809] Computer Associates Unicenter TNG File_Upload.PL Command Execution Vulnerability
14635| [7802] MegaBrowser HTTP Directory Traversal File Disclosure Vulnerability
14636| [7770] myServer HTTP GET Argument Buffer Overflow Vulnerability
14637| [7765] iisCart2000 Arbitrary File Upload Vulnerability
14638| [7744] Geeklog Image Upload Extension Validation Vulnerability
14639| [7701] BNC IRC Proxy Multiple Session Denial of Service Vulnerability
14640| [7681] AnalogX Proxy URI Buffer Overflow Vulnerability
14641| [7670] EServ Unauthorized Proxy Access Vulnerability
14642| [7655] Platform Load Sharing Facility LSF_ENVDIR Local Command Execution Vulnerability
14643| [7652] Axis Network Camera HTTP Authentication Bypass Vulnerability
14644| [7640] Microsoft Windows Media Player Automatic File Download and Execution Vulnerability
14645| [7620] Venturi Client Unauthorized Connection Proxying Vulnerability
14646| [7619] Snowblind Web Server HTTP GET Request Buffer Overflow Vulnerability
14647| [7617] Snowblind Web Server Malformed HTTP Request Denial Of Service Vulnerability
14648| [7588] PHP-Nuke Multiple Downloads Module SQL Injection Vulnerabilities
14649| [7583] Phorum Login.PHP Connection Proxying Vulnerability
14650| [7581] Phorum Register.PHP Connection Proxying Vulnerability
14651| [7569] Phorum Download File Disclosure Vulnerability
14652| [7479] MDG Web Server 4D HTTP Command Buffer Overflow Vulnerability
14653| [7469] Microsoft BizTalk Server 2002 HTTP Receiver Buffer Overflow Vulnerability
14654| [7435] SonicWALL Pro Large HTTP POST Denial of Service Vulnerability
14655| [7420] Microsoft Internet Explorer Plugin.OCX Load() Method Buffer Overflow Vulnerability
14656| [7397] AN HTTPD Count.pl Directory Traversal Vulnerability
14657| [7314] Microsoft Winsock Proxy Service Remote Denial Of Service Vulnerability
14658| [7287] Abyss Web Server Incomplete HTTP Request Denial Of Service Vulnerability
14659| [7245] Kerio WinRoute Firewall Malformed HTTP GET Request Denial of Service Vulnerability
14660| [7238] CCLog HTTP Header HTML Injection Vulnerability
14661| [7203] Multitech ProxyServer Default NULL Password Vulnerability
14662| [7202] Monkey HTTP Daemon Excessive POST Data Buffer Overflow Vulnerability
14663| [7201] Monkey HTTP Daemon Missing Content-Type Field Denial Of Service Vulnerability
14664| [7196] Symantec Enterprise Firewall HTTP Pattern Matching Evasion Weakness
14665| [7143] Siteframe Download.php Information Disclosure Vulnerability
14666| [7111] McAfee ePolicy Orchestrator HTTP GET Request Format String Vulnerability
14667| [7056] Opera Long Filename Download Buffer Overrun Vulnerability
14668| [7051] Upload Lite Arbitrary File Upload Vulnerability
14669| [7015] WebLog Expert HTTP Header Code Injection Vulnerability
14670| [7010] Logan Pro HTTP Header Code Injection Vulnerability
14671| [6980] Axis Communications HTTP Server Messages Information Disclosure Vulnerability
14672| [6951] IBM Lotus Domino Web Server HTTP POST Denial Of Service Vulnerability
14673| [6876] Syslinux Boot Loader SetUID Installation Vulnerability
14674| [6870] IBM Lotus Domino HTTP Redirect Buffer Overflow Vulnerability
14675| [6839] IBM AIX Loadable Authentication Module Unauthorized Access Vulnerability
14676| [6813] Linked Eggdrop IRC Bot Unauthorized Proxy Vulnerability
14677| [6792] Netscape Enterprise Server HTTP Method Name Buffer Overflow Vulnerability
14678| [6789] Microsoft IIS Malformed HTTP Get Request Denial Of Service Vulnerability
14679| [6782] UMN GopherD Unauthorized Proxy Vulnerability
14680| [6760] DCGUI Remote Directory Parsing File Download Vulnerability
14681| [6752] NCSA Post-query CGI HTTP POST Buffer Overflow Vulnerability
14682| [6740] IlohaMail Arbitrary File Attachment Upload Path Vulnerability
14683| [6734] 3ware Disk Managment Malformed HTTP Request DoS Vulnerability
14684| [6708] Replicom ProxyView Default Password Vulnerability
14685| [6660] Apache Web Server Illegal Character HTTP Request File Disclosure Vulnerability
14686| [6646] Lotus Domino HTTP Authentication Logging Buffer Overflow Vulnerability
14687| [6644] MyRoom save_item.php Arbitrary File Upload Vulnerability
14688| [6572] Mambo Site Server Arbitrary File Upload Vulnerability
14689| [6531] HTTP Fetcher Library Multiple Buffer Overflow Vulnerabilities
14690| [6529] AN HTTPD Cross Site Scripting Vulnerability
14691| [6528] AN HTTPD HTTP Request Buffer Overflow Vulnerability
14692| [6505] iCal Malformed HTTP Request Denial Of Service Vulnerability
14693| [6497] Perl-HTTPd File Disclosure Vulnerability
14694| [6471] Internet Junkbuster Proxy Unauthorized Connections Vulnerability
14695| [6458] RealNetworks Helix Universal Server Long URI Dual HTTP Request Buffer Overflow Vulnerability
14696| [6437] CUPS Negative Length HTTP Header Vulnerability
14697| [6433] CUPS HTTP Interface Integer Overflow Vulnerability
14698| [6424] SuSE gfxmenu GRUB Boot Loader Password Bypassing Vulnerability
14699| [6389] Symantec Enterprise Firewall RealAudio Proxy Buffer Overflow Vulnerability
14700| [6343] Ikonboard X-Forwarded-For: Proxy Header Field HTML Injection Vulnerability
14701| [6340] apt-www-proxy Format String Vulnerability
14702| [6321] Trend Micro InterScan VirusWall Unauthorized Proxy Connections Vulnerability
14703| [6308] Zeroo HTTP Server Directory Traversal Vulnerability
14704| [6292] Webster HTTP Server Cross Site Scripting Vulnerability
14705| [6291] Webster HTTP Server File Disclosure Vulnerability
14706| [6289] Webster HTTP Server Long Request Buffer Overrun Vulnerability
14707| [6287] Pserv HTTP Request Parsing Buffer Overflow
14708| [6286] Pserv User-Agent HTTP Header Buffer Overflow Vulnerability
14709| [6285] Pserv HTTP Version Specifier Buffer Overflow Vulnerability
14710| [6259] AOL Instant Messenger Forced File Download Vulnerability
14711| [6255] Null HTTPD Remote Heap Corruption Vulnerability
14712| [6242] Pserv HTTP POST Request Buffer Overflow Vulnerability
14713| [6236] acFreeProxy Cross Site Scripting Vulnerability
14714| [6230] RealPlayer RealFlash Source Loading Buffer Overflow Vulnerability
14715| [6198] TFTPD32 Arbitrary File Download/Upload Vulnerability
14716| [6190] Lonerunner Zeroo HTTP Server Remote Buffer Overflow Vulnerability
14717| [6181] IBM HTTP Server Information Disclosure Vulnerability
14718| [6172] LibHTTPD POST Buffer Overflow Vulnerability
14719| [6162] Light HTTPD GET Request Buffer Overflow Vulnerability
14720| [6158] TinyHTTPD Input Validation Vulnerability
14721| [6153] EZ Systems HTTPBench Information Disclosure Vulnerability
14722| [6137] Microsoft JVM CAB File Loading Vulnerability
14723| [6134] Microsoft JVM Class Loader Buffer Overrun Vulnerability
14724| [6096] Monkey HTTP Server Invalid POST Request Denial Of Service Vulnerability
14725| [6090] Multiple Vendor Access Point Embedded HTTP Server Denial of Service Vulnerability
14726| [6082] Cisco ONS15454/ONS15327 Optical Transport Platforms HTTP Request Denial of Service Vulnerability
14727| [6071] Microsoft IIS Script Source Access File Upload Vulnerability
14728| [6054] AN HTTPD Error Page Cross Site Scripting Vulnerability
14729| [6020] PHP Arena PAFileDB Download Cross-Site Scripting Vulnerability
14730| [6012] AN HTTPD Malformed SOCKS4 Request Buffer Overflow Vulnerability
14731| [6010] IPFilter FTP Proxy Unauthorized Access Vulnerability
14732| [6002] IBM Websphere Caching Proxy Denial Of Service Vulnerability
14733| [6001] IBM Websphere Edge Server HTTP Header Injection Vulnerability
14734| [5976] Cisco CatOS CiscoView HTTP Server Buffer Overflow Vulnerability
14735| [5960] ghttpd Log() Function Buffer Overflow Vulnerability
14736| [5956] ATP httpd Single Byte Buffer Overflow Vulnerability
14737| [5938] Nylon Proxy Receive Function Denial Of Service Vulnerability
14738| [5931] SurfControl SuperScout Email Filter Incomplete HTTP Request DoS Vulnerability
14739| [5930] SurfControl SuperScout Email Filter Missing Content-Length HTTP Header Field DoS Vulnerability
14740| [5926] VBZoom Arbitrary File Upload Vulnerability
14741| [5907] Microsoft IIS Malformed HTTP HOST Header Field Denial Of Service Vulnerability
14742| [5855] Midicart PHP Arbitrary File Upload Vulnerability
14743| [5829] Monkey HTTP Server Multiple Cross Site Scripting Vulnerabilities
14744| [5819] BEA WebLogic Server and Express HTTP Response Information Disclosure Vulnerability
14745| [5811] Multiple OpenVMS WASD HTTP Server Vulnerabilities
14746| [5792] Monkey HTTP Server File Disclosure Vulnerability
14747| [5774] Null HTTPd Remote Heap Overflow Vulnerability
14748| [5757] Mozilla Browser HTTP/HTTPS Redirection Weakness
14749| [5753] Mozilla Browser Large HTTP Header Buffer Overflow Vulnerability
14750| [5749] IBM WebSphere Large HTTP Header Buffer Overflow Vulnerability
14751| [5738] ISS Internet Scanner HTTP Banner Text Parsing Buffer Overflow Vulnerability
14752| [5725] DB4Web Connection Proxy Vulnerability
14753| [5697] Trend Micro InterScan VirusWall HTTP 1.1 Transfer-Encoding Bypass Vulnerability
14754| [5694] Mozilla OnUnload Referer Information Leakage Vulnerability
14755| [5692] Norton Antivirus 2001 Poproxy Username Local Denial of Service Vulnerability
14756| [5678] Oracle TNS Listener Service_CurLoad Remote Denial Of Service Vulnerability
14757| [5668] Netscreen-Remote VPN Client IKE Packet Excessive Payloads Vulnerability
14758| [5624] Cisco VPN Concentrator HTTP Error Page Device Information Leakage Vulnerability
14759| [5615] Cisco HTTP Interface Long Request Denial Of Service Vulnerability
14760| [5603] NullLogic Null HTTPd Error Page Cross-Site Scripting Vulnerability
14761| [5589] OpenBSD isakmpd IKE Payloads Denial Of Service Vulnerability
14762| [5572] OmniHTTPD Sample Application URL Encoded Newline HTML Injection Vulnerability
14763| [5571] Belkin F5D6130 Wireless Network Access Point SNMP Request Denial Of Service Vulnerability
14764| [5568] OmniHTTPD Sample Scripts Cross Site Scripting Vulnerabilities
14765| [5559] Microsoft Internet Explorer Download Dialogue File Source Obfuscation Vulnerability
14766| [5549] Abyss Web Server Malicious HTTP Request Information Disclosure Vulnerability
14767| [5520] Novell NetWare HTTP Post Arbitrary Perl Code Execution Vulnerability
14768| [5512] Microsoft File Transfer Manager Arbitrary File Upload/Download Vulnerability
14769| [5506] W3C Jigsaw Proxy Server Cross-Site Scripting Vulnerability
14770| [5494] Tomahawk Technologies SteelArrow Cookie HTTP Header Buffer Overflow Vulnerability
14771| [5470] MyWebServer Long HTTP Request HTML Injection Vulnerability
14772| [5443] Cisco VPN Client IKE Packet Excessive Payloads Vulnerability
14773| [5441] Cisco VPN Client IKE Security Parameter Index Payload Buffer Overflow Vulnerability
14774| [5421] Microsoft Content Management Server 2001 Arbitrary Upload Location Vulnerability
14775| [5416] 602Pro LAN SUITE 2002 Telnet Proxy Localhost Denial Of Service Vulnerability
14776| [5384] Inso DynaWeb httpd Format String Vulnerability
14777| [5369] Frederic Tyndiuk Eupload Plain Text Password Storage Vulnerability
14778| [5345] Abyss Web Server HTTP GET Request Directory Contents Disclosure Vulnerability
14779| [5334] HP ChaiVM EZLoader Arbitrary JAR Loading Vulnerability
14780| [5333] Lucent Access Point IP Services Router Long HTTP Request Denial Of Service Vulnerability
14781| [5323] IPSwitch IMail Web Messaging HTTP Get Buffer Overflow Vulnerability
14782| [5321] T. Hauck Jana Server SOCKS5 Proxy Server Authentication Buffer Overflow Vulnerability
14783| [5319] T. Hauck Jana Server HTTP Server Request Logging Buffer Overflow Vulnerability
14784| [5316] StatsPlus HTTP Header HTML Injection Vulnerability
14785| [5278] PHP HTTP POST Incorrect MIME Header Parsing Vulnerability
14786| [5275] Working Resources BadBlue HTTP 302 Message Cross-Site Scrpting Vulnerability
14787| [5256] Apache httpd 2.0 CGI Error Path Disclosure Vulnerability
14788| [5215] ATPhttpd Buffer Overflow Vulnerabilities
14789| [5211] Summit Computer Networks Lil' HTTP Server pbcgi.cgi Cross Site Scripting Vulnerability
14790| [5183] NcFTP Client PORT Allowed With Proxy Server Weakness
14791| [5158] Squid FTP Proxy Data Channel Vulnerabilities
14792| [5157] Squid Gopher Proxy Buffer Overflow Vulnerability
14793| [5154] Squid Proxy Authentication Credential Forwarding Information Disclosure Vulnerability
14794| [5139] AnalogX Proxy Web Proxy Buffer Overflow Vulnerability
14795| [5138] AnalogX Proxy Socks4A Buffer Overflow Vulnerability
14796| [5136] OmniHTTPD Long Request Buffer Overflow Vulnerability
14797| [5115] Summit Computer Networks Lil' HTTP Server URLCount.CGI HTML Injection Vulnerability
14798| [5080] GameCheats Advanced Web Server Malformed HTTP Request Denial Of Service Vulnerability
14799| [5045] 4D WebServer Long HTTP Request Buffer Overflow Vulnerability
14800| [4982] Belkin F5D5230-4 Router Internal Web Traffic Origin Obfuscation Vulnerability
14801| [4922] Core APM File Upload Execution Vulnerability
14802| [4751] Cisco Cache Engine Default Configuration Arbitrary User Proxy Vulnerability
14803| [4747] Cisco Content Service Switch HTTPS Post Denial Of Service Vulnerability
14804| [4711] Cisco ATA-186 HTTP Device Configuration Disclosure Vulnerability
14805| [4698] Novell BorderManager RTSP Proxy Denial Of Service Vulnerability
14806| [4696] Novell BorderManager FTP-Proxy Denial Of Service Vulnerability
14807| [4657] Snapgear Lite+ Firewall HTTP Denial of Service Vulnerability
14808| [4633] Solaris LBXProxy Display Name Buffer Overflow Vulnerability
14809| [4628] Mozilla / Netscape 6 XMLHttpRequest File Disclosure Vulnerability
14810| [4601] ACME Labs thttpd Cross-Site Scripting Vulnerability
14811| [4577] National Instruments LabVIEW HTTP Request Denial of Service Vulnerability
14812| [4576] Summit Computer Networks Lil' HTTP Server Directory Traversal Vulnerability
14813| [4487] Microsoft IIS HTTP Redirect Cross Site Scripting Vulnerability
14814| [4486] Microsoft IIS HTTP Error Page Cross Site Scripting Vulnerability
14815| [4476] Microsoft IIS HTTP Header Field Delimiter Buffer Overflow Vulnerability
14816| [4460] Funk Software Proxy Named Pipe Weak Permissions Arbitrary Access Vulnerability
14817| [4459] Funk Software Proxy Weak Password Storage Vulnerability
14818| [4458] Funk Proxy Weak Default Installation Permissions Vulnerability
14819| [4345] VNC HTTP Server Denial Of Service Vulnerability
14820| [4342] HP Praesidium Webproxy Unauthorized Access Vulnerability
14821| [4325] PHP Move_Uploaded_File Open_Basedir Circumvention Vulnerability
14822| [4286] Foundry Networks ServerIron Encoded URI Load Balancing Bypass Weakness
14823| [4252] Cobalt RaQ XTR MultiFileUpload.php Authentication Bypass Vulnerability
14824| [4229] Zope Proxy Role Elevated Object Access Vulnerability
14825| [4209] Sun Cobalt RaQ Service.CGI HTTP Server Denial of Service Vulnerablity
14826| [4199] Multiple Vendor MacOS Browser Arbitrary Program Download Vulnerability
14827| [4198] BPM Studio Pro HTTPD Directory Traversal Vulnerability
14828| [4183] PHP Post File Upload Buffer Overflow Vulnerabilities
14829| [4153] Summit Computer Networks Lil' HTTP Server Directory Disclosure Vulnerability
14830| [4148] Squid Cache FTP Proxy URL Buffer Overflow Vulnerability
14831| [4143] CacheFlow CacheOS HTTP CONNECT TCP Tunnel Vulnerability
14832| [4141] Symantec Enterprise Firewall SMTP Proxy Information Leak Vulnerability
14833| [4131] Multiple Vendor HTTP CONNECT TCP Tunnel Vulnerability
14834| [4055] Delegate POP Proxy USER Buffer Overflow Vulnerability
14835| [4002] Microsoft Site Server 3.0 Content Upload Denial of Service Vulnerability
14836| [3993] UBBThreads/WWWThreads Arbitrary File Upload Vulnerability
14837| [3964] Alteon AceDirector Half-Closed HTTP Request IP Address Revealing Vulnerabililty
14838| [3954] FormMail HTTP_Referer Spoofing Vulnerability
14839| [3937] CHUID Upload Directory Escaping File Owner Changing Vulnerability
14840| [3917] Working Resources BadBlue Enterprise Edition File Upload Vulnerability
14841| [3905] Avirt Gateway Suite Telnet Proxy Remote Buffer Overflow Vulnerability
14842| [3901] Avirt Gateway Suite Telnet Proxy Remote SYSTEM Access Vulnerability
14843| [3835] LIDS Capability Leakage via LD_PRELOAD Vulnerability
14844| [3814] Anti-Web HTTPD Script Engine Heap Overflow Vulnerability
14845| [3811] Hosting Controller Unauthorized File Access and Upload Vulnerability
14846| [3796] Apache HTTP Request Unexpected Behavior Vulnerability
14847| [3782] Anti-Web HTTPD Script Engine File Opening Denial Of Service Vulnerability
14848| [3773] Cherokee HTTPD Remote Command Execution Vulnerability
14849| [3772] Cherokee HTTPD Directory Traversal Vulnerability
14850| [3771] Cherokee HTTPD Insecure Privilege Release Vulnerability
14851| [3765] Oracle Oracle9iAS Web Cache HTTP Header DoS Vulnerability
14852| [3744] PHPFileExchange File Upload Vulnerability
14853| [3699] Microsoft Internet Explorer XMLHTTP File Disclosure Vulnerability
14854| [3608] Persits AspUpload Default Scripts Exploitable Vulnerability
14855| [3568] Oracle9iAS Web Cache HTTP Content Header Denial Of Service Vulnerability
14856| [3562] thttpd Basic Authentication Buffer Overflow Vulnerability
14857| [3528] Acme THTTPD/Mini_HTTPD File Disclosure Vulnerability
14858| [3523] Rational ClearCase DB Loader TERM Environment Variable Buffer Overflow Vulnerability
14859| [3518] IBM HTTP Server Source Code Disclosure Vulnerability
14860| [3506] Red Hat TUX HTTP Server Oversized Host Denial of Service Vulnerability
14861| [3471] Microsoft IE 5.1 for Mac OS X 10.1 Download Execution Vulnerability
14862| [3421] Microsoft Internet Explorer HTTP Request Encoding Vulnerability
14863| [3354] Squid Web Proxy Cache Denial of Service Vulnerabilty
14864| [3202] Nudester Unauthorized Arbitrary File Upload and Download Vulnerability
14865| [3197] Microsoft ISA Server Proxy Service Memory Leak Denial of Service Vulnerability
14866| [3158] NCSA HTTPd Buffer Overflow Vulnerability
14867| [3074] Multiple Linux Vendor Expect Insecure Library Loading Vulnerability
14868| [3069] HP-UX Dynamically Loadable Kernel Modules Vulnerability
14869| [3062] Squid Web Proxy Reverse Proxy Vulnerability
14870| [3059] Squid Web Proxy Cross-Site Scripting Vulnerability
14871| [3006] xloadimage Buffer Overflow Vulnerability
14872| [2980] SmallHTTP Server Long URL Denial of Service Vulnerability
14873| [2963] BisonFTP BDL File Upload Directory Traversal Vulnerability
14874| [2959] Trend Micro InterScan WebManager HttpSave.dll Buffer Overflow Vulnerability
14875| [2936] Cisco IOS HTTP Configuration Arbitrary Administrative Access Vulnerability
14876| [2879] ghttpd Daemon Buffer Overflow Vulnerability
14877| [2855] WatchGuard Firebox SMTP Proxy Attachment Bypassing Vulnerability
14878| [2804] Cisco IOS Router Scan Software Reloading Vulnerability
14879| [2788] Omnicron OmniHTTPD File Source Disclosure Vulnerability
14880| [2783] Omnicron OmniHTTPD PHP Denial of Service Vulnerability
14881| [2775] Beck GmbH IPC@CHIP HTTPD File Disclosure Vulnerability
14882| [2774] Beck IPC GmbH IPC@CHIP HTTP DoS Vulnerability
14883| [2740] Apache Web Server HTTP Request Denial of Service Vulnerability
14884| [2730] Omnicron Technologies OmniHTTPd Pro POST DoS Vulnerability
14885| [2721] 3COM OfficeConnect HTTP Port Router Denial of Service Vulnerability
14886| [2697] Michael Lamont Savant HTTP Server Directory Traversal Vulnerability
14887| [2649] Small HTTP Server MS-DOS Device Name DoS Vulnerability
14888| [2615] Netscape SmartDownload 1.3 Buffer Overflow Vulnerability
14889| [2600] Microsoft ISA Server Web Proxy DoS Vulnerability
14890| [2598] Lotus Domino R5 Server HTTP DoS Vulnerability
14891| [2565] Lotus Domino Web Server HTTP Header DoS Vulnerability
14892| [2543] 602Pro Lan Suite Long HTTP Request Denial of Service Vulnerability
14893| [2511] SurfControl SuperScout for MS Proxy Site Filtering Vulnerability
14894| [2500] Compaq Management Software Proxy Vulnerability
14895| [2451] WhitSoft SlimServe HTTPD Get Denial of Service Vulnerability
14896| [2436] Robin Twombly A1 HTTP Server Directory Traversal Vulnerability
14897| [2435] Robin Twombly A1 HTTP Server Denial of Service Vulnerability
14898| [2413] SEDUM HTTP Webserver Denial of Service Vulnerability
14899| [2335] Guido Frassetto SEDUM HTTP Server Directory Traversal Vulnerability
14900| [2318] Whitsoft SlimServe HTTPd Server DoS Vulnerability
14901| [2300] NCSA/Apache httpd ScriptAlias Source Retrieval Vulnerability
14902| [2223] glibc LD_PRELOAD File Overwriting Vulnerability
14903| [2217] Tinyproxy Heap Overflow Vulnerability
14904| [2211] OmniHTTPD File Corruption and Command Execution Vulnerability
14905| [2175] IBM HTTP Server AfpaCache/WebSphereNet.Data DoS Vulnerability
14906| [2165] GTK+ Arbitrary Loadable Module Execution Vulnerability
14907| [2119] Watchguard SOHO Firewall HTTP Request Vulnerability
14908| [2099] Multiple Oops Proxy Server Buffer Overflow Vulnerabilities
14909| [2090] KTH Kerberos 4 Arbitrary Proxy Usage Vulnerability
14910| [2051] Sun JDK/JRE Disallowed Class Loading Vulnerability
14911| [2027] AnalogX Proxy Server DoS Vulnerability
14912| [2026] GlimpseHTTP and WebGlimpse Piped Command Vulnerability
14913| [1988] IBM HTTP Server Denial of Service Vulnerability
14914| [1975] NCSA HTTPd campas sample script Vulnerability
14915| [1953] Watchguard Firebox II FTP Proxy DoS Vulnerability
14916| [1942] Small HTTP Server Incomplete Request Denial of Service Vulnerability
14917| [1941] Small HTTP Server Non-Existent File DoS Vulnerability
14918| [1927] BNC IRC Proxy Buffer Overflow Vulnerability
14919| [1876] Unify eWave ServletExec File Upload Vulnerability
14920| [1838] Cisco IOS Software ?/ HTTP Request DoS Vulnerability
14921| [1811] Microsoft Site Server 2.0 with IIS 4.0 Malicious File Upload Vulnerability
14922| [1808] OmniHTTPD visiadmin.exe Denial of Service Vulnerability
14923| [1737] Acme thttpd Arbitrary World-Readable File Disclosure Vulnerability
14924| [1717] Unixware SCOhelp HTTP Server Format String Vulnerability
14925| [1695] Microsoft Proxy 2.0 FTP Permissions Bypass Vulnerability
14926| [1692] Microsoft Proxy 2.0 Internal Network Access Vulnerability
14927| [1678] Mandrake /perl http Directory Disclosure Vulnerability
14928| [1649] PHP Upload Arbitrary File Disclosure Vulnerability
14929| [1626] Worm httpd Directory Traversal Vulnerability
14930| [1570] BEA Weblogic Proxy Multiple Buffer Overflow Vulnerabilities
14931| [1504] AnalogX Proxy DoS Vulnerability
14932| [1497] WEBactive HTTP Server Default Log Vulnerability
14933| [1470] WEBactive HTTP Server Long GET Request Vulnerability
14934| [1423] LocalWEB HTTP Buffer Overflow Vulnerability
14935| [1415] Microsoft Windows 2000 Remote CPU-overload Vulnerability
14936| [1400] SapporoWorks WinProxy Buffer Overflow Vulnerability
14937| [1395] Fortech Proxy+ Telnet Gateway Vulnerability
14938| [1355] Small HTTP Server Buffer Overflow Vulnerability
14939| [1339] Microsoft Internet Explorer for Macintosh getImage and classloader Vulnerabilities
14940| [1337] Multiple Vendors HTTP Redirect Java Applet Vulnerability
14941| [1284] Apache HTTP Server (win32) Root Directory Access Vulnerability
14942| [1248] thttpd tdate_parse() Stack Overflow Vulnerability
14943| [1226] Fortech Proxy+ 2.30 Remote Administration Vulnerability
14944| [1213] CProxy 3.3 SP2 Buffer Overflow DoS Vulnerability
14945| [1196] NTMail Server 5.x Proxy Access Vulnerability
14946| [1154] Cisco IOS HTTP %% Vulnerability
14947| [1105] Microsoft NT 4.0 OffloadModExpo Registry Permissions Vulnerability
14948| [980] Internet Anywhere Mail Server Connection Overload Vulnerability
14949| [976] Novell Border Manager Audit Trail Proxy DoS Vulnerability
14950| [936] W3C httpd (Formerly 'CERN httpd') Path Revealing Vulnerability
14951| [883] Microsoft Outlook Express for MacOS HTML Attachment Automatic Download Vulnerability
14952| [877] Norton Antivirus 2000 POProxy USER Vulnerability
14953| [815] Microsoft IE5 XML HTTP Redirect Vulnerability
14954| [800] Microsoft Outlook Express For Mac Download Vulnerability
14955| [778] BigIP Config UI Vulnerabilities
14956| [762] AN-HTTPd CGI Vulnerabilities
14957| [741] Squid Web Proxy Authentication Failure Vulnerability
14958| [739] OmniHTTPD Buffer Overflow Vulnerability
14959| [705] Cisco Catalyst Supervisor Remote Reload
14960| [674] Microsoft IE5 Download Behavior Vulnerability
14961| [592] Persits AspUpload Buffer Overflow Vulnerability
14962| [579] NT IIS Malformed HTTP Request Header DoS Vulnerability
14963| [318] Debian Linux httpd Vulnerability
14964| [306] MacOS X Server Overload Vulnerability
14965| [164] Malicious Java applet security flaw in ClassLoader Vulnerability
14966| [115] Allaire ColdFusion Remote File Display, Deletion, Upload and Execution Vulnerability
14967| [33] OpenWindows loadmodule Vulnerability
14968|
14969| IBM X-Force - https://exchange.xforce.ibmcloud.com:
14970| [39612] Apache HTTP Server mod_proxy_balancer buffer overflow
14971| [39474] Apache HTTP Server mod_proxy_balancer cross-site scripting
14972| [85605] Stage File Proxy module for Drupal repeated HTTP request denial of service
14973| [83284] WP-DownloadManager plugin for WordPress HTTP request cross-site request forgery
14974| [80726] Load Balancer multiple scripts cross-site scripting
14975| [80575] TVMOBiLi CHTTPServerTransaction::LoadFile() buffer overflow
14976| [80574] TVMOBiLi CHTTPServerTransaction::LoadResource() denial of service
14977| [79250] libproxy px_pac_reload() buffer overflow
14978| [79236] Zen Load Balancer content2-2.cgi command execution
14979| [78808] Cisco Application Control Engine Load Balancer denial of service
14980| [78769] Zen Load Balancer backup directory information disclosure
14981| [78768] Zen Load Balancer information disclosure
14982| [77913] Apache HTTP Server mod_proxy_ajp information disclosure
14983| [76095] SEIL routers HTTP-Proxy/Gateway security bypass
14984| [71617] Apache HTTP Server mod_proxy module information disclosure
14985| [71445] Apache HTTP Server mod_proxy security bypass
14986| [70336] Apache HTTP Server mod_proxy information disclosure
14987| [69804] Apache HTTP Server mod_proxy_ajp denial of service
14988| [66640] Apache HttpComponents HttpClient Proxy-Authorization information disclosure
14989| [65006] Caedo HTTPd Server file download
14990| [64958] HTTP request with large content payload
14991| [63651] Google Chrome HTTP proxy authentication denial of service
14992| [60883] Apache mod_proxy_http information disclosure
14993| [59413] Apache mod_proxy_http timeout information disclosure
14994| [56623] Apache HTTP Server mod_proxy_ajp denial of service
14995| [53453] Cisco IOS Authentication Proxy for HTTP security bypass
14996| [53124] mod_proxy_ftp module for Apache HTTP header security bypass
14997| [52604] HTTP request forwarding (Web Proxy) detected
14998| [51532] mod_proxy module for the Apache HTTP Server stream_reqbody_cl denial of service
14999| [50716] IPFilter load_http.c buffer overflow
15000| [48796] Barracuda Load Balancer index.cgi cross-site scripting
15001| [47935] EDraw Office Viewer ActiveX control HttpDownloadFile file overwrite
15002| [47898] Excel Viewer OCX ActiveX control HttpDownloadFile() file download
15003| [47305] Live Chat component for Joomla! xmlhttp.php open proxy
15004| [44467] HTTP Anti Virus Proxy (HAVP) sockethandler.cpp denial of service
15005| [44223] Apache HTTP Server mod_proxy_ftp cross-site scripting
15006| [42987] Apache HTTP Server mod_proxy module denial of service
15007| [41258] HTTP File Upload ActiveX control file delete
15008| [40694] BEA WebLogic Server and WebLogic Express HttpClusterServlet and HttpProxyServlet privilege escalation
15009| [39615] Apache HTTP Server mod_proxy_ftp.c UTF-7 cross-site scripting
15010| [39608] Apache HTTP Server balancer manager cross-site request forgery
15011| [39476] Apache mod_proxy_balancer balancer_handler function denial of service
15012| [38901] HFS (HTTP File Server) upload directory traversal
15013| [38439] F5 Networks FirePass 4100 SSL VPN download_plugin.php3 cross-site scripting
15014| [37405] DeleGate HTTP cache proxy denial of service
15015| [36354] Apache HTTP Server mod_proxy module denial of service
15016| [36352] Apache HTTP Server ap_proxy_date_canon() denial of service
15017| [34884] Astaro Secure Gateway HTTP proxy denial of service
15018| [34282] BEA WebLogic Server and WebLogic Express HttpProxyServlet and HttpClusterServlet unauthorized access
15019| [34123] VersalSoft HTTP File Uploader (UFileUploaderD.dll) ActiveX control buffer overflow
15020| [28367] libmusicbrainz MBHttp::Download buffer overflow
15021| [26970] WinGate HTTP proxy buffer overflow
15022| [26370] Symantec Enterprise Firewall HTTP proxy internal IP disclosure
15023| [23997] Blue Coat WinProxy SecureSuite HTTP request denial of service
15024| [23451] Microsoft Internet Explorer HTTPS proxy authentication information disclosure
15025| [22016] Simpleproxy HTTP Proxy reply format string
15026| [20391] Apple Mac OS X HTTP proxy service security bypass
15027| [20339] Squid Web Proxy Cache HTTP header cache poisoning
15028| [20334] Squid Web Proxy Cache httpProcessReplyHeader security bypass
15029| [19868] HTTP Anti Virus Proxy cab and zip files bypass filtering
15030| [19060] Squid Web Proxy Cache HTTP header cache poisoning
15031| [18308] Jana Server http-server and pna-proxy denial of service
15032| [16751] AnomicHTTPProxy "
15033| [16750] AnomicHTTPProxy allows elevated privileges
15034| [16749] AnomicHTTPProxy administration interface denial of service
15035| [16387] Apache HTTP Server mod_proxy Content-Length buffer overflow
15036| [15952] proxy server using the HTTP CONNECT directive has been detected
15037| [15466] HP Web-enabled Management Software HTTP Server unauthorized certificate upload
15038| [15277] Proxy-Pro GateKeeper Pro long HTTP GET buffer overflow
15039| [15275] PSOProxy long HTTP GET request buffer overflow
15040| [14955] ProxyNow! HTTP GET stack based buffer overflow or heap-based buffer overflow
15041| [14947] Gaim HTTP proxy buffer overflow
15042| [13663] Apache HTTP Server CGI support modules loaded
15043| [12681] Apache HTTP Server mod_proxy could allow mail relaying
15044| [12552] Apache HTTP Server FTP proxy server denial of service
15045| [11143] Astaro Security Linux HTTP Proxy can be used to make unauthorized TCP connections
15046| [10139] Check Point FireWall-1 HTTP proxy could allow HTTPS and FTP traffic to bypass the firewall
15047| [9914] Jigsaw HTTP Proxy server cross-site scripting
15048| [9834] CERN HTTPD proxy server cross-site scripting
15049| [9683] Jana Server HTTP GET proxy buffer overflow
15050| [9579] Symantec Norton Personal Firewall and Norton Internet Security HTTP proxy buffer overflow
15051| [9455] AnalogX Proxy malformed HTTP request buffer overflow
15052| [8425] Trend Micro InterScan VirusWall could allow virus infected Web pages to bypass the HTTP proxy filtering
15053| [8281] PHP multiple HTTP POST file upload overflows
15054| [7964] BlackJumboDog HTTP proxy buffer overflow
15055| [7916] Avirt SOHO, Gateway, and Gateway Suite HTTP proxy buffer overflow
15056| [4460] CProxy proxy server HTTP port denial of service
15057| [4252] HTTP PUT method allows clients to upload files to a Web server
15058| [153] HTTP proxy penetrated
15059| [60] HTTP proxy detected
15060|
15061| Exploit-DB - https://www.exploit-db.com:
15062| [30850] HFS HTTP File Server 2.2/2.3 Arbitrary File Upload Vulnerability
15063| [30834] F5 Networks FirePass 4100 SSL VPN Download_Plugin.PHP3 Cross-Site Scripting Vulnerability
15064| [30755] F5 FirePass 4100 SSL VPN Download_Plugin.PHP3 Cross-Site Scripting Vulnerability
15065| [27863] PHPBB 2.0.20 Unauthorized HTTP Proxy Vulnerability
15066| [27852] Symantec Enterprise Firewall / Gateway Security HTTP Proxy Internal IP Leakage Weakness
15067| [23499] Enterpriser16 Load Balancer 7.1 - Multiple XSS Vulnerabilities
15068| [23137] CacheFlow CacheOS 4.1.10016 HTTP HOST Proxy Vulnerability
15069| [21849] ZEN Load Balancer Filelog Command Execution
15070| [21704] W3C CERN httpd 3.0 Proxy Cross-Site Scripting Vulnerability
15071| [21214] SapporoWorks Black JumboDog 2.6.4/2.6.5 HTTP Proxy Buffer Overflow Vulnerability
15072| [16598] Persits XUpload ActiveX MakeHttpRequest Directory Traversal
15073| [16526] Windows ANI LoadAniIcon() Chunk Size Stack Buffer Overflow (HTTP)
15074| [16513] Ultra Shareware Office Control ActiveX HttpUpload Buffer Overflow
15075| [16078] SDP Downloader 2.3.0 (http_response) Remote Buffer Overflow Exploit
15076| [16075] Caedo HTTPd Server 0.5.1 ALPHA - Remote File Download
15077| [13380] linux/x86 HTTP/1.x GET, Downloads and JMP - 68 bytes+
15078| [13355] linux/x86 HTTP/1.x GET, Downloads and execve() 111 bytes+
15079| [7762] EDraw Office Viewer 5.4 HttpDownloadFile() Insecure Method Vuln
15080| [4290] EDraw Office Viewer Component 5.1 HttpDownloadFile() Insecure Method
15081| [4200] Versalsoft HTTP File Uploader AddFile() Remote Buffer Overflow Exploit
15082| [3866] Versalsoft HTTP File Upload ActiveX 6.36 (AddFile) Remote DoS Exploit
15083| [2791] HTTP Upload Tool (download.php) Information Disclosure Vulnerability
15084| [31133] F5 BIG-IP 9.4.3 Web Management Interface Cross-Site Request Forgery Vulnerability
15085| [31128] Multiple IEA Software Products HTTP POST Request Denial of Service Vulnerability
15086| [31111] Download Management 1.00 for PHP-Fusion Multiple Local File Include Vulnerabilities
15087| [31101] HispaH Youtube Clone 'load_message.php' Cross-Site Scripting Vulnerability
15088| [31100] Anon Proxy Server 0.100/0.102 Remote Authentication Buffer Overflow Vulnerability
15089| [31082] Liferay Enterprise Portal 4.3.6 User-Agent HTTP Header Cross Site Scripting Vulnerability
15090| [31072] Symantec Backup Exec System Recovery Manager 7.0 FileUpload Class Unauthorized File Upload Vulnerability
15091| [31068] Mambo MOStlyCE Module 2.4 Image Manager Utility Arbitrary File Upload Vulnerability
15092| [31065] F5 BIG-IP Application Security Manager 9.4.3 'report_type' Cross-Site Scripting Vulnerability
15093| [31056] HFS HTTP File Server 1.5/2.x Multiple Security Vulnerabilities
15094| [31052] Apache <= 2.2.6 'mod_negotiation' HTML Injection and HTTP Response Splitting Vulnerability
15095| [31042] MegaBBS 1.5.14b 'upload.asp' Cross-Site Scripting Vulnerability
15096| [31039] BitDefender Products Update Server HTTP Daemon Directory Traversal Vulnerability
15097| [31037] phpAutoVideo 2.21 sidebar.php loadpage Parameter Remote File Inclusion
15098| [31024] F5 BIG-IP <= 9.4.3 'SearchString' Multiple Cross-Site Scripting Vulnerabilities
15099| [30983] ExpressionEngine 1.2.1 HTTP Response Splitting and Cross Site Scripting Vulnerabilities
15100| [30972] Camtasia Studio 4.0.2 'csPreloader' Remote Code Execution Vulnerability
15101| [30958] PHCDownload 1.1 search.php string Parameter XSS
15102| [30957] PHCDownload 1.1 search.php string Parameter SQL Injection
15103| [30942] Extended Module Player (xmp) 2.5.1 'oxm.c' And 'dtt_load.c' Multiple Local Buffer Overflow Vulnerabilities
15104| [30927] Agares Media ThemeSiteScript 1.0 'loadadminpage' Parameter Remote File Include Vulnerability
15105| [30926] Dokeos 1.x work/work.php display_upload_form Action origin Parameter XSS
15106| [30901] Apache HTTP Server 2.2.6 Windows Share PHP File Extension Mapping Information Disclosure Vulnerability
15107| [30894] PeerCast 0.12 HandshakeHTTP Multiple Buffer Overflow Vulnerabilities
15108| [30863] E-Xoops 1.0.5/1.0.8 mydownloads/ratefile.php lid Parameter SQL Injection
15109| [30835] Apache HTTP Server <= 2.2.4 413 Error HTTP Request Method Cross-Site Scripting Weakness
15110| [30833] F5 Networks FirePass 4100 SSL VPN My.Logon.PHP3 Cross-Site Scripting Vulnerability
15111| [30830] Ossigeno CMS 2.2_pre1 upload/xax/ossigeno/admin/uninstall_module.php level Parameter Remote File Inclusion
15112| [30829] Ossigeno CMS 2.2_pre1 upload/xax/ossigeno/admin/install_module.php level Parameter Remote File Inclusion
15113| [30828] Ossigeno CMS 2.2_pre1 upload/xax/admin/patch/index.php level Parameter Remote File Inclusion
15114| [30827] Ossigeno CMS 2.2_pre1 upload/xax/admin/modules/uninstall_module.php level Parameter Remote File Inclusion
15115| [30826] Ossigeno CMS 2.2_pre1 upload/xax/admin/modules/install_module.php level Parameter Remote File Inclusion
15116| [30797] Aurigma Image Uploader 4.x ActiveX Control Multiple Remote Stack Buffer Overflow Vulnerabilities
15117| [30787] vTiger CRM SOAP AddEmailAttachment - Arbitrary File Upload
15118| [30783] CCProxy 7.3 - Integer Overflow Exploit
15119| [30768] IBM WebSphere Application Server 5.1.1 WebContainer HTTP Request Header Security Weakness
15120| [30737] Galmeta Post 0.2 Upload_Config.PHP Remote File Include Vulnerability
15121| [30729] Blue Coat ProxySG Management Console URI Handler Multiple Cross-Site Scripting Vulnerabilities
15122| [30711] Shttp 0.0.x Remote Directory Traversal Vulnerability
15123| [30705] Korean GHBoard component/upload.jsp Unspecified Arbitrary File Upload
15124| [30704] Korean GHBoard FlashUpload Component download.jsp name Parameter Arbitrary File Access
15125| [30703] Japanese PHP Gallery Hosting Arbitrary File Upload Vulnerability
15126| [30701] Jeebles Technology Jeebles Directory 2.9.60 Download.PHP Local File Include Vulnerability
15127| [30697] ReloadCMS 1.2.5 Index.PHP Local File Include Vulnerability
15128| [30639] Cart32 6.x GetImage Arbitrary File Download Vulnerability
15129| [30622] Microsoft Internet Explorer 5.0.1 File Upload Vulnerability
15130| [30573] SisfoKampus dwoprn.php Arbitrary File Download Vulnerability
15131| [30571] Proxy Anket 3.0.1 anket.asp SQL Injection Vulnerability
15132| [30504] Olate Download 3.4.1 Admin.PHP Remote Authentication Bypass Vulnerability
15133| [30470] Synology DiskStation Manager - SLICEUPLOAD Remote Command Execution
15134| [30467] File Uploader 1.1 datei.php config[root_ordner] Parameter Remote File Inclusion
15135| [30466] File Uploader 1.1 index.php config[root_ordner] Parameter Remote File Inclusion
15136| [30443] Wordpress Persuasion Theme - Arbitrary File Download and File Deletion Exploit
15137| [30439] Mozilla Firefox/Thunderbird/SeaMonkey Chrome-Loaded About:Blank Script Execution Vulnerability
15138| [30392] Microsoft Windows ndproxy.sys - Local Privilege Escalation
15139| [30371] AlstraSoft Affiliate Network Pro 8.0 merchants/index.php uploadProducts Action pgmid Parameter SQL Injection
15140| [30322] Lighttpd <= 1.4.15 Multiple Code Execution, Denial of Service and Information Disclosure Vulnerabilities
15141| [30278] SAP DB 7.x Web Server WAHTTP.EXE Multiple Buffer Overflow Vulnerabilities
15142| [30229] SHTTPD 1.38 Filename Parse Error Information Disclosure Vulnerability
15143| [30228] Apple WebCore XMLHTTPRequest Cross-Site Scripting Vulnerability
15144| [30218] BugHunter HTTP Server 1.6.2 Parse Error Information Disclosure Vulnerability
15145| [30209] HP LoadRunner EmulationAdmin - Web Service Directory Traversal
15146| [30159] ASP Folder Gallery Download_Script.ASP Arbitrary File Download Vulnerability
15147| [30130] PHP <= 5.2.3 EXT/Session HTTP Response Header Injection Vulnerability
15148| [30105] Wordpress Download Manager Free & Pro 2.5.8 - Persistent Cross Site Scripting
15149| [30084] Wordpress page-flip-image-gallery plugins Remote File Upload
15150| [30024] LibEXIF 0.6.x - Exif_Data_Load_Data_Entry Remote Integer Overflow Vulnerability
15151| [30014] Windows NDPROXY - Local SYSTEM Privilege Escalation
15152| [30008] Cisco Prime Data Center Network Manager - Arbitrary File Upload
15153| [29946] Wordpress Orange Themes CSRF File Upload Vulnerability
15154| [29933] Gazi Download Portal Down_Indir.ASP SQL Injection Vulnerability
15155| [29919] TP-Link TL-WR740N / TL-WR740ND - 150M Wireless Lite N Router HTTP DoS
15156| [29917] FlashComs Chat <= 6.5 - Arbitrary File Upload Vulnerability
15157| [29849] ToendaCMS 1.5.3 HTTP Get And Post Forms HTML Injection Vulnerability
15158| [29834] WordPress dzs-videogallery Plugins Remote File Upload Vulnerability
15159| [29812] DesktopCentral AgentLogUpload Arbitrary File Upload
15160| [29803] Static Http Server 1.0 - Denial of Service (DoS) Exploit
15161| [29775] Image_Upload Script 2.0 - Multiple Remote File Include Vulnerabilities
15162| [29763] W-Agora 4.2.1 - Multiple Arbitrary File Upload Vulnerabilities
15163| [29739] Apache HTTP Server Tomcat 5.x/6.0.x Directory Traversal Vulnerability
15164| [29675] Kaseya < 6.3.0.2 - Arbitrary File Upload Vulnerability
15165| [29674] ManageEngine DesktopCentral 8.0.0 build < 80293 - Arbitrary File Upload Vulnerability
15166| [29644] Pickle 0.3 Download.PHP Local File Include Vulnerability
15167| [29638] LoveCMS 1.4 index.php load Parameter Traversal Arbitrary File Access
15168| [29574] eXtreme File Hosting Arbitrary RAR File Upload Vulnerability
15169| [29525] Wordpress Highlight Premium Theme - CSRF File Upload Vulnerability
15170| [29520] GTK2 GDKPixBufLoader - Remote Denial of Service Vulnerability
15171| [29503] KarjaSoft Sami HTTP Server 1.0.4/1.0.5/2.0.1 Request Remote Denial of Service Vulnerability
15172| [29482] WordPress Theme Kernel - Remote File Upload Vulnerability
15173| [29473] Squid Proxy 2.5/2.6 FTP URI Remote Denial of Service Vulnerability
15174| [29451] All In One Control Panel 1.3.x cp_downloads.php did Parameter SQL Injection
15175| [29430] Magic Photo Storage Website user/upload_photo.php _config[site_path] Parameter Remote File Inclusion
15176| [29385] Kolayindir Download Down.ASP SQL Injection Vulnerability
15177| [29348] phpCMS 1.1.7 include/class.http_indexer_phpcms.php PHPCMS_INCLUDEPATH Parameter Remote File Inclusion
15178| [29332] WordPress Think Responsive Themes Arbitrary File Upload Vulnerability
15179| [29330] WordPress Switchblade Themes Arbitrary File Upload Vulnerability
15180| [29301] Oracle Portal 9.0.2 Calendar.JSP Multiple HTTP Response Splitting Vulnerabilities
15181| [29219] DUdownload 1.0/1.1 detail.asp Multiple Parameter SQL Injection
15182| [29211] WordPress Curvo Themes - CSRF File Upload Vulnerability
15183| [29210] Open Flash Chart 2 Arbitrary File Upload
15184| [29190] Apple Mac OS X 10.4.x Mach-O Binary Loading Integer Overflow Vulnerability
15185| [29150] WordPress SAICO theme Arbitrary File Upload Vulnerability
15186| [29130] HP Intelligent Management Center BIMS UploadServlet Directory Traversal
15187| [29072] PHP Upload Tool 1.0 - Arbitrary File Upload and Directory Traversal Vulnerabilities
15188| [29068] WordPress Area53 theme Arbitrary File Upload Vulnerability
15189| [29052] Bloo 1.00 Googlespell_Proxy.PHP Cross-Site Scripting Vulnerability
15190| [28922] AIOCP 1.3.x /admin/code/index.php load_page Parameter Remote File Inclusion
15191| [28896] RunCMS 1.x Avatar Arbitrary File Upload Vulnerability
15192| [28845] Shop-Script Multiple HTTP Response Splitting Vulnerabilities
15193| [28837] Novell eDirectory 8.x iMonitor HTTPSTK Buffer Overflow Vulnerability (3)
15194| [28836] Novell eDirectory 8.x iMonitor HTTPSTK Buffer Overflow Vulnerability (2)
15195| [28835] Novell eDirectory 8.x iMonitor HTTPSTK Buffer Overflow Vulnerability (1)
15196| [28809] HP LoadRunner magentproc.exe Overflow
15197| [28795] FreeWPS 2.11 Upload.PHP Remote Command Execution Vulnerability
15198| [28731] OlateDownload 3.4 search.php query Parameter SQL Injection
15199| [28730] OlateDownload 3.4 details.php page Parameter SQL Injection
15200| [28713] Apache Tomcat/JBoss EJBInvokerServlet / JMXInvokerServlet (RMI over HTTP) Marshalled Object RCE
15201| [28709] FlashChat - Arbitrary File Upload Vulnerability
15202| [28664] Opial AV Download Management 1.0 Index.PHP Cross-Site Scripting Vulnerability
15203| [28655] Nodejs js-yaml load() Code Exec
15204| [28605] NeoSys Neon Webmail for Java 5.06/5.07 downloadfile Servlet Traversal Arbitrary File Access
15205| [28602] OSU HTTP Server 3.10/3.11 Multiple Information Disclosure Vulnerabilities
15206| [28595] BusyBox 1.01 HTTPD Directory Traversal Vulnerability
15207| [28581] Jupiter CMS 1.1.4/1.1.5 galleryuploadfunction.php Arbitrary File Upload
15208| [28578] Apple Mac OS X 10.x KExtLoad Buffer Overflow Weakness
15209| [28576] Apple Mac OS X 10.x KExtLoad Format String Weakness
15210| [28568] NX5Linkx 1.0 Links.PHP HTTP Response Splitting Vulnerability
15211| [28546] e107 website system 0.7.5 download.php Query String (PATH_INFO) Parameter XSS
15212| [28493] PHP-Nuke Book Catalog Module 1.0 'upload.php' Arbitrary File Upload Vulnerability
15213| [28452] Wordpress Lazy SEO plugin Shell Upload Vulnerability
15214| [28434] BigACE 1.8.2 download.cmd.php GLOBALS Parameter Remote File Inclusion
15215| [28433] BigACE 1.8.2 upload_form.php GLOBALS Parameter Remote File Inclusion
15216| [28424] Apache 2.x HTTP Server Arbitrary HTTP Request Headers Security Weakness
15217| [28393] AspxCommerce 2.0 - Arbitrary File Upload Vulnerability
15218| [28392] Zen Cart Web Shopping Cart 1.x autoload_func.php autoLoadConfig[999][0][loadFile] Parameter Remote File Inclusion
15219| [28377] Wordpress Plugin Complete Gallery Manager 3.3.3 - Arbitrary File Upload Vulnerability
15220| [28337] HP ProCurve Manager SNAC UpdateCertificatesServlet File Upload
15221| [28336] HP ProCurve Manager SNAC UpdateDomainControllerServlet File Upload
15222| [28195] RW::Download Stats.PHP Remote File Include Vulnerability
15223| [28143] SturGeoN Upload Arbitrary File Upload Vulnerability
15224| [28083] HP LoadRunner lrFileIOService ActiveX WriteFileString Remote Code Execution
15225| [28058] Eduha Meeting Index.PHP Arbitrary File Upload Vulnerability
15226| [28030] Cisco Secure ACS 2.3 LoginProxy.CGI Cross-Site Scripting Vulnerability
15227| [27980] Alex DownloadEngine 1.4.1 Comments.PHP SQL Injection Vulnerability
15228| [27972] ESTsoft InternetDisk Arbitrary File Upload and Script Execution Vulnerability
15229| [27969] Quake 3 Engine CL_ParseDownload Remote Buffer Overflow Vulnerability
15230| [27939] HP LoadRunner lrFileIOService ActiveX Remote Code Execution
15231| [27899] JemWeb DownloadControl 1.0 DC.PHP SQL Injection Vulnerability
15232| [27811] Albinator 2.0.8 showpic.php preloadSlideShow Parameter XSS
15233| [27704] Cogent DataHub HTTP Server Buffer Overflow
15234| [27656] Photo Transfer Upload 1.0 iOS - Multiple Vulnerabilities
15235| [27610] Joomla Media Manager File Upload Vulnerability
15236| [27608] Ultra Mini HTTPD Stack Buffer Overflow
15237| [27607] MiniWeb (Build 300) Arbitrary File Upload
15238| [27592] SIRE 2.0 - Arbitrary File Upload Vulnerability
15239| [27591] Shadowed Portal 5.7 Load.PHP Cross-Site Scripting Vulnerability
15240| [27556] Open-FTPD 1.2 - Arbitrary File Upload
15241| [27553] onehttpd 0.7 - Denial of Service
15242| [27501] Arab Portal System 2.0 download.php title Parameter XSS
15243| [27452] F5 Firepass 4100 SSL VPN Cross-Site Scripting Vulnerability
15244| [27424] DSDownload 1.0 - Multiple SQL-Injection Vulnerabilities
15245| [27380] myBloggie 2.1.2/2.1.3 upload.php Multiple Parameter XSS
15246| [27378] Easy File Sharing Web Server 3.2 Full Path Request Arbitrary File Upload
15247| [27312] FreeHostShop Website Generator 3.3 - Arbitrary File Upload Vulnerability
15248| [27309] myPHPNuke 1.8.8 download.php dcategory Parameter XSS
15249| [27304] CubeCart 3.0.x Arbitrary File Upload Vulnerability
15250| [27275] FunGamez Remote File Upload Vulnerability
15251| [27272] SocialEngine Timeline Plugin 4.2.5p9 - Arbitrary File Upload
15252| [27268] Dragonfly CMS 9.0.6 .1 Downloads Module c Parameter XSS
15253| [27241] D-Link DWL-G700AP 2.00/2.01 HTTPD Denial of Service Vulnerability
15254| [27200] ImageVue 0.16.1 upload.php Unrestricted File Upload
15255| [27127] PMachine ExpressionEngine 1.4.1 HTTP Referrer HTML Injection Vulnerability
15256| [27115] Rockliffe MailSite 5.3.4/6.1.22/7.0.3 HTTP Mail Management Cross-Site Scripting Vulnerability
15257| [27061] Hummingbird Collaboration - Crafted URL File Property Obscuration Download
15258| [27046] VMware vCenter Chargeback Manager ImageUploadServlet Arbitrary File Upload
15259| [26984] IceWarp Universal WebMail /mail/include.html - Crafted HTTP_USER_AGENT Arbitrary File Access
15260| [26977] Dev Web Management System 1.5 download_now.php target Parameter SQL Injection
15261| [26973] Cerberus Helpdesk 2.649 cer_KnowledgebaseHandler.class.php _load_article_details Function SQL Injection
15262| [26967] httprint 202.0 HTTP Response Server Field Overflow DoS
15263| [26966] httprint 202.0 HTTP Response Server Field Arbitrary Script Injection
15264| [26922] Interaction SIP Proxy 3.0 - Remote Heap Corruption Denial of Service Vulnerability
15265| [26915] Blender BlenLoader 2.x File Processing Integer Overflow Vulnerability
15266| [26778] Blackboard Academic Suite 6.2.3.23 Frameset.JSP Cross-Domain Frameset Loading Vulnerability
15267| [26739] Ultra Mini HTTPD 1.21 - Stack Buffer Overflow
15268| [26691] WebCalendar 1.0.1 Layers_Toggle.PHP HTTP Response Splitting Vulnerability
15269| [26646] PHP Upload Center Index.PHP Directory Traversal Vulnerability
15270| [26610] Bedeng PSP 1.1 download.php a.ngroup Parameter SQL Injection
15271| [26544] PHP Download Manager 1.1.x Files.PHP SQL Injection Vulnerability
15272| [26534] Revize CMS HTTPTranslatorServlet Cross-Site Scripting Vulnerability
15273| [26520] Static HTTP Server 1.0 - SEH Overflow
15274| [26500] PHPWebThings 1.4 Download.PHP File Parameter SQL Injection Vulnerability
15275| [26474] PHPFM Arbitrary File Upload Vulnerability
15276| [26467] PHP Handicapper Process_signup.PHP HTTP Response Splitting Vulnerability
15277| [26443] PHP 4.x/5.0.x File Upload GLOBAL Variable Overwrite Vulnerability
15278| [26422] MoinMoin twikidraw Action Traversal File Upload
15279| [26421] LibrettoCMS File Manager Arbitary File Upload Vulnerability
15280| [26414] PodHawk 1.85 - Arbitary File Upload Vulnerability
15281| [26388] Nuked-Klan 1.7 Download Module dl_id Parameter SQL Injection
15282| [26340] Up-IMAPProxy 1.2.3/1.2.4 - Multiple Unspecified Remote Format String Vulnerabilities
15283| [26316] imacs CMS 0.3.0 - Unrestricted File Upload Exploit
15284| [26306] NateOn Messenger 3.0 Arbitrary File Download And Buffer Overflow Vulnerabilities
15285| [26293] JPortal 2.2.1/2.3.1 Download.PHP SQL Injection Vulnerability
15286| [26255] Mail-it Now! Upload2Server 1.5 - Arbitrary File Upload Vulnerability
15287| [26243] Havalite CMS 1.1.7 - Unrestricted File Upload Exploit
15288| [26241] Fly-High CMS 2012-07-08 - Unrestricted File Upload Exploit
15289| [26233] Cisco IOS 12.x Firewall Authentication Proxy Buffer Overflow Vulnerability
15290| [26230] Microsoft IIS 5.1 WebDAV HTTP Request Source Code Disclosure Vulnerability
15291| [26225] MAXdev MD-Pro 1.0.73 Arbitrary Remote File Upload Vulnerability
15292| [26213] LibrettoCMS 2.2.2 - Arbitrary File Upload
15293| [26198] Astaro Security Linux 6.0 01 HTTP CONNECT Unauthorized Access Weakness
15294| [26189] PostNuke 0.75/0.76 DL-viewdownload.PHP SQL Injection Vulnerability
15295| [26156] CPaint 1.3 xmlhttp Request Input Validation Vulnerability
15296| [26143] ezUpload 2.2 form.php path Parameter Remote File Inclusion
15297| [26142] ezUpload 2.2 customize.php path Parameter Remote File Inclusion
15298| [26141] ezUpload 2.2 initialize.php path Parameter Remote File Inclusion
15299| [26140] ezUpload 2.2 index.php path Parameter Remote File Inclusion
15300| [26080] Comdev eCommerce 3.0 WCE.Download.PHP Directory Traversal Vulnerability
15301| [25969] Netgear WPN824v3 - Unauthorized Config Download
15302| [25950] eRoom 6.0 Plug-In Insecure File Download Handling Vulnerability
15303| [25933] slimserve httpd 1.0/1.1 - Directory Traversal vulnerability
15304| [25908] ASPPlayground.NET 3.2 SR1 Remote Arbitrary File Upload Vulnerability
15305| [25907] ASPNuke 0.80 Language_Select.ASP HTTP Response Splitting Vulnerability
15306| [25897] UBBCentral UBB.threads 5.5.1/6.x download.php Number Parameter SQL Injection
15307| [25845] Uapplication Ublog Reload 1.0.5 Trackback.ASP Cross-Site Scripting Vulnerability
15308| [25844] Ublog Reload 1.0.5 blog_comment.asp y Parameter SQL Injection
15309| [25843] Ublog Reload 1.0.5 index.asp Multiple Parameter SQL Injection
15310| [25842] JBoss 3.x/4.0.2 Malformed HTTP Request Remote Information Disclosure Vulnerability
15311| [25840] osCommerce 2.1/2.2 - Multiple HTTP Response Splitting Vulnerabilities
15312| [25837] Monkey HTTPD 1.1.1 - Crash PoC
15313| [25805] Loki Download Manager 2.0 Catinfo.ASP SQL Injection Vulnerability
15314| [25804] Loki Download Manager 2.0 Default.ASP SQL Injection Vulnerability
15315| [25794] YaPiG 0.9x Upload.PHP Directory Traversal Vulnerability
15316| [25780] JiRo's Upload System 1.0 Login.ASP SQL Injection Vulnerability
15317| [25777] PowerDownload 3.0.2/3.0.3 IncDir Remote File Include Vulnerability
15318| [25775] Nginx HTTP Server 1.3.9-1.4.0 Chuncked Encoding Stack Buffer Overflow
15319| [25661] Keyvan1 ImageGallery Database Download Vulnerability
15320| [25631] Orenosv HTTP/FTP Server 0.8.1 CGISSI.EXE Remote Buffer Overflow Vulnerability
15321| [25629] Orenosv HTTP/FTP Server 0.8.1 FTP Commands Remote Buffer Overflow Vulnerability
15322| [25627] PHP Advanced Transfer Manager 1.21 Arbitrary File Upload Vulnerability
15323| [25567] Just William's Amazon Webstore HTTP Response Splitting Vulnerability
15324| [25559] Oracle Application Server 9.0 HTTP Service Mod_Access Restriction Bypass Vulnerability
15325| [25534] SQWebmail 3.x/4.0 HTTP Response Splitting Vulnerability
15326| [25517] Mutiny 5 Arbitrary File Upload
15327| [25464] CityPost Simple PHP Upload Simple-upload-53.PHP Cross-Site Scripting Vulnerability
15328| [25440] Wordpress wp-FileManager - Arbitrary File Download Vulnerability
15329| [25430] PHP-Nuke 7.6 Surveys Module HTTP Response Splitting Vulnerability
15330| [25418] MiniWeb MiniWeb HTTP Server (build 300) - Crash PoC
15331| [25405] GetSimpleCMS 3.2.1 - Arbitrary File Upload Vulnerability
15332| [25365] AN HTTPD 1.42 Arbitrary Log Content Injection Vulnerability
15333| [25364] AN HTTPD CMDIS.DLL Remote Buffer Overflow Vulnerability
15334| [25341] PHP-Nuke 6.x/7.x Downloads Module Lid Parameter Cross-Site Scripting Vulnerability
15335| [25325] BlueSoleil 1.4 Object Push Service Bluetooth File Upload Directory Traversal Vulnerability
15336| [25258] Phorum 3.x/5.0.x HTTP Response Splitting Vulnerability
15337| [25253] betaparticle blog 2.0/3.0 upload.asp Unauthenticated File Upload
15338| [25189] Stadtaus.Com Download Center Lite 1.5 Arbitrary Remote PHP File Include Vulnerability
15339| [25187] Computalynx CProxy 3.3/3.4.x Directory Traversal Vulnerability
15340| [25164] Gaim 1.1.3 File Download Denial of Service Vulnerability
15341| [25161] PHPWebSite 0.x Image File Processing Remote Arbitrary PHP File Upload Vulnerability
15342| [25126] eggBlog 4.1.2 - Arbitrary File Upload Vulnerability
15343| [25100] CitrusDB 0.3.6 uploadcc.php Arbitrary Database Injection
15344| [25092] Software602 602 Lan Suite 2004 2004.0.04.1221 Arbitrary File Upload Vulnerability
15345| [25083] RaidenHTTPD 1.1.27 Remote File Disclosure Vulnerability
15346| [25082] Linksys PSUS4 PrintServer Malformed HTTP POST Request Denial of Service
15347| [25066] WebWasher Classic 2.2/2.3 HTTP CONNECT Unauthorized Access
15348| [25065] Magic Winmail Server 4.0 (Build 1112) upload.php Traversal Arbitrary File Upload
15349| [25064] Magic Winmail Server 4.0 (Build 1112) download.php Traversal Arbitrary File Access
15350| [24999] Windows Light HTTPD 0.1 - Buffer Overflow
15351| [24996] SAP ConfigServlet Remote Unauthenticated Payload Execution
15352| [24994] MediaWiki 1.3.x Remote Arbitrary Script Upload Vulnerability
15353| [24987] JSBoard 2.0.x Remote Arbitrary Script Upload Vulnerability
15354| [24980] Yanf 0.4 HTTP Response Buffer Overflow Vulnerability
15355| [24964] Oracle WebCenter Sites Satellite Server - HTTP Header Injection
15356| [24924] Belkin Wemo - Arbitrary Firmware Upload
15357| [24891] HP Intelligent Management Center Arbitrary File Upload
15358| [24805] MySQL MaxDB 7.5 WAHTTP Server Remote Denial of Service Vulnerability
15359| [24803] Blog Torrent 0.80 BTDownload.PHP Cross-Site Scripting Vulnerability
15360| [24792] IPCop 1.4.1 Web Administration Interface Proxy Log HTML Injection Vulnerability
15361| [24760] ZyXEL 3 Prestige Router HTTP Remote Administration Configuration Reset Vulnerability
15362| [24736] PHPWebSite 0.7.3/0.8.x/0.9.3 User Module HTTP Response Splitting Vulnerability
15363| [24701] OpenWFE 1.4.x Remote Cross-Site Scripting And Connection Proxy Vulnerabilities
15364| [24697] Serendipity 0.x Exit.PHP HTTP Response Splitting Vulnerability
15365| [24667] Wordpress 1.2 Wp-login.PHP HTTP Response Splitting Vulnerability
15366| [24665] DCP-Portal 3.7/4.x/5.x Calendar.PHP HTTP Response Splitting Vulnerability
15367| [24651] W-Agora 4.1.6 a subscribe_thread.php HTTP Response Splitting
15368| [24650] W-Agora 4.1.6 a download_thread.php thread Parameter XSS
15369| [24604] Snitz Forums 2000 Down.ASP HTTP Response Splitting Vulnerability
15370| [24598] SnipSnap 0.5.2 HTTP Response Splitting Vulnerability
15371| [24567] Oracle Database Server 8.1.7/9.0.x ctxsys.driload Access Validation Vulnerability
15372| [24549] PolarPearCms PHP File Upload Vulnerability
15373| [24548] Glossword 1.8.8 & 1.8.12 - Arbitrary File Upload Vulnerability
15374| [24547] Kordil EDMS 2.2.60rc3 - Unauthenticated Arbitrary File Upload Vulnerability
15375| [24543] iOS IPMap 2.5 - Arbitrary File Upload
15376| [24529] OpenEMR PHP File Upload Vulnerability
15377| [24528] BigAnt Server DUPF Command Arbitrary File Upload
15378| [24526] MS Office 2010 Download Execute
15379| [24492] OpenEMR 4.1.1 (ofc_upload_image.php) Arbitrary File Upload Vulnerability
15380| [24486] Google Chrome Silent HTTP Authentication
15381| [24423] Cerbere Proxy Server 1.2 Long Host Header Field Remote Denial of Service Vulnerability
15382| [24422] Comersus Cart 5.0 HTTP Response Splitting Vulnerability
15383| [24409] Working Resources BadBlue 1.7.x/2.x Unauthorized Proxy Relay Vulnerability
15384| [24405] SWsoft Plesk Reloaded 7.1 Login_name Parameter Cross-Site Scripting Vulnerability
15385| [24404] Gadu-Gadu 6.0 File Download Filename Obfuscation Weakness
15386| [24402] Axis Network Camera 2.x And Video Server 1-3 HTTP Authentication Bypass
15387| [24366] Windows Manage Memory Payload Injection
15388| [24350] acme thttpd 2.0.7 - Directory Traversal vulnerability
15389| [24326] RiSearch 0.99 /RiSearch Pro 3.2.6 show.pl Open Proxy Relay
15390| [24322] SonicWALL GMS 6 Arbitrary File Upload
15391| [24318] Allwin URLDownloadToFile + WinExec + ExitProcess Shellcode
15392| [24262] Opera Web Browser 7.5x IFrame OnLoad Address Bar URL Obfuscation Weakness
15393| [24248] IBM WebSphere Caching Proxy Server 5.0 2 Denial of Service Vulnerability
15394| [24231] ArbitroWeb PHP Proxy 0.5/0.6 Cross-Site Scripting Vulnerability
15395| [24228] Joomla com_collector Component Arbitrary File Upload Vulnerability
15396| [24188] Blackboard Learning System 6.0 Dropbox File Download Vulnerability
15397| [24181] OpenBSD 3.x ISAKMPD Security Association Piggyback Delete Payload Denial of Service Vulnerability
15398| [24147] Orenosv HTTP/FTP Server 0.5.9 HTTP GET Denial of Service Vulnerability (3)
15399| [24146] Orenosv HTTP/FTP Server 0.5.9 HTTP GET Denial of Service Vulnerability (2)
15400| [24145] Orenosv HTTP/FTP Server 0.5.9 HTTP GET Denial of Service Vulnerability (1)
15401| [24129] Omnicron OmniHTTPD 2.x/3.0 Get Request Buffer Overflow Vulnerability
15402| [24119] Microsoft Internet Explorer 5.0.1 http-equiv Meta Tag Denial of Service Vulnerability
15403| [24111] Serva 2.0.0 - HTTP Server GET Remote Denial of Service Vulnerability
15404| [24105] National Science Foundation Squid Proxy 2.3 Internet Access Control Bypass Vulnerability
15405| [24103] MailEnable Mail Server HTTPMail 1.x Remote Heap Overflow Vulnerability
15406| [24097] MyWeb HTTP Server 3.3 GET Request Buffer Overflow Vulnerability
15407| [24076] Sambar 5.x Open Proxy and Authentication Bypass Vulnerability
15408| [24070] Rosiello Security Sphiro HTTPD 0.1 B Remote Heap Buffer Overflow Vulnerability
15409| [24035] phProfession 2.5 upload.php Direct Request Path Disclosure
15410| [24024] Softwin BitDefender AvxScanOnlineCtrl COM Object Remote File Upload And Execution Vulnerability
15411| [24018] eXtplorer 2.1 - Arbitrary File Upload Vulnerability
15412| [23960] TikiWiki Project 1.8 tiki-upload_file.php galleryId Parameter XSS
15413| [23948] TikiWiki Project 1.8 img/wiki_up Arbitrary File Upload
15414| [23906] ADA IMGSVR 0.4 - Remote File Download Vulnerability
15415| [23896] MPlayer 0.9/1.0 - Remote HTTP Header Buffer Overflow Vulnerability
15416| [23878] HP Web Jetadmin 7.5.2456 Printer Firmware Update Script Arbitrary File Upload Weakness
15417| [23871] Centrinity FirstClass HTTP Server 5/7 TargetName Parameter Cross-Site Scripting Vulnerability
15418| [23870] PHP-Nuke MS-Analysis Module HTTP Referrer Field SQL Injection Vulnerability
15419| [23837] IBM Lotus Domino 6.5.1 HTTP webadmin.nsf Quick Console Cross-Site Scripting Vulnerability
15420| [23836] IBM Lotus Domino 6/7 HTTP webadmin.nsf Directory Traversal Vulnerability
15421| [23819] Phorum 3.x login.php HTTP_REFERER XSS
15422| [23818] Phorum 3.x register.php HTTP_REFERER XSS
15423| [23801] GNU MyProxy 20030629 Cross-Site Scripting Vulnerability
15424| [23777] Squid Proxy 2.4/2.5 NULL URL Character Unauthorized Access Vulnerability
15425| [23758] gweb http server 0.5/0.6 - Directory Traversal vulnerability
15426| [23743] Platform Load Sharing Facility 4/5/6 EAuth Privilege Escalation Vulnerability
15427| [23741] Proxy-Pro Professional GateKeeper 4.7 Web Proxy Buffer Overrun Vulnerability
15428| [23734] PSOProxy 0.91 Remote Buffer Overflow Vulnerability (3)
15429| [23733] PSOProxy 0.91 Remote Buffer Overflow Vulnerability (2)
15430| [23732] PSOProxy 0.91 Remote Buffer Overflow Vulnerability (1)
15431| [23714] KarjaSoft Sami HTTP Server 1.0.4 GET Request Buffer Overflow Vulnerability
15432| [23686] Monkey HTTP Daemon 0.x Missing Host Field Denial of Service Vulnerability
15433| [23676] MaxWebPortal 1.3x down.asp HTTP_REFERER XSS
15434| [23668] Microsoft Internet Explorer 5.0.1 LoadPicture File Enumeration Weakness
15435| [23665] Shaun2k2 Palmhttpd Server 3.0 - Remote Denial of Service Vulnerability
15436| [23652] WordPress Asset-Manager PHP File Upload Vulnerability
15437| [23651] WordPress WP-Property PHP File Upload Vulnerability
15438| [23614] Loom Software SurfNow 1.x/2.x Remote HTTP GET Request Denial of Service Vulnerability
15439| [23608] InternetNow ProxyNow 2.6/2.75 Multiple Stack and Heap Overflow Vulnerabilities
15440| [23593] Oracle HTTP Server 8.1.7/9.0.1/9.2 isqlplus Cross-Site Scripting Vulnerability
15441| [23585] Finjan SurfinGate 6.0/7.0 FHTTP Restart Command Execution Vulnerability
15442| [23584] McAfee ePolicy Orchestrator 1.x/2.x/3.0 Agent HTTP POST Buffer Mismanagement Vulnerability
15443| [23583] Netbus 2.0 Pro Directory Listings Disclosure and File Upload Vulnerability
15444| [23582] Acme thttpd 1.9/2.0.x CGI Test Script Cross-Site Scripting Vulnerability
15445| [23571] SelectSurvey CMS (ASP.NET) Arbitrary File Upload
15446| [23567] Sony PC Companion 2.1 (Load()) Stack-based Unicode Buffer Overflow
15447| [23565] Sony PC Companion 2.1 (DownloadURLToFile()) Stack-based Unicode Buffer Overflow
15448| [23564] Mephistoles HTTPD 0.6 Cross-Site Scripting Vulnerability
15449| [23534] Hand-Crafted Software FreeProxy 3.5/3.6 - FreeWeb CreateFile Function Denial of Service Vulnerability
15450| [23532] Hand-Crafted Software FreeProxy 3.5/3.6 - FreeWeb Directory Traversal Vulnerability
15451| [23494] Clockstone and other CMSMasters Theme File Upload Vulnerabilities
15452| [23480] Surfboard httpd 1.1.9 - Remote Buffer Overflow Vulnerability
15453| [23439] MVDSV 0.165 b/0.171 Quake Server Download Buffer Overrun Vulnerability
15454| [23417] EZMeeting 3.x EZNet.EXE Long HTTP Request Remote Buffer Overflow Vulnerability
15455| [23397] Monit 1.4/2.x/3/4 Overly Long HTTP Request Buffer Overrun Vulnerability
15456| [23385] PostMaster 3.16/3.17 Proxy Service Cross-Site Scripting Vulnerability
15457| [23360] PostgreSQL for Linux Payload Execution
15458| [23326] http commander 4.0 - Directory Traversal vulnerability
15459| [23325] BRS WebWeaver 1.06 httpd `User-Agent` Remote Denial of Service Vulnerability
15460| [23310] TelCondex SimpleWebserver 2.12.30210 build 3285 HTTP Referer Remote Buffer Overflow Vulnerability
15461| [23309] Centrinity FirstClass 7.1 HTTP Server Directory Disclosure Vulnerability
15462| [23306] thttpd 2.2x defang Remote Buffer Overflow Vulnerability (2)
15463| [23305] thttpd 2.2x defang Remote Buffer Overflow Vulnerability (1)
15464| [23295] SH-HTTPD 0.3/0.4 Character Filtering Remote Information Disclosure Vulnerability
15465| [23257] Bajie HTTP Server 0.95 Example Scripts And Servlets Cross-Site Scripting Vulnerability
15466| [23245] Apache Tomcat 4.0.x Non-HTTP Request Denial of Service Vulnerability
15467| [23234] Centrinity FirstClass 5.50/5.77/7.0/7.1 - HTTP Server Long Version Field Denial of Service Vulnerability
15468| [23226] FreeFloat FTP Server Arbitrary File Upload
15469| [23188] Athttpd 0.4 b Remote GET Request Buffer Overrun Vulnerability
15470| [23181] NullLogic Null HTTPd 0.5 - Remote Denial of Service Vulnerability
15471| [23176] NullLogic Null HTTPd 0.5.1 Error Page Long HTTP Request Cross-Site Scripting Vulnerablity
15472| [23174] TCLHttpd 3.4.2 - Multiple Cross-Site Scripting Vulnerabilities
15473| [23173] TCLhttpd 3.4.2 Directory Listing Disclosure Vulnerability
15474| [23144] minihttp file-sharing for net 1.5 - Directory Traversal vulnerability
15475| [23142] WideChapter 3.0 HTTP Request Buffer Overflow Vulnerability
15476| [23121] Kukol E.V. HTTP & FTP Server Suite 6.2 File Disclosure Vulnerability
15477| [23110] Symantec Messaging Gateway 9.5.3-3 Arbitrary File Download
15478| [23050] Avant Browser 8.0.2 Long HTTP Request Buffer Overflow Vulnerability
15479| [23037] DWebPro 3.4.1 Http.ini Plaintext Password Storage Vulnerability
15480| [23005] FCKEditor ASP 2.6.8 - File Upload Protection Bypass
15481| [22997] PostNuke 0.6/0.7 Downloads Module TTitle Cross-site Scripting Vulnerability
15482| [22962] Cisco Aironet AP1x00 Malformed HTTP GET Denial of Service Vulnerability
15483| [22955] PHP Arena paFileDB 1.1.3/2.1.1/3.0/3.1 - Arbitrary File Upload And Execution Vulnerability
15484| [22935] Websense Proxy Filter Bypass
15485| [22909] NetSuite 1.0/1.2 HTTP Server Directory Traversal Vulnerability
15486| [22902] lighttpd 1.4.31 Denial of Service PoC
15487| [22892] Mabry Software HTTPServer/X 1.0 0.047 File Disclosure Vulnerability
15488| [22886] ChangshinSoft EZTrans Server Download.PHP Directory Traversal Vulnerability
15489| [22876] Canon GP300 Remote Malformed HTTP Get Denial of Service Vulnerability
15490| [22819] Tutos 1.1 File_New Arbitrary File Upload Vulnerability
15491| [22795] MiniHTTPServer WebForums Server 1.x/2.0 - Remote Directory Traversal Vulnerability
15492| [22794] Proxomitron Proxy Server Long Get Request Remote Denial of Service Vulnerability
15493| [22787] NFR Agent FSFUI Record File Upload RCE
15494| [22786] Dune 0.6.7 HTTP Get Remote Buffer Overrun Vulnerability
15495| [22785] MyServer 0.4.1/0.4.2 HTTP Server Directory Traversal Vulnerability
15496| [22784] Microsoft Internet Explorer 5 Custom HTTP Error HTML Injection Vulnerability
15497| [22749] Novell Netware 6.0,eDirectory 8.7 HTTPSTK.NLM Remote Abend Vulnerability
15498| [22723] MegaBrowser 0.3 HTTP Directory Traversal File Disclosure Vulnerability
15499| [22714] Oracle Database Client System Analyzer Arbitrary File Upload
15500| [22701] MyServer 0.5 HTTP GET Argument Buffer Overflow Vulnerability
15501| [22700] MyServer 0.4.3 HTTP GET Argument Buffer Overflow Vulnerability
15502| [22697] iisCart2000 Arbitrary File Upload Vulnerability
15503| [22628] Platform Load Sharing Facility 4/5 LSF_ENVDIR Local Command Execution Vulnerability
15504| [22626] Axis Network Camera 2.x HTTP Authentication Bypass Vulnerability
15505| [22610] Snowblind Web Server 1.0/1.1 HTTP GET Request Buffer Overflow Vulnerability
15506| [22608] Snowblind Web Server 1.0/1.1 Malformed HTTP Request Denial of Service Vulnerability
15507| [22597] PHP-Nuke 6.5 - Multiple Downloads Module SQL Injection Vulnerabilities
15508| [22556] MDG Web Server 4D 3.6 HTTP Command Buffer Overflow Vulnerability
15509| [22553] Microsoft BizTalk Server 2002 HTTP Receiver Buffer Overflow Vulnerability
15510| [22548] Xivo 1.2 Arbitrary File Download
15511| [22515] AN HTTPD 1.x Count.pl Directory Traversal Vulnerability
15512| [22460] Abyss Web Server 1.1.2 Incomplete HTTP Request Denial of Service Vulnerability
15513| [22433] Monkey HTTP Daemon 0.4/0.5/0.6 Excessive POST Data Buffer Overflow Vulnerability
15514| [22386] Siteframe 2.2.4 Download.php Information Disclosure Vulnerability
15515| [22341] Opera 6.0/7.0 Long Filename Download Buffer Overrun Vulnerability
15516| [22296] Axis Communications HTTP Server 2.x Messages Information Disclosure Vulnerability
15517| [22230] Netscape Enterprise Server 4.1 HTTP Method Name Buffer Overflow Vulnerability
15518| [22207] 3ware Disk Managment 1.10 Malformed HTTP Request DoS Vulnerability
15519| [22186] MyRoom 3.5 GOLD save_item.php Arbitrary File Upload Vulnerability
15520| [22130] AN HTTPD 1.41 e Cross Site Scripting Vulnerability
15521| [22117] iCal 3.7 Malformed HTTP Request Denial of Service Vulnerability
15522| [22106] CUPS 1.1.x Negative Length HTTP Header Vulnerability
15523| [22064] zeroo http server 1.5 - Directory Traversal vulnerability (2)
15524| [22063] zeroo http server 1.5 - Directory Traversal vulnerability (1)
15525| [22059] Pserv 2.0 HTTP Request Parsing Buffer Overflow
15526| [22058] Pserv 2.0 User-Agent HTTP Header Buffer Overflow Vulnerability (2)
15527| [22057] Pserv 2.0 User-Agent HTTP Header Buffer Overflow Vulnerability (1)
15528| [22056] Pserv 2.0 - HTTP Version Specifier Buffer Overflow Vulnerability
15529| [22046] Null HTTPD 0.5 - Remote Heap Corruption Vulnerability
15530| [22038] Sisfokol 4.0 - Arbitrary File Upload
15531| [22024] TFTPD32 2.50 Arbitrary File Download/Upload Vulnerability
15532| [22021] Lonerunner Zeroo HTTP Server 1.5 - Remote Buffer Overflow Vulnerability
15533| [22016] LibHTTPD 1.2 POST Buffer Overflow Vulnerability
15534| [22013] Light HTTPD 0.1 GET Request Buffer Overflow Vulnerability (2)
15535| [22012] Light HTTPD 0.1 GET Request Buffer Overflow Vulnerability (1)
15536| [22009] EZ Systems HTTPBench 1.1 Information Disclosure Vulnerability
15537| [21981] Monkey HTTP Server 0.4/0.5 Invalid POST Request Denial of Service Vulnerability
15538| [21978] Linksys WAP11 1.3/1.4,D-Link DI-804 4.68/Dl-704 2.56 b5 Embedded HTTP Server DoS Vulnerability
15539| [21955] AN HTTPD 1.38/1.39/1.40/1.41 Malformed SOCKS4 Request Buffer Overflow Vulnerability
15540| [21949] IBM Websphere Caching Proxy 3.6/4.0 - Denial of Service Vulnerability
15541| [21948] IBM Websphere Edge Server 3.69/4.0 HTTP Header Injection Vulnerability
15542| [21944] Cisco CatOS 5.x/6.1/7.3/7.4 CiscoView HTTP Server Buffer Overflow Vulnerability
15543| [21937] ghttpd 1.4.x Log() Function Buffer Overflow Vulnerability
15544| [21936] ATP httpd 0.4 Single Byte Buffer Overflow Vulnerability
15545| [21929] Project Pier Arbitrary File Upload Vulnerability
15546| [21921] VBZoom 1.0 - Arbitrary File Upload Vulnerability
15547| [21896] Midicart PHP Arbitrary File Upload Vulnerability
15548| [21880] Monkey HTTP Server 0.1/0.4/0.5 - Multiple Cross Site Scripting Vulnerabilities
15549| [21857] Monkey HTTP Server 0.1.4 File Disclosure Vulnerability
15550| [21847] Avaya IP Office Customer Call Reporter ImageUpload.ashx Remote Command Execution
15551| [21837] InduSoft Web Studio Arbitrary Upload Remote Code Execution
15552| [21836] Auxilium RateMyPet Arbitrary File Upload Vulnerability
15553| [21835] qdPM 7.0 - Arbitrary PHP File Upload Vulnerability
15554| [21818] Null HTTPd 0.5 - Remote Heap Overflow Vulnerability
15555| [21801] DB4Web 3.4/3.6 Connection Proxy Vulnerability
15556| [21782] Oracle 8.1.x/9.0/9.2 TNS Listener Service_CurLoad Remote Denial of Service
15557| [21767] NullLogic Null HTTPd 0.5 Error Page Cross-Site Scripting Vulnerability
15558| [21757] OmniHTTPD 1.1/2.0.x/2.4 Sample Application URL Encoded Newline HTML Injection
15559| [21756] Belkin F5D6130 Wireless Network Access Point SNMP Request Denial of Service
15560| [21754] OmniHTTPd 1.1/2.0.x/2.4 test.shtml Sample Application XSS
15561| [21753] OmniHTTPd 1.1/2.0.x/2.4 test.php Sample Application XSS
15562| [21731] Novell NetWare 5.1/6.0 HTTP Post Arbitrary Perl Code Execution Vulnerability
15563| [21710] MyWebServer 1.0.2 Long HTTP Request HTML Injection Vulnerability
15564| [21694] 602Pro LAN SUITE 2002 Telnet Proxy Localhost Denial of Service Vulnerability
15565| [21678] Inso DynaWeb httpd 3.1/4.0.2/4.1 Format String Vulnerability
15566| [21656] Lucent Access Point 300/600/1500 IP Services Router Long HTTP Request DoS
15567| [21654] IPSwitch IMail 6.x/7.0/7.1 Web Messaging HTTP Get Buffer Overflow Vulnerability
15568| [21614] ATPhttpd 0.4 b Buffer Overflow Vulnerabilities
15569| [21611] Summit Computer Networks Lil' HTTP Server 2.1/2.2 pbcgi.cgi Cross Site Scripting
15570| [21589] AnalogX Proxy 4.0 Socks4A Buffer Overflow Vulnerability
15571| [21581] Summit Computer Networks Lil' HTTP Server 2 URLCount.CGI HTML Injection Vulnerability
15572| [21510] MS IE 5/6,MS ISA Server 2000,MS Proxy Server 2.0 Gopher Client Buffer Overflow
15573| [21441] Cisco ATA-186 HTTP Device Configuration Disclosure Vulnerability
15574| [21422] ACME Labs thttpd 2.20 Cross-Site Scripting Vulnerability
15575| [21413] National Instruments LabVIEW 5.1.1/6.0/6.1 HTTP Request Denial of Service Vulnerability
15576| [21372] Microsoft IIS 4/5 HTTP Error Page Cross Site Scripting Vulnerability
15577| [21347] PHP 3.0.x/4.x Move_Uploaded_File Open_Basedir Circumvention Vulnerability
15578| [21335] Cobalt RaQ 2.0/3.0/4.0 XTR MultiFileUpload.php Authentication Bypass Vulnerability (2)
15579| [21334] Cobalt RaQ 2.0/3.0/4.0 XTR MultiFileUpload.php Authentication Bypass Vulnerability (1)
15580| [21320] Internet Download Manager All Versions - SEH Based Buffer Overflow
15581| [21318] Internet Download Manager All Versions - Stack Based Buffer Overflow
15582| [21311] BPM Studio Pro 4.2 HTTPD Directory Traversal Vulnerability
15583| [21297] Squid 2.0-4 Cache FTP Proxy URL Buffer Overflow Vulnerability
15584| [21269] Webify eDownloads Cart Arbitrary File Deletion Vulnerability
15585| [21243] Alteon AceDirector Half-Closed HTTP Request IP Address Revealing Vulnerabililty
15586| [21202] Anti-Web HTTPD 2.2 Script Engine File Opening Denial of Service Vulnerability
15587| [21150] Rational ClearCase 3.2/4.x DB Loader TERM Environment Variable Buffer Overflow Vulnerability
15588| [21145] IBM HTTP Server 1.3.x Source Code Disclosure Vulnerability
15589| [21141] Red Hat TUX 2.1 .0-2 HTTP Server Oversized Host Denial of Service Vulnerability
15590| [21138] Sflog! CMS 1.0 - Arbitrary File Upload Vulnerability
15591| [21050] NCSA httpd 1.x Buffer Overflow Vulnerability (2)
15592| [21049] NCSA httpd 1.x Buffer Overflow Vulnerability (1)
15593| [21017] Squid Web Proxy 2.3 Reverse Proxy Vulnerability
15594| [20998] xloadimage 4.1 - Buffer Overflow Vulnerability
15595| [20978] Cisco IOS 11.x/12.x HTTP Configuration Arbitrary Administrative Access Vulnerability (4)
15596| [20977] Cisco IOS 11.x/12.x HTTP Configuration Arbitrary Administrative Access Vulnerability (3)
15597| [20976] Cisco IOS 11.x/12.x HTTP Configuration Arbitrary Administrative Access Vulnerability (2)
15598| [20975] Cisco IOS 11.x/12.x HTTP Configuration Arbitrary Administrative Access Vulnerability (1)
15599| [20955] Internet Download Manager All Versions - Memory Corruption Vulnerability
15600| [20929] ghttpd 1.4 Daemon Buffer Overflow Vulnerability
15601| [20886] Omnicron OmniHTTPD 2.0.4-8 File Source Disclosure Vulnerability
15602| [20864] Elcom CMS 7.4.10 Community Manager Insecure File Upload
15603| [20847] 3Com OfficeConnect DSL Router 812 1.1.7/840 1.1.7 HTTP Port Router DoS
15604| [20825] michael lamont savant http server 2.1 - Directory Traversal vulnerability
15605| [20790] businesswiki 2.5rc3 - Stored XSS & arbitrary file upload
15606| [20775] Netscape SmartDownload 1.3 - Buffer Overflow Vulnerability
15607| [20763] Microsoft ISA Server 2000 Web Proxy DoS Vulnerability
15608| [20728] 602Pro Lan Suite 2000a Long HTTP Request Denial of Service Vulnerability
15609| [20713] XODA 0.4.5 Arbitrary PHP File Upload Vulnerability
15610| [20703] XODA Document Management System 0.4.5 - XSS & Arbitrary File Upload
15611| [20662] WhitSoft SlimServe HTTPD 1.1 Get Denial of Service Vulnerability
15612| [20657] robin twombly a1 http server 1.0 - Directory Traversal vulnerability
15613| [20656] Robin Twombly A1 HTTP Server 1.0 - Denial of Service Vulnerability
15614| [20608] guido frassetto sedum http server 2.0 - Directory Traversal vulnerability
15615| [20595] NCSA 1.3/1.4.x/1.5,Apache httpd 0.8.11/0.8.14 ScriptAlias Source Retrieval Vulnerability
15616| [20559] tinyproxy tinyproxy 1.3.2/1.3.3 Heap Overflow Vulnerability
15617| [20557] Omnicron OmniHTTPD 2.0.7 File Corruption and Command Execution Vulnerability
15618| [20539] MobileCartly 1.0 - Remote File Upload Vulnerability
15619| [20531] IBM HTTP Server 1.3 AfpaCache/WebSphereNet.Data DoS Vulnerability
15620| [20526] GTK+ 1.2.8 Arbitrary Loadable Module Execution Vulnerability
15621| [20500] TestLink 1.9.3 - Arbitrary File Upload Vulnerability
15622| [20496] Oops Proxy Server 1.4.22 Buffer Overflow Vulnerabilities (2)
15623| [20495] Oops Proxy Server 1.4.22 Buffer Overflow Vulnerabilities (1)
15624| [20491] KTH Kerberos 4 Arbitrary Proxy Usage Vulnerability
15625| [20465] Squid Web Proxy 2.2 cachemgr.cgi Unauthorized Connection Vulnerability
15626| [20449] GlimpseHTTP 1.0/2.0 and WebGlimpse 1.0 Piped Command Vulnerability
15627| [20435] Apache 0.8.x/1.0.x,NCSA httpd 1.x test-cgi Directory Listing Vulnerability
15628| [20423] NCSA httpd-campas 1.2 sample script Vulnerability
15629| [20403] Small HTTP server 2.0 1 Non-Existent File DoS Vulnerability
15630| [20395] BNC 2.2.4/2.4.6/2.4.8 IRC Proxy Buffer Overflow Vulnerability (2)
15631| [20394] BNC 2.2.4/2.4.6/2.4.8 IRC Proxy Buffer Overflow Vulnerability (1)
15632| [20323] "Cisco IOS 12 Software ""?/"" HTTP Request DoS Vulnerability"
15633| [20305] Microsoft Site Server 2.0 with IIS 4.0 - File Upload Vulnerability
15634| [20304] Omnicron OmniHTTPD 1.1/2.0 Alpha 1 visiadmin.exe Denial of Service Vulnerability
15635| [20295] AOL Products downloadUpdater2 Plugin SRC Parameter Remote Code Execution
15636| [20242] Unixware 7.0 SCOhelp HTTP Server Format String Vulnerability
15637| [20220] Mandrake 6.1/7.0/7.1 /perl http Directory Disclosure Vulnerability
15638| [20173] WebPageTest Arbitrary PHP File Upload
15639| [20123] Symantec Web Gateway 5.0.3.18 (deptUploads_data.php groupid parameter) Blind SQLi
15640| [20120] httpdx <= 1.5.4 - Remote Heap Overflow
15641| [20111] CuteFlow 2.11.2 - Arbitrary File Upload Vulnerability
15642| [20109] Photodex ProShow Producer 5.0.3256 load File Handling Buffer Overflow
15643| [20099] AnalogX Proxy 4.0 4 DoS Vulnerability
15644| [20083] WordPress Front End Upload 0.5.4.4 - Arbitrary PHP File Upload
15645| [20054] West Street Software LocalWEB HTTP Server 1.2 - Buffer Overflow
15646| [20048] Microsoft Windows 2000 Remote CPU-overload Vulnerability
15647| [20040] SapporoWorks WinProxy 2.0/2.0.1 - Buffer Overflow Vulnerability
15648| [20029] EGallery PHP File Upload Vulnerability
15649| [20017] Max Feoktistov Small HTTP server 1.212 Buffer Overflow
15650| [19988] httpdx 1.5.4 - Remote HTTP Server Denial of Service
15651| [19942] Fortech Proxy+ 2.30 Remote Administration Vulnerability
15652| [19920] Computalynx CProxy Server 3.3 SP2 Buffer Overflow DoS Vulnerability
15653| [19882] Cisco IOS 11.x/12.x HTTP %% Vulnerability
15654| [19866] DomsHttpd <= 1.0 - Remote Denial of Service Exploit
15655| [19829] Joomla OS Property 2.0.2 Unrestricted File Upload
15656| [19792] Joomla KISS Advertiser Remote File & Bypass Upload Vulnerability
15657| [19791] WordPress Resume Submissions & Job Postings 2.5.1 - Unrestricted File Upload
15658| [19746] Novell BorderManager 3.0/3.5 Audit Trail Proxy DoS Vulnerability
15659| [19637] MS IE 5.0 for Windows 2000/95/98/NT 4 XML HTTP Redirect Vulnerability
15660| [19587] AN-HTTPd 1.2 b CGI Vulnerabilities
15661| [19567] National Science Foundation Squid Web Proxy 1.0/1.1/2.1 Authentication Failure
15662| [19566] Omnicron OmniHTTPD 1.1/2.4 Pro Buffer Overflow Vulnerability
15663| [19536] Apache <= 1.1,NCSA httpd <= 1.5.2,Netscape Server 1.12/1.1/2.0 a nph-test-cgi Vulnerability
15664| [19530] MS IE 5.0 Download Behavior Vulnerability
15665| [19398] Wordpress Fancy Gallery Plugin 1.2.4 - Arbitrary File Upload
15666| [19253] Debian Linux 2.1 httpd Vulnerability
15667| [19244] Apple Mac OS X Server 10.0 Overload Vulnerability
15668| [19154] qdPM 7 - Arbitrary File upload
15669| [19100] WordPress plugin Foxypress uploadify.php Arbitrary Code Execution
15670| [19099] F5 BIG-IP SSH Private Key Exposure
15671| [19093] Allaire ColdFusion Server <= 4.0 - Remote File Display, Deletion, Upload and Execution Vulnerability
15672| [19091] F5 BIG-IP Remote Root Authentication Bypass Vulnerability
15673| [19064] F5 BIG-IP Remote Root Authentication Bypass Vulnerability
15674| [19059] Agora-Project 2.12.11 Arbitrary File Upload Vulnerability
15675| [19058] Wordpress Custom Content Type Manager 0.9.5.13-pl Arbitrary File Upload Vulnerability
15676| [19057] Wordpress drag and drop file upload 0.1 - Arbitrary File Upload Vulnerability
15677| [19056] Wordpress Mac Photo Gallery 2.7 - Arbitrary File Upload
15678| [19055] Wordpress Pica Photo Gallery 1.0 - Arbitrary File Upload Vulnerability
15679| [19054] Wordpress SfBrowser 1.4.5 - Arbitrary File Upload Vulnerability
15680| [19053] Wordpress Top Quark Architecture 2.10 - Arbitrary File Upload Vulnerability
15681| [19052] Wordpress User Meta 1.1.1 - Arbitrary File Upload Vulnerability
15682| [19051] ClanSuite 2.9 - Arbitrary File Upload Vulnerability
15683| [19050] Wordpress wp-gpx-map 1.1.21 - Arbitrary File Upload Vulnerability
15684| [19038] Symantec Web Gateway 5.0.2.8 Arbitrary PHP File Upload Vulnerability
15685| [19036] Wordpress Content Flow 3D Plugin 1.0.0 - Arbitrary File Upload
15686| [19023] Wordpress wpStoreCart Plugin 2.5.27-2.5.29 Arbitrary File Upload
15687| [19020] Wordpress Simple Download Button Shortcode Plugin 1.0 - Remote File Disclosure
15688| [19019] Wordpress RBX Gallery Plugin 2.1 - Arbitrary File Upload
15689| [19012] Wordpress Front File Manager Plugin 0.1 - Arbitrary File Upload
15690| [19009] Wordpress Omni Secure Files Plugin 0.1.13 Arbitrary File Upload
15691| [19008] Wordpress Front End Upload 0.5.3 - Arbitrary File Upload
15692| [18998] Wordpress Gallery Plugin 3.06 Arbitrary File Upload
15693| [18997] Wordpress MM Forms Community Plugin 2.2.6 - Arbitrary File Upload
15694| [18994] Wordpress Font Uploader Plugin 1.2.4 - Arbitrary File Upload
15695| [18993] Wordpress Asset Manager Plugin 0.2 - Arbitrary File Upload
15696| [18991] Wordpress Foxypress Plugin 0.4.1.1 - 0.4.2.1 - Arbitrary File Upload
15697| [18990] Wordpress HTML5 AV Manager Plugin 0.2.7 - Arbitrary File Upload
15698| [18988] Wordpress Plugin Marketplace Plugin 1.5.0 - 1.6.1 - Arbitrary File Upload
15699| [18987] Wordpress WP-Property Plugin 1.35.0 - Arbitrary File Upload
15700| [18978] PHP 5.3.10 spl_autoload_call() Local Denial of Service
15701| [18977] PHP 5.3.10 spl_autoload_register() Local Denial of Service
15702| [18976] PHP 5.3.10 spl_autoload() Local Denial of Service
15703| [18959] Browser Navigation Download Trick
15704| [18957] PHP Volunteer Management System 1.0.2 - Arbitrary File Upload
15705| [18922] appRain CMF Arbitrary PHP File Upload Vulnerability
15706| [18768] Mega File Manager - File Download Vulnerability
15707| [18738] V-CMS PHP File Upload and Execute
15708| [18727] IBM Tivoli Provisioning Manager Express for Software Distribution Isig.isigCtl.1 ActiveX RunAndUploadFile() Method Overflow
15709| [18629] Tiny Server <= 1.1.9 HTTP HEAD DoS
15710| [18624] 2X Client for RDP 10.1.1204 ClientSystem Class ActiveX Control Download and Execute Vulnerability
15711| [18611] RM Downloader 3.1.3.3.2010.06.26 - (.m3u) Buffer Overflow (MSF)
15712| [18604] NetDecision 4.5.1 HTTP Server Buffer Overflow
15713| [18603] TVersity <= 1.9.7 Arbitrary File Download
15714| [18574] RazorCMS <= 1.2.1 STABLE File Upload Vulnerability
15715| [18541] Netmechanica NetDecision HTTP Server Denial of Service Vulnerability
15716| [18524] Tiny HTTP Server <= 1.1.9 - Remote Crash PoC
15717| [18518] The Uploader 2.0.4 (Eng/Ita) Remote File Upload Remote Code Execution
15718| [18515] Orbit Downloader - URL Unicode Conversion Overflow
15719| [18457] torrent-stats httpd.c Denial of Service
15720| [18449] Icona SpA C6 Messenger DownloaderActiveX Control Arbitrary File Download and Execute
15721| [18442] Apache httpOnly Cookie Disclosure
15722| [18432] phux Download Manager Blind SQL Injection Vulnerability
15723| [18431] Ajax Upload Arbitrary File Upload
15724| [18412] Wordpress Kish Guest Posting Plugin 1.0 - Arbitrary File Upload
15725| [18407] AllWebMenus < 1.1.9 WordPress Menu Plugin Arbitrary File Upload
15726| [18392] appRain CMF <= 0.1.5 (uploadify.php) Unrestricted File Upload Exploit
15727| [18367] XAMPP WebDAV PHP Upload
15728| [18365] Microsoft Internet Explorer JavaScript OnLoad Handler Remote Code Execution Vulnerability
15729| [18357] Pragyan CMS 2.6.1 - Arbitrary File Upload Vulnerability
15730| [18295] lighttpd Denial of Service Vulnerability PoC
15731| [18287] Joomla Module Simple File Upload 1.3 - Remote Code Execution
15732| [18277] Free Image Hosting Script Arbitrary File Upload Vulnerability
15733| [18276] Wordpress Mailing List Plugin Arbitrary File Download
15734| [18221] Apache HTTP Server Denial of Service
15735| [18185] Muster Render Farm Management System Arbitrary File Download
15736| [18148] PHP-Nuke <= 8.1.0.3.5b (Downloads) Remote Blind SQL Injection
15737| [18125] Wireshark console.lua pre-loading vulnerability
15738| [18120] FleaHttpd Remote Denial of Service Exploit
15739| [18118] QuiXplorer 2.3 - Bugtraq File Upload Vulnerability
15740| [18105] glibc LD_AUDIT arbitrary DSO load Privilege Escalation
15741| [18070] Web File Browser 0.4b14 File Download Vulnerability
15742| [18032] SAP Management Console OSExecute Payload Execution
15743| [18017] Cyclope Internet Filtering Proxy 4.0 - CEPMServer.exe DoS (Poc)
15744| [18013] Cyclope Internet Filtering Proxy 4.0 - Stored XSS Vuln.
15745| [18000] 1024 CMS 1.1.0 Beta force_download.php Local File Inclusion
15746| [17975] PcVue 10.0 SV.UIGrdCtrl.1 'LoadObject()/SaveObject()' Trusted DWORD Vulnerability
15747| [17969] Apache mod_proxy Reverse Proxy Exposure Vulnerability PoC
15748| [17882] JAKCMS PRO <= 2.2.5 - Remote Arbitrary File Upload Exploit
15749| [17869] Wordpress Relocate Upload Plugin 0.14 Remote File Inclusion
15750| [17859] Toko Lite CMS 1.5.2 (edit.php) HTTP Response Splitting Vulnerability
15751| [17858] WordPress Filedownload Plugin 0.1 (download.php) Remote File Disclosure Vulnerability
15752| [17808] WordPress WP-Filebase Download Manager plugin <= 0.2.9 - SQL Injection Vulnerability
15753| [17801] Wordpress 1 Flash Gallery Plugin Arbiraty File Upload Exploit (MSF)
15754| [17797] WordPress Paid Downloads plugin <= 2.01 SQL Injection Vulnerability
15755| [17760] Wordpress grapefile plugin <= 1.1 - Arbitrary File Upload
15756| [17721] Sunway Force Control SCADA 6.1 SP3 httpsrv.exe Exploit
15757| [17702] WordPress Block-Spam-By-Math-Reloaded Plugin Bypass
15758| [17696] Apache httpd Remote Denial of Service (memory exhaustion)
15759| [17669] Simple HTTPd 1.42 PUT Request Remote Buffer Overflow Vulnerability
15760| [17658] Simple HTTPd 1.42 Denial of Servive Exploit
15761| [17644] FCKeditor all version - Arbitrary File Upload Vulnerability
15762| [17584] cFTP <= 0.1 (r80) Arbitrary File Upload
15763| [17581] MyWebServer 1.0.3 - Arbitrary File Download
15764| [17563] Download Accelerator plus (DAP) 9.7 - M3U File Buffer Overflow Exploit (Unicode SEH)
15765| [17424] Black Ice Cover Page ActiveX Control Arbitrary File Download
15766| [17422] DreamBox DM800 Arbitrary File Download Vulnerability
15767| [17415] Black Ice Cover Page SDK insecure method DownloadImageFileURL() exploit
15768| [17393] Oracle HTTP Server XSS Header Injection
15769| [17366] Cisco AnyConnect VPN Client ActiveX URL Property Download and Execute
15770| [17349] Belkin G Wireless Router F5D7234-4 v5 Exploit
15771| [17346] w-Agora Forum 4.2.1 - Arbitrary File Upload Exploit
15772| [17326] DNS Reverse Download and Exec Shellcode
15773| [17305] "Microsoft Windows Vista/Server 2008 ""nsiproxy.sys"" Local Kernel DoS Exploit"
15774| [17303] Joomla 1.0 Component jDownloads Arbitrary File Upload Vulnerability
15775| [17285] osCommerce 2.3.1 (banner_manager.php) Remote File Upload Vulnerability
15776| [17284] EditorMonkey WordPress plugin (FCKeditor) Arbitrary File Upload
15777| [17279] DreamBox DM500(+) - Arbitrary File Download Vulnerability
15778| [17200] ZenPhoto 1.4.0.3 x-forwarded-for HTTP Header presisitent XSS
15779| [17176] SoftXMLCMS Shell Upload Vulnerability
15780| [17172] cPassMan 1.82 - Arbitrary File Download
15781| [17155] Cisco Security Agent Management Console ?st_upload? RCE Exploit
15782| [17085] PHPBoost 3.0 - Remote Download Backup Vulnerability
15783| [17080] Bigace 2.7.5 - Remote File Upload Vulnerability
15784| [17068] jHTTPd 0.1a Directory Traversal Vulnerability
15785| [17037] PostgreSQL for Microsoft Windows Payload Execution
15786| [17035] Constructr CMS 3.03 Arbitrary File Upload
15787| [17034] Progea Movicon 11 TCPUploadServer Remote Exploit
15788| [17016] EAFlashUpload 2.5 - File Arbitrary Upload
15789| [17015] Element-IT PowUpload 1.3 File Arbitrary Upload
15790| [17014] CMS Lokomedia 1.5 Arbitary File Upload Vulnerability
15791| [17011] Douran 3.9.7.8 File Download/Source Code Disclosure Vulnerability
15792| [17009] CMS Balitbang 3.3 Arbitary File Upload Vulnerability
15793| [17007] Phpbuddies Arbitrary Upload File Vulnerability
15794| [17005] Kleophatra 0.1.4 0day Arbitrary Upload File Vulnerability
15795| [17002] CMS Loko Media Local File Download Vulnerability
15796| [16990] Sun Java Applet2ClassLoader Remote Code Execution Exploit
15797| [16970] Kolibri <= 2.0 - HTTP Server HEAD Buffer Overflow
15798| [16959] Oracle WebLogic Session Fixation Via HTTP POST
15799| [16957] Oracle MySQL for Microsoft Windows Payload Execution
15800| [16907] Google Appliance ProxyStyleSheet Command Execution
15801| [16906] Joomla 1.5.12 TinyBrowser File Upload Code Execution
15802| [16903] OpenX banner-edit.php File Upload PHP Code Execution
15803| [16874] MacOS X EvoCam HTTP GET Buffer Overflow
15804| [16856] DD-WRT HTTP Daemon Arbitrary Command Execution
15805| [16809] Oracle 9i XDB HTTP PASS Overflow (win32)
15806| [16802] Webster HTTP Server GET Buffer Overflow
15807| [16800] Streamcast <= 0.9.75 HTTP User-Agent Buffer Overflow
15808| [16799] HTTPDX h_handlepeer() Function Buffer Overflow
15809| [16794] HTTPDX tolog() Function Format String Vulnerability
15810| [16790] PSO Proxy 0.91 - Stack Buffer Overflow
15811| [16789] Adobe RoboHelp Server 8 Arbitrary File Upload and Execute
15812| [16788] ColdFusion 8.0.1 - Arbitrary File Upload and Execute
15813| [16777] Free Download Manager Remote Control Server Buffer Overflow
15814| [16759] SHTTPD <= 1.34 URI-Encoded POST Request Overflow (win32)
15815| [16755] Novell iManager getMultiPartParameters Arbitrary File Upload
15816| [16732] HTTPDX tolog() Function Format String Vulnerability
15817| [16698] Windows ANI LoadAniIcon() Chunk Size Stack Buffer Overflow (SMTP)
15818| [16692] Proxy-Pro Professional GateKeeper 4.7 GET Request Overflow
15819| [16691] Blue Coat WinProxy Host Header Overflow
15820| [16690] Qbik WinGate WWW Proxy Server URL Processing Overflow
15821| [16689] CCProxy <= 6.2 - Telnet Proxy Ping Overflow
15822| [16642] WM Downloader 3.1.2.2 - Buffer Overflow
15823| [16634] Free Download Manager Torrent Parsing Buffer Overflow
15824| [16605] Snapshot Viewer for Microsoft Access ActiveX Control Arbitrary File Download
15825| [16601] FlipViewer FViewerLoading ActiveX Control Buffer Overflow
15826| [16600] Symantec Altiris Deployment Solution ActiveX Control Arbitrary File Download and Execute
15827| [16588] HP LoadRunner 9.0 ActiveX AddFolder Buffer Overflow
15828| [16576] Persits XUpload ActiveX AddFile Buffer Overflow
15829| [16570] AwingSoft Winds3D Player 3.5 SceneURL Download and Execute
15830| [16569] Orbit Downloader Connecting Log Creation Buffer Overflow
15831| [16554] America Online ICQ ActiveX Control Arbitrary File Download and Execute
15832| [16553] BaoFeng Storm mps.dll ActiveX OnBeforeVideoDownload Buffer Overflow
15833| [16540] Zenturi ProgramChecker ActiveX Control Arbitrary File Download
15834| [16532] Internet Explorer XML Core Services HTTP Request Handling
15835| [16512] Symantec AppStream LaunchObj ActiveX Control Arbitrary File Download and Execute
15836| [16505] Facebook Photo Uploader 4 ActiveX Control Buffer Overflow
15837| [16502] IBM Lotus Domino Web Access Upload Module Buffer Overflow
15838| [16496] Kazaa Altnet Download Manager ActiveX Control Buffer Overflow
15839| [16493] EnjoySAP SAP GUI ActiveX Control Arbitrary File Download
15840| [16439] NetTransport Download Manager 2.90.510 Buffer Overflow
15841| [16425] Asus Dpcproxy Buffer Overflow
15842| [16395] Microsoft SQL Server Payload Execution
15843| [16394] Microsoft SQL Server Payload Execution via SQL injection
15844| [16339] Timbuktu Pro Directory Traversal/File Upload
15845| [16319] JBoss JMX Console Beanshell Deployer WAR upload and deployment
15846| [16318] JBoss JMX Console Deployer Upload and Execute
15847| [16288] Generic Payload Handler
15848| [16220] ProQuiz 2.0.0b Arbitrary Upload Vulnerability
15849| [16199] Icy Phoenix 1.3.0.53a HTTP Referer stored XSS
15850| [16181] WordPress User Photo Component Remote File Upload Vulnerability
15851| [16131] SWFUpload 2.5.0 Beta 3 - File Arbitrary Upload
15852| [16128] jakcms 2.0 pro rc5 - Stored XSS via useragent http header injection
15853| [16103] Majordomo2 - Directory Traversal (SMTP/HTTP)
15854| [16088] NetLink Arbitrary File Upload Vulnerability
15855| [16080] RW-Download 4.0.6 - (index.php) SQL Injection Vulnerability
15856| [16072] WM Downloader 3.1.2.2 2010.04.15 (.m3u) Buffer Overflow + DEP Bypass
15857| [16058] MultiPowUpload 2.1 - Remote File Upload Vulnerability
15858| [16050] class.upload.php 0.30 - Remote File Upload Vulnerability
15859| [15981] LifeType 1.2.10 HTTP Referer stored XSS
15860| [15960] Maximus CMS (fckeditor) Arbitrary File Upload Vulnerability
15861| [15868] QuickPHP Web Server Arbitrary (src .php) File Download
15862| [15861] httpdasm 0.92 - Directory Traversal
15863| [15843] News Script PHP Pro (fckeditor) File Upload Vulnerability
15864| [15830] Social Engine 4.x (Music Plugin) Arbitrary File Upload Vulnerability
15865| [15821] HttpBlitz Web Server Denial of Service Exploit
15866| [15795] Serendipity 1.5.4 0day Arbitrary File Upload Vulnerability
15867| [15793] Vacation Rental Script 4.0 - Arbitrary File Upload Vulnerability
15868| [15791] Joomla Component Jotloader 2.2.1 - Local File Inclusion Vulnerability
15869| [15770] Download Center 2.2 - SQL injection Vulnerability
15870| [15768] MCFileManager Plugin for TinyMCE 3.2.2.3 - Arbitrary File Upload Vulnerability
15871| [15765] CubeCart 3.x - Remote File Upload Vulnerability
15872| [15756] MHP Downloadshop SQL Injection Vulnerability
15873| [15719] JE Messenger 1.0 - Arbitrary File Upload Vulnerability
15874| [15703] SOOP Portal Raven 1.0b Shell Upload Vulnerability
15875| [15690] SOOP Portal 2.0 - Remote Upload Shell Vulnerability
15876| [15654] Digitalus 1.10.0 Alpha2 - Arbitrary File Upload Vulnerability
15877| [15651] OsCSS 1.2 - Arbitrary File Upload Vulnerability
15878| [15638] Duhok Forum <= 1.1 - Remote File Upload Vulnerability
15879| [15636] Orbis CMS 1.0.2 - Arbitrary File Upload Vulnerability
15880| [15611] JDownloader Webinterface Source Code Disclosure Vulnerability
15881| [15602] PHPMotion FCKeditor File Upload Vulnerability
15882| [15597] Acidcat CMS 3.3 - (fckeditor) Shell Upload Vulnerability
15883| [15596] JCMS 2010 file download vulnerability
15884| [15563] Sitefinity CMS (ASP.NET) Shell Upload Vulnerability
15885| [15516] EasyJobPortal Shell Upload Vulnerability
15886| [15484] FCKeditor 2.x <= 2.4.3 - Arbitrary File Upload Vulnerability
15887| [15455] xt:Commerce Shopsoftware (fckeditor) Arbitrary File Upload Vulnerability
15888| [15441] MassMirror Uploader Remote File Inclusion Vulnerability
15889| [15422] Sami HTTP Server 2.0.1 GET Request Denial of Service Exploit
15890| [15404] eLouai's Force Download Script Arbitrary Local File Download Vulnerability
15891| [15389] MetInfo 3.0 (fckeditor) Arbitrary File Upload Vulnerability
15892| [15354] Zoopeer 0.1 & 0.2 (fckeditor) Shell Upload Vulnerability
15893| [15353] Joomla Component com_jfuploader < 2.12 Remote File Upload
15894| [15336] MinaliC Webserver 1.0 - Remote Source Disclosure/File Download
15895| [15316] ARM Loader Port 0x1337
15896| [15307] HP Data Protector Media Operations 6.11 HTTP Server Remote Integer Overflow DoS
15897| [15304] GNU C library dynamic linker LD_AUDIT arbitrary DSO load Vulnerability
15898| [15292] MS10-070 ASP.NET Auto-Decryptor File Download Exploit
15899| [15290] Oracle Sun Java System Web Server - HTTP Response Splitting
15900| [15277] GeekLog 1.7.0 (fckeditor) Arbitrary File Upload Vulnerability
15901| [15265] MS10-070 ASP.NET Padding Oracle File Download
15902| [15254] KCFinder 2.2 - Arbitrary File Upload Vulnerability
15903| [15249] Data/File upload and management Arbitrary File Upload Vulnerability
15904| [15217] Feindura File Manager 1.0(rc) - Remote File Upload
15905| [15194] TinyMCE MCFileManager 2.1.2 - Arbitrary File Upload Vulnerability
15906| [15164] JomSocial 1.8.8 Shell Upload Vulnerability
15907| [15160] MOAUB #30 - ASPMass Shopping Cart Vulnerability File Upload CSRF
15908| [15139] MOAUB #28 - AtomatiCMS Upload Arbitrary File Vulnerability
15909| [15050] Opencart 1.4.9.1 - Remote File Upload Vulnerability
15910| [15041] Maian Gallery 2 - Local File Download Vulnerability
15911| [14995] Joomla Component Mosets Tree 2.1.5 Shell Upload Vulnerability
15912| [14991] MOAUB #13 - Luftguitar CMS Vulnerability: Upload Arbitrary File
15913| [14989] osDate (uploadvideos.php) Shell Upload Vulnerability
15914| [14960] ES Simple Download 1.0. Local File Inclusion Vulnerability
15915| [14941] Integard Home and Pro 2 - Remote HTTP Buffer Overflow Exploit
15916| [14938] Internet Download Accelerator 5.8 - Remote Buffer Overflow PoC
15917| [14840] Mereo 1.9.2 - Remote HTTP Server Denial of Service Vulnerability
15918| [14819] Pc4Uploader 9.0 Cross-site Request Forgery
15919| [14811] Joomla Component (com_remository) Remote Upload File
15920| [14683] Httpdx 1.5.4 - Multiple Denial of Service Vulnerabilities (http-ftp) PoC
15921| [14629] Kleeja Upload - CSRF Change Admin Password
15922| [14609] Msxml2.XMLHTTP.3.0 Response Handling Memory Corruption (MS10-051)
15923| [14532] Mini-stream RM-MP3 Converter/WMDownloader/ASX to MP3 Cnvrtr Stack Buffer Overflow
15924| [14527] WM Downloader 3.1.2.2 - Buffer Overflow Exploit
15925| [14522] Xerver 4.32 - Source Disclosure and HTTP Authentication Bypass
15926| [14497] WM Downloader 3.1.2.2 2010.04.15 Buffer Overflow (SEH)
15927| [14496] UPlusFTP Server 1.7.1.01 - HTTP Remote Buffer Overflow (Post Auth)
15928| [14457] DM Filemanager 3.9.11 Arbitrary File Upload Vulnerability
15929| [14445] ZeeMatri 3.x - Arbitrary File Upload Vulnerability
15930| [14444] ZeeNetworking 1x- Arbitrary File Upload Vulnerability
15931| [14443] LILDBI Shell Upload Vulnerability
15932| [14430] RapidLeech Scripts Remote File Upload Vulnerability
15933| [14415] EZ-Oscommerce 3.1 - Remote File Upload
15934| [14390] Freelancer Marketplace Script Upload Vulnerability
15935| [14315] Joomla MySMS Component (com_mysms) Upload Vulnerability
15936| [14308] Wordpress Firestats Remote Configuration File Download
15937| [14293] Minify4Joomla Upload and Persistent XSS Vulnerability
15938| [14280] PG Social Networking Shell Upload Vulnerabilty
15939| [14279] Inout Ad server Ultimate Shell Upload Vulnerabilty
15940| [14278] Inout Article Base Ultimate Shell Upload Vulnerabilty
15941| [14277] Inout Music 1.0 - Shell Upload Vulnerabilty
15942| [14267] EA Battlefield 2 and Battlefield 2142 Multiple Arbitrary File Upload Vulnerabilities
15943| [14209] Joomla Front-End Article Manager System Upload Vulnerability
15944| [14184] SweetRice < 0.6.4 (fckeditor) Remote File Upload
15945| [14176] iScripts SocialWare 2.2.x Arbitrary File Upload Vulnerability
15946| [14150] RM Downloader 3.1.3 - Local SEH Exploit (Win7 ASLR and DEP Bypass)
15947| [14101] Subdreamer Pro 3.0.4 - CMS Upload Vulnerability
15948| [14081] RM Downloader 3.1.3 - Buffer Overflow (SEH)
15949| [14078] Bilder Upload Script - Datei Upload 1.09 - Remote Shell Upload Vulnerability
15950| [14070] Speedy 1.0 - Remote Shell Upload Vulnerability
15951| [14058] PHPnuke 8.2 - Remote Upload File Exploit
15952| [14044] WM Downloader 2.9.2 Stack Buffer Overflow
15953| [14033] Big Forum 5.2v Arbitrary File Upload & LFI Vulnerability
15954| [14014] ShellCode WinXP SP3 SPA URLDownloadToFileA + CreateProcessA + ExitProcess
15955| [14012] Weborf HTTP Server Denial of Service Vulnerability
15956| [14004] InterScan Web Security 5.0 - Arbitrary File Upload
15957| [14001] InterScan Web Security Virtual Appliance 5.0 - Arbitrary File Download
15958| [13999] Software Index (Remote File Upload) Exploit
15959| [13966] The Uploader 2.0.4 - Remote File Disclosure Vulnerability
15960| [13951] Joomla Component com_eportfolio Upload Vulnerability
15961| [13927] MarketSaz remote file Upload Vulnerability
15962| [13898] DMSEasy0.9.7 (fckeditor) Arbitrary File Upload
15963| [13893] Nakid CMS (fckeditor) Remote Arbitrary File Upload Exploit
15964| [13892] PHPAuctionSystem Upload Vulnerability
15965| [13888] SasCam 2.6.5 - Remote HTTP Server Crash
15966| [13870] iOS QuickOffice 3.1.0 - HTTP Method Remote DoS
15967| [13856] Yamamah Photo Gallery 1.00 (download.php) Local File Disclosure Vulnerability
15968| [13853] Unreal IRCD 3.2.8.1 - Remote Downloader/Execute Trojan
15969| [13835] DaLogin 2.2 (FCKeditor) Remote Arbitrary File Upload Exploit
15970| [13822] Nginx <= 0.7.65 / 0.8.39 (dev) Source Disclosure / Download Vulnerability
15971| [13814] Pars Design CMS Arbitrary File Upload
15972| [13782] Image Store Remote file Upload Vulnerability
15973| [13774] Motorola SB5101 Hax0rware Rajko HTTPD Remote Exploit PoC
15974| [13773] Holiday Travel Portal Upload Vulnerability
15975| [13772] Rayzz Photoz Upload Vulnerability
15976| [13751] greeting card Remote Upload Vulnerability
15977| [13748] Joomla Component com_annonces Upload Vulnerability
15978| [13711] Solaris/x86 - Remote Download file - 79 bytes
15979| [13699] WinXP SP2 Fr Download and Exec Shellcode
15980| [13533] win64 (URLDownloadToFileA) download and execute 218+ bytes
15981| [13530] windows/XP download and exec source
15982| [13529] win xp/2000/2003 Download File and Exec 241 bytes
15983| [13524] Windows 9x/NT/2k/XP Reverse Generic Shellcode without Loader 249 bytes
15984| [13522] win32 Download & Exec Shellcode 226 bytes+
15985| [13517] win32 download and execute 124 bytes
15986| [13516] win32 Tiny Download and Exec Shellcode 192 bytes
15987| [13515] win32 Download and Execute Shellcode Generator (browsers edition)
15988| [13489] solaris/sparc download and execute 278 bytes
15989| [13416] linux/x86 upload & exec 189 bytes
15990| [13414] linux/x86 /bin/sh sysenter Opcode Array Payload 45 bytes
15991| [13413] linux/x86 /bin/sh sysenter Opcode Array Payload 27 Bytes
15992| [13412] linux/x86 /bin/sh sysenter Opcode Array Payload 23 Bytes
15993| [13411] linux/x86 examples of long-term payloads hide-wait-change 187 bytes+
15994| [13410] linux/x86 examples of long-term payloads hide-wait-change (.s)
15995| [13409] linux/x86 /bin/sh Standard Opcode Array Payload 21 Bytes
15996| [13402] linux/x86 socket-proxy shellcode 372 bytes
15997| [13381] linux/x86 TCP Proxy Shellcode 236 bytes
15998| [13337] linux/x86 connect back, download a file and execute 149 bytes
15999| [13308] linux/x86 shellcode that forks a HTTP Server on port tcp/8800 166 bytes
16000| [13288] Utility for generating HTTP/1.x requests for shellcodes
16001| [13287] Download & Exec polymorphed shellcode Engine
16002| [13283] windows xp/sp1 generate portbind payload
16003| [13282] linux/x86 generate portbind payload
16004| [13275] freebsd/x86 kldload /tmp/o.o 74 bytes
16005| [12856] osCSS 1.2.1 (REMOTE FILE UPLOAD) Vulnerabilities
16006| [12811] Oscommerce Online Merchant 2.2 - Remote File Upload
16007| [12804] nginx [engine x] http server <= 0.6.36 Path Draversal
16008| [12797] Webiz - Local Shell Upload Vulnerability
16009| [12763] Script Upload Up Your Shell (Sql Inject)
16010| [12731] Webloader 8 - SQL Injection Vulnerability
16011| [12700] DotNetNuke Remote File upload Vulnerability
16012| [12699] eWebEditor 1.x - (WYSIWYG) Remote File Upload
16013| [12697] hustoj (fckeditor) Remote Arbitrary File Upload Exploit
16014| [12693] Asset Manager Remote File upload Vulnerability
16015| [12692] TinyBrowser Remote File upload Vulnerability
16016| [12690] cardinalCms 1.2 (fckeditor) Arbitrary File Upload Exploit.
16017| [12672] Spaw Editor 1.0 & 2.0 - Remote File Upload
16018| [12656] Battle Scrypt Shell Upload Vulnerability
16019| [12647] Webloader 7 - 8 (vid) SQL Injection Vulnerability
16020| [12646] B-Hind CMS (tiny_mce) Remote File Upload
16021| [12636] MidiCart PHP,ASP Shell Upload Vulnerability
16022| [12628] EgO 0.7b - (fckeditor) Remote File Upload
16023| [12623] Joomla Component simpledownload Local File Disclosure
16024| [12618] Joomla Component simpledownload LFI Vulnerability
16025| [12613] CompactCMS 1.4.0 (tiny_mce) Remote File Upload
16026| [12584] PolyPager 1.0rc10 (fckeditor) Remote Arbitrary File Upload Vulnerability
16027| [12581] zervit Web Server 0.4 - Source Disclosure/Download
16028| [12570] Uploader 0.1.5 - Multiple Vulnerabilities
16029| [12569] Fast Free Media 1.3 - Adult Site Upload Shell Exploit
16030| [12568] Digital College 1.0 Upload Vulnerability
16031| [12556] Tadbir CMS (fckeditor) Remote Arbitrary File Upload Exploit Vulnerability
16032| [12539] Joomla Component com_articleman Upload Vulnerability
16033| [12531] GeoHttpServer Remote DoS Vulnerability
16034| [12506] Knowledgeroot (fckeditor) Remote Arbitrary File Upload Exploit
16035| [12485] Burning Board Lite 1.0.2 Shell Upload Vulnerability
16036| [12479] Joomla DJ-Classifieds Extension com_djclassifieds Upload Vulnerability
16037| [12454] Zyke CMS 1.0 - Remote File Upload Vulnerability
16038| [12448] Socialware 2.2 - Upload Vulnerability and XSS
16039| [12447] XT-Commerce 1.0 Beta 1 => Pass / Creat and Download Backup Vulnerability
16040| [12432] Joomla JE Property Finder Component Upload Vulnerability
16041| [12420] Portaneo Portal 2.2.3 - Remote Arbitrary File Upload Exploit
16042| [12410] PostNuke 0.764 Module modload SQL Injection Vulnerability
16043| [12402] Kasseler CMS 2.0.5 - Bypass / Download Backup Vulnerability
16044| [12388] WM Downloader 3.0.0.9 - Buffer Overflow (Meta)
16045| [12384] Powered by iNetScripts: Shell Upload Vulnerability
16046| [12383] clipak Upload Vulnerability
16047| [12381] phpegasus (fckeditor) Remote Arbitrary File Upload Exploit
16048| [12376] SmodCMS 4.07 (fckeditor) - Remote Arbitrary File Upload Exploit
16049| [12350] In-portal 5.0.3 - Remote Arbitrary File Upload Exploit
16050| [12331] MultiThreaded HTTP Server 1.1 - Directory Traversal
16051| [12315] v2marketplacescript Upload_images Script (-7777) - Upload Shell Vulnerability
16052| [12308] MultiThreaded HTTP Server 1.1 - Source Disclosure
16053| [12304] MultiThreaded HTTP Server 1.1 - Directory Traversal
16054| [12302] HP Operations Manager <= 8.16 - (srcvw4.dll) LoadFile()/SaveFile() Remote Unicode Stack Overflow PoC
16055| [12292] Flex File Manager Shell Upload Vulnerability
16056| [12279] eclime 1.1 - Bypass / Create and Download Backup Vulnerability
16057| [12272] PHP RapidKill Pro 5.x Shell Upload Vulnerability
16058| [12268] Uploader 0.7 Shell Upload Vulnerability
16059| [12267] WebAdmin Shell Upload Vulnerability
16060| [12264] Apache OFBiz - FULLADMIN Creator PoC Payload
16061| [12263] Apache OFBiz - SQL Remote Execution PoC Payload
16062| [12254] CMS (fckeditor) Remote Arbitrary File Upload Exploit
16063| [12251] Camiro-CMS_beta-0.1 (fckeditor) Remote Arbitrary File Upload Exploit
16064| [12227] YUI Images Script Shell Upload Vulnerability
16065| [12226] Magic Uploader Mini Upload Vulnerability
16066| [12224] Mihalism Multi Host 4.0.0 - Upload Vulnerability
16067| [12223] Multi-Mirror Remote Upload Vulnerability
16068| [12199] My School Script Data Base Download Vulnerability
16069| [12197] Mp3 MuZik Data Base Download Vulnerability
16070| [12133] Asset Manager 1.0 Shell Upload Vulnerability
16071| [12128] GarageSales Remote Upload Vulnerability
16072| [12105] Free Image & File Hosting Upload Vulnerability
16073| [12075] LionWiki 3.x - (index.php) Shell Upload Vulnerability
16074| [12050] MassMirror Uploader Multiple RFI Exploit
16075| [12049] Uiga Proxy Remote File Inclusion Vulnerability
16076| [12038] Advanced Management For Services Sites Bypass Create And Download SQL Backup Vulnerability
16077| [12028] PHP-fusion dsmsf (module downloads) SQL Injection Exploit
16078| [12019] Velhost Uploader Script 1.2 - Local File Inclusion Vulnerability
16079| [12006] Simple Calculator by Peter Rekdal Sunde Remote Upload Vulnerability
16080| [12002] Musicbox 3.3 - Upload Shell Vulnerability
16081| [11981] WM Downloader 3.0.0.9 (.asx) Local Buffer Overflow
16082| [11967] Snipe Photo Gallery - Bypass Remote Upload Vulnerability
16083| [11953] RM Downloader 3.0.2.1 (.asx) Local Buffer Overflow (SEH)
16084| [11856] uhttp Server Path Traversal Vulnerability
16085| [11823] Trouble Ticket Software ttx.cgi Remote File Download
16086| [11788] PHP-Nuke ratedownload SQL Injection
16087| [11771] osCMax 2.0 (fckeditor) Remote File Upload
16088| [11760] Joomla Component com_rokdownloads - Local File Inclusion
16089| [11749] Subdreamer 3.0.1 - CMS upload Vulnerability
16090| [11747] CH-CMS.ch-V2 Upload Vulnerability
16091| [11746] Torrent Hoster Remont Upload Exploit
16092| [11745] FreeHost 1.00 - Upload Vulnerability
16093| [11734] httpdx 1.5.3b - Multiple Remote Pre-Authentication DoS (PoC)
16094| [11726] PHP-Fusion <= 6.01.15.4 (downloads.php) SQL Injection Vulnerability
16095| [11652] TopDownloads MP3 Player 1.0 m3u crash
16096| [11620] Dosya Yukle Scrtipi 1.0 - Shell Upload Vulnerability
16097| [11614] Uploadify Sample Collection Shell Upload Vulnerability
16098| [11613] PHP Advanced Transfer Manager 1.10 - Shell Upload Vulnerability
16099| [11611] Al Sat Scripti Database Download Vulnerability
16100| [11597] RCA DCM425 Cable Modem micro_httpd DoS/PoC
16101| [11571] Maian Uploader 4.0 - Shell Upload Vulnerability
16102| [11557] Max's Photo Album Shell Upload Vulnerability
16103| [11500] Easy~Ftp Server 1.7.0.2 - (HTTP) Remote BoF Exploit
16104| [11485] Multiple File Attachments Mail Form Pro 2.0 - WebShell upload
16105| [11476] SongForever.com Clone Shell Upload Vulnerability
16106| [11472] iOS FTP On The Go 2.1.2 - HTTP Remote DoS
16107| [11466] microUpload Shell Upload Vulnerability
16108| [11460] Dodo Upload 1.3 - Upload Shell (Bypass) Vulnerability
16109| [11450] File Upload Manager 1.3
16110| [11447] Joomla (Jw_allVideos) Remote File Download Vulnerability
16111| [11431] MRW PHP Upload Remote file upload Vulnerability
16112| [11398] GameRoom Script Admin Bypass and File Upload Vulnerability
16113| [11384] WM Downloader 3.0.0.9 - PLS PLA Exploit (WinXP SP3)
16114| [11377] Limny 1.01 - Remote File Upload Vulnerability
16115| [11374] WM Downloader 3.0.0.9 - PLS WMDownloader (PoC)
16116| [11365] CPA Site Solutions Remote File Upload Vulnerability
16117| [11343] httpdx 1.5.2 - Remote Pre-Authentication DoS (PoC)
16118| [11340] odlican.net cms 1.5 - Remote File Upload Vulnerability
16119| [11309] Snif 1.5.2 - Any Filetype Download Exploit
16120| [11301] Maian Greetings 2.1 - Shell Upload Vulnerability
16121| [11273] iOS Serversman 3.1.5 - HTTP Remote DoS Exploit
16122| [11261] UGiA PHP UPLOADER 0.2 - Shell Upload Vulnerability
16123| [11254] P2GChinchilla HTTP Server 1.1.1 - Denial of Service Exploit
16124| [11249] boastMachine 3.1 - Remote File Upload Vulnerability
16125| [11218] jQuery uploadify 2.1.0 - Remote File Upload
16126| [11211] cPanel HTTP Response Splitting Vulnerability
16127| [11203] Pidgin MSN <= 2.6.4 File Download Vulnerability
16128| [11202] RM Downloader .m3u BOF (SEH)
16129| [11169] Max's Image Uploader Shell Upload Vulnerability
16130| [11166] Uploader by CeleronDude 5.3.0 - Upload Vulnerability
16131| [11155] Transload Script Upload Vulnerability
16132| [11148] PonVFTP Bypass and Shell Upload Vulnerability
16133| [11147] Max's File Uploader Shell Upload Vulnerability
16134| [11142] Multiple Media Player HTTP DataHandler Overflow (Itunes, Quicktime, etc)
16135| [11134] Asp VevoCart Control System 3.0.4 - DB Download Vulnerability
16136| [11110] Image Hosting Script Remote shell upload Vulnerability
16137| [11104] CMScontrol 7.x File Upload
16138| [11057] Read Excel Script 1.1 - Shell Upload Vulnerability
16139| [11045] SpawCMS Editor Shell Upload Vulnerability
16140| [11019] MobPartner Counter - Remote File Upload Vulnerability
16141| [11018] VP-ASP Shopping Cart 7.0 DB Download Vulnerability
16142| [11016] Net Gitar Shop 1.0 - DB Download Vulnerability
16143| [11015] Lebi soft Ziyaretci Defteri 7.5 - DB Download Vulnerability
16144| [11014] Myuploader >> upload shell exploit
16145| [11008] YP Portal MS-Pro Surumu 1.0 DB Download Vulnerability
16146| [10984] Joomla component com_cartikads Remote File Upload Vulnerability
16147| [10938] Service d'upload 1.0.0 - Shell Upload Vulnerability
16148| [10912] Proxyroll.com Clone PHP Script Cookie Handling Vulnerability
16149| [10911] NetTransport Download Manager version:2.90.510 0day
16150| [10899] XlentCMS 1.0.4 - (downloads.php?cat) SQL Injection Vulnerability
16151| [10822] Joomla Component com_rd_download Local File Disclosure Vulnerability
16152| [10811] Joomla.Tutorials GHDB: Apache directory listing Download Vulnerability
16153| [10802] PicMe 2.1.0 - Upload Shell Vulnerability
16154| [10800] I-RATER Basic Shell Upload Vulnerability
16155| [10780] ASP Battle Blog DB Download Vulnerability
16156| [10778] makit news/blog poster 3.1 - DB Download Vulnerability
16157| [10777] Fully Functional ASP Forum 1.0 DB Download Vulnerability
16158| [10776] BaalASP 2.0 DB Download Vulnerability
16159| [10775] Uguestbook DB Download Vulnerability
16160| [10774] htmlArea 2.03 - DB Download Vulnerability
16161| [10773] Futility Forum 1.0 Revamp DB Download Vulnerability
16162| [10772] AspBB - Active Server Page Bulletin Board DB Download Vulnerability
16163| [10771] QuickEStore 7.9 - SQL Injection and Path Diclosure Download Vulnerability
16164| [10770] PSnews DB Download Vulnerability
16165| [10767] jgbbs-3.0beta1 DB Download Vulnerability
16166| [10763] Dren's PHP Uploader Remote File Upload Vulnerability
16167| [10757] PHP Forum ohne My SQL Remote File Upload Vulnerability
16168| [10756] MySimpleFileUploader 1.6 - Upload Shell Vulnerability
16169| [10753] ASP Simple Blog 3.0 - Upload shell Vulnerability
16170| [10752] Yonja Remote File Upload Vulnerability
16171| [10732] PHP upload - (unijimpe) Remote File Upload Vulnerability
16172| [10727] Smart PHP Uploader 1.0 - Remote File Upload Vulnerability
16173| [10722] PHP Uploader Downloader 2.0 - Cross Site Scripting Vulnerability
16174| [10719] PHP Uploader Downloader 2.0 - Upload Shell Vulnerability
16175| [10718] ta3arof [dating] Script Arabic Version - Upload Shell Vulnerability
16176| [10707] oscommerce <= 2.2rc2a Bypass/Create and Download Backup Vulnerability
16177| [10706] MyCart shopping cart Upload Shell Vulnerability
16178| [10704] Mega Upload Upload Shell Vulnerability
16179| [10700] Image File Upload Upload Shell Vulnerability
16180| [10695] Lizard Cart Upload Shell Vulnerability
16181| [10694] ES Simple Uploader 1.1 - Upload Shell Vulnerability
16182| [10691] EZPX My photoblog 1.2 - Upload Shell Vulnerability
16183| [10689] file upload Ar Version - Upload Shell Vulnerability
16184| [10685] Best Top List 2.11 - Upload Shell Vulnerability
16185| [10684] Upload-Point 1.6 Beta - Upload Shell Vulnerability
16186| [10681] Saibal Download Area 2.0 - Upload Shell Vulnerability
16187| [10672] kandalf upper 0.1 Upload Shell Vulnerability
16188| [10671] Info Fisier 1.0 - Remote File Upload Vulnerability
16189| [10660] barbo91 uploads Upload Shell Vulnerability
16190| [10647] VideoIsland Remote shell upload Vulnerability
16191| [10612] Add An Ad Script Remote File Upload
16192| [10610] CoreHTTP Arbitrary Command Execution Vulnerability
16193| [10601] Mini File Host 1.5 - Remote File Upload Vulnerability
16194| [10599] The Uploader 2.0 File Disclosure Vulnerability
16195| [10594] The Uploader 2.0 - Remote File Upload Vulnerability
16196| [10584] PHPhotoalbum Remote File Upload Vulnerability
16197| [10578] Ultimate Uploader 1.3 - Remote File Upload Vulnerability
16198| [10574] phUploader Remote File Upload Vulnerability
16199| [10568] Simplicity oF Upload 1.3.2 - Remote File Upload Vulnerability
16200| [10523] Uploader by CeleronDude 5.3.0 Shell Upload
16201| [10511] PHP F1 Upload Shell Upload Vulnerability
16202| [10499] eUploader PRO 3.1.1 - CSRF/XSS Multiple Vulnerabilities
16203| [10495] PhpLinkExchange 1.02 - XSS/Upload Vulerability
16204| [10481] OSSIM 2.1.5 - Arbitrary File Upload
16205| [10472] Recipe Script 5.0 - Shell Upload/CSRF/XSS Multiple Vulnerabilities
16206| [10469] Monkey HTTP Daemon < 0.9.3 - Denial of Service Vulnerability
16207| [10430] NAS Uploader 1.0 & 1.5 - Remote File Upload Vulnerability
16208| [10429] myPHPupload 0.5.1 - Remote File Upload Vulnerability
16209| [10428] Maxs AJAX File Uploader Remote File Upload Vulnerability
16210| [10426] [WS] upload Remote File Upload Vulnerability
16211| [10423] RM Downloader 3.0.2.1 - (.M3U File) Stack Overflow exploit
16212| [10403] Uploadscript 1.0 - Multiple Vulnerabilities
16213| [10401] iDesk (download.php cat_id) SQL Injection Vulnerability
16214| [10368] Free ASP Upload Shell Upload Vulnerability
16215| [10362] THOMSON TG585n 7.4.3.2 (user.ini) Arbitrary Download Vulnerability
16216| [10349] CoreHTTP web server off-by-one buffer overflow vulnerability
16217| [10331] iWeb HTTP Server Directory Transversal Vulnerability
16218| [10325] Wordpress Image Manager Plugins Shell Upload Vulnerability
16219| [10306] Achievo 1.4.2 - Arbitrary File Upload
16220| [10282] OrzHTTPd Format String Exploit
16221| [10241] Uploaderr 1.0 - File Hosting Script Shell Upload Vulnerability
16222| [10236] Flashden Multiple File Uploader Shell Upload Vulnerability
16223| [10230] Fake Hit Generator <= 2.2 Shell Upload Vulnerability
16224| [10183] Joomla 1.5.12 RCE via TinyMCE - Upload Vulnerability
16225| [10170] Xerver 4.31, 4.32 HTTP Response Splitting
16226| [10169] phpMyBackupPro - Arbitrary File Download
16227| [10163] Novell eDirectory HTTPSTK Login Stack Overflow Vulnerability
16228| [10161] JBS 2.0 / JBSX - Administration panel Bypass and File Upload Vulnerability
16229| [10089] WordPress <= 2.8.5 Unrestricted File Upload Arbitrary PHP Code Execution
16230| [10053] httpdx 1.4 Get Request Buffer Overflow
16231| [10047] Femitter HTTP Server 1.03 Remote Source Disclosure
16232| [10030] DD-WRT HTTP v24-SP1 - Command Injection Vulnerability
16233| [10009] Free Download Manager Torrent File Parsing Multiple Remote Buffer Overflow Vulnerabilities
16234| [9962] Piwik <= 1357 2009-08-02 file upload and code execution
16235| [9926] Joomla 1.5.12 tinybrowser Remote File Upload/Execute Vulnerability
16236| [9896] MiniShare HTTP 1.5.5 BoF
16237| [9886] httpdx 1.4 h_handlepeer BoF
16238| [9885] httpdx <= 1.4.6b source disclosure
16239| [9882] Firefox 3.5.3 - Local Download Manager Temp File Creation
16240| [9855] Geeklog <= 1.6.0sr2 - Remote File Upload
16241| [9806] HP LoadRunner 9.5 remote file creation PoC
16242| [9718] Xerver HTTP Server 4.32 - XSS / Directory Traversal Vulnerability
16243| [9717] Xerver HTTP Server <= 4.32 - Remote Denial of Service
16244| [9660] Techlogica HTTP Server 1.03 Arbitrary File Disclosure Exploit
16245| [9657] httpdx Web Server 1.4 (Host Header) Remote Format String DoS Exploit
16246| [9649] Xerver HTTP Server 4.32 Arbitrary Source Code Disclosure Vuln
16247| [9631] iDesk (download.php cat_id) Remote SQL Injection Vulnerability
16248| [9629] Graffiti CMS 1.x Arbitrary File Upload Vulnerability
16249| [9599] The Rat CMS Alpha 2 Arbitrary File Upload Vulnerability
16250| [9591] Ticket Support Script (ticket.php) Remote Shell Upload Vulnerability
16251| [9549] MailEnable 1.52 HTTP Mail Service Stack BOF Exploit PoC
16252| [9505] Geeklog <= 1.6.0sr1 Remote Arbitrary File Upload Vulnerability
16253| [9478] HTTP SERVER (httpsv) 1.6.2 (GET 404) Remote Denial of Service Exploit
16254| [9472] Best Dating Script Arbitrary Shell Upload Vulnerability
16255| [9469] Ultimate Fade-in slideshow 1.51 Shell Upload Vulnerability
16256| [9453] Videos Broadcast Yourself 2 - (UploadID) SQL Injection Vuln
16257| [9441] MyWeight 1.0 - Remote Shell Upload Vulnerability
16258| [9433] Gazelle CMS 1.0 - Remote Arbitrary Shell Upload Vulnerability
16259| [9432] THOMSON ST585 (user.ini) Arbitrary Download Vulnerability
16260| [9334] QuickDev 4 (download.php file) File Disclosure Vulnerability
16261| [9290] In-Portal 4.3.1 Arbitrary Shell Upload Vulnerability
16262| [9280] PunBB Automatic Image Upload <= 1.3.5 Delete Arbitrary File Exploit
16263| [9279] PunBB Automatic Image Upload <= 1.3.5 - Remote SQL Injection Exploit
16264| [9239] PHP Melody 1.5.3 - Remote File Upload Injection Vulnerability
16265| [9238] Joomla Component com_joomloads (packageId) SQL Injection Vuln
16266| [9219] powerUpload 2.4 (Auth Bypass) Insecure Cookie Handling Vulnerability
16267| [9209] DD-WRT (httpd service) Remote Command Execution Vulnerability
16268| [9122] Opial 1.0 - Arbitrary File Upload/XSS/SQL Injection Vulnerabilities
16269| [9086] MRCGIGUY Thumbnail Gallery Post 1b Arb. Shell Upload Vulnerability
16270| [9071] Apple Safari 4.x JavaScript Reload Remote Crash Exploit
16271| [9011] Joomla Component com_pinboard Remote File Upload Vulnerability
16272| [8991] Multiple HTTP Server Low Bandwidth Denial of Service #2
16273| [8988] pc4 Uploader <= 10.0 - Remote File Disclosure Vulnerability
16274| [8976] Multiple HTTP Server Low Bandwidth Denial of Service (slowloris.pl)
16275| [8916] Free Download Manager 2.5/3.0 (Control Server) Remote BOF Exploit
16276| [8897] httpdx <= 0.8 FTP Server Delete/Get/Create Directories/Files Exploit
16277| [8855] AlstraSoft Article Manager Pro Remote Shell Upload Vulnerability
16278| [8811] Joomla Component Com_Agora 3.0.0 RC1 Remote File Upload Vulnerability
16279| [8792] Webradev Download Protect 1.0 - Remote File Inclusion Vulnerabilities
16280| [8786] Lighttpd < 1.4.23 Source Code Disclosure Vulnerability (BSD/Solaris bug)
16281| [8773] ZaoCMS (PhpCommander) Arbitary Remote File Upload Vulnerability
16282| [8764] ZaoCMS (download.php) Remote File Disclosure Vulnerability
16283| [8749] DMXReady Registration Manager 1.1 - Arbitrary File Upload Vulnerability
16284| [8732] httpdx <= 0.5b FTP Server (CWD) Remote BOF Exploit (SEH)
16285| [8730] VidShare Pro Arbitrary Shell Upload Vulnerability
16286| [8716] httpdx <= 0.5b FTP Server (USER) Remote BOF Exploit (SEH)
16287| [8712] httpdx <= 0.5b Multiple Remote Denial of Service Vulnerabilities
16288| [8709] Pc4Uploader 9.0 - Remote Blind SQL Injection Vulnerability
16289| [8700] Rama CMS <= 0.9.8 (download.php file) File Disclosure Vulnerability
16290| [8647] Battle Blog 1.25 (uploadform.asp) Arbitrary File Upload Vulnerability
16291| [8628] RM Downloader 3.0.0.9 (.RAM) Local Buffer Overflow Exploit
16292| [8594] RM Downloader (.smi File) Universal Local Buffer Overflow Exploit
16293| [8589] RM Downloader (.smi File) Local Stack Overflow Exploit
16294| [8579] BaoFeng ActiveX OnBeforeVideoDownload() Remote BOF Exploit
16295| [8567] Zubrag Smart File Download 1.3 Arbitrary File Download Vulnerability
16296| [8554] Belkin Bulldog Plus HTTP Server Remote Buffer Overflow Exploit
16297| [8540] SDP Downloader 2.3.0 (.ASX) Local Buffer Overflow Exploit (SEH) #2
16298| [8536] SDP Downloader 2.3.0 (.ASX) Local Buffer Overflow Exploit (SEH)
16299| [8534] libvirt_proxy <= 0.5.1 - Local Privilege Escalation Exploit
16300| [8531] SDP Downloader 2.3.0 - (.ASX File) Local Heap Overflow PoC
16301| [8522] Zervit HTTP Server <= 0.3 (sockets++ crash) Remote Denial of Service
16302| [8514] elkagroup Image Gallery 1.0 - Arbitrary File Upload Vulnerability
16303| [8501] CRE Loaded 6.2 (products_id) SQL Injection Vulnerability
16304| [8483] flatnux 2009-03-27 (upload/id) Multiple Vulnerabilities
16305| [8481] Studio Lounge Address Book 2.5 (profile) Shell Upload Vulnerability
16306| [8474] e-cart.biz Shopping Cart Arbitrary File Upload Vulnerability
16307| [8444] Star Downloader Free <= 1.45 (.dat) Universal SEH Overwrite Exploit
16308| [8436] Job2C 4.2 (profile) Remote Shell Upload Vulnerability
16309| [8422] Steamcast (HTTP Request) Remote Buffer Overflow Exploit (SEH) [2]
16310| [8421] Steamcast (HTTP Request) Remote Buffer Overflow Exploit (SEH) [1]
16311| [8411] WM Downloader 3.0.0.9 .m3u Universal Stack Overflow Exploit
16312| [8410] RM Downloader 3.0.0.9 .m3u Universal Stack Overflow Exploit
16313| [8404] RM Downloader (.M3U File) Local Stack Overflow PoC
16314| [8403] WM Downloader (.M3U File) Local Stack Overflow PoC
16315| [8397] FunkyASP AD System 1.1 - Remote Shell Upload Vulnerability
16316| [8362] Lanius CMS <= 0.5.2 - Remote Arbitrary File Upload Exploit
16317| [8349] Family Connections <= 1.8.2 - Remote Shell Upload Exploit
16318| [8346] ActiveKB Knowledgebase (loadpanel.php Panel) Local File Inclusion Vuln
16319| [8313] Check Point Firewall-1 PKI Web Service HTTP Header Remote Overflow
16320| [8310] Sami HTTP Server 2.x (HEAD) Remote Denial of Service Exploit
16321| [8288] WeBid 0.7.3 RC9 (upldgallery.php) Remote File Upload Vulnerability
16322| [8287] PHPizabi 0.848b C1 HFP1-3 - Remote Arbitrary File Upload Exploit
16323| [8277] Free Arcade Script 1.0 Auth Bypass (SQL) / Upload Shell Vulnerabilities
16324| [8257] Orbit Downloader 2.8.7 Arbitrary File Deletion Vulnerability
16325| [8245] SW-HTTPD Server 0.x Remote Denial of Service Exploit
16326| [8219] Mozilla Firefox 3.0.7 OnbeforeUnLoad DesignMode Dereference Crash
16327| [8215] PPLive <= 1.9.21 (/LoadModule) URI Handlers Argument Injection Vuln
16328| [8196] Wordpress MU < 2.7 'HOST' HTTP Header XSS Vulnerability
16329| [8132] Access2asp imageLibrary Arbitrary ASP Shell Upload Vulnerability
16330| [8120] SkyPortal Downloads Manager 1.1 - Remote Contents Change Vuln
16331| [8097] MLdonkey <= 2.9.7 HTTP DOUBLE SLASH Arbitrary File Disclosure Vuln
16332| [8091] Mozilla Firefox 3.0.6 (BODY onload) Remote Crash Exploit
16333| [8070] SAS Hotel Management System Remote Shell Upload Vulnerability
16334| [8060] Falt4 CMS RC4 (fckeditor) Arbitrary File Upload Exploit
16335| [8048] Baran CMS 1.0 Arbitrary ASP File Upload/DB/SQL/XSS/CM Vulns
16336| [8041] GeoVision Digital Video Surveillance System (geohttpserver) DT Vuln
16337| [8039] SkaDate Online 7 Remote Shell Upload Vulnerability
16338| [8021] Squid < 3.1 5 - HTTP Version Number Parsing Denial of Service Exploit
16339| [8006] Traidnt UP 1.0 - Remote File Upload Vulnerability
16340| [7998] WikkiTikkiTavi 1.11 Remote PHP File Upload Vulnerability
16341| [7987] gr blog 1.1.4 (upload/bypass) Multiple Vulnerabilities
16342| [7986] Free Download Manager 2.5/3.0 (Authorization) Stack BOF PoC
16343| [7960] AJA Modules Rapidshare 1.0.0 - Remote Shell Upload Vulnerability
16344| [7957] Free Download Manager <= 3.0 Build 844 .torrent BOF Exploit
16345| [7909] Coppermine Photo Gallery 1.4.19 Remote PHP File Upload Vulnerability
16346| [7884] Flax Article Manager 1.1 - Remote PHP Script Upload Vulnerability
16347| [7866] Simple Machines Forum <= 1.1.7 - CSRF/XSS/Package Upload
16348| [7811] Aj Classifieds - For Sale 3.0 - Remote Shell Upload Vulnerability
16349| [7810] Aj Classifieds - Personals 3.0 - Remote Shell Upload Vulnerability
16350| [7809] Aj Classifieds - Real Estate 3.0 - Remote Shell Upload Vulnerability
16351| [7791] DMXReady Billboard Manager <= 1.1 - Remote File Upload Vulnerability
16352| [7789] DMXReady SDK <= 1.1 - Remote File Download Vulnerability
16353| [7740] PWP Wiki Processor 1-5-1 Remote File Upload Vulnerability
16354| [7739] ExcelOCX ActiveX 3.2 (Download File) Insecure Method Exploit
16355| [7732] Silentum Uploader 1.4.0 - Remote File Deletion Exploit
16356| [7645] Built2Go PHP Rate My Photo 1.46.4 - Remote File Upload Vulnerability
16357| [7644] Built2Go PHP Link Portal 1.95.1 - Remote File Upload Vulnerability
16358| [7638] Memberkit 1.0 - Remote PHP File Upload Vulnerability
16359| [7630] Megacubo 5.0.7 (mega://) Remote File Download and Execute Exploit
16360| [7620] ThePortal 2.2 Arbitrary Remote File Upload Exploit
16361| [7608] IntelliTamper 2.07/2.08 (ProxyLogin) Local Stack Overflow Exploit
16362| [7600] Flexphplink Pro Arbitrary File Upload Exploit
16363| [7569] doop cms <= 1.4.0b (csrf/upload shell) Multiple Vulnerabilities
16364| [7563] phpEmployment (php upload) Arbitrary File Upload Vulnerability
16365| [7562] phpAdBoard (php uploads) Arbitrary File Upload Vulnerability
16366| [7561] phpGreetCards XSS/Arbitrary File Upload Vulnerability
16367| [7544] Pligg 9.9.5b (check_url.php url) Upload Shell/SQL Injection Exploit
16368| [7537] BLOG 1.55B (image_upload.php) Arbitrary File Upload Vulnerability
16369| [7535] Linksys Wireless ADSL Router (WAG54G V.2) httpd DoS Exploit
16370| [7531] ReVou Twitter Clone Arbitrary File Upload Vulnerability
16371| [7528] OneOrZero helpdesk 1.6.x. - Remote Shell Upload Exploit
16372| [7525] Extract Website (download.php filename) File Disclosure Vulnerability
16373| [7524] Online Keyword Research Tool (download.php) File Disclosure Vuln
16374| [7509] Mini File Host 1.x Arbitrary PHP File Upload Vulnerability
16375| [7500] K&S Shopsysteme Arbitrary Remote File Upload Vulnerability
16376| [7487] FaScript FaUpload (download.php) SQL Injection Vulnerability
16377| [7457] Availscript Classmate Script Remote File Upload Vulnerability
16378| [7456] Availscript Article Script Remote File Upload Vulnerability
16379| [7455] The Rat Cms Alpha 2 (download.php) Remote Vulnerability
16380| [7441] joomla live chat (sql/proxy) Multiple Vulnerabilities
16381| [7435] Social Groupie (create_album.php) Remote File Upload Vulnerability
16382| [7426] PHP Support Tickets 2.2 - Remote File Upload Vulnerability
16383| [7390] Professional Download Assistant 0.1 (Auth Bypass) SQL Injection Vuln
16384| [7385] vBulletin Secure Downloads 2.0.0r - SQL Injection Vulnerability
16385| [7383] Simple Directory Listing 2 Cross Site File Upload Vulnerability
16386| [7371] Professional Download Assistant 0.1 Database Disclosure Vulnerability
16387| [7369] w3blabor CMS 3.0.5 - Arbitrary File Upload & LFI Exploit
16388| [7354] Tizag Countdown Creator .v.3 Insecure Upload Vulnerability
16389| [7312] Andy's PHP Knowledgebase 0.92.9 - Arbitrary File Upload Vulnerability
16390| [7251] Star Articles 6.0 - Remote File Upload Vulnerability
16391| [7233] LoveCMS 1.6.2 Final (Download Manager 1.0) File Upload Exploit
16392| [7197] Goople Cms 1.7 - Remote File Upload Vulnerability
16393| [7189] getaphpsite Auto Dealers Remote File Upload Vulnerability
16394| [7188] getaphpsite Real Estate Remote File Upload Vulnerability
16395| [7165] wPortfolio <= 0.3 - Remote Arbitrary File Upload Exploit
16396| [7162] MauryCMS <= 0.53.2 - Remote Shell Upload Exploit
16397| [7158] Alex Article-Engine 1.3.0 (fckeditor) Arbitrary File Upload Vulnerability
16398| [7157] Alex News-Engine 1.5.1 - Remote Arbitrary File Upload Vulnerability
16399| [7136] mxCamArchive 2.2 Bypass Config Download Vulnerability
16400| [7112] ScriptsFeed (SF) Recipes Listing Portal Remote File Upload Vulnerability
16401| [7111] ScriptsFeed (SF) Auto Classifieds Software Remote File Upload Vuln
16402| [7110] ScriptsFeed (SF) Real Estate Classifieds Software File Upload Vuln
16403| [7101] AlstraSoft SendIt Pro Remote File Upload Vulnerability
16404| [7094] Pre Real Estate Listings File Upload Vulnerability
16405| [7085] PHPStore Real Estate Remote File Upload Vulnerability
16406| [7084] PHPStore Complete Classifieds Script File Upload Vulnerability
16407| [7083] PHPStore PHP Job Search Script Remote File Upload Vulnerability
16408| [7082] PHPStore Car Dealers Remote File Upload Vulnerability
16409| [7076] Collabtive 0.4.8 (XSS/Auth Bypass/Upload) Multiple Vulnerabilities
16410| [7062] ZEEJOBSITE 2.0 - Remote File Upload Vulnerability
16411| [7058] zeeproperty 1.0 (upload/xss) Multiple Vulnerabilities
16412| [7055] SpeedStream 5200 Authentication Bypass Config Download Vulnerability
16413| [6868] Mambo Component SimpleBoard <= 1.0.1 - Arbitrary File Upload Exploit
16414| [6867] Wordpress Plugin e-Commerce <= 3.4 - Arbitrary File Upload Exploit
16415| [6866] 7Shop <= 1.1 - Remote Arbitrary File Upload Exploit
16416| [6865] e107 plugin fm pro 1- (fd/upload/dt) Multiple Vulnerabilities
16417| [6859] Agares ThemeSiteScript 1.0 (loadadminpage) RFI Vulnerability
16418| [6835] BuzzyWall 1.3.1 (download id) Remote File Disclosure Vulnerability
16419| [6830] NEPT Image Uploader 1.0 Arbitrary Shell Upload Vulnerability
16420| [6803] Iamma Simple Gallery 1.0/2.0 - Arbitrary File Upload Vulnerability
16421| [6784] PHP Easy Downloader <= 1.5 - Remote File Creation Exploit
16422| [6783] Nuke ET <= 3.4 (fckeditor) Remote Arbitrary File Upload Exploit
16423| [6770] PHP Easy Downloader 1.5 (file) File Disclosure Vulnerability
16424| [6740] My PHP Indexer 1.0 (index.php) Local File Download Vulnerability
16425| [6718] Konqueror 3.5.9 (load) Remote Crash Vulnerability
16426| [6715] ScriptsEz Easy Image Downloader Local File Download Vulnerability
16427| [6699] Microsoft PicturePusher ActiveX Cross Site File Upload Attack PoC
16428| [6680] FOSS Gallery Public <= 1.0 - Arbitrary File Upload Vulnerabilities
16429| [6674] FOSS Gallery Public <= 1.0 Arbitrary Upload / Information c99 Expoit
16430| [6670] FOSS Gallery Admin <= 1.0 - Remote Arbitrary Upload Exploit
16431| [6664] Kwalbum <= 2.0.2 Arbitary File Upload Vulnerability
16432| [6633] eFront <= 3.5.1 / build 2710 Remote Arbitrary Upload Vulnerability
16433| [6596] E-Uploader Pro <= 1.0 - Multiple Remote SQL Injection Vulnerabilities
16434| [6594] Camera Life 2.6.2b4 Arbitrary File Upload Vulnerability
16435| [6573] LanSuite 3.3.2 (fckeditor) Arbitrary File Upload Exploit
16436| [6541] Galmeta Post CMS <= 0.2 - Remote Code Execution / Arbitrary File Upload
16437| [6519] PHP iCalendar <= 2.24 (cookie_language) LFI / File Upload Exploit
16438| [6514] Availscript Jobs Portal Script File Upload Vulnerability (auth)
16439| [6493] fhttpd 0.4.2 un64() - Remote Denial of Service Exploit
16440| [6477] Cisco Router HTTP Administration CSRF Command Execution Exploit 2
16441| [6476] Cisco Router HTTP Administration CSRF Command Execution Exploit
16442| [6448] WebPortal CMS <= 0.7.4 (fckeditor) Arbitrary File Upload Vulnerability
16443| [6443] WebPortal CMS <= 0.7.4 (download.php aid) SQL Injection Exploit
16444| [6439] Sports Clubs Web Panel 0.0.1 - Remote File Upload Vulnerability
16445| [6419] Zanfi CMS lite / Jaw Portal free (fckeditor) Arbitrary File Upload Vuln
16446| [6410] Kim Websites 1.0 (fckeditor) Remote Arbitrary File Upload Vulnerability
16447| [6394] Samsung DVR SHR2040 HTTPD Remote Denial of Service DoS PoC
16448| [6390] IntegraMOD 1.4.x (Insecure Directory) Download Database Vulnerability
16449| [6360] TransLucid 1.75 (fckeditor) Remote Arbitrary File Upload Vulnerability
16450| [6357] aspwebalbum 3.2 (upload/sql/xss) Multiple Vulnerabilities
16451| [6355] Google Chrome Browser 0.2.149.27 Automatic File Download Exploit
16452| [6344] WeBid 0.5.4 (fckeditor) Remote Arbitrary File Upload Exploit
16453| [6310] Kolifa.net Download Script 1.2 (id) SQL Injection Vulnerability
16454| [6306] GeekLog <= 1.5.0 - Remote Arbitrary File Upload Exploit
16455| [6286] BandSite CMS 1.1.4 (Download Backup/XSS/CSRF) Remote Vulnerabilities
16456| [6259] VidiScript (Avatar) Remote Arbitrary File Upload Vulnerability
16457| [6231] Ppim <= 1.0 (upload/change password) Multiple Vulnerabilities
16458| [6227] IntelliTamper 2.07 HTTP Header Remote Code Execution Exploit
16459| [6216] Download Accelerator Plus - DAP 8.6 (AniGIF.ocx) Buffer Overflow PoC
16460| [6194] moziloCMS 1.10.1 (download.php) Arbitrary Download File Exploit
16461| [6191] e-vision cms <= 2.02 (sql/upload/ig) Multiple Vulnerabilities
16462| [6151] velocity web-server 1.0 - Directory Traversal file download vulnerability
16463| [6127] Wordpress Plugin Download Manager 0.2 - Arbitrary File Upload Exploit
16464| [6126] ibase <= 2.03 (download.php) Remote File Disclosure Vulnerability
16465| [6082] PhotoPost vBGallery 2.4.2 - Arbitrary File Upload Vulnerability
16466| [6065] Maian Uploader <= 4.0 Insecure Cookie Handling Vulnerability
16467| [6039] Download Accelerator Plus - DAP 8.x m3u File Buffer Overflow Exploit (c)
16468| [6030] Download Accelerator Plus - DAP 8.x (m3u) Local BOF Exploit 0day
16469| [6015] WebXell Editor 0.1.3 - Arbitrary File Upload Vulnerability
16470| [6011] contentnow 1.4.1 (upload/xss) Multiple Vulnerabilities
16471| [6008] ImperialBB <= 2.3.5 - Remote File Upload Exploit
16472| [6005] Site@School <= 2.4.10 (fckeditor) Session Hijacking / File Upload Exploit
16473| [5973] Pivot 1.40.5 Dreamwind load_template() Credentials Disclosure Exploit
16474| [5945] Seagull PHP Framework <= 0.6.4 (fckeditor) Arbitrary File Upload Exploit
16475| [5938] PHPmotion <= 2.0 (update_profile.php) Remote Shell Upload Exploit
16476| [5936] Page Manager CMS Remote Arbitrary File Upload Vulnerability
16477| [5923] Demo4 CMS 1b (fckeditor) Arbitrary File Upload Exploit
16478| [5922] cmsWorks 2.2 RC4 (fckeditor) Remote Arbitrary File Upload Exploit
16479| [5918] uTorrent / BitTorrent WebIU HTTP 1.7.7/6.0.1 Range header DoS Exploit
16480| [5907] emuCMS 0.3 (fckeditor) Arbitrary File Upload Exploit
16481| [5887] LE.CMS <= 1.4 - Remote Arbitrary File Upload Exploit
16482| [5886] LaserNet CMS <= 1.5 - Arbitrary File Upload Exploit
16483| [5880] sitexs cms 0.1.1 (upload/xss) Multiple Vulnerabilities
16484| [5850] AspWebCalendar 2008 Remote File Upload Vulnerability
16485| [5844] FreeCMS.us 0.2 (fckeditor) Arbitrary File Upload Exploit
16486| [5780] ASP Download 1.03 Arbitrary Change Administrator Account Vulnerability
16487| [5770] Achievo <= 1.3.2 (fckeditor) Arbitrary File Upload Exploit
16488| [5767] Flux CMS <= 1.5.0 (loadsave.php) Remote Arbitrary File Overwrite Exploit
16489| [5756] XOOPS Module Uploader 1.1 (filename) File Disclosure Vulnerability
16490| [5741] Akamai Download Manager < 2.2.3.7 ActiveX Remote Download Exploit
16491| [5737] Joomla Component jotloader <= 1.2.1.a Blind SQL injection Exploit
16492| [5732] C6 Messenger ActiveX Remote Download & Execute Exploit
16493| [5728] FlashBlog 0.31b Remote Arbitrary File Upload Vulnerability
16494| [5716] mebiblio 0.4.7 (sql/upload/xss) Multiple Vulnerabilities
16495| [5700] CMSimple 3.1 - Local File Inclusion / Arbitrary File Upload Exploit
16496| [5697] PHP Booking Calendar 10 d (fckeditor) Arbitrary File Upload Exploit
16497| [5694] ASUS DPC Proxy 2.0.0.16/19 Remote Buffer Overflow Exploit
16498| [5691] CMS from Scratch <= 1.1.3 (fckeditor) Remote Shell Upload Exploit
16499| [5688] SyntaxCMS <= 1.3 (fckeditor) Arbitrary File Upload Exploit
16500| [5636] Zomplog <= 3.8.2 (force_download.php) File Disclosure Vulnerability
16501| [5618] La-Nai CMS <= 1.2.16 (fckeditor) Arbitrary File Upload Exploit
16502| [5600] CMS Made Simple <= 1.2.4 (FileManager module) File Upload Exploit
16503| [5547] Novell eDirectory < 8.7.3 SP 10 / 8.8.2 - HTTP headers DoS Vulnerability
16504| [5519] VLC 0.8.6d - httpd_FileCallBack Remote Format String Exploit
16505| [5465] 2532/Gigs <= 1.2.2 - Arbitrary Database Backup/Download Vulnerability
16506| [5449] KwsPHP (Upload) Remote Code Execution Exploit
16507| [5404] phpTournois <= G4 Remote File Upload/Code Execution Exploit
16508| [5397] CDNetworks Nefficient Download (NeffyLauncher.dll) Code Execution Vuln
16509| [5381] Blog PixelMotion (modif_config.php) Remote File Upload Vulnerability
16510| [5344] Novel eDirectory HTTP Denial of Service Exploit
16511| [5338] ChilkatHttp ActiveX 2.3 Arbitrary Files Overwrite Exploit
16512| [5326] Wordpress Plugin Download (dl_id) SQL Injection Vulnerability
16513| [5308] e107 Plugin My_Gallery 2.3 Arbitrary File Download Vulnerability
16514| [5281] PEEL CMS Admin Hash Extraction and Remote Upload Exploit
16515| [5220] zKup CMS 2.0 <= 2.3 - Remote Upload Exploit
16516| [5218] XOOPS Module wfdownloads (cid) Remote SQL Injection Vulnerability
16517| [5215] Ruby 1.8.6 (Webrick Httpd 1.3.1) Directory Traversal Vulnerability
16518| [5183] php Download Manager <= 1.1 - Local File Inclusion Vulnerability
16519| [5137] XPWeb 3.3.2 (Download.php url) Remote File Disclosure Vulnerability
16520| [5136] PHPizabi 0.848b C1 HFP1 Remote File Upload Vulnerability
16521| [5129] TRUC 0.11.0 (download.php) Remote File Disclosure Vulnerability
16522| [5111] IBM Domino Web Access Upload Module - SEH Overwrite Exploit
16523| [5102] FaceBook PhotoUploader <= 5.0.14.0 - Remote Buffer Overflow Exploit
16524| [5100] ImageStation (SonyISUpload.cab 1.0.0.38) ActiveX BOF Exploit
16525| [5086] ImageStation (SonyISUpload.cab 1.0.0.38) ActiveX Buffer Overflow PoC
16526| [5078] Backup Exec System Recovery Manager <= 7.0.1 File Upload Exploit
16527| [5074] Mihalism Multi Host Download (Username) Blind SQL Injection Exploit
16528| [5073] Mambo Component com_downloads Remote SQL Injection Vulnerability
16529| [5049] FaceBook PhotoUploader (ImageUploader4.ocx 4.5.57.0) BOF Exploit
16530| [5033] LightBlog 9.5 cp_upload_image.php Remote File Upload Vulnerability
16531| [5025] MySpace Uploader (MySpaceUploader.ocx 1.0.0.4) BOF Exploit
16532| [4987] Persits XUpload 3.0 AddFile() Remote Buffer Overflow Exploit
16533| [4981] ImageShack Toolbar 4.5.7 FileUploader Class InsecureMethod PoC
16534| [4967] Lycos FileUploader Control ActiveX Remote Buffer Overflow Exploit
16535| [4954] IDM-OS 1.0 (download.php fileName) File Disclosure Vulnerability
16536| [4941] Belkin Wireless G Plus MIMO Router F5D9230-4 Auth Bypass Vulnerability
16537| [4940] Mini File Host 1.2.1 (upload.php language) Local File Inclusion Exploit
16538| [4930] Mini File Host 1.2 (upload.php language) LFI Vulnerability
16539| [4913] Macrovision FlexNet isusweb.dll DownloadAndExecute Method Exploit
16540| [4909] Macrovision FlexNet DownloadManager Insecure Methods Exploit
16541| [4894] StreamAudio ChainCast ProxyManager ccpm_0237.dll BoF Exploit
16542| [4871] UploadImage/UploadScript 1.0 - Remote Change Admin Password Exploit
16543| [4864] Zero CMS 1.0 Alpha Arbitrary File Upload / SQL Injection Vulnerabilities
16544| [4859] EkinBoard <= 1.1.0 - Remote File Upload / Auth Bypass Vulnerabilities
16545| [4857] OneCMS 2.4 - Remote SQL Injection / Upload Vulnerabilities
16546| [4844] Wordpress Plugin Wp-FileManager 1.2 - Remote Upload Vulnerability
16547| [4828] AGENCY4NET WEBFTP 1 download2.php File Disclosure Vulnerability
16548| [4820] IBM Domino Web Access Upload Module dwa7w.dll BoF Exploit
16549| [4818] IBM Domino Web Access Upload Module inotes6.dll BoF Exploit
16550| [4814] Bitweaver R2 CMS Remote File Upload / Disclosure Vulnerabilities
16551| [4812] Mihalism Multi Host 2.0.7 download.php Remote File Disclosure Vuln
16552| [4806] Persits Software XUpload Control AddFolder() Buffer Overflow Exploit
16553| [4780] ThemeSiteScript 1.0 (index.php loadadminpage) RFI Vulnerability
16554| [4764] Arcadem LE 2.04 (loadadminpage) Remote File Inclusion Vulnerability
16555| [4754] 3proxy 0.5.3g logurl() Remote Buffer Overflow Exploit (win32) (pl)
16556| [4753] Dokeos 1.8.4 Bypass Upload Shell From Your Profile Vulnerability
16557| [4747] RaidenHTTPD 2.0.19 (ulang) Remote Command Execution Exploit
16558| [4741] MySpace Content Zone 3.x Remote File Upload Vulnerability
16559| [4734] Anon Proxy Server 0.1000 Remote Command Execution Vulnerability
16560| [4729] xml2owl 0.1.1 (filedownload.php) Remote File Disclosure Vulnerability
16561| [4717] Simple HTTPD <= 1.41 (/aux) Remote Denial of Service Exploit
16562| [4714] MonAlbum 0.87 Upload Shell / Password Grabber Exploit
16563| [4704] PolDoc CMS 0.96 (download_file.php) File Disclosure Vulnerability
16564| [4700] simple httpd <= 1.38 Multiple Vulnerabilities
16565| [4666] Eurologon CMS files.php Arbitrary File Download Vulnerability
16566| [4592] ISPworker 1.21 download.php Remote File Disclosure Vulnerability
16567| [4586] ProfileCMS 1.0 - Remote File Upload Vulnerability Shell Upload Exploit
16568| [4542] Boa 0.93.15 HTTP Basic Authentication Bypass Exploit
16569| [4521] Joomla Flash uploader 2.5.1 - Remote File Inclusion Vulnerabilities
16570| [4474] EDraw Office Viewer Component 5.3 FtpDownloadFile() Remote BoF
16571| [4466] Zomplog <= 3.8.1 upload_files.php Arbitrary File Upload Exploit
16572| [4437] Lighttpd <= 1.4.17 FastCGI Header Overflow Remote Exploit
16573| [4428] Yahoo! Messenger 8.1.0.421 CYFT Object Arbitrary File Download
16574| [4427] jetAudio 7.x ActiveX DownloadFromMusicStore() Code Execution Exploit
16575| [4426] Airsensor M520 HTTPD Remote Preauth DoS / BOF PoC
16576| [4411] Chupix CMS 0.2.3 (download.php) Remote File Disclosure Vulnerability
16577| [4391] Lighttpd <= 1.4.16 FastCGI Header Overflow Remote Exploit
16578| [4386] Sisfo Kampus 2006 (dwoprn.php f) Remote File Download Vulnerability
16579| [4383] Joomla Component Restaurante Remote File Upload Vulnerability
16580| [4371] RW::Download 2.0.3 lite (index.php dlid) Remote SQL Injection Vuln
16581| [4360] CCProxy <= 6.2 - Telnet Proxy Ping Overflow Exploit (meta)
16582| [4343] Ourspace 2.0.9 (uploadmedia.cgi) Remote File Upload Vulnerability
16583| [4341] Pakupaku CMS <= 0.4 - Remote File Upload / LFI Vulnerability
16584| [4307] Joomla Component RSfiles <= 1.0.2 (path) File Download Vulnerability
16585| [4243] corehttp 0.5.3alpha (httpd) Remote Buffer Overflow Exploit
16586| [4235] Seditio CMS <= 121 - (pfs.php) Remote File Upload Vulnerability
16587| [4232] IBM AIX <= 5.3 sp6 pioout Arbitrary Library Loading Local Root Exploit
16588| [4227] PHP php_gd2.dll imagepsloadfont Local Buffer Overflow PoC
16589| [4226] Clever Internet ActiveX Suite 6.2 Arbitrary File Download/Overwrite
16590| [4194] Joomla Component Expose <= RC35 Remote File Upload Vulnerability
16591| [4113] WordPress 2.2 (wp-app.php) Arbitrary File Upload Exploit
16592| [4106] DreamLog 0.5 (upload.php) Arbitrary File Upload Exploit
16593| [4099] e107 <= 0.7.8 - (photograph) Arbitrary File Upload Vulnerability
16594| [4089] SerWeb 0.9.4 (load_lang.php) Remote File Inclusion Exploit
16595| [4057] GeometriX Download Portal (down_indir.asp id) SQL Injection Vuln
16596| [4056] Internet Download Accelerator 5.2 - Remote Buffer Overflow PoC
16597| [4053] Yahoo! Messenger Webcam 8.1 (Ywcupl.dll) Download / Execute Exploit
16598| [4052] Yahoo! Messenger Webcam 8.1 (Ywcvwr.dll) Download / Execute Exploit
16599| [4046] MiniWeb Http Server 0.8.x Remote Denial of Service Exploit
16600| [4008] Zenturi ProgramChecker ActiveX File Download/Overwrite Exploit
16601| [3993] IE 6 / Ademco, co., ltd. ATNBaseLoader100 Module Remote BoF Exploit
16602| [3985] Mac OS X <= 10.4.8 pppd Plugin Loading Privilege Escalation Exploit
16603| [3922] webdesproxy 0.0.1 (GET Request) Remote Root Exploit (exec-shield)
16604| [3918] phpAtm 1.30 (downloadfile) Remote File Disclosure Vulnerability
16605| [3913] webdesproxy 0.0.1 (GET Request) Remote Buffer Overflow Exploit
16606| [3908] YAAP <= 1.5 __autoload() Remote File Inclusion Vulnerability
16607| [3888] Gimp 2.2.14 .RAS File Download/Execute Buffer Overflow Exploit (win32)
16608| [3832] 1024 CMS 0.7 (download.php item) Remote File Disclosure Vulnerability
16609| [3831] PStruh-CZ 1.3/1.5 (download.asp File) File Disclosure Vulnerability
16610| [3829] 3proxy 0.5.3g proxy.c logurl() Remote Overflow Exploit (exec-shield)
16611| [3822] 3proxy 0.5.3g proxy.c logurl() Remote Buffer Overflow Exploit (win32)
16612| [3821] 3proxy 0.5.3g proxy.c logurl() Remote Buffer Overflow Exploit (linux)
16613| [3800] Ext 1.0 (feed-proxy.php feed) Remote File Disclosure Vulnerability
16614| [3796] wavewoo 0.1.1 (loading.php path_include) Remote File Inclusion Exploit
16615| [3764] Zomplog 3.8 (force_download.php file) Remote File Disclosure Vuln
16616| [3715] Sami HTTP Server 2.0.1 POST Request Denial of Service Exploit
16617| [3677] cattaDoc 2.21 (download2.php fn1) Remote File Disclosure Vulnerability
16618| [3676] Beryo 2.0 (downloadpic.php chemin) Remote File Disclosure Vulnerability
16619| [3674] Wserve HTTP Server 4.6 (Long Directory Name) Denial of Service Exploit
16620| [3666] XOOPS Module Rha7 Downloads 1.0 (visit.php) SQL Injection Exploit
16621| [3615] dproxy-nexgen Remote Root Buffer Overflow Exploit (x86-lnx)
16622| [3554] dproxy <= 0.5 - Remote Buffer Overflow Exploit (meta 2.7)
16623| [3516] MetaForum <= 0.513 Beta Remote File Upload Exploit
16624| [3494] McGallery 0.5b (download.php) Arbitrary File Download Vulnerability
16625| [3458] AssetMan <= 2.4a (download_pdf.php) Remote File Disclosure Vuln
16626| [3435] netForo! 0.1 (down.php file_to_download) Remote File Disclosure Vuln
16627| [3381] NetProxy <= 4.03 Web Filter Evasion / Bypass Logging Exploit
16628| [3379] STWC-Counter <= 3.4.0 (downloadcounter.php) RFI Exploit
16629| [3346] PHP-Nuke <= 8.0 Final (HTTP Referers) Remote SQL Injection Exploit
16630| [3318] Aktueldownload Haber scripti (id) Remote SQL Injection Vulnerability
16631| [3311] Jupiter CMS 1.1.5 - Remote File Upload Exploit
16632| [3249] WebBuilder 2.0 (StageLoader.php) Remote File Include Vulnerability
16633| [3203] FdScript <= 1.3.2 (download.php) Remote File Disclosure Vulnerability
16634| [3200] Apple CFNetwork HTTP Response Denial of Service Exploit (rb code)
16635| [3182] Sami HTTP Server 2.0.1 (HTTP 404 - Object not found) DoS Exploit
16636| [3174] Upload Service 1.0 (top.php maindir) Remote File Inclusion Vulnerability
16637| [3148] MS Internet Explorer VML Download and Execute Exploit (MS07-004)
16638| [3125] JV2 Folder Gallery 3.0 0 - (download.php) Remote File Disclosure Exploit
16639| [3078] Acunetix WVS <= 4.0 20060717 HTTP Sniffer Component Remote DoS
16640| [3058] Rediff Bol Downloader (ActiveX Control) Execute Local File Exploit
16641| [3049] IMGallery <= 2.5 Create Uploader Script Exploit
16642| [3020] PHP-Update <= 2.7 (admin/uploads.php) Remote Code Execution Exploit
16643| [3014] logahead UNU edition 1.0 - Remote Upload File / Code Execution Vuln
16644| [3000] Pagetool CMS <= 1.07 (pt_upload.php) Remote File Include Vulnerability
16645| [2997] File Upload Manager <= 1.0.6 (detail.asp) Remote SQL Injection Exploit
16646| [2974] Http explorer Web Server 1.02 Directory Transversal Vulnerability
16647| [2971] PgmReloaded <= 0.8.5 - Multiple Remote File Include Vulnerabilities
16648| [2962] Burak Yilmaz Download Portal (down.asp) SQL Injection Vulnerability
16649| [2945] Uploader & Downloader 3.0 (id_user) Remote SQL Injection Vulnerability
16650| [2936] GNU InetUtils ftpd 1.4.2 (ld.so.preload) Remote Root Exploit
16651| [2929] MS Internet Explorer 7 (DLL-load hijacking) Code Execution Exploit PoC
16652| [2902] TorrentFlux 2.2 (downloaddetails.php) Local File Disclosure Exploit
16653| [2886] PHP Upload Center 2.0 (activate.php) File Include Vulnerabilities
16654| [2876] deV!Lz Clanportal [DZCP] <= 1.3.6 - Arbitrary File Upload Vulnerability
16655| [2847] Sisfo Kampus <= 0.8 - Remote File Inclusion / Download Vulnerabilities
16656| [2812] PHP Easy Downloader <= 1.5 (save.php) Remote Code Execution Exploit
16657| [2776] contentnow 1.30 (upload/xss) Multiple Vulnerabilities
16658| [2768] contentnow 1.30 (local/upload/delete) Multiple Vulnerabilities
16659| [2651] MiniHttpServer Web Forum & File Sharing Server 4.0 Add User Exploit
16660| [2637] AEP SmartGate 4.3b (GET) Arbitrary File Download Exploit
16661| [2598] PH Pexplorer <= 0.24 (explorer_load_lang.php) Local Include Exploit
16662| [2569] Solaris 10 libnspr - LD_PRELOAD Arbitrary File Creation Local Root Exploit
16663| [2556] E-Uploader Pro <= 1.0 Image Upload with Code Execution Vulnerability
16664| [2521] Download-Engine <= 1.4.2 (spaw) Remote File Include Vulnerability
16665| [2482] SHTTPD 1.34 (POST) Remote Buffer Overflow Exploit
16666| [2374] Site@School <= 2.4.02 Advisory / Remote File Upload Exploit
16667| [2352] webSPELL <= 4.01.01 Database Backup Download Vulnerability
16668| [2328] RaidenHTTPD 1.1.49 (SoftParserFileXml) Remote Code Execution Exploit
16669| [2310] PhpCommander <= 3.0 (upload) Remote Code Execution Exploit
16670| [2277] Streamripper <= 1.61.25 HTTP Header Parsing Buffer Overflow Exploit 2
16671| [2274] Streamripper <= 1.61.25 HTTP Header Parsing Buffer Overflow Exploit
16672| [2122] ME Download System <= 1.3 (header.php) Remote Inclusion Vulnerability
16673| [2073] libmikmod <= 3.2.2 (GT2 loader) Local Heap Overflow PoC
16674| [2035] toendaCMS <= 1.0.0 (FCKeditor) Remote File Upload Exploit
16675| [1980] ImgSvr <= 0.6.5 (long http post) Denial of Service Exploit
16676| [1852] gxine 0.5.6 (HTTP Plugin) Remote Buffer Overflow PoC
16677| [1746] zawhttpd <= 0.8.23 (GET) Remote Buffer Overflow DoS
16678| [1671] panic-reloaded TCP Denial of Service Tool
16679| [1656] Sire 2.0 (lire.php) Remote File Inclusion/Arbitary File Upload Vulnerability
16680| [1631] ReloadCMS <= 1.2.5 Cross Site Scripting / Remote Code Execution Exploit
16681| [1628] MS Internet Explorer (createTextRang) Download Shellcoded Exploit (2)
16682| [1607] MS Internet Explorer (createTextRang) Download Shellcoded Exploit
16683| [1605] XHP CMS <= 0.5 (upload) Remote Command Execution Exploit
16684| [1597] ASPPortal <= 3.1.1 (downloadid) Remote SQL Injection Exploit
16685| [1556] D2-Shoutbox 4.2 IPB Mod (load) Remote SQL Injection Exploit
16686| [1484] FCKEditor 2.0 <= 2.2 (connector.php) - Remote Shell Upload Exploit
16687| [1446] creLoaded <= 6.15 (HTMLAREA) Automated Perl Exploit
16688| [1420] MS Windows Metafile (WMF) Remote File Download Exploit Generator
16689| [1409] BlueCoat WinProxy <= 6.0 R1c (GET Request) Denial of Service Exploit
16690| [1408] BlueCoat WinProxy 6.0 R1c (Host) Remote Stack/SEH Overflow Exploit
16691| [1396] MS Windows IIS Malformed HTTP Request Denial of Service Exploit (cpp)
16692| [1377] MS Windows IIS Malformed HTTP Request Denial of Service Exploit (pl)
16693| [1376] MS Windows IIS Malformed HTTP Request Denial of Service Exploit (c)
16694| [1365] Oracle 9.2.0.1 Universal XDB HTTP Pass Overflow Exploit
16695| [1356] DoceboLMS <= 2.0.4 connector.php Shell Upload Exploit
16696| [1340] eFiction <= 2.0 Fake GIF Shell Upload Exploit
16697| [1333] Google Search Appliance proxystylesheet XSLT Java Code Execution
16698| [1315] XOOPS (wfdownloads) 2.05 Module Multiple Vulnerabilities Exploit
16699| [1277] Mirabilis ICQ 2003a Buffer Overflow Download Shellcoded Exploit
16700| [1274] Hasbani-WindWeb/2.0 - HTTP GET Remote DoS
16701| [1174] ZipTorrent <= 1.3.7.3 - Local Proxy Password Disclosure Exploit
16702| [1137] Acunetix HTTP Sniffer Denial of Service Exploit
16703| [1108] Small HTTP Server <= 3.05.28 Arbitrary Data Execution Exploit
16704| [1091] Internet Download Manager <= 4.05 Input URL Stack Overflow Exploit
16705| [1068] PHP-Fusion <= 6.00.105 Accessible Database Backups Download Exploit
16706| [1056] Apache <= 2.0.49 Arbitrary Long HTTP Headers Denial of Service
16707| [970] Snmppd SNMP Proxy Daemon Remote Format String Exploit
16708| [964] FilePocket 1.2 - Local Proxy Password Disclosure Exploit
16709| [952] MailEnable Enterprise & Professional https Remote BoF Exploit
16710| [940] Sumus 0.2.2 httpd Remote Buffer Overflow Exploit
16711| [937] BitComet 0.57 Local Proxy Password Disclosure Exploit
16712| [919] FireFly 1.0 - Local Proxy Password Disclosure Exploit
16713| [907] phpBB <= 2.0.13 'downloads.php' mod Remote Exploit
16714| [870] Download Center Lite (DCL) <= 1.5 - Remote File Inclusion
16715| [855] Apache <= 2.0.52 HTTP GET request Denial of Service Exploit
16716| [802] MSN Messenger PNG Image Buffer Overflow Download Shellcoded Exploit
16717| [771] MS Internet Explorer .ANI files handling Downloader Exploit (MS05-002)
16718| [759] Apple iTunes Playlist Buffer Overflow Download Shellcoded Exploit
16719| [702] phpBB highlight Arbitrary File Upload (Santy.A)
16720| [687] OpenText FirstClass 8.0 HTTP Daemon /Search Remote DoS
16721| [667] Jana Server <= 2.4.4 (http/pna) Denial of Service Exploit
16722| [659] EZshopper Directory Transversal in loadpage.cgi
16723| [641] MS Internet Explorer 6.0 SP2 File Download Security Warning Bypass
16724| [621] CCProxy 6.2 (ping) Remote Buffer Overflow Exploit
16725| [619] CCProxy Log Remote Stack Overflow Exploit
16726| [570] WordPress Blog HTTP Splitting Vulnerability
16727| [556] MS Windows JPEG GDI+ All-In-One Bind/Reverse/Admin/FileDownload
16728| [478] MS Windows JPEG GDI+ Overflow Download Shellcode Exploit (MS04-028)
16729| [371] Apache HTTPd Arbitrary Long HTTP Headers DoS (c version)
16730| [360] Apache HTTPd Arbitrary Long HTTP Headers DoS
16731| [358] Lexmark Multiple HTTP Servers Denial of Service Vulnerability
16732| [290] GLIBC 2.1.3 ld_preload Local Exploit
16733| [228] Oops! 1.4.6 (one russi4n proxy-server) Heap Buffer Overflow Exploit
16734| [171] tcpdump ISAKMP Identification payload Integer Overflow Exploit
16735| [156] PSOProxy 0.91 Remote Buffer Overflow Exploit (Win2k/XP)
16736| [155] GateKeeper Pro 4.7 web proxy Remote Buffer Overflow Exploit
16737| [77] Cisco IOS 12.x/11.x HTTP Remote Integer Overflow Exploit
16738| [12] Linux Kernel < 2.4.20 Module Loader Local Root Exploit
16739| [9] Apache HTTP Server 2.x Memory Leak Exploit
16740|
16741| OpenVAS (Nessus) - http://www.openvas.org:
16742| [902825] at32 Reverse Proxy Multiple HTTP Header Fields Denial Of Service Vulnerability
16743| [900325] Qbik WinGate HTTP Proxy Server Access Controls Bypass Vulnerability
16744| [900222] IBM HTTP Server mod_proxy Interim Responses DoS Vulnerability
16745| [801834] SDP Downloader HTTP Header Handling Buffer Overflow Vulnerability
16746| [800827] Apache 'mod_proxy_http.c' Denial Of Service Vulnerability
16747| [800552] Versalsoft HTTP Image Uploader ActiveX Vulnerability
16748| [103293] Apache HTTP Server 'mod_proxy' Reverse Proxy Information Disclosure Vulnerability
16749| [100858] Apache 'mod_proxy_http' 2.2.9 for Unix Timeout Handling Information Disclosure Vulnerability
16750| [100083] HTTP Proxy Server Detection
16751| [100057] MLdonkey HTTP Request Arbitrary File Download Vulnerability
16752| [11715] Header overflow against HTTP proxy
16753| [903012] ALFTP Insecure Executable File Loading Vulnerability
16754| [902830] Apache HTTP Server 'httpOnly' Cookie Information Disclosure Vulnerability
16755| [902820] Tiny Server HTTP HEAD Request Remote Denial of Service Vulnerability
16756| [902664] Apache Traffic Server HTTP Host Header Denial of Service Vulnerability
16757| [902579] APC PowerChute Network Shutdown HTTP Response Splitting Vulnerability
16758| [902526] Oracle HTTP Server 'Expect' Header Cross-Site Scripting Vulnerability
16759| [902489] IBM DB2 'DT_RPATH' Insecure Library Loading Code Execution Vulnerabilities
16760| [902437] Lil' HTTP Server Cross Site Scripting Vulnerability
16761| [902404] jHTTPd Directory Traversal Vulnerability
16762| [902312] BlackBerry Desktop Software Insecure Library Loading Vulnerability
16763| [902307] UltraEdit Insecure Library Loading Vulnerability
16764| [902255] Microsoft Visual Studio Insecure Library Loading Vulnerability
16765| [902254] Microsoft Office Products Insecure Library Loading Vulnerability
16766| [902242] Mozilla Products Insecure Library Loading Vulnerability (Windows)
16767| [902241] Avast! Antivirus File Opening Insecure Library Loading Vulnerability (Win)
16768| [902240] uTorrent File Opening Insecure Library Loading Vulnerability
16769| [902239] Wireshark File Opening Insecure Library Loading Vulnerability (Windows)
16770| [902238] Skype Insecure Library Loading Vulnerability (Windows)
16771| [902171] Ipswitch WS_FTP Professional 'HTTP' Response Format String Vulnerability
16772| [902052] Task Freak 'loadByKey()' SQL Injection Vulnerability
16773| [902036] Mini Stream RM Downloader '.smi' File Buffer Overflow Vulnerability
16774| [901305] Microsoft Windows IP-HTTPS Component Security Feature Bypass Vulnerability (2765809)
16775| [901203] Apache httpd Web Server Range Header Denial of Service Vulnerability
16776| [901155] Integard Home and Pro HTTP Buffer Overflow Vulnerability
16777| [901149] Adobe Dreamweaver Insecure Library Loading Vulnerability
16778| [901147] Adobe Photoshop Insecure Library Loading Vulnerability
16779| [901128] Ziproxy PNG Image Processing Buffer Overflow Vulnerability
16780| [901104] Tembria Server Monitor HTTP Request Denial of Service Vulnerability
16781| [900869] Insecure Saving Of Downloadable File In Mozilla Firefox (Linux)
16782| [900842] Apache 'mod_proxy_ftp' Module Command Injection Vulnerability (Linux)
16783| [900841] Apache 'mod_proxy_ftp' Module Denial Of Service Vulnerability (Linux)
16784| [900832] Google Chrome 'JavaScript' And 'HTTPS' Multiple Vulnerabilities - Aug09
16785| [900642] SDP Downloader ASX File Heap Buffer Overflow Vulnerability
16786| [900641] SDP Downloader Version Detection
16787| [900523] Ziproxy Security Bypass Vulnerability
16788| [900522] Ziproxy Server Version Detection
16789| [900499] Apache mod_proxy_ajp Information Disclosure Vulnerability
16790| [900489] Orbit Downloader File Deletion ActiveX Vulnerability
16791| [900349] CUPS HTTP Host Header DNS Rebinding Attacks
16792| [900110] Adobe Presenter viewer.swf and loadflash.js XSS Vulnerability
16793| [900107] Apache mod_proxy_ftp Wildcard Characters XSS Vulnerability
16794| [900092] Windows HTTP Services Could Allow Remote Code Execution Vulnerabilities (960803)
16795| [881537] CentOS Update for libproxy CESA-2012:1461 centos6
16796| [881450] CentOS Update for httpd CESA-2011:1392 centos4 x86_64
16797| [881436] CentOS Update for httpd CESA-2011:1392 centos5 x86_64
16798| [881394] CentOS Update for httpd CESA-2011:1245 centos4 x86_64
16799| [881089] CentOS Update for httpd CESA-2012:0128 centos6
16800| [881032] CentOS Update for httpd CESA-2011:1392 centos4 i386
16801| [881020] CentOS Update for httpd CESA-2011:1392 centos5 i386
16802| [880970] CentOS Update for httpd CESA-2011:1245 centos4 i386
16803| [880849] CentOS Update for httpd CESA-2009:1148 centos5 i386
16804| [880842] CentOS Update for httpd CESA-2009:1205 centos3 i386
16805| [880739] CentOS Update for httpd CESA-2009:1579 centos3 i386
16806| [880706] CentOS Update for httpd CESA-2009:1579 centos5 i386
16807| [880692] CentOS Update for httpd CESA-2009:1108 centos3 i386
16808| [880691] CentOS Update for httpd CESA-2009:1580 centos4 i386
16809| [880683] CentOS Update for httpd CESA-2009:1075 centos5 i386
16810| [880565] CentOS Update for httpd CESA-2010:0168 centos5 i386
16811| [880383] CentOS Update for httpd CESA-2010:0175 centos4 i386
16812| [880313] CentOS Update for httpd CESA-2008:0005 centos3 i386
16813| [880279] CentOS Update for httpd CESA-2008:0967 centos3 x86_64
16814| [880256] CentOS Update for httpd CESA-2008:0005 centos3 x86_64
16815| [880231] CentOS Update for httpd CESA-2008:0006 centos4 i386
16816| [880227] CentOS Update for httpd CESA-2008:0006 centos4 x86_64
16817| [880200] CentOS Update for httpd CESA-2008:0967 centos3 i386
16818| [880024] CentOS Update for httpd CESA-2008:0967 centos4 x86_64
16819| [880012] CentOS Update for httpd CESA-2008:0967 centos4 i386
16820| [870862] RedHat Update for libproxy RHSA-2012:1461-01
16821| [870631] RedHat Update for httpd RHSA-2012:0128-01
16822| [870617] RedHat Update for httpd RHSA-2011:1391-01
16823| [870571] RedHat Update for httpd RHSA-2012:0323-01
16824| [870505] RedHat Update for httpd RHSA-2011:1392-01
16825| [870487] RedHat Update for httpd RHSA-2011:1294-01
16826| [870479] RedHat Update for httpd RHSA-2011:1245-01
16827| [870314] RedHat Update for httpd RHSA-2010:0659-01
16828| [870241] RedHat Update for httpd RHSA-2010:0168-01
16829| [870239] RedHat Update for httpd RHSA-2010:0175-01
16830| [870119] RedHat Update for httpd RHSA-2008:0006-01
16831| [870081] RedHat Update for httpd RHSA-2008:0005-01
16832| [870034] RedHat Update for httpd RHSA-2008:0008-01
16833| [870016] RedHat Update for httpd RHSA-2008:0967-01
16834| [864921] Fedora Update for php-symfony2-HttpFoundation FEDORA-2012-19455
16835| [864918] Fedora Update for php-symfony2-HttpFoundation FEDORA-2012-19442
16836| [864871] Fedora Update for libproxy FEDORA-2012-17574
16837| [864812] Fedora Update for haproxy FEDORA-2012-16033
16838| [864801] Fedora Update for haproxy FEDORA-2012-16056
16839| [864513] Fedora Update for lighttpd FEDORA-2012-9040
16840| [864498] Fedora Update for lighttpd FEDORA-2012-9078
16841| [864331] Fedora Update for mozilla-https-everywhere FEDORA-2012-7051
16842| [864201] Fedora Update for mozilla-https-everywhere FEDORA-2012-7175
16843| [864197] Fedora Update for mozilla-https-everywhere FEDORA-2012-7136
16844| [863961] Fedora Update for httpd FEDORA-2012-1598
16845| [863892] Fedora Update for httpd FEDORA-2011-12667
16846| [863759] Fedora Update for httpd FEDORA-2012-1642
16847| [863514] Fedora Update for httpd FEDORA-2011-12715
16848| [863286] Fedora Update for httpcomponents-client FEDORA-2011-7747
16849| [862826] Fedora Update for myproxy FEDORA-2011-0512
16850| [862821] Fedora Update for myproxy FEDORA-2011-0514
16851| [862314] Fedora Update for httpd FEDORA-2010-12478
16852| [862126] Fedora Update for httpd FEDORA-2010-6055
16853| [861951] Fedora Update for lighttpd FEDORA-2010-7636
16854| [861946] Fedora Update for lighttpd FEDORA-2010-7643
16855| [861929] Fedora Update for httpd FEDORA-2010-6131
16856| [861746] Fedora Update for httpd FEDORA-2009-12747
16857| [861534] Fedora Update for httpd FEDORA-2007-2214
16858| [861479] Fedora Update for lighttpd FEDORA-2007-1299
16859| [861373] Fedora Update for httpd FEDORA-2007-0704
16860| [861345] Fedora Update for httpd FEDORA-2007-707
16861| [861325] Fedora Update for httpd FEDORA-2007-617
16862| [861246] Fedora Update for httpd FEDORA-2007-615
16863| [861123] Fedora Update for lighttpd FEDORA-2007-2132
16864| [860849] Fedora Update for lighttpd FEDORA-2008-3376
16865| [860683] Fedora Update for lighttpd FEDORA-2008-3343
16866| [860638] Fedora Update for httpd FEDORA-2008-6393
16867| [860350] Fedora Update for httpd FEDORA-2008-1711
16868| [860293] Fedora Update for lighttpd FEDORA-2008-2262
16869| [860246] Fedora Update for lighttpd FEDORA-2008-2278
16870| [860205] Fedora Update for lighttpd FEDORA-2008-4119
16871| [860097] Fedora Update for httpd FEDORA-2008-6314
16872| [860087] Fedora Update for httpd FEDORA-2008-1695
16873| [855564] Solaris Update for /usr/sadm/lib/smc/lib/preload/jsdk21.jar 116808-02
16874| [855212] Solaris Update for /usr/sadm/lib/smc/lib/preload/jsdk21.jar 116807-02
16875| [850054] SuSE Update for XFree86-server,xorg-x11-server,xloader SUSE-SA:2007:008
16876| [841215] Ubuntu Update for libproxy USN-1629-1
16877| [840915] Ubuntu Update for python-httplib2 USN-1375-1
16878| [835056] HP-UX Update for Java VM Classloader (J2SE) HPSBUX00295
16879| [831751] Mandriva Update for libproxy MDVSA-2012:172 (libproxy)
16880| [830230] Mandriva Update for hdf5 MDKA-2007:080 (hdf5)
16881| [803125] TVMOBiLi Media Server HTTP Request Multiple BOF Vulnerabilities
16882| [803085] LibreOffice Graphic Object Loading Buffer Overflow Vulnerability (Mac OS X)
16883| [803084] LibreOffice Graphic Object Loading Buffer Overflow Vulnerability (Windows)
16884| [803080] Firefly MediaServer HTTP Header Multiple DoS Vulnerabilities
16885| [802966] PHP 'main/SAPI.c' HTTP Header Injection Vulnerability
16886| [802923] Null HTTPd Server Content-Length HTTP Header Buffer overflow Vulnerability
16887| [802838] Asterisk HTTP Manager Buffer Overflow Vulnerability
16888| [802819] Apple Safari Plugin Unloading Remote Code Execution Vulnerability (Win)
16889| [802737] Opera 'HTTPS-Session' Multiple Vulnerabilities (Linux)
16890| [802702] Google Chrome 'HTTP session' Information Disclosure Vulnerability (MAC OS X)
16891| [802701] Google Chrome 'HTTP session' Information Disclosure Vulnerability (Linux)
16892| [802700] Google Chrome 'HTTP session' Information Disclosure Vulnerability (Windows)
16893| [802617] NetDecision HTTP Server Long HTTP Request Remote Denial of Service Vulnerability
16894| [802614] Tiny HTTP Server Remote Denial of Service Vulnerability
16895| [802586] phux Download Manager 'file' Parameter SQL Injection Vulnerability
16896| [802560] Joomla Simple File Upload Module Remote Code Execution Vulnerability
16897| [802402] LabWiki Multiple Cross-site Scripting (XSS) and Shell Upload Vulnerabilities
16898| [802350] Mbedthis AppWeb HTTP TRACE Method Cross-Site Scripting Vulnerability
16899| [802341] Web File Browser 'act' Parameter File Download Vulnerability
16900| [802312] PowerZip Insecure Library Loading Vulnerability
16901| [802297] Interactive Graphical SCADA System DLL Loading Arbitrary Code Execution Vulnerability
16902| [802293] XAMPP WebDAV PHP Upload Vulnerability
16903| [802207] Dotclear Arbitrary File Upload Vulnerability
16904| [802187] Mozilla Firefox and SeaMonkey 'loadSubScript()' Security Bypass Vulnerability (MAC OS X)
16905| [802176] Mozilla Firefox and SeaMonkey 'loadSubScript()' Security Bypass Vulnerability
16906| [802156] Sunway ForceControl WebServer 'httpsvr.exe' Buffer Overflow Vulnerability
16907| [802143] Opera 'HTTPS-Session' Multiple Vulnerabilities (Mac OS X)
16908| [802141] Opera 'HTTPS-Session' Multiple Vulnerabilities (Windows)
16909| [802140] Microsoft Explorer HTTPS Sessions Multiple Vulnerabilities (Windows)
16910| [802136] Microsoft Windows Insecure Library Loading Vulnerability (2269637)
16911| [802114] NoticeBoardPro SQL Injection and Arbitrary File Upload Vulnerabilities
16912| [802104] CRE Loaded Multiple Security Bypass Vulnerabilities
16913| [802044] Lighttpd Connection header Denial of Service Vulnerability
16914| [802010] Nostromo nhttpd Webserver Directory Traversal Vulnerability
16915| [801996] IBM HTTP Server Multiple Cross Site Scripting Vulnerabilities
16916| [801969] Progea Movicon 'TCPUploadServer.exe' Multiple Vulnerabilities
16917| [801824] IBM Tivoli Directory Proxy Server Denial of Service Vulnerability
16918| [801796] Python CGIHTTPServer Module Information Disclosure Vulnerability
16919| [801770] Google Picasa Insecure Library Loading Arbitrary Code Execution Vulnerability (Windows)
16920| [801636] nginx HTTP Request Remote Buffer Overflow Vulnerability
16921| [801532] Oracle Java System Web Server HTTP Response Splitting Vulnerability
16922| [801526] Visual Synapse HTTP Server Directory Traversal Vulnerability
16923| [801511] Adobe On Location Insecure Library Loading Vulnerability (Win)
16924| [801510] Adobe ExtendedScript Toolkit (ESTK) Insecure Library Loading Vulnerability (Win)
16925| [801509] Adobe Extension Manager CS5 Insecure Library Loading Vulnerability (Win)
16926| [801508] Adobe InDesign Insecure Library Loading Vulnerability (Win)
16927| [801500] VLC Media Player File Opening Insecure Library Loading Vulnerability (Win)
16928| [801457] Microsoft Windows Address Book Insecure Library Loading Vulnerability
16929| [801456] Microsoft Windows Progman Group Converter Insecure Library Loading Vulnerability
16930| [801437] Winamp Insecure Library Loading Vulnerability
16931| [801436] TeamViewer File Opening Insecure Library Loading Vulnerability
16932| [801399] MS Windows Insecure Library Loading Remote Code Execution Vulnerabilities (2269637)
16933| [801339] Free Download Manager Multiple Buffer Overflow Vulnerabilities
16934| [801290] TortoiseSVN Insecure Library Loading Vulnerability
16935| [801274] TechSmith Snagit Insecure Library Loading Vulnerability
16936| [801273] Google Earth Insecure Library Loading Vulnerability
16937| [801267] Adobe Captivate Insecure Library Loading Vulnerability
16938| [801246] bozotic HTTP server Information Disclosure Vulnerability
16939| [801245] bozotic HTTP server Denial of Service Vulnerability
16940| [801244] bozotic HTTP server Version Detection
16941| [801236] httpdx Multiple Vulnerabilities
16942| [801214] Orbit Downloader metalink 'name' Directory Traversal Vulnerability
16943| [801213] Orbit Downloader Version Detection
16944| [801019] Xerver HTTP Server Source Code Disclosure Vulnerability
16945| [801018] Xerver HTTP Server Directory Traversal Vulnerability
16946| [801015] Xerver HTTP Server Cross Site Scripting Vulnerability
16947| [800962] httpdx Web Server 'h_handlepeer()' Buffer Overflow Vulnerability
16948| [800961] httpdx 'h_readrequest()' Host Header Format String Vulnerability
16949| [800866] Sun Java System Web Proxy Server Denial Of Service Vulnerability (Linux)
16950| [800865] Sun Java System Web Proxy Server Denial Of Service Vulnerability (Win)
16951| [800864] Sun Java System Web Proxy Server Version Detection
16952| [800858] Mozilla Firefox SOCKS5 Proxy Server DoS Vulnerability Aug-09 (Linux)
16953| [800857] Mozilla Firefox SOCKS5 Proxy Server DoS Vulnerability Aug-09 (Win)
16954| [800835] Apple Safari JavaScript 'Reload()' DoS Vulnerability - July09
16955| [800812] Sun Java System Web Proxy Server Vulnerabilities (Win)
16956| [800811] Sun Java System Web Proxy Server Vulnerabilities (Win)
16957| [800793] TCExam 'tce_functions_tcecode_editor.php' File Upload Vulnerability
16958| [800776] Internet Download Manager FTP Buffer Overflow Vulnerability
16959| [800771] PostNuke modload Module 'sid' Parameter SQL Injection Vulnerability
16960| [800539] CCProxy CONNECTION Request Buffer Overflow Vulnerability
16961| [800538] CCProxy Version Detection
16962| [800373] PHP 'mbstring.func_overload' DoS Vulnerability
16963| [800349] Multiple Buffer Overflow Vulnerabilities in Free Download Manager
16964| [800348] Free Download Manager Version Detection
16965| [800175] Xerver HTTP Server Web Administration Denial of Service Vulnerability
16966| [800144] Ruby on Rails redirect_to() HTTP Header Injection Vulnerability - Linux
16967| [800101] CA eTrust SCM Multiple HTTP Gateway Service Vulnerabilities
16968| [800026] Sun Java System Web Proxy Server Two Vulnerabilities (Linux)
16969| [800025] Sun Java System Web Proxy Server Vulnerabilities (Win)
16970| [200100] XHP CMS Version <= 0.5 File Upload Vulnerability
16971| [103494] F5 BIG-IP remote root authentication bypass Vulnerability
16972| [103470] nginx 'ngx_http_mp4_module.c' Buffer Overflow Vulnerability
16973| [103446] OSClass Directory Traversal and Arbitrary File Upload Vulnerabilities
16974| [103395] appRain CMF 'uploadify.php' Remote Arbitrary File Upload Vulnerability
16975| [103377] QuiXplorer 'index.php' Arbitrary File Upload Vulnerability
16976| [103333] Apache HTTP Server 'ap_pregsub()' Function Local Denial of Service Vulnerability
16977| [103330] LabWiki Multiple Cross Site Scripting And Arbitrary File Upload Vulnerabilities
16978| [103320] Squid Proxy Caching Server CNAME Denial of Service Vulnerability
16979| [103309] osCommerce Remote File Upload and File Disclosure Vulnerabilities
16980| [103307] 1024 CMS 1.1.0 Beta 'force_download.php' Local File Include Vulnerability
16981| [103291] TYPO3 'download.php' Local File Disclosure Vulnerability
16982| [103240] HTTP Brute Force Logins with default Credentials
16983| [103233] Squid Proxy Gopher Remote Buffer Overflow Vulnerability
16984| [103142] DynMedia Pro Web CMS 'downloadfile.php' Local File Disclosure Vulnerability
16985| [103133] Feng Office Arbitrary File Upload and Cross Site Scripting Vulnerabilities
16986| [103121] CMS Lokomedia 'downlot.php' Arbitrary File Download Vulnerability
16987| [103120] Douran Portal 'download.aspx' Arbitrary File Download Vulnerability
16988| [103119] nostromo nhttpd Directory Traversal Remote Command Execution Vulnerability
16989| [103050] Weborf 'get_param_value()' Function HTTP Header Handling Denial Of Service Vulnerability
16990| [103041] AWStats Unspecified 'LoadPlugin' Directory Traversal Vulnerability
16991| [103005] httpdASM Directory Traversal Vulnerability
16992| [103004] Mongoose 'Content-Length' HTTP Header Remote Denial Of Service Vulnerability
16993| [100949] HttpBlitz Server HTTP Request Remote Denial of Service Vulnerability
16994| [100913] osCommerce 'categories.php' Arbitrary File Upload Vulnerability
16995| [100890] FreePBX System Recordings Menu Arbitrary File Upload Vulnerability
16996| [100878] Weborf HTTP Request Denial Of Service Vulnerability
16997| [100873] HP Systems Insight Manager Arbitrary File Download Vulnerability
16998| [100835] Novell iManager 'getMultiPartParameters()' Arbitrary File Upload Vulnerability
16999| [100816] OpenCart 'fckeditor' Arbitrary File Upload Vulnerability
17000| [100809] chillyCMS Arbitrary File Upload Vulnerability
17001| [100790] DynPage 'dynpage_load.php' Local File Disclosure Vulnerability
17002| [100789] Squid Proxy String Processing NULL Pointer Dereference Denial Of Service Vulnerability
17003| [100788] Weborf HTTP 'modURL()' Function Directory Traversal Vulnerability
17004| [100777] Wing FTP Server HTTP Request Denial Of Service Vulnerability
17005| [100750] bozohttpd Security Bypass Vulnerability
17006| [100725] Apache HTTP Server Multiple Remote Denial of Service Vulnerabilities
17007| [100709] Podcast Generator 'download.php' Directory Traversal Vulnerability
17008| [100702] Wiki Web Help 'uploadimage.php' Arbitrary File Upload Vulnerability
17009| [100691] Weborf HTTP Header Processing Denial Of Service Vulnerability
17010| [100661] osCommerce Online Merchant 'file_manager.php' Remote Arbitrary File Upload Vulnerability
17011| [100650] Ziproxy Image Parsing Multiple Integer Overflow Vulnerabilities
17012| [100637] Zervit HTTP Server Source Code Information Disclosure Vulnerability
17013| [100629] Woltlab Burning Board Arbitrary File Upload Vulnerability
17014| [100620] OneHTTPD Directory Traversal Vulnerability
17015| [100617] PHP 'php_dechunk()' HTTP Chunked Encoding Integer Overflow Vulnerability
17016| [100585] HTTP File Server Security Bypass and Denial of Service Vulnerabilities
17017| [100560] uHTTP Server GET Request Directory Traversal Vulnerability
17018| [100553] Interchange HTTP Response Splitting Vulnerability
17019| [100548] Remote Help HTTP GET Request Format String Denial Of Service Vulnerability
17020| [100534] httpdx Multiple Remote Denial Of Service Vulnerabilities
17021| [100525] httpdx PNG File Handling Remote Denial of Service Vulnerability
17022| [100504] Quicksilver Forums Local File Include and Arbitrary File Upload Vulnerabilities
17023| [100496] httpdx 'MKD' Command Directory Traversal Vulnerability
17024| [100491] httpdx 'USER' Command Remote Format String Vulnerability
17025| [100480] lighttpd Slow Request Handling Remote Denial Of Service Vulnerability
17026| [100461] boastMachine Arbitrary File Upload Vulnerability
17027| [100459] XOOPS Arbitrary File Deletion and HTTP Header Injection Vulnerabilities
17028| [100449] Lighttpd 'mod_userdir' Case Sensitive Comparison Security Bypass Vulnerability
17029| [100447] Acme thttpd and mini_httpd Terminal Escape Sequence in Logs Command Injection Vulnerability
17030| [100438] Sun Java System Directory Server 'core_get_proxyauth_dn' Denial of Service Vulnerability
17031| [100421] httpdx Space Character Remote File Disclosure Vulnerability
17032| [100418] CoreHTTP CGI Support Remote Command Execution Vulnerability
17033| [100397] Monkey HTTP Daemon Invalid HTTP 'Connection' Header Denial Of Service Vulnerability
17034| [100379] Polipo Malformed HTTP GET Request Memory Corruption Vulnerability
17035| [100377] CoreHTTP 'src/http.c ' Buffer Overflow Vulnerability
17036| [100370] ISPworker Download.PHP Multiple Directory Traversal Vulnerabilities
17037| [100364] OpenX Arbitrary File Upload Vulnerability
17038| [100355] Xerver HTTP Response Splitting Vulnerability
17039| [100333] Joomla! Remote File Upload Vulnerability And Information Disclosure Weakness
17040| [100332] Serv-U Web Client HTTP Request Remote Buffer Overflow Vulnerability
17041| [100321] nginx 'ngx_http_process_request_headers()' Remote Buffer Overflow Vulnerability
17042| [100317] MapServer HTTP Request Processing Integer Overflow Vulnerability
17043| [100304] Acritum Femitter Server HTTP Request Remote File Disclosure Vulnerability
17044| [100301] JDownloader Web Detection
17045| [100278] BigAnt IM Server HTTP GET Request Buffer Overflow Vulnerability
17046| [100277] nginx Proxy DNS Cache Domain Spoofing Vulnerability
17047| [100276] nginx HTTP Request Remote Buffer Overflow Vulnerability
17048| [100245] RaidenHTTPD Cross Site Scripting and Local File Include Vulnerabilities
17049| [100244] ZNC File Upload Directory Traversal Vulnerability
17050| [100212] Lighttpd Trailing Slash Information Disclosure Vulnerability
17051| [100210] httpdx Multiple Commands Remote Buffer Overflow Vulnerabilities
17052| [100202] Matt Wright FormMail HTTP Response Splitting and Cross Site Scripting Vulnerabilities
17053| [100167] Zervit HTTP Server Malformed URI Remote Denial Of Service Vulnerability
17054| [100084] Squid Proxy Cache ICAP Adaptation Denial of Service Vulnerability
17055| [100034] HTTP-Version Detection
17056| [80076] PHP Easy Download admin/save.php Paramater Code Injection Vulnerability
17057| [80047] Abyss httpd crash
17058| [80010] HTTP NIDS evasion
17059| [72598] FreeBSD Ports: lighttpd
17060| [72568] Debian Security Advisory DSA 2573-1 (radsecproxy)
17061| [72566] Debian Security Advisory DSA 2571-1 (libproxy)
17062| [72536] Debian Security Advisory DSA 2564-1 (tinyproxy)
17063| [71965] Slackware Advisory SSA:2012-041-01 httpd
17064| [71958] Slackware Advisory SSA:2011-252-01 httpd
17065| [71947] Slackware Advisory SSA:2011-133-02 httpd
17066| [71945] Slackware Advisory SSA:2011-145-02 httpd
17067| [71941] Slackware Advisory SSA:2011-284-01 httpd
17068| [71553] Gentoo Security Advisory GLSA 201206-27 (mini_httpd)
17069| [71366] FreeBSD Ports: haproxy
17070| [70687] Debian Security Advisory DSA 2368-1 (lighttpd)
17071| [70584] FreeBSD Ports: lighttpd
17072| [69602] FreeBSD Ports: tinyproxy
17073| [69565] Debian Security Advisory DSA 2222-1 (tinyproxy)
17074| [69020] Gentoo Security Advisory GLSA 201006-17 (lighttpd)
17075| [68922] Slackware Advisory SSA:2011-041-03 httpd
17076| [68175] Slackware Advisory SSA:2010-240-02 httpd
17077| [67715] FreeBSD Ports: ziproxy
17078| [67408] FreeBSD Ports: ziproxy
17079| [67045] Slackware Advisory SSA:2010-067-01 httpd
17080| [66846] FreeBSD Ports: lighttpd
17081| [66806] Debian Security Advisory DSA 1987-1 (lighttpd)
17082| [66780] Slackware Advisory SSA:2010-024-01 httpd
17083| [66557] Fedora Core 12 FEDORA-2009-12606 (httpd)
17084| [66498] Fedora Core 10 FEDORA-2009-12604 (httpd)
17085| [66275] CentOS Security Advisory CESA-2009:1580 (httpd)
17086| [66274] CentOS Security Advisory CESA-2009:1579 (httpd)
17087| [65963] SLES10: Security update for libexif5
17088| [64741] Fedora Core 11 FEDORA-2009-8812 (httpd)
17089| [64661] CentOS Security Advisory CESA-2009:1205 (httpd)
17090| [64571] Slackware Advisory SSA:2009-214-01 httpd
17091| [64448] CentOS Security Advisory CESA-2009:1148 (httpd)
17092| [64269] CentOS Security Advisory CESA-2009:1108 (httpd)
17093| [64124] CentOS Security Advisory CESA-2009:1075 (httpd)
17094| [63864] FreeBSD Ports: ziproxy
17095| [63385] Fedora Core 9 FEDORA-2008-11923 (lighttpd)
17096| [61943] Gentoo Security Advisory GLSA 200812-04 (lighttpd)
17097| [61701] FreeBSD Ports: lighttpd
17098| [61476] Slackware Advisory SSA:2008-210-02 httpd
17099| [61364] Debian Security Advisory DSA 1540-3 (lighttpd)
17100| [61357] Debian Security Advisory DSA 1609-1 (lighttpd)
17101| [60834] FreeBSD Ports: lighttpd
17102| [60808] Gentoo Security Advisory GLSA 200804-08 (lighttpd)
17103| [60793] Debian Security Advisory DSA 1540-2 (lighttpd)
17104| [60786] Debian Security Advisory DSA 1540-1 (lighttpd)
17105| [60573] Debian Security Advisory DSA 1521-1 (lighttpd)
17106| [60513] Gentoo Security Advisory GLSA 200803-10 (lighttpd)
17107| [60499] Debian Security Advisory DSA 1513-1 (lighttpd)
17108| [60388] Slackware Advisory SSA:2008-045-01 httpd
17109| [58862] FreeBSD Ports: lighttpd
17110| [58861] FreeBSD Ports: lighttpd
17111| [58828] FreeBSD Ports: lighttpd
17112| [58805] FreeBSD Ports: lighttpd
17113| [58773] FreeBSD Ports: dirproxy
17114| [58752] Gentoo Security Advisory GLSA 200711-13 (3proxy)
17115| [58646] Gentoo Security Advisory GLSA 200709-16 (lighttpd)
17116| [58644] Debian Security Advisory DSA 1362-2 (lighttpd)
17117| [58581] Debian Security Advisory DSA 1362-1 (lighttpd)
17118| [58546] Gentoo Security Advisory GLSA 200708-11 (lighttpd)
17119| [58257] Gentoo Security Advisory GLSA 200705-07 (lighttpd)
17120| [58223] Gentoo Security Advisory GLSA 200704-17 (3proxy)
17121| [57988] Gentoo Security Advisory GLSA 200701-28 (thttpd)
17122| [57875] Gentoo Security Advisory GLSA 200608-25 (xorg-x11,xorg-server,xtrans,xload,xinit,xterm,xf86dga,xdm,libX11)
17123| [57684] Debian Security Advisory DSA 1205-2 (thttpd)
17124| [57168] Slackware Advisory SSA:2006-209-01 Apache httpd
17125| [56731] Slackware Advisory SSA:2006-129-01 Apache httpd
17126| [56729] Slackware Advisory SSA:2006-130-01 Apache httpd redux
17127| [56677] Gentoo Security Advisory GLSA 200510-26 (xli xloadimage)
17128| [56365] Gentoo Security Advisory GLSA 200603-04 (up-imapproxy)
17129| [55795] Debian Security Advisory DSA 883-1 (thttpd)
17130| [55710] FreeBSD Ports: xloadimage
17131| [55601] Debian Security Advisory DSA 852-1 (up-imapproxy)
17132| [55595] Debian Security Advisory DSA 858-1 (xloadimage)
17133| [55172] Debian Security Advisory DSA 786-1 (simpleproxy)
17134| [54853] Gentoo Security Advisory GLSA 200502-21 (lighttpd)
17135| [54728] Gentoo Security Advisory GLSA 200411-07 (Proxytunnel)
17136| [53910] Slackware Advisory SSA:2004-266-02 GTK+ image loading flaws
17137| [53819] Debian Security Advisory DSA 069-1 (xloadimage)
17138| [53781] Debian Security Advisory DSA 018-1 (tinyproxy)
17139| [53726] Debian Security Advisory DSA 145-1 (tinyproxy)
17140| [53692] Debian Security Advisory DSA 694-1 (xloadimage)
17141| [53377] Debian Security Advisory DSA 396-1 (thttpd)
17142| [52301] FreeBSD Ports: proxytunnel
17143| [52256] FreeBSD Ports: up-imapproxy
17144| [52169] FreeBSD Ports: lighttpd
17145| [20225] Kerio WinRoute Firewall HTTP/HTTPS Management Detection
17146| [20089] F5 BIG-IP Cookie Persistence
17147| [19751] Discuz! <= 4.0.0 rc4 Arbitrary File Upload Flaw
17148| [17231] CERN httpd CGI name heap overflow
17149| [17230] CERN HTTPD access control bypass
17150| [17154] Proxy accepts CONNECT requests to itself
17151| [16363] BlueCoat ProxySG console management detection
17152| [16313] RaidenHTTPD directory traversal
17153| [16069] PHProxy XSS
17154| [15853] up-imapproxy Literal DoS Vulnerability
17155| [15714] ISA Server 2000 and Proxy Server 2.0 Internet Content Spoofing (888258)
17156| [15642] Format string on HTTP header value
17157| [15641] Format string on HTTP header name
17158| [15588] Detect Apache HTTPS
17159| [15563] Abyss httpd DoS
17160| [15555] Apache mod_proxy content-length buffer overflow
17161| [15553] OmniHTTPd pro long POST DoS
17162| [15397] ICECast HTTP basic authorization DoS
17163| [14783] Snitz Forums 2000 HTTP Response Splitting
17164| [14656] MailEnable HTTPMail Service GET Overflow Vulnerability
17165| [14655] MailEnable HTTPMail Service Content-Length Overflow Vulnerability
17166| [14654] MailEnable HTTPMail Service Authorization Header DoS Vulnerability
17167| [14632] IlohaMail Attachment Upload Vulnerability
17168| [14247] Opera web browser file download extension spoofing
17169| [14229] HTTP Directory Traversal (Windows)
17170| [12286] JS.Scob.Trojan or Download.Ject Trojan
17171| [12073] Sami HTTP Server v1.0.4
17172| [11801] Format string on HTTP method name
17173| [11746] AspUpload vulnerability
17174| [11720] S-HTTP detection
17175| [11213] http TRACE XSS attack
17176| [11183] HTTP negative Content-Length buffer overflow
17177| [11174] HTTP negative Content-Length DoS
17178| [11171] HTTP unfinished line denial
17179| [11162] WebSphere Edge caching proxy denial of service
17180| [11158] Novell NetWare HTTP POST Perl Code Execution Vulnerability
17181| [11149] HTTP login page
17182| [11130] BrowseGate HTTP headers overflows
17183| [11129] HTTP 1.1 header overflow
17184| [11127] HTTP 1.0 header overflow
17185| [11096] Avirt gateway insecure telnet proxy
17186| [11084] Infinite HTTP request
17187| [11078] HTTP header overflow
17188| [11077] HTTP Cookie overflow
17189| [11075] dwhttpd format string
17190| [11069] HTTP User-Agent overflow
17191| [11065] HTTP method overflow
17192| [11061] HTTP version number overflow
17193| [11040] HTTP TRACE
17194| [10963] Compaq Web Based Management Agent Proxy Vulnerability
17195| [10930] HTTP Windows 98 MS/DOS device names DOS
17196| [10867] php POST file uploads
17197| [10820] F5 Device Default Support Password
17198| [10818] Alchemy Eye HTTP Command Execution
17199| [10799] IBM-HTTP-Server View Code
17200| [10768] DoSable squid proxy server
17201| [10763] Detect the HTTP RPC endpoint mapper
17202| [10759] Private IP address leaked in HTTP headers
17203| [10758] Check for VNC HTTP
17204| [10716] OmniPro HTTPd 2.08 scripts source full disclosure
17205| [10657] NT IIS 5.0 Malformed HTTP Printer Request Header Buffer Overflow Vulnerability
17206| [10570] Unify eWave ServletExec 3.0C file upload
17207| [10523] thttpd ssi file retrieval
17208| [10498] Test HTTP dangerous methods
17209| [10107] HTTP Server type and version
17210|
17211| SecurityTracker - https://www.securitytracker.com:
17212| [1028638] RSA Authentication Manager Writes Operating System, SNMP, and HTTP Plug-in Proxy Passwords in Clear Text to Log Files
17213| [1028025] F5 BIG-IP Input Validation Flaws Lets Remote Users Inject SQL Commands and Download Files
17214| [1027165] Squid XMLHttpRequest Allows Remote Users to Obtain the Target User's Proxy Username and Password
17215| [1026797] Citrix XenServer Workload Balancer Lets Remote Users Deny Service
17216| [1026054] Apache mod_proxy_ajp HTTP Processing Error Lets Remote Users Deny Service
17217| [1024096] Apache mod_proxy_http May Return Results for a Different Request
17218| [1022592] Akamai Download Manager Stack Overflow in Processing HTTP Responses Lets Remote Users Execute Arbitrary Code
17219| [1022272] IP Filter ippool Buffer Overflow in 'lib/load_http.c' May Let Local Users Gain Elevated Privileges
17220| [1020900] HTTP Anti Virus Proxy Bug in 'sockethandler.cpp' Lets Remote Users Deny Service
17221| [1018937] F5 FirePass Input Validation Hole in 'download_plugin.php3' Permits Cross-Site Scripting Attacks
17222| [1017586] Blue Coat WinProxy Heap Overflow in Processing HTTP CONNECT Requests May Let Remote Users Execute Arbitrary Code
17223| [1017324] Sun Java System Web Proxy Server Lets Remote Users Conduct HTTP Request Smuggling Attacks
17224| [1016239] WinGate Buffer Overflow in HTTP Proxy Lets Remote Users Execute Arbitrary Code
17225| [1016058] Symantec Gateway Security HTTP Proxy May Disclose Internal NAT Addresses
17226| [1016057] Symantec Enterprise Firewall HTTP Proxy May Disclose Internal NAT Addresses
17227| [1014359] DeleGate Proxy Lets Remote Users Conduct HTTP Request Smuggling Attacks
17228| [1014358] Sun Java System Web Proxy Server Lets Remote Users Conduct HTTP Request Smuggling Attacks
17229| [1013370] HTTP Anti Virus Proxy May Not Detect Viruses in Certain Archives
17230| [1012365] JanaServer 2 http-server and pna-proxy Flaws Let Remote Users Deny Service
17231| [1009528] FirstClass HTTP Server Input Validation Flaw in 'Upload.shtml' Permits Cross-Site Scripting Attacks
17232| [1009411] HP HTTP Server Certificates Can Be Uploaded By Remote Users to Gain Access to Managed Hosts
17233| [1007712] Nokia Electronic Documentation Default Configuration Permits Remote HTTP Proxy Services
17234| [1007146] Apache HTTP Server FTP Proxy Bug May Cause Denial of Service Conditions
17235| [1006833] EServ Can Be Used as HTTP and FTP Proxy Even When Not Configured as a Proxy
17236| [1005253] Check Point FireWall-1 HTTP Proxy Default Configuration May Allow HTTPS and FTP Traffic to Pass Through the Proxy
17237| [1005026] CERN HTTP Proxy Server Input Validation Hole Lets Remote Users Conduct Cross-site Scripting Attacks
17238| [1004780] Norton Personal Firewall Buffer Overflow in HTTP Proxy May Allow Remote Users to Execute Arbitrary Code on the System
17239| [1004779] Norton Internet Security Buffer Overflow in HTTP Proxy May Allow Remote Users to Execute Arbitrary Code on the System
17240| [1003875] HP Webproxy for HP-UX VVOS Operating System May Forward Certain HTTP Requests to the Internal Network Without Fully Processing the Packet Against the Rule Set
17241| [1003600] Check Point FireWall-1 HTTP Proxy Bug Lets Remote Users Bypass Some Access Controls and Connect to Arbitrary Ports on Internal/Protected Hosts
17242| [1003367] Nortel Alteon ACEdirector Load Balancer May Disclose the Real and Otherwise Hidden IP Addresses of Load Balanced Servers to Remote Users
17243| [1002077] Cisco LocalDirector Load Balancer May Allow Remote Users to Deny Service in Certain Configurations
17244| [1028833] HP LoadRunner Multiple Bugs Let Remote Users Deny Service and Execute Arbitrary Code
17245| [1028825] Cisco Unified Operations Manager Input Validation Flaw Permits HTTP Header Injection Attacks
17246| [1028788] F5 FirePass Component Lets Remote Users Install and Execute Arbitrary Code
17247| [1028787] F5 BIG-IP Component Lets Remote Users Install and Execute Arbitrary Code
17248| [1028675] Cisco Video Surveillance Operations Manager Software Flaw Lets Remote Users Load Arbitrary HTML on the Target User's System
17249| [1028653] VMware vCenter Chargeback Manager File Upload Flaw Lets Remote Users Execute Arbitrary Code
17250| [1028602] IBM WebSphere Portal Input Validation Flaw Permits HTTP Response Splitting Attacks
17251| [1028546] Windows HTTP Stack Header Processing Flaw Lets Remote Users Deny Service
17252| [1028516] RSA Archer eGRC Bugs Let Remote Authenticated Users Upload Files and Let Remote Users Conduct Cross-Site Scripting Attacks
17253| [1028479] McAfee ePolicy Orchestrator Input Validation Flaw Lets Remote Users Inject SQL Commands, Execute Arbitrary Code, and Upload Files
17254| [1028475] VMware vCenter Server Bugs Let Remote Users Bypass Authentication and Remote Authenticated Users Upload Arbitrary Files and Execute Files on the Target System
17255| [1028416] Cisco Firewall Services Module IKE and Auth-Proxy Bugs Let Remote Users Deny Service
17256| [1028360] Asterisk HTTP POST Content-Length Processing Flaw Lets Remote Users Deny Service
17257| [1028337] Novell ZENworks Configuration Management File Upload Authentication Flaw Lets Remote Users Execute Arbitrary Code
17258| [1028329] Symantec NetBackup Appliance Management Console Lets Remote Authenticated Users Download Files
17259| [1028281] Microsoft Office for Mac HTML Loading Bug Lets Remote Users Obtain Potentially Sensitive Information
17260| [1028252] Apache Commons FileUpload Unsafe Temporary File Lets Local Users Gain Elevated Privileges
17261| [1028247] mnoGoSearch Lets Certain Remote Users Download Arbitrary Files
17262| [1028231] Cisco Aironet HTTP Profiler Bug Lets Remote Users Deny Service
17263| [1028203] IBM HTTP Server (IHS) Input Validation Flaws in Optional Modules Permit Cross-Site Scripting Attacks
17264| [1028191] GNU Project Debugger (GDB) Untrusted File Loading Flaw Lets Local Users Gain Elevated Privileges
17265| [1028094] Cisco IOS Software HTTP Server Socket Handling Bug Lets Remote Users Execute Arbitrary Code
17266| [1028073] RSA Archer eGRC Permits Cross-Site Scripting, Cross-Domain Access, Clickjacking, and File Upload Attacks
17267| [1028035] Barracuda Link Balancer SSH Backdoor Lets Remote Users Access the System
17268| [1027860] Windows IP-HTTPS Certificate Processing Flaw Lets Remote Users Bypass Security Restrictions
17269| [1027832] F5 FirePass SSL VPN Include File Bug Lets Remote Users Deny Service and Potentially Execute Arbitrary Code
17270| [1027802] lighttpd Connection Header Processing Flaw Lets Remote Users Deny Service
17271| [1027786] Novell File Reporter 'NFRAgent.exe' Bugs Let Remote Users Upload and Download Arbitrary Files and Execute Arbitrary Code
17272| [1027690] IBM Tivoli Monitoring Web Server HTTP TRACE/TRACK Support Lets Remote Users Obtain Potentially Sensitive Information
17273| [1027688] F5 FirePass SSL VPN Input Validation Flaw Permits Cross-Site URL Redirection Attacks
17274| [1027686] Linux Kernel Bug in load_script() Lets Local Users Obtain Portions of Kernel Memory
17275| [1027611] VMware Movie Decoder DLL Loading Error Lets Remote Users Execute Arbitrary Code
17276| [1027581] Foxit Reader DLL Loading Error Lets Remote Users Execute Arbitrary Code
17277| [1027515] F5 BIG-IP Input Validation Flaw in Configuration Utility Permits Cross-Site Scripting Attacks
17278| [1027463] PHP HTTP Response Splitting Header Injection Protection Can Be Bypassed Using Carriage Return Characters
17279| [1027442] EMC ApplicationXtender Lets Remote Users Upload Files to Execute Arbitrary Code
17280| [1027412] Tinyproxy Hashmap Collision Lets Remote Users Deny Service
17281| [1027343] Novell Remote Manager Off-by-one Error in 'httpstkd' Lets Remote Users Deny Service
17282| [1027336] Citrix Access Gateway Bugs Let Remote Users Traverse the Directory, Proxy Connections via the Target System, and Inject Text Content
17283| [1027318] Ruby on Rails Bug in 'with_http_digest' Methods Lets Remote Users Deny Service
17284| [1027290] Symantec Backup Exec System Recovery and Symantec System Recovery DLL Loading Error Lets Remote Users Execute Arbitrary Code
17285| [1027229] Microsoft Office DLL Loading Error Lets Remote Users Execute Arbitrary Code
17286| [1027228] Microsoft Visual Basic for Applications DLL Loading Error Lets Remote Users Execute Arbitrary Code
17287| [1027158] F5 FirePass Controller Input Validation Flaw Lets Remote Users Inject SQL Commands
17288| [1027150] Microsoft Lync DLL Loading Error Lets Remote Users Execute Arbitrary Code
17289| [1027146] Adobe ColdFusion Bug in Component Browser Lets Remote Users Conduct HTTP Response Splitting Attacks
17290| [1027144] Check Point Endpoint Security DLL Loading Error Lets Remote Users Execute Arbitrary Code
17291| [1027137] F5 BIG-IP SSH Configuration Error Lets Remote Users Gain Root Access
17292| [1027099] VMware vMA Library Loading Error Lets Local Users Gain Elevated Privileges
17293| [1027090] Xen PV Bootloader Bug Lets Local Guest Users Crash the System
17294| [1027078] Symantec Web Gateway Bugs Let Remote Users View/Upload/Delete Files, Execute Arbitrary Commands, and Conduct Cross-Site Scripting Attacks
17295| [1027008] Cisco ASA Bugs Let Remote Users Conduct HTTP Response Splitting and Denial of Service Attacks and Obtain Potentially Sensitive Information
17296| [1026924] nginx Buffer Overflow in ngx_http_mp4_module Lets Remote Users Execute Arbitrary Code
17297| [1026861] Cisco IOS Zone-Based Firewall IP/HTTP/H.323/SIP Bugs Let Remote Users Deny Service
17298| [1026835] Novell ZENworks Configuration Management Bugs Let Remote Users Download Arbitrary Files and Execute Arbitrary Code
17299| [1026834] F5 FirePass Input Validation Flaw in 'my.activation.php3' Lets Remote Users Inject SQL Commands
17300| [1026827] nginx HTTP Response Processing Lets Remote Users Obtain Portions of Memory Contents
17301| [1026813] Asterisk Stack Overflow in HTTP Manager Lets Remote Users Execute Arbitrary Code
17302| [1026791] Microsoft Expression Design DLL Loading Error Lets Remote Users Execute Arbitrary Code
17303| [1026778] VMware vCenter Chargeback Manager Lets Remote Users Deny Service and Download Files
17304| [1026736] Cisco Small Business SRP500 Series Bugs Let Remote Users Upload Files and Remote Authenticated Users Inject Commands
17305| [1026719] CVS Heap Overflow in proxy_connect() Lets Remote Users Execute Arbitrary Code
17306| [1026693] Lenovo ThinkManagement Console SOAP Interface Lets Remote Users Upload and Delete Files and Execute Arbitrary Code
17307| [1026683] Windows XP Indeo Codec DLL Loading Error Lets Remote Users Execute Arbitrary Code
17308| [1026682] Windows Color Control Panel DLL Loading Error Lets Remote Users Execute Arbitrary Code
17309| [1026640] IBM AIX TCP Large Send Offload Bug Lets Remote Users Deny Service
17310| [1026546] F5 FirePass PHP Bug Lets Remote Users Deny Service
17311| [1026515] HP LoadRunner Stack Overflow in 'magentservice.exe' Lets Remote Users Execute Arbitrary Code
17312| [1026426] RSA SecurID Software Token for Windows DLL Loading Error Lets Remote Users Execute Arbitrary Code
17313| [1026413] Microsoft Internet Explorer DLL Loading Error Lets Remote Users Execute Arbitrary Code and HTML Processing Bugs Let Remote Users Obtain Information
17314| [1026411] Microsoft PowerPoint DLL Loading and OfficeArt Object Processing Flaws Let Remote Users Execute Arbitrary Code
17315| [1026359] lighttpd Authentication Decoding Bug Lets Remote Users Deny Service
17316| [1026353] Apache mod_proxy/mod_rewrite Bug Lets Remote Users Access Internal Servers
17317| [1026339] JBoss Enterprise SOA httpha-invoker Bug Lets Remote Users Bypass Access Controls
17318| [1026293] Windows Mail DLL Loading Error Lets Remote Users Execute Arbitrary Code
17319| [1026292] Windows Meeting Space DLL Loading Error Lets Remote Users Execute Arbitrary Code
17320| [1026283] Barracuda Link Balancer Input Validation Hole Permits Cross-Site Scripting Attacks
17321| [1026169] Microsoft Forefront Unified Access Gateway Input Validation Flaws Permits Cross-Site Scripting, HTTP Response Splitting, and Denial of Service Attacks
17322| [1026166] Windows Media Center DLL Loading Error Lets Remote Users Execute Arbitrary Code
17323| [1026164] Microsoft Active Accessibility Component DLL Loading Error Lets Remote Users Execute Arbitrary Code
17324| [1026154] IBM Rational AppScan Import/Load Function Flaws Let Remote Users Execute Arbitrary Code
17325| [1026144] Apache mod_proxy Pattern Matching Bug Lets Remote Users Access Internal Servers
17326| [1026095] Apache Tomcat HTTP DIGEST Authentication Weaknesses Let Remote Users Conduct Bypass Attacks
17327| [1026061] Blue Coat Director HTTP Trace Processing Flaw Permits Cross-Site Scripting Attacks
17328| [1026041] Microsoft Windows Components DLL Loading Error Lets Remote Users Execute Arbitrary Code
17329| [1026039] Microsoft Office DLL Loading Error and Unspecified Bug Lets Remote Users Execute Arbitrary Code
17330| [1026005] Windows Script Host DLL Loading Error Lets Remote Users Execute Arbitrary Code
17331| [1025960] Apache httpd Byterange Filter Processing Error Lets Remote Users Deny Service
17332| [1025955] Ruby on Rails Bugs Permit HTTP Response Splitting, Cross-Site Scripting, and SQL Injection
17333| [1025895] Microsoft Data Access Components Insecure Library Loading Lets Remote Users Execute Arbitrary Code
17334| [1025883] Cisco Warranty CD May Load Malware From a Remote Site
17335| [1025881] Google Android Browser URL Loading Flaw Permits Cross-Application Scripting Attacks
17336| [1025819] Foxit Reader DLL Loading Error Lets Remote Users Execute Arbitrary Code
17337| [1025774] Trend Micro Control Manager 'proxy_request.php' Input Validation Flaw Lets Remote Users Traverse the Directory
17338| [1025763] Microsoft Visio May Load DLLs Unsafely and Remotely Execute Arbitrary Code
17339| [1025749] HP-UX Dynamic Loader Lets Local Users Gain Elevated Privileges
17340| [1025714] Novell ZENworks Handheld Management Directory Traversal Flaw Lets Remote Users Upload Files
17341| [1025679] Blue Coat ProxySG Discloses Potentially Sensitive Information in Core Files
17342| [1025659] PHP File Upload Bug May Let Remote Users Overwrite Files on the Target System
17343| [1025609] HP Mercury LoadRunner Buffer Overflow in Processing Virtual User Script Files Lets Remote Users Execute Arbitrary Code
17344| [1025489] Python CGIHTTPServer Lets Remote Users View CGI Source Code
17345| [1025487] WordPress Lets Remote Authenticated Authors Upload Arbitrary Files and Execute Arbitrary Code
17346| [1025455] Blue Coat ProxySG's Blue Coat Authentication and Authorization Agent Stack Overflow Lets Remote Users Execute Arbitrary Code
17347| [1025449] Cisco Unified Communications Manager Multiple Bugs Let Remote Users Deny Service, Inject SQL Commands, and Upload Arbitrary Files
17348| [1025348] Windows Operating System Loader Driver Signing Restrictions Can Be Bypassed
17349| [1025346] Microsoft Foundation Classes May Load DLLs Unsafely and Remotely Execute Arbitrary Code
17350| [1025343] Microsoft Office DLL Loading and Graphic Object Processing Flaws Let Remote Users Execute Arbitrary Code
17351| [1025307] Linux Kernel Generic Receive Offload (GRO) Null Pointer Dereference Lets Remote Users Deny Service
17352| [1025303] Apache Tomcat HTTP BIO Connector Error Discloses Information From Different Requests to Remote Users
17353| [1025252] Immunity Debugger HTTP Update Buffer Overflow Lets Remote Users Execute Arbitrary Code via Man-in-the-Middle Attacks
17354| [1025172] Windows Remote Desktop Client DLL Loading Error Lets Remote Users Execute Arbitrary Code
17355| [1025171] Microsoft Groove DLL Loading Error Lets Remote Users Execute Arbitrary Code
17356| [1025170] Microsoft DirectShow DLL Loading Error Lets Remote Users Execute Arbitrary Code
17357| [1025027] Apache Tomcat maxHttpHeaderSize Parsing Error Lets Remote Users Deny Service
17358| [1025004] OpenOffice.org Library Loading Error Lets Remote Users Execute Arbitrary Code
17359| [1024956] HP LoadRunner Unspecified Flaw Lets Remote Users Execute Arbitrary Code
17360| [1024948] Windows Backup Manager May Load DLLs Unsafely and Remotely Execute Arbitrary Code
17361| [1024913] Kerio WinRoute Firewall HTTP Cache Can Be Poisoned By Remote Users
17362| [1024895] F-Secure Internet Security DLL Loading Error Lets Remote Users Execute Arbitrary Code
17363| [1024881] Windows Routing and Remote Access NDProxy Buffer Overflow Lets Local Users Gain Elevated Privileges
17364| [1024879] Microsoft Windows Internet Connection Signup Wizard May Load DLLs Unsafely and Remotely Execute Arbitrary Code
17365| [1024878] Windows Address Book May Load DLLs Unsafely and Remotely Execute Arbitrary Code
17366| [1024877] Microsoft Windows May Load DLLs Unsafely and Remotely Execute Arbitrary Code
17367| [1024876] Windows Media Encoder May Load DLLs Unsafely and Remotely Execute Arbitrary Code
17368| [1024875] Windows Movie Maker May Load DLLs Unsafely and Remotely Execute Arbitrary Code
17369| [1024865] Adobe Illustrator DLL Loading Error Lets Remote Users Execute Arbitrary Code
17370| [1024683] Bugzilla Permits Cross-Site Scripting and HTTP Response Splitting Attacks and Discloses Certain Information to Remote Users
17371| [1024675] HP Insight Control Performance Management for Windows Lets Remote Users Download Arbitrary Files
17372| [1024670] IBM Tivoli Directory Server Proxy Server Can Be Crashed By Remote Users
17373| [1024667] HP Insight Managed System Setup Wizard for Windows Lets Remote Users Download Arbitrary Files
17374| [1024657] HP LoadRunner Web Tours Lets Remote Users Deny Service
17375| [1024640] HP Virtual Server Environment Lets Remote Users Download Arbitrary Files
17376| [1024632] Blue Coat ProxyAV Permits Cross-Site Request Forgery Attacks
17377| [1024612] Adobe InDesign DLL Loading Error Lets Remote Users Execute Arbitrary Code
17378| [1024600] Blue Coat ProxySG Lets Remote Users Bypass JavaScript Filtering
17379| [1024503] Blue Coat ProxySG Input Validation Hole Permits Cross-Site Scripting Attacks
17380| [1024497] Novell iManager Lets Remote Users Upload Arbitrary Files
17381| [1024472] Cisco IOS SSL VPN HTTP Redirect Memory Leak Lets Remote Users Deny Serivce
17382| [1024453] HP System Management Homepage Input Validation Flaw Permits HTTP Response Splitting Attacks
17383| [1024452] Apple QuickTime DLL Loading and ActiveX Control Bugs Let Remote Users Execute Arbitrary Code
17384| [1024425] BlackBerry Desktop Software May Load DLLs Unsafely and Remotely Execute Arbitrary Code
17385| [1024407] Mozilla Thunderbird DLL Loading Error Lets Remote Users Execute Arbitrary Code
17386| [1024406] Mozilla Firefox DLL Loading Error Lets Remote Users Execute Arbitrary Code
17387| [1024355] Windows Applications May Load DLLs Unsafely and Remotely Execute Arbitrary Code
17388| [1024341] Blue Coat ProxySG Privilege Enforcement Mechanism Can Be Bypassed By Remote Authenticated Administrators
17389| [1024301] Microsoft XML Core Services (MSXML) HTTP Response Processing Flaw Lets Remote Users Execute Arbitrary Code
17390| [1024211] F5 FirePass Input Validation Flaw in Pre-Logon Sequence Permits Cross-Site Scripting Attacks
17391| [1024204] Oracle WebLogic Plugin Encoding Error Lets Remote Users Inject HTTP Headers
17392| [1024168] Cisco Application Control Engine Newline Processing Flaw May Let Remote Users Modify HTTP Headers
17393| [1024167] Cisco Content Services Switch HTTP and ClientCert Headers Can Be Spoofed or Modified By Remote USers
17394| [1024155] Cisco ASA URL Processing Flaw Lets Remote Users Conduct HTTP Response Splitting Attacks
17395| [1024153] Trend Micro InterScan Web Security Virtual Appliance Flaws Let Local Users Gain Elevated Privileges and Remote Users Upload/Download Arbitrary Files
17396| [1024132] Novell Access Manager Directory Traversal Flaw Lets Remote Users Upload Arbitrary Files
17397| [1024103] Mac OS X Multiple Flaws Let Remote Users Execute Arbitrary Code, Deny Service, and Upload/Access Files and Local Users Gain Elevated Privileges
17398| [1023960] Lexmark Printers HTTP Authorization Field Processing Bug Lets Remote Users Deny Service
17399| [1023946] HP Mercury LoadRunner Agent Lets Remote Users Execute Arbitrary Commands
17400| [1023942] Apache mod_proxy_ajp Error Condition Lets Remote Users Deny Service
17401| [1023933] Internet Download Manager Stack Overflow in Sending Certain Command Sequences Lets Remote Users Execute Arbitrary Code
17402| [1023914] Novell ZENworks Configuration Management UploadServlet File Upload Bug Lets Remote Users Execute Arbitrary Code
17403| [1023908] Adobe Download Manager Buffer Overflow in 'gp.ocx' ActiveX Control Lets Remote Users Execute Arbitrary Code
17404| [1023833] VMware ESX Server VMware Tools Executable/Library Loading/Unloading Flaws Let Users Execute Arbitrary Code
17405| [1023832] VMware Tools Executable/Library Loading/Unloading Flaws Let Users Execute Arbitrary Code
17406| [1023818] uTorrent HTTP Basic Authentication Processing Flaw in WebUI Lets Remote Users Deny Service
17407| [1023783] Mozilla Firefox Chrome Privilege Escalation Exposed via Firebug XMLHttpRequestSpy Lets Remote Users Execute Arbitrary Code
17408| [1023755] Interchange Lets Remote Users Conduct HTTP Response Splitting Attacks
17409| [1023690] Opera Integer Overflow in Processing HTTP 'Content-Length' Reponses Lets Remote Users Execute Arbitrary Code
17410| [1023655] Blue Coat ProxySG Protocol Flaw in SSL Renegotiation Lets Remote Users Conduct Man-in-the-Middle Attacks
17411| [1023651] Adobe Download Manager Flaw Lets Remote Users Download and Install Arbitrary Software
17412| [1023647] EMC HomeBase Server Directory Traversal Flaw Lets Remote Users Upload Arbitrary Files
17413| [1023625] Symantec Client Security Buffer Overflow in Client Proxy ActiveX Control Lets Remote Users Execute Arbitrary Code
17414| [1023624] Symantec AntiVirus Buffer Overflow in Client Proxy ActiveX Control Lets Remote Users Execute Arbitrary Code
17415| [1023606] Cisco Security Agent Management Center Input Validation Flaws Let Remote Authenticated Users Download Files and Inject SQL Commands
17416| [1023549] F5 BIG-IP TCP Processing Flaw Lets Remote Users Deny Service
17417| [1023548] F5 FirePass TCP Processing Flaw Lets Remote Users Deny Service
17418| [1023533] Apache mod_proxy Integer Overflow May Let Remote Users Execute Arbitrary Code
17419| [1023488] Sun Java System Web Server Heap Overflow in Processing HTTP Digest Authentication Requests Lets Remote Users Execute Arbitary Code
17420| [1023427] Sun Java System Web Proxy Server Protocol Flaw in SSL Renegotiation Lets Remote Users Conduct Man-in-the-Middle Attacks
17421| [1023396] F5 Data Manager Directory Traversal Flaw Discloses Files to Remote Authenticated Administrators
17422| [1023249] Asterisk RTP Comfort Noise Payload Processing Error Lets Remote Users Deny Service
17423| [1023188] Novell eDirectory Buffer Overflow in HTTPSTK Login Page Lets Remote Authenticated Users Execute Arbitrary Code
17424| [1023167] Apple Safari May Load HTML 5 Media Elements Automatically
17425| [1023118] KDE Bugs Let Remote Users Cause XMLHttpRequests to Be Issued or JavaScript to Be Executed
17426| [1023099] Mozilla Firefox Proxy Auto-configuration regexp Parsing Flaw Lets Users Execute Arbitrary Code
17427| [1023098] Mozilla Firefox Download Files Containing RTL Override Characters May Be Used to Spoof the Download Filename
17428| [1023096] Mozilla Firefox Lets Local Users Modify Downloaded Files in Certain Cases
17429| [1022935] Cisco IOS Authentication Proxy Race Condition Lets Remote Users Bypass Access Controls
17430| [1022928] Symantec Altiris Deployment Solution ActiveX Control DownloadAndInstall() Method Lets Remote Users Execute Arbitrary Code
17431| [1022849] Novell eDirectory HTTP Request Processing Flaw Lets Remote Users Deny Service
17432| [1022833] Adobe RoboHelp Unspecified Flaw Lets Remote Users Upload and Execute Arbitrary Code
17433| [1022830] Akamai Download Manager Unspecified Flaw Has Unspecified Impact
17434| [1022796] VMware Studio Directory Traversal Flaw Lets Remote Users Upload Files to Arbitrary Directories
17435| [1022784] Solaris sockfs HTTP Request Processing Bug Lets Remote Users Deny Service
17436| [1022659] Java Runtime Environment Proxy Mechanism Flaws Let Remote Applets Obtain Elevated Privileges
17437| [1022598] Sun Java System Access Manager Policy Agent Bug Lets Remote Users Deny Service to the Web Proxy Server
17438| [1022517] Ruby on Rails Bug in 'http_authentication.rb' Lets Remote Users Bypass Authentication
17439| [1022513] FCKeditor input Validation Flaw Lets Remote Users Upload Arbitrary Files
17440| [1022509] Apache mod_proxy stream_reqbody_cl() Infinite Loop Lets Remote Users Deny Service
17441| [1022429] Google Chrome Buffer Overflow in Processing HTTP Responses Lets Remote Users Execute Arbitrary Code
17442| [1022399] SugarCRM E-mail Attachment Uploading Bug Lets Remote Authenticated Users Execute Arbitrary Code
17443| [1022396] Mozilla Thunderbird Proxy Response Processing Bug Lets Remote Users Execute Arbitrary Code in the Context of an SSL-Protected Domain
17444| [1022387] F5 FirePass Input Validation Flaw in Unspecified Password Fields Permits Cross-Site Scripting Attacks
17445| [1022383] Mozilla Firefox Proxy Response Processing Bug Lets Remote Users Execute Arbitrary Code in the Context of an SSL-Protected Domain
17446| [1022342] Apple Safari Lets Local Users Access Files During Downloading
17447| [1022334] Sun Java System Web Server Input Validation Hole in Reverse Proxy Plug-in Permits Cross-Site Scripting Attacks
17448| [1022264] Apache mod_proxy_ajp Bug May Disclose Another User's Response Data
17449| [1022211] Mac OS X CFNetwork Heap Overflow in Processing HTTP Headers Lets Remote Users Execute Arbitrary Code
17450| [1022108] Sun Java System Delegated Administrator Bug Lets Remote Users Conduct HTTP Response Splitting Attacks
17451| [1022094] Mozilla Firefox XMLHttpRequest and XPCNativeWrapper.toString Bugs Let Remote Users Bypass Same-Origin Restrictions
17452| [1022041] Windows HTTP Services Bugs Let Remote Users Execute Arbitrary Code
17453| [1022015] Cisco ASA HTTP, TCP, H.323, and SQL*Net Processing Bugs Let Remote Users Deny Service
17454| [1021918] Java Runtime Environment (JRE) HTTP Server Bug Lets Remote Users Deny Service
17455| [1021838] WordPress MU Input Validation Hole in HTTP Host Header Permits Cross-Site Scripting Attacks
17456| [1021783] cURL/libcurl HTTP Redirect Processing May Let Remote Users Access Files
17457| [1021781] Blue Coat ProxySG Host Header Processing May Let Remote Users Bypass Security Restrictions
17458| [1021730] Sun Java System Directory Server Proxy Server Bug Lets Remote Users Deny Service
17459| [1021723] Mac OS X Folder Manager Directory Permission Error May Let Local Users Obtain the Contents of the Downloads Folder
17460| [1021716] InterScan Web Security Suite Discloses Proxy-Authentication Password
17461| [1021706] libvirt Buffer Overflow in 'libvirt_proxy' Lets Local Users Gain Elevated Privileges
17462| [1021705] BlackBerry Application Web Loader Buffer Overflow in ActiveX Control Lets Remote Users Execute Arbitrary Code
17463| [1021695] Novell QuickFinder Server Input Validation Flaws in HTTP POST Parameters Permit Cross-Site Scripting Attacks
17464| [1021684] Squid HTTP Request Processing Error Lets Remote Users Deny Service
17465| [1021668] Mozilla Firefox HTTPOnly Enforcement Flaw Lets Users Access Cookies
17466| [1021620] Cisco Unified Communications Manager Input Validation Flaw in Certificate Authority Proxy Function Lets Remote Users Deny Service
17467| [1021598] Cisco IOS Input Validation Flaw in HTTP Server Permits Cross-Site Scripting Attacks
17468| [1021555] SquirrelMail May Send Session Authentication Cookies via HTTP
17469| [1021427] Mozilla Firefox Permits Cross-Domain Responses to XMLHttpRequests to Be Accessed
17470| [1021424] Mozilla Firefox loadBindingDocument Lets Remote Users Obtain Information
17471| [1021286] WordPress Input Validation Hole in Processing 'HTTP_HOST' HTTP Header Permits Cross-Site Scripting Attacks
17472| [1021188] Mozilla Firefox nsXMLHttpRequest::NotifyEventListeners() Flaw Lets Remote Users Bypass Same-Origin Policies
17473| [1021185] Mozilla Firefox http-index-format MIME Parsing Buffer Overflow Lets Remote Users Execute Arbitrary Code
17474| [1021181] Mozilla Firefox Dynamic Module Unloading Bug Lets Remote Users Execute Arbitrary Code
17475| [1021146] Adobe Flash Player HTTP Response Header Processing Flaw Permits Cross-Site Scripting Attacks
17476| [1021038] Sun Java System Web Proxy Server Bug in FTP Subsystem Lets Remote Users Execute Arbitrary Code
17477| [1020989] Novell eDirectory Management Toolbox HTTP Header Processing Bugs Let Remote Users Deny Service
17478| [1020979] Blue Coat ProxySG Input Validation Hole in ICAP Patience Page Permits Cross-Site Scripting Attacks
17479| [1020929] Cisco IOS Firewall Bug in HTTP Application Inspection Control Lets Remote Users Deny Service
17480| [1020905] JBoss Enterprise Application Platform DownloadServerClasses Configuration Lets Remote Users Download Class Files
17481| [1020902] CCProxy Buffer Overflow in Processing CONNECTION Requests Lets Remote Users Execute Arbitrary Code
17482| [1020786] Novell eDirectory Heap Overflows in HTTP Protocol Stack Let Remote Users Execute Arbitrary Code
17483| [1020785] Novell eDirectory Input Validation Hole in HTTPSTK Permits Cross-Site Scripting Attacks
17484| [1020771] Red Hat Directory Server Buffer Overflow in Processing Accept-Language HTTP Header Values Lets Remote Users Execute Arbitrary Code
17485| [1020747] Belkin F5D7632-4 Wireless Router Lets Remote Users Bypass Authentication to Access Administrative Functions
17486| [1020696] Sun Java Web Proxy Server FTP Subsystem Bug Lets Remote Users Deny Service
17487| [1020654] Ruby WEBrick HTTP Server split_header_value() Function Regex Bug Lets Remote Users Deny Service
17488| [1020635] Apache Input Validation Hole in mod_proxy_ftp Permits Cross-Site Scripting Attacks
17489| [1020622] Tomcat Input Validation Hole in HttpServletResponse.sendError() Permits Cross-Site Scripting Attacks
17490| [1020607] Mac OS X Quick Look Buffer Overflow in Downloading Microsoft Office Files Lets Remote Users Execute Arbitrary Code
17491| [1020588] K9 Web Protection Buffer Overflows in Processing HTTP Responses From the Centralized Server Lets Remote Users Execute Arbitrary Code
17492| [1020587] K9 Web Protection Buffer Overflows in Processing HTTP Headers Lets Remote Users Execute Arbitrary Code
17493| [1020548] Blue Coat ProxySG DNS Query Port Entropy Weakness Lets Remote Users Spoof the System
17494| [1020515] Citrix XenServer Input Validation Flaw in XenAPI HTTP Interface Permits Cross-Site Scripting Attacks
17495| [1020433] Microsoft Access Snapshot Viewer ActiveX Control Lets Remote Users Download Files to Arbitrary Locations
17496| [1020393] Mac OS X Launch Services File Download Symlink Validation Bug Lets Remote Users Execute Arbitrary Code
17497| [1020328] PHP File and Directory Function safe_mode Restrictions Can By Bypass With 'http://' Prefix
17498| [1020327] PHP posix_access() safe_mode Restrictions Can By Bypass With 'http://' Prefix
17499| [1020267] Apache mod_proxy Interim Response Process Bug Lets Remote Users Deny Service
17500| [1020226] Microsoft Internet Explorer HTTP Request Header Bug May Let Remote Users Obtain Information in a Different Domain
17501| [1020217] QuickTime 'file://' URL Handler Bug Lets Remote Users Load Arbitrary Applications and Files
17502| [1020205] F5 FirePass Input Validation Hole in 'css_exceptions' and 'sql_matchscope' Parameters Permits Cross-Site Scripting Attacks
17503| [1020194] Akamai Download Manager ActiveX Control Lets Remote Users Execute Arbitrary Code
17504| [1020150] Apple Safari for Windows XP and Vista Lets Remote Users Download Files
17505| [1020098] IBM Lotus Domino Web Server Stack Overflow in Processing HTTP 'Accept-Language' Header Lets Remote Users Execute Arbitrary Code
17506| [1019955] Akamai Download Manager Lets Remote Users Execute Arbitrary Code
17507| [1019929] KDE Buffer Overflow in KHTML PNG Loader May Let Remote Users Execute Arbitrary Code
17508| [1019925] Sun Java System Directory Proxy Server Bug Lets Remote Authenticated Users Gain Administrative Privileges
17509| [1019868] Safari Bug in Processing Download Filenames Lets Remote Users Execute Arbitrary Code
17510| [1019836] Novell eDirectory HTTP Header Processing Lets Remote Users Deny Service
17511| [1019783] Novell eDirectory HTTP Request Procesing Bug Lets Remote Users Deny Service
17512| [1019735] InstallShield ActiveX Control Lets Remote Users Load and Execute Arbitrary Code
17513| [1019703] Mozilla Firefox URL Bug Lets Remote Users Spoof HTTP Referer Values in Certain Cases
17514| [1019679] Asterisk Predictable Session IDs May Let Remote Users Hijack HTTP Manager Sessions
17515| [1019655] Safari CFNetwork Bug Lets Remote Proxy Servers Spoof Secure Web Sites
17516| [1019628] Asterisk Buffer Overflow in Processing RTP Codec Payload Lets Remote Users Execute Arbitrary Code
17517| [1019536] Squid Analysis Report Generator Buffer Overflow in Processing HTTP User-Agent and Access Logs Lets Remote Users Execute Arbitrary Code
17518| [1019522] Trend Micro OfficeScan HTTP Request Parameter Processing Bugs Let Remote Users Deny Service
17519| [1019450] WebLogic Proxy Plugin Lets Remote Users Deny Service
17520| [1019443] WebLogic Servlets May Grant Access to Remote Users Based on Modified HTTP Request Header Values
17521| [1019411] Cisco Unified IP Phone Heap Overflow in Parsing SIP Proxy Responses Lets Remote Users Execute Arbitrary Code
17522| [1019408] Cisco Unified IP Phone Can Be Crashed By Remote Users Sending an HTTP Request Packet
17523| [1019370] Webmin Input Validation Hole in Processing HTTP Referer Values Permits Cross-Site Scripting Attacks
17524| [1019329] Mozilla Firefox chrome: URI Directory Traversal Bug Lets Remote Users Load Local Files
17525| [1019305] EMC Documentum 'dmclTrace.jsp' Bug Lets Remote Users Upload Arbitrary Files and Execute Arbitrary Code
17526| [1019303] Symantec BackupExec System Recovery Manager Lets Remote Users Upload Arbitrary Files and Execute Arbitrary Code
17527| [1019297] Aurigma Image Uploader Buffer Overflows in ExtractExif() and ExtractIptc() Functions Let Remote Users Execute Arbitrary Code
17528| [1019274] Proficy Real-Time Information Portal Lets Remote Authenticated Users Upload Arbitrary Files and Execute Arbitrary Code on the Target System
17529| [1019185] Apache Input Validation Hole in mod_proxy_ftp Permits Cross-Site Scripting Attacks
17530| [1019178] QuickTime Buffer Overflow in Processing HTTP 404 Response Messages Lets Remote Users Execute Arbitrary Code
17531| [1019147] XUpload Control Buffer Overflow in AddFolder() Lets Remote Users Execute Arbitrary Code
17532| [1019116] Adobe Flash Player Bugs Let Remote Users Execute Arbitrary Code, Scan Ports, and Conduct HTTP Request Splitting and Cross-Site Scripting Attacks
17533| [1019033] Microsoft Web Proxy Auto-Discovery Name Server Resolution Bug Lets Remote Users Conduct Man-in-the-Middle Attacks
17534| [1019031] F5 FirePass Input Validation Holes in 'my.logon.php3' and 'my.activation.php3' Permit Cross-Site Scripting Attacks
17535| [1019030] Apache Input Validation Hole in Default HTTP 413 Error Page Permits Cross-Site Scripting Attacks
17536| [1018988] Wireshark Wireshark MP3, DNP, SSL, ANSI MAP, Firebird/Interbase, NCP, HTTP, MEGACO, DCP ETSI, OS/400, PPP, Bluetooth SDP, and RPC Portmap Bugs Let Remote Users Deny Service
17537| [1018888] Blue Coat ProxySG Management Console Input Validation Hole in Processing CRLs Permits Cross-Site Scripting Attacks
17538| [1018883] Perdition Format String Bug in IMAP Proxy Lets Remote Users Execute Arbitrary Code
17539| [1018825] Cisco Firewall Service Module HTTPS and MGCP Processing Bugs Let Remote Users Deny Service
17540| [1018727] Microsoft Internet Security and Acceleration Server SOCKS4 Proxy Discloses IP Address Information to Remote Users
17541| [1018715] Yahoo Messenger GetFile() Method Lets Remote Users Download Arbitrary Files to the Target User's System
17542| [1018701] PhotoChannel Networks Buffer Overflow in Photo Upload Plugin ActiveX Control Lets Remote Users Execute Arbitrary Code
17543| [1018697] WinSCP URL Protocol Handlers Let Remote Users Upload/Download Arbitrary Files
17544| [1018659] Novell iChain HTTP Content Scanning Can Be Bypassed Using Full-Width Unicode Content
17545| [1018639] Backup Manager Discloses the Upload Site's FTP Password to Local Users
17546| [1018633] Apache mod_proxy Bug Lets Remote Users Deny Service
17547| [1018575] Safari for Windows Lets Remote Users Upload Arbitrary File
17548| [1018553] Streamripper Buffer Overflows in httplib_parse_sc_header() Let Remote Users Execute Arbitrary Code
17549| [1018504] Sun Java System Web Server Redirect URL Encoding Bug Lets Remote Users Conduct HTTP Response Splitting Attacks
17550| [1018491] Mac OS X CFNetwork Bugs Let Remote Users Execute Arbitrary FTP Commands and Conduct HTTP Response Splitting Attacks
17551| [1018466] IBM AIX pioout Command Lets Local Users Load and Execute Arbitrary Code
17552| [1018462] Solaris lbxproxy Lets Local Users View Portions of Certain Files
17553| [1018428] Java Runtime Environment Applet Class Loader Bug Lets Remote Users Connect to Localhost Sockets
17554| [1018356] .NET Buffer Overflows in PE Loader and JIT Compiler Let Remote Users Execute Arbitrary Code
17555| [1018344] EZFactory Input Validation Flaw in 'Download CGI' Lets Remote Users Traverse the Directory
17556| [1018332] imlib _LoadBMP() Function Endless Loop Lets Remote Users Deny Service
17557| [1018315] Wireshark DHCP/BOOTP, MMS, SSL, DCP ETSI, iSeries, and HTTP Chunked Response Bugs Let Remote Users Deny Service
17558| [1018304] Apache HTTPD scoreboard Protection Flaw Lets Local Users Terminate Arbitrary Processes
17559| [1018303] Apache HTTPD mod_cache May Let Remote Users Deny Service
17560| [1018283] RaidenHTTPD Input Validation Hole Permits Cross-Site Scripting Attacks
17561| [1018240] libexif Integer Overflow in exif_data_load_data_entry() May Let Remote Users Crash the Application or Execute Arbitrary Code
17562| [1018190] F5 FirePass Input Validation Flaw in 'my.activation.php3' Permits Remote Command Execution
17563| [1018130] Sun Java System Web Proxy Server Buffer Overflows in 'sockd' Let Remote Users Execute Arbitrary Code
17564| [1018124] Mac OS X pppd Plugin Loading Feature Lets Local Users Gain Root Privileges
17565| [1018088] FreeType Integer Overflow in TT_Load_Simple_Glyph() Lets Remote Users Execute Arbitrary Code
17566| [1018023] PHP Buffer Overflow in make_http_soap_request() May Let Remote Users Execute Arbitrary Code
17567| [1017969] Microsoft Internet Explorer Digest Authentication Bug Lets Remote Users Conduct HTTP Request Splitting Attacks
17568| [1017968] Mozilla Firefox Digest Authentication Bug Lets Remote Users Conduct HTTP Request Splitting Attacks
17569| [1017937] Gracenote CDDBControl ActiveX Control Buffer Overflow in Processing Proxy Control Parameters Permits Remote Code Execution
17570| [1017932] Novell GroupWise WebAccess Buffer Overflow in Processing HTTP Basic Authentication Lets Remote Users Execute Arbitrary Code
17571| [1017925] Akamai Download Manager ActiveX Control Buffer Overflow Lets Remote Users Execute Arbitrary Code
17572| [1017855] SolidWorks sldimdownload ActiveX Control Lets Remote Users Execute Arbitrary Code
17573| [1017840] IBM Tivoli Provisioning Manager Memory Corruption Error in Processing HTTP POST Requests May Let Remote Users Execute Arbitrary Code
17574| [1017828] IBM Lotus Sametime Buffer Overflow in STJNILoader.ocx ActiveX Control Lets Remote Users Execute Arbitrary Code
17575| [1017806] IBM WebSphere CRLF Validation Bug Permits HTTP Response Splitting Attacks
17576| [1017701] Mozilla Firefox onUnload Event and document.write() Race Condition May Let Remote Users Execute Arbitrary Code
17577| [1017613] HP Mercury LoadRunner Lets Remote Users Execute Arbitrary Code
17578| [1017581] Wireshark Bugs in TCP, HTTP, IEEE 802.11, and LLT Dissectors Let Remote Users Deny Service
17579| [1017552] GTK2 Input Validation Error in GdkPixbufLoader() Lets Remote Users Deny Service
17580| [1017498] Cisco IOS DLSw Capabilities Exchange Lets Remote Users Cause the Device to Reload
17581| [1017465] Cisco Clean Access Lets Remote Users Access the Administrative Interface and Download Backup Files
17582| [1017444] logahead UNU edition WidgEd Plugin Lets Remote Users Upload Files and Execute Arbitrary Code
17583| [1017432] Http explorer Lets Remote Users Traverse the Directory on the Target System
17584| [1017340] Adobe Download Manager Stack Overflow Lets Remote Users Execute Arbitrary Code
17585| [1017329] PHP Upload Center Include File Bug in 'activate.php' Lets Remote Users Execute Arbitrary Code
17586| [1017323] Sun Java System Web Server Lets Remote Users Conduct HTTP Request Smuggling Attacks
17587| [1017322] Sun Java Application Server Lets Remote Users Conduct HTTP Request Smuggling Attacks
17588| [1017233] Links SMB URL Parsing Bug Lets Remote Users Upload/Download Files
17589| [1017232] ELinks SMB URL Parsing Bug Lets Remote Users Upload/Download Files
17590| [1017201] SpeedyWiki Lets Remote Authenticated Users Upload Arbitrary Files and Remote Users Conduct Cross-Site Scripting Attacks
17591| [1017176] GreenBeast CMS Lets Remote Users View Filenames and Potentially Upload Files
17592| [1017163] AOL ICQ DownloadAgent() Function Lets Remote Users Execute Arbitrary Code
17593| [1017129] Wireshark (Ethereal) Bugs in HTTP, LDAP, XOT, WBXML, and MIME Multipart Dissectors Let Remote Users Deny Service
17594| [1017121] AOL Buffer Overflows in AddPictureNoAlbum and downloadFileDirectory ActiveX Controls Let Remote Users Execute Arbitrary Code
17595| [1017088] SHTTPD Buffer Overflow Lets Remote Users Execute Arbitrary Code
17596| [1017078] Adobe Flash Player Plugin Lets Remote Users Injection Arbitrary HTTP Header Data
17597| [1017076] F5 FirePass 1000 Input Validation Flaw in 'my.acctab.php3' Permits Cross-Site Scripting Attacks
17598| [1017007] TorrentFlux Missing Input Validation in HTTP User-Agent Permits Cross-Site Scripting Attacks
17599| [1016983] GOOP Gallery Input Validation Bug in 'download.php' Lets Remote Users Traverse the Directory
17600| [1016971] McAfee ePolicy Orchestrator Buffer Overflow in Processing HTTP Source Headers Lets Remote Users Execute Arbitrary Code
17601| [1016970] McAfee ProtectionPilot Buffer Overflow in Processing HTTP Source Headers Lets Remote Users Execute Arbitrary Code
17602| [1016824] Simpleboard Include File Bug in 'file_upload.php' Lets Remote Users Execute Arbitrary Code
17603| [1016781] CR64Loader ActiveX Control Buffer Overflow Lets Remote Users Execute Arbitrary Code
17604| [1016731] Microsoft Internet Explorer URL Buffer Overflow in Processing HTTP 1.1 Protocol with Compression Lets Remote Users Execute Arbitrary Code
17605| [1016593] Etomite 'rfiles.php' Lets Remote Users Upload and Execute Arbitrary Code
17606| [1016569] IBM HTTP Server (IHS) Lack of Input Validation in Expect Header May Permit Cross-Site Scripting Attacks
17607| [1016527] GIMP Buffer Overflow in xcf_load_vector() Lets Remote Users Execute Arbitrary Code
17608| [1016508] Invision Power Board Lack of Validation of HTTP Client IP Value Lets Remote Users Inject SQL Commands
17609| [1016506] Microsoft Internet Security and Acceleration Server HTTP File Exentsion Filter Can Be Bypassed By Remote Users
17610| [1016499] FlatNuke Gallery Module Lets Remote Users Upload and Execute Arbitrary Code
17611| [1016458] TWiki PHP File Suffix Validation Bug Lets Remote Users Upload and Execute Arbitrary Code
17612| [1016446] WebEx Downloader Lets Remote Users Download and Execute Arbitrary Files
17613| [1016431] F5 FirePass Input Validation Holes in Multiple Fields Permit Cross-Site Scripting Attacks
17614| [1016420] Ipswitch Collaboration Suite Bug in Premium Anti-Spam Feature May Not Properly Load Updates
17615| [1016419] Ipswitch IMail Secure Server Bug in Premium Anti-Spam Feature May Not Properly Load Updates
17616| [1016335] easy-CMS Lets Remote Authenticated Users Upload and Execute Arbitrary Code
17617| [1016327] Best Top List 'banner-upload.php' Script Lets Remote Users Upload Arbitrary Files
17618| [1016317] Cisco Secure ACS for UNIX Input Validation Flaw in 'LogonProxy.cgi' Permits Cross-Site Scripting Attacks
17619| [1016311] CMS Mundo Input Validation Flaw Lets Remote Users Inject SQL Commands and Remote Authenticated Administrators Upload Arbitrary Code
17620| [1016266] ImageVue 'admin/upload.php' Authentication Flaw Lets Remote Users Upload Arbitrary Files
17621| [1016219] Quake 3 Buffer Overflow in CL_ParseDownload() Permits Remote Code Execution
17622| [1016214] Mozilla Thunderbird Bugs Permit Arbitrary Code Execution, Cross-Site Scripting, and HTTP Response Smuggling
17623| [1016202] Mozilla Firefox Bugs Permit Arbitrary Code Execution, Cross-Site Scripting, and HTTP Response Smuggling
17624| [1016174] DGNews 'Upload Photo' Lets Remote Authenticated Users Upload Arbitrary Files
17625| [1016081] Apple LaunchServices Lets Remote Users Bypass Download Validation in Certain Cases
17626| [1016030] zawhttpd Can Be Crashed By Remote Users
17627| [1015978] Ruby HTTP/XMLRPC Server Lets Remote Users Block Connections
17628| [1015974] Symantec Scan Engine Lets Remote Users Access the System and Download Files
17629| [1015885] Sire Bugs Let Remote Users Include and Execute Arbitrary Code and Upload Image Files
17630| [1015878] Aweb's Scripts Seller Lets Remote Users Bypass Authorization and Download Files Without Paying
17631| [1015870] Cisco 11500 Content Services Switch HTTP Compression Bug Lets Remote Users Deny Service
17632| [1015863] Kaffeine Buffer Overflow in http_peek() When Fetching Playlists Lets Remote Users Execute Arbitrary Code
17633| [1015858] AN HTTPD Discloses Script Source Code to Remote Users
17634| [1015857] IBM WebSphere Lets Remote Users Deny Service By Sending Large HTTP Header Values
17635| [1015848] NetBSD elf_load_file() Validation Error Lets Local Users Crash the System
17636| [1015798] F5 FirePass Input Validation Hole in 'my.support.php3' Permits Cross-Site Scripting Attacks
17637| [1015779] Dwarf HTTP Server Discloses JSP Source Code and Permits Cross-Site Scripting Attacks
17638| [1015755] DSDownload Input Validation Flaws in 'search.php' and 'downloads.php' Permit SQL Injection
17639| [1015743] ZoneAlarm Use of Relative Path to Load DLLs Lets Local Users Gain Elevated Privileges
17640| [1015713] Apple Safari JavaScript Buffer Overflow Lets Remote Users Execute Arbitrary Code and HTTP Redirect Bug Lets Remote Users Access Files
17641| [1015703] lighttpd Discloses Script Source Code to Remote Users
17642| [1015702] SAP Web Application Server Lets Remote Users Inject Data into HTTP Responses
17643| [1015644] Blue Coat ProxySG Policy Error May Let Remote Users Bypass Default CONNECT Policy Rules
17644| [1015546] Cisco VPN 3000 Concentrator Bug in HTTP Service Lets Remote Users Deny Service
17645| [1015511] TippingPoint Intrusion Prevention System HTTP Processing Lets Remote Users Deny Service
17646| [1015484] PHP Input Validation Error in Session ID Values Permits HTTP Response Splitting Attacks
17647| [1015442] Blue Coat WinProxy Telnet Proxy Can Be Crashed By Remote Users
17648| [1015441] Blue Coat WinProxy Host Header Buffer Overflow Lets Remote Users Execute Arbitrary Code
17649| [1015432] raSMP Input Validation Flaw in HTTP User-Agent Field Permits Cross-Site Scripting Attacks
17650| [1015420] Hitachi Business Logic - Container Input Validation Holes Permit SQL Injection, Cross-Site Scripting, and HTTP Response Splitting Attacks
17651| [1015403] httprint Input Validation Error in 'Server' Field Lets Remote Users Injection Scripting Code or Deny Service
17652| [1015392] Interaction SIP Proxy Buffer Overflow in SIPParser() Lets Remote Users Deny Service
17653| [1015376] Microsoft IIS Lets Remote Users Deny Service or Execute Arbitrary Code With Malformed HTTP GET Requests
17654| [1015362] Watchfire AppScan Buffer Overflow in Processing HTTP 401 Response Messages Lets Remote Users Execute Arbitrary Code
17655| [1015353] Opera Browser May Let Remote Users Obfuscate the Download Dialog Box
17656| [1015350] Microsoft Internet Explorer Bug in Using HTTPS Proxies May Disclose Web URLs to Remote Users
17657| [1015349] Microsoft Windows Internet Explorer May Let Remote Users Obfuscate the Download Dialog Box
17658| [1015331] Sun Solaris Sun Update Connection Services May Disclose Web Proxy Password to Local Users
17659| [1015328] Mozilla Firefox Buffer Overflow in Loading 'history.dat' Lets Remote Users Deny Service
17660| [1015312] Sun Java System Application Server Reverse SSL Proxy Permits Man-in-the-Middle Attacks
17661| [1015308] DoceboLMS 'connector.php' Bugs Let Remote Users View Directory Contents and Upload and Execute Arbitrary PHP Code
17662| [1015294] Apple Safari WebKit Buffer Overflow May Let Remote Users Execute Arbitrary Code and Other Bugs May Permit JavaScript Dialog Box Spoofing and File Download Location Modification
17663| [1015275] Cisco IOS HTTP Server Input Validation Hole in Buffers Command Permits Cross-Site Scripting Attacks
17664| [1015253] Opera URL Loading Script Backtick Parsing Lets Remote Users Execute Arbitrary Shell Commands
17665| [1015246] Google Search Appliance 'proxystylesheet' Parameter Lets Remote Users Execute Arbitrary System Commands
17666| [1015213] phpMyAdmin 'libraries/header_http.inc.php' Lets Remote Users Conduct HTTP Response Splitting Attacks
17667| [1015174] SAP Web Application Server Input Validation Holes Permit HTTP Response Splitting, Cross-Site Scripting, and Phishing Attacks
17668| [1015112] Solaris Management Console Enables HTTP TRACE Support By Default
17669| [1015104] Snoopy Input Validation Hole in _httpsrequest() Lets Remote Execute Arbitrary Commands
17670| [1015072] Xloadimage Buffer Overflows in Processing NIFF Format Files Let Remote Users Execute Arbitrary Code
17671| [1015063] MailSite Express Lets Remote Users Upload Scripting Files and Execute Them
17672| [1015046] GFI MailSecurity Web Module Buffer Overflow in Processing HTTP Headers Lets Remote Users Execute Arbitrary Code
17673| [1014987] NateOn Messenger Buffer Overflow in 'NateonDownloadManager.ocx' Lets Remote Users Upload Files and Also Deny Service
17674| [1014949] Mozilla Firefox Proxy Auto-Config Scripts May Let Remote Users Deny Service
17675| [1014907] AzDGDatingLite Image Upload Feature Lets Remote Users Execute Arbitrary Code
17676| [1014884] Mail-it Now! Upload2Server Attachment Upload Feature Lets Remote Users Execute Arbitrary Code
17677| [1014875] Sun Java Web Proxy Server Error in Processing Certain POST Requests May Let Remote Users Deny Service
17678| [1014870] class-1 Forum Software File Upload Feature Lets Remote Users Upload and Execute Arbitrary Code
17679| [1014865] Cisco IOS Buffer Overflow in Firewall Authentication Proxy for FTP and/or Telnet Sessions May Let Remote Users Execute Arbitrary Code
17680| [1014814] FUDforum Avatar Upload Feature Lets Remote Users Upload and Execute Arbitrary PHP Code
17681| [1014762] ZipTorrent Discloses Proxy Password to Local Users
17682| [1014723] ezUpload 'path' Parameter Include File Bug Lets Remote Users Execute Arbitrary Code
17683| [1014673] Discuz! Board Input Validation Flaw Lets Remote Users Upload Scripting Code
17684| [1014592] Opera Error in Processing Extended ASCII Codes Lets Remote Users Spoof File Extensions in the Download Dialog Box
17685| [1014591] Simplicity oF Upload Lets Remote Users Upload and Execute Arbitrary Code
17686| [1014535] Website Generator Image Upload Preview Lets Remote Users Execute Arbitrary Code
17687| [1014534] Blue Coat ProxySG Error in Processing TCP Sequence Numbers in ICMP Messages Lets Remote Users Deny Service
17688| [1014506] Small HTTP Server FTP Service Lets Remote Authenticated Users Write to Arbitrary Files
17689| [1014452] F5 BIG-IP Unspecified SSL Authentication Bug May Let Remote Users Deny Service
17690| [1014427] MailEnable Professional Flaw in HTTPMail Service May Let Remote Users Execute Arbitrary Code
17691| [1014404] Internet Download Manager Buffer Overflow in Processing Long URLs Lets Remote Users Execute Arbitrary Code
17692| [1014369] SunONE Web Server May Allow Remote Users to Conduct HTTP Response Smuggling Attacks
17693| [1014368] Oracle Application Server Web Server May Allow Remote Users to Conduct HTTP Response Smuggling Attacks
17694| [1014367] IBM WebSphere May Allow Remote Users to Conduct HTTP Response Smuggling Attacks
17695| [1014366] BEA WebLogic May Allow Remote Users to Conduct HTTP Response Smuggling Attacks
17696| [1014365] Tomcat May Allow Remote Users to Conduct HTTP Response Smuggling Attacks
17697| [1014364] Microsoft Internet Information Server May Allow Remote Users to Conduct HTTP Response Smuggling Attacks
17698| [1014360] Oracle Application Server Web Cache Lets Remote Users Conduct HTTP Request Smuggling Attacks
17699| [1014357] Check Point FireWall-1 HTTP Request Smuggling May Let Remote Users Bypass Web Intelligence Features
17700| [1014356] Microsoft ISA Server May Accept HTTP Authentication Even When SSL Is Required
17701| [1014350] Squid HTTP Header Processing Lets Remote Users Smuggle HTTP Requests
17702| [1014323] Apache Chunked Transfer-Encoding and Content-Length Processing Lets Remote Users Smuggle HTTP Requests
17703| [1014322] Blue Coat ProxySG TCP Stack PAWS Timestamp Implementation Lets Remote Users Deny Service
17704| [1014310] ASP Nuke Input Validation Holes Permit SQL Injection, HTTP Response Splitting, and Cross-Site Scripting Attacks
17705| [1014309] ASPPlayground.NET Lets Remote Users Upload Arbitrary Files
17706| [1014285] UBBThreads Multiple Input Validation Holes Permit Cross-Site Scripting, SQL Injection, and HTTP Response Splitting Attacks
17707| [1014267] HP Version Control Repository Manager May Disclose Proxy Password to Local Users
17708| [1014263] MercuryBoard Input Validation Hole in HTTP User-Agent Permits SQL Injection
17709| [1014248] paFAQ Flaws Let Remote Users Download the Database, Inject SQL Commands, Conduct Cross-Site Scripting Attacks, and Execute Arbitrary Code
17710| [1014245] Ublog Reload Input Validation Holes in 'index.asp' Permit SQL Injection and in 'trackback.asp' Permit Cross-Site Scripting Attacks
17711| [1014243] Trac Input Validation Hole Lets Remote Users Upload Arbitrary Files
17712| [1014239] Opera XMLHttpRequest Access Controls Can By Bypassed By Remote Users
17713| [1014181] Sysreport May Disclose the up2date Proxy Password Via the System Report
17714| [1014147] Loki Download Manager Input Validation Holes Permit SQL Injection Attacks
17715| [1014141] Apple LaunchServices Lets Remote Users Bypass the File Dowload Dialog
17716| [1014086] JiRo's Upload System Input Validation Hole in Admin Panel Lets Remote Users Inject SQL Commands
17717| [1014078] PowerDownload Include File Bug Lets Remote Users Execute Arbitrary Commands
17718| [1014007] Serendipity Bugs Let Remote Authenticated Users Upload Unauthorized Files and Also Permits Cross-Site Scripting Attacks
17719| [1013966] Firefox Input Validation Error in Content-Type and Filename Lets Remote Users Spoof Download Dialog Data
17720| [1013960] 1Two News Lets Remote Users Delete Images, Upload Images, and Conduct Cross-Site Scripting Attacks
17721| [1013923] Orenosv HTTP/FTP Server FTP Command Buffer Overflow Lets Remote Users Crash the Server and HTTP SSI Buffer Overflow May Let Local Users Execute Arbitrary Code
17722| [1013913] Firefox onload() History Access Bug and Install Function Scripting Execution Flaw Lets Remote Users Execute Arbitrary Code
17723| [1013910] Squid http_access Results May Be Unexpected Due to Configuration Errors
17724| [1013839] Lotus Domino @SetHTTPHeader Permits HTTP Response Splitting Attacks
17725| [1013835] Safari Can Be Crashed With Long HTTPS URL
17726| [1013830] Uapplication Products Disclose the Database to Remote Users and Let Remote Authenticate Administrators Upload Arbitrary Files
17727| [1013823] FilePocket Discloses Proxy Passwords to Local Users
17728| [1013812] nProtect Netizen Lets Remote Users Download Arbitrary Files to the Target System
17729| [1013802] SqWebMail Input Validation Hole in 'redirect' Parameter Permits HTTP Response Splitting Attacks
17730| [1013801] MaxDB HTTP Request '%' Buffer Overflow Lets Remote Users Execute Arbitrary Code
17731| [1013786] MailEnable HTTPMail 'Authorization' Header Lets Remote Users Execute Arbitrary Code
17732| [1013749] CityPost Simple PHP Upload Input Validation Hole Permits Cross-Site Scripting Attacks
17733| [1013726] PHP-Nuke Input Validation Hole in Surveys Module Permits HTTP Response Splitting Attacks
17734| [1013709] Axel Buffer Overflow in Processing HTTP Location Values Lets Remote Users Execute Arbitrary Code
17735| [1013680] OpenOffice StgCompObjStream::Load() Heap Overflow Lets Remote Users Execute Arbitrary Code
17736| [1013671] File Upload Script 'up.php' for phpBB Lets Remote Users Upload Arbitrary Files
17737| [1013666] AN HTTP Server 'cmdIS.DLL' Buffer Overflow Lets Local Users Execute Arbitrary Code and Remote Users Conduct Cross-Site Scripting Attacks
17738| [1013603] Ublog Reload Discloses Database to Remote Users and Permits Cross-Site Scripting Attacks
17739| [1013602] Linux Kernel Bug in load_elf_library Lets Local Users Deny Service
17740| [1013557] Trillian Buffer Overflow in Processing HTTP Response Headers May Let Remote Users Execute Arbitrary Code
17741| [1013541] Download Center Lite Lets Remote Users Include and Execute Arbitrary PHP Code
17742| [1013514] Phorum Input Validation'search.php' HTTP Response Splitting
17743| [1013510] betaparticle blog Discloses Database to Remote Users and Lets Remote Users Upload/Delete Arbitrary Files
17744| [1013478] OllyDbg Error in Loading Processes With Long Names Lets Users Crash the Debugger
17745| [1013452] Symantec Enterprise Firewall DNSd Proxy Bug Lets Remote Users Poison the DNS Cache
17746| [1013451] Symantec VelociRaptor DNSd Proxy Bug Lets Remote Users Poison the DNS Cache
17747| [1013450] Symantec Gateway Security DNSd Proxy Bug Lets Remote Users Poison the DNS Cache
17748| [1013402] XOOPS Avatar Image Upload Permits Unsafe File Extensions
17749| [1013359] CProxy Input Validation Hole Discloses Files to Remote Users and Lets Remote Users Crash the Service
17750| [1013334] RaidenHTTPD Discloses PHP Source Code and Lets Remote Users Execute Arbitrary Code
17751| [1013331] CuteNews Input Validation Holes in HTTP Header Parameters Let Remote Users Conduct Cross-Site Scripting Attacks
17752| [1013320] FCKeditor May Let Remote Users Upload Arbitrary Files When Used With PHP-Nuke and Mambo
17753| [1013307] KNet HTTP GET Request Buffer Overflow Lets Remote Users Execute Arbitrary Code
17754| [1013191] Sami HTTP Server Input Validation Holes Disclose Files to Remote Users and Let Remote Users Crash the Service
17755| [1013182] HP HTTP Server Buffer Overflow Lets Remote Users Execute Arbitrary Code
17756| [1013178] PHP-Nuke Input Validation Holes in Downloads 'newdownloadshowdays' and Web Links 'newlinkshowdays' Permit Cross-Site Scripting Attacks
17757| [1013167] Squid Proxy xstrdup() Can Be Crashed With Malformed DNS Responses
17758| [1013135] ArGoSoft Mail Server Input Validation Holes Allow Remote Authenticated Users to Upload/Download Files and Create/Delete Directories
17759| [1013106] 602LAN SUITE Input Validation Bug Lets Remote Authenticated Users Upload and Execute Files
17760| [1013088] RaidenHTTPD Input Validation Flaw Discloses Files to Remote Users
17761| [1013060] DeskNow Mail and Collaboration Server Directory Traversal Flaw Lets Remote Authenticated Users Upload and Delete Arbitrary Files
17762| [1013054] RealPlayer Lets Remote Users Load Scripting Code from Local Files
17763| [1013021] SmarterMail Lets Remote Users Upload Arbitrary Scripting Code and Execute Them
17764| [1013016] Cisco IOS Can Be Reloaded By Remote Users Sending Multiple IPv6 Packets
17765| [1013007] Perl DBI::ProxyServer Unsafe Temporary Files May Let Local Users Gain Elevated Privileges
17766| [1012992] Squid Error in Parsing HTTP Content-Length Headers May Let Remote Users Poison the Cache
17767| [1012948] MaxDB sapdbwa_GetUserData() and HTTP Header Bugs Lets Remote Users Deny Service
17768| [1012891] Microsoft IE Windows XP SP2 File Download Security Can Be Bypassed With Dynamic IFRAME Tag
17769| [1012865] OpenBSD httpd mod_include Local Buffer Overflow Has Unspecified Impact
17770| [1012766] Mozilla Firefox Download Dialog Source Can Be Spoofed By Remote Users
17771| [1012765] Mozilla Browser Download Dialog Source Can Be Spoofed By Remote Users
17772| [1012764] PhotoPost Classifieds Input Validation Hole Lets Remote Users Upload Scripting Files
17773| [1012763] ReviewPost Pro Input Validation Hole Lets Remote Users Upload Scripting Files
17774| [1012753] GNUBoard Case-Sensitive File Extension Validation Lets Remote Users Upload Scripting Files
17775| [1012702] PHProxy Input Validation Hole in 'error' Parameter Lets Remote Users Conduct Cross-Site Scripting Attacks
17776| [1012684] Microsoft Windows LoadImage API Buffer Overflow Lets Remote Users Execute Arbitrary Code
17777| [1012622] IMG2ASCII 'ascii.php' Lets Remote Users Upload and Execute Scripting Code
17778| [1012588] IglooFTP Input Validation Hole in download_selection_recursive() Lets Remote Servers Write Arbitrary Files on the Client
17779| [1012567] Singapore Input Validation Holes Let Remote Authenticated Users Download and Upload Files, Delete Direcctories, and Conduct Cross-Site Scripting Attacks
17780| [1012553] 68 Designs Froogle Uploader 'setup.php' Lets Remote Users Gain Administrative Access
17781| [1012539] Attachment Mod Lets Remote Users Upload and Execute Scripting Code
17782| [1012538] JSBoard 'parse.php' Lets Remote Users Upload and Execute Scripting Code
17783| [1012532] MoniWiki 'UploadFile.php' Lets Remote Users Upload and Execute Scripting Code
17784| [1012528] Ethereal DICOM, HTTP, and SMB Dissector Bugs Let Remote Users Execute Arbitrary Code
17785| [1012499] MediaWiki Uploaded File Extension Error Lets Remote Users Execute Arbitrary Scripting Code
17786| [1012480] Opera Input Validation Error in Processing MIME Content-Type/Content-Displosition Headers Lets Remote Users Spoof the File Download Dialog
17787| [1012452] Blog Torrent 'btdownload.php' Input Validation Error Lets Remote Users Conduct Cross-Site Scripting Attacks
17788| [1012390] Blog Torrent 'btdownload.php' Input Validation Error Lets Remote Users View Arbitrary Files
17789| [1012369] PHProjekt 'setup.php' Lets Remote Users Upload Files and Execute Commands
17790| [1012362] IPCop Input Validation Hole in 'proxylog.dat' Lets Remote Users Conduct Cross-Site Scripting Attacks
17791| [1012322] DeSofto MyProxy Lets Remote Authenticated Users Connect to Arbitrary Ports and Hosts
17792| [1012298] ZyXEL Prestige 650HW 'rpFWUpload.html' Lets Remote Users Reset the Configuration
17793| [1012288] Microsoft IE Custom 404 Error Message and execCommand SaveAs Lets Remote Users Bypass XP SP2 Download Warning Mechanisms
17794| [1012234] Microsoft Internet Explorer on XP SP2 Has Unspecified Flaws That Let Remote Users Bypass File Download Restrictions
17795| [1012200] phpWebSite Input Validation Flaws Let Remote Users Conduct HTTP Response Splitting Attacks
17796| [1012189] CCProxy Buffer Overflow in Logging Function Lets Remote Users Execute Arbitrary Code
17797| [1012168] WebCalendar Grants Administrative Access and Permits Cross-Site Scripting and HTTP Response Splitting Attacks
17798| [1012165] Linux Kernel binfmt_elf Loader Lets Local Users Obtain Root Access
17799| [1012154] Microsoft Proxy Server Reverse DNS Caching Bug Lets Remote Users Spoof Web Sites
17800| [1012141] up-imapproxy Various Integer Overflows Let Remote Users Deny Service
17801| [1012103] 602LAN SUITE Lets Remote Users Deny Service With Large Content-Length Requests and Via Telnet Proxy Loopback Attacks
17802| [1012072] Proxytunnel Format String Flaw in Logging Responses May Let Remote Users Execute Arbitrary Code
17803| [1012050] ArGoSoft FTP Server Lets Remote Users Upload '.lnk' File
17804| [1012043] yChat HTTP Errors Let Remote Users Deny Service
17805| [1012025] iptables May Fail to Automatically Load Some Modules
17806| [1012011] Allied Telesyn AT-TFTP Server Lets Remote Users Download and Upload Arbitrary Files or Cause the TFTP Service to Crash
17807| [1012010] Netcordia Chesapeake TFTP Server Lets Remote Users Download and Upload Arbitrary Files or Cause the TFTP Service to Crash
17808| [1012005] Sun Java System Web Proxy Server Buffer Overflow May Let Remote Users Execute Arbitrary Code
17809| [1011960] Mega Upload Filenames in Querystring May Let Malicious Users Overwrite or Copy Files
17810| [1011938] PostNuke Downloads Site May Have Been Compromised
17811| [1011916] Mozilla Firefox Discloses Some Downloaded Files to Local Users
17812| [1011864] Serendipity Input Validation Flaws in Processing Request URI and HTTP Referer Field May Permit HTTP Response Splitting Attacks
17813| [1011769] SalesLogix Grants Administrative Access to Remote Users and Permits SQL Injection and Arbitrary File Uploads
17814| [1011736] File Upload Manager Lets Remote Users Execute Commands on the Target System
17815| [1011735] Microsoft Internet Explorer May Display the Incorrect URL When Loading a Javascript Homepage
17816| [1011708] Yak! Chat Directory Travesal Flaw Lets Remote Users Upload Files to Arbitrary Locations
17817| [1011614] Squid SNMP Parsing Error Lets Remote Users Restart the Proxy Server
17818| [1011501] Mozilla Firefox Input Validation Error Lets Remote Users Delete Download Directory Files
17819| [1011481] DCP-Portal Input Validation Errors Let Remote Users Conduct Cross-Site Scripting and HTTP Response Splitting Attacks
17820| [1011439] Icecast Buffer Overflow in Processing HTTP Headers Lets Remote Users Execute Arbitrary Code
17821| [1011427] MyServer Can Be Crashed By Remote Users With a Specially Crafted HTTP POST Request
17822| [1011406] ActivePost Lets Remote Users Upload Arbitrary Files, Detemine Passwords, and Crash the System, and D
17823| [1011261] getIntranet Input Validation Holes Let Remote Users Inject SQL Commands, Upload Files, Execute Scripting Code, and Gain Administrative Application Privileges
17824| [1011235] Pingtel xpressa Boundary Error in HTTP Management Interface Lets Remote Authenticated Users Crash the Phone
17825| [1011214] Squid Null Pointer Dereference in clientAbortBody() Lets Remote Users Crash the Proxy
17826| [1011213] Apache mod_ssl Can Be Crashed By Remote Users When Reverse Proxying SSL Connections
17827| [1011174] Mac OS X CoreFoundation Buffer Overflow and Library Loading Bugs Let Local Users Gain Elevated Privileges
17828| [1011155] Altnet Download Manager Buffer Overflow in bstrFilepath Lets Remote Users Execute Arbitrary Code
17829| [1011135] Comersus Shopping Cart 'redirecturl' Input Validation Flaw Permits HTTP Response Splitting Attacks
17830| [1011133] Cerbere Proxy Server Lets Remote Users Consume Excessive CPU Resources
17831| [1011054] Hastymail May Execute Scripting Code in E-Mail Content When 'Download' is Selected
17832| [1011046] icecast Input Validation Error in HTTP UserAgent Field Permits Cross-Site Scripting Attacks
17833| [1011042] Plesk 7 Reloaded Input Validation Flaw in 'login_up.php3' Permits Cross-Site Scripting Attacks
17834| [1011037] Gadu-Gadu File Downloading Dialog Lets Remote Authenticated Users Spoof the File Extension
17835| [1010971] Gallery Input Validation Error in 'save_photos.php' Lets Remote Users Upload and Execute Files
17836| [1010949] Kerio MailServer Bugs in Embedded HTTP Server Have Unspecified Impact
17837| [1010927] F5 3-DNS May Disclose UDP Port Status to Remote Users
17838| [1010920] Sygate Enforcer Can Be Crashed By a Remote Users Sending a Malformed Payload
17839| [1010850] thttpd Input Validation Error Discloses Files to Remote Users
17840| [1010837] MailEnable Professional HTTPMail Bug Lets Remote Users Deny Service
17841| [1010797] IBM WebSphere Can Be Crashed By Remote Users Sending Large HTTP Headers
17842| [1010788] RiSearch/Ri Search Pro Discloses Files to Remote Users and Can Be Used as an Open Proxy
17843| [1010756] Sun Java System Portal Server Proxy Authentication Flaw Grants Calendar Data Access to Remote Authenticated Users
17844| [1010751] Xitami Web Server Can Be Crashed By Remote Users Sending Invalid HTTP Headers
17845| [1010642] Fastream NETFile Server 'mkdir' Command Lets Remote Users Upload Files to Arbitrary Locations
17846| [1010639] IBM WebSphere Edge Server Component Caching Proxy JunctionRewrite Directive Lets Remote Users Deny Service
17847| [1010618] Cisco Collaboration Server ServletExec Lets Remote Users Upload Files and Obtain Administrative Privileges
17848| [1010613] Pavuk Buffer Overflow in Processing HTTP Location Headers Lets Remote Web Servers Execute Arbitrary Code on the Target System
17849| [1010599] Apache httpd Header Line Memory Allocation Lets Remote Users Crash the Server
17850| [1010500] Symantec Enterprise Firewall DNSD Proxy Can Be Poisoned By Remote Users
17851| [1010462] Apache mod_proxy Buffer Overflow May Let Remote Users Execute Arbitrary Code
17852| [1010461] smtp.proxy Format String Bug Lets Remote Users Execute Arbitrary Code
17853| [1010447] AspDotNetStorefront Input Validation Hole in Uploading Image Files Lets Remote Authenticated Administrators Upload and Execute Arbitrary Code
17854| [1010346] TinyWeb Lets Remote Users Download CGI Scripts
17855| [1010291] MiniShare Can Be Crashed By Remote Users With Incomplete HTTP Requests
17856| [1010289] Orenosv HTTP/FTP Server Can Be Crashed By Remote Users
17857| [1010266] F5 BIG-IP TCP SYN Cookie Processing Flaw Lets Remote Users Deny Service
17858| [1010255] CBTT Can Be Crashed By Remote Users Sending Specially Crafted HTTP Basic Authentication Headers
17859| [1010254] BNBT Can Be Crashed By Remote Users Sending Specially Crafted HTTP Basic Authentication Headers
17860| [1010203] OmniHTTPd Buffer Overflow in HTTP GET Range Header May Let Remote Users Execute Arbitrary Code
17861| [1010192] Blue Coat ProxySG May Disclose Private Key to Remote Users
17862| [1010171] NetChat Buffer Overflow in HTTP Service Lets Remote Users Execute Arbitrary Code
17863| [1010157] Microsoft Internet Explorer showHelp Path Search Lets Remote Users Load Existing Local CHM Files
17864| [1010107] MailEnable Buffer Overflow in HTTPMail Lets Remote Users Execute Arbitrary Code
17865| [1010088] Eudora Has Buffer Overflow in Loading 'file://' URLs
17866| [1010071] PHP-Nuke Input Validation Bugs in 'sid' Variable in 'Downloads' Module Permits SQL Injection and Cross-Site Scripting Attacks
17867| [1009958] Kaos news Lets Remote Users Download the Database Containing Passwords
17868| [1009945] IBM HTTP Server Can Be Crashed By Remote Users Sending Specially Crafted SSL Packets
17869| [1009902] PostNuke Downloads, Web_Links, 'openwindow.php' Input Validation Holes Let Remote Users Conduct Cross-Site Scripting Attacks
17870| [1009889] Cisco SNMP Bug Lets Remote Users Send SNMP Solicited Operations to Cause the Device to Reload
17871| [1009865] XChat Socks-5 Proxy Buffer Overflow Lets Remote Users Execute Arbitrary Code
17872| [1009825] ColdFusion MX File Upload Disk Space Management Bug Lets Remote Users Deny Service
17873| [1009762] Microsoft Windows COM Internet Services and RPC over HTTP Can Be Crashed By Remote Users
17874| [1009731] TikiWiki Multiple Input Validation Holes Let Remote Users Inject SQL Commands, Conduct Cross-Site Scripting Attacks, and Upload Files
17875| [1009717] FirstClass Client Buffer Overflow in Processing PROXYADDR Parameter Lets Local Users Execute Arbitrary Code
17876| [1009674] Macromedia Flash Null Pointer Assignment in LoadMovie() Lets Remote Users Deny Service
17877| [1009642] MondoSearch 'MsmHigh.exe' Can By Used As a Web Proxy By Remote Users
17878| [1009597] MPlayer Buffer Overflow in Parsing HTTP Location Header Lets Remote Servers Execute Arbitrary Code
17879| [1009548] Kerio WinRoute Firewall May Crash Due to Malformed HTTP Headers
17880| [1009513] ReGet Directory Traversal Bug May Cause Files to Be Downloaded to Arbitrary Locations
17881| [1009468] isakmpd Payload Handling Flaw Lets Remote Users Crash the Daemon
17882| [1009443] Twilight Utilities Web Server 'postfile.exe' Lets Remote Users Upload Files to Arbitrary Locations
17883| [1009439] PHP-Nuke Input Validation Holes in Feedback, Downloads, Journal, and Other Modules Permit Cross-Site Scripting Attacks
17884| [1009433] Phorum HTTP_REFERER and Other Input Validation Flaw Permits Cross-Site Scripting Attacks
17885| [1009395] MyProxy Input Validation Hole Lets Remote Users Conduct Cross-Site Scripting Attacks
17886| [1009318] Cisco Content Services Switch 11000 Series Can Be Reloaded By Remote Users
17887| [1009267] Squid Proxy Cache '%00' URL Character Access Control Bug May Let Remote Users Bypass Certain Access Controls
17888| [1009172] GateKeeper Proxy Buffer Overflow Lets Remote Users Execute Arbitrary Code
17889| [1009154] PSOProxy Buffer Overflow May Let Remote Users Execute Arbitrary Code
17890| [1009088] Sami HTTP Server Buffer Overflow Lets Remote Users Crash the Web Server
17891| [1009023] Monkey Web Server Can Be Crashed By HTTP GET Requests With No Host Value
17892| [1009016] BosDates 'calendar_download.php' Input Validation Flaw Lets Remote Users Inject SQL Commands
17893| [1008998] httpdpalm Lets Remote Users Crash the System
17894| [1008997] Jim Rees PalmOS httpd Can Be Crashed By Remote Users
17895| [1008947] Check Point FireWall-1 Format String Flaw in HTTP Component Lets Remote Users Execute Arbitrary Code
17896| [1008897] PHP-Nuke Input Validation Flaws in 'Downloads' and 'Sections' Permits SQL Injection
17897| [1008879] SurfNOW Proxy Service Can Be Denied By Remote Users
17898| [1008866] WebLogic Server and Express Input Validation Flaw in Processing HTTP TRACE Requests Permits Cross-Site Scripting
17899| [1008856] ProxyNow! Buffer Overflow Lets Remote Users Gain SYSTEM Privileges
17900| [1008842] Reptile Web Server HTTP Request Flaw Lets Remote Users Deny Service
17901| [1008838] Oracle HTTP Server 'isqlplus' Input Validation Flaws Let Remote Users Conduct Cross-Site Scripting Attacks
17902| [1008836] SurfinGate Proxy Mode Lets Remote Users Execute Application Commands
17903| [1008833] Sun Solaris modload() May Grant Root Access to Local Users
17904| [1008826] GeoVision GeoHttpServer Authentication Bypass Grants Access to Remote Users
17905| [1008822] Apache mod_perl File Descriptor Leak May Let Local Users Hijack the http and https Services
17906| [1008820] Mephistoles httpd Input Validation Flaw Permits Cross-Site Scripting Attacks
17907| [1008807] GeoHttpServer Can Be Crashed By a Remote User Sending a Long Password
17908| [1008788] DUpics Authentication Flaw Lets Remote Users Gain Administrative Access to the Application and Upload Arbitrary Files
17909| [1008786] DUdownload Authentication Flaw Lets Remote Users Gain Administrative Access to the Application
17910| [1008662] phpGroupWare Flaws Allow SQL Injection and PHP File Uploading
17911| [1008661] FreeProxy Input Validation Flaw Discloses Files to Remote Users
17912| [1008651] Yahoo! Messenger Download Filename Buffer Overflow May Let Remote Users Execute Arbitrary Code
17913| [1008563] Microsoft IIS Fails to Log HTTP TRACK Requests
17914| [1008559] Apache mod_php File Descriptor Leak May Let Local Users Hijack the https Service
17915| [1008554] Microsoft IE for Mac May Disclose Sensitive Information in Secure URLs to Remote Sites via HTTP Referer Field
17916| [1008549] Surfboard httpd Buffer Overflow May Allow a Remote User to Execute Arbitrary Code
17917| [1008526] CyberGuard Firewall Proxy Error Page Input Validation Flaw May Permit Cross-Site Scripting Attacks
17918| [1008477] Cisco Firewall Services Module (FWSM) Buffer Overflow in Cut-Through Proxy Authentication Lets Remote Users Crash the FWSM
17919| [1008469] mvdsv Quake Server Download Buffer Overflow Allows Remote Code Execution
17920| [1008463] LFTP Buffer Overflow in Processing HTTP Responses May Allow Remote Code Execution
17921| [1008460] Opera Web Browser Download Dialog Lets Remote Users Delete Arbitrary Files
17922| [1008342] Surfboard httpd Input Validation Flaw Lets Remote Users View Arbitrary Files on the System
17923| [1008265] Xitami Web Server Bug in Processing Certain HTTP POST Headers Lets Remote Users Deny Service
17924| [1008244] Kerio WinRoute Firewall Discloses Authentication Data to Remote Sites When Using Proxy Authentication
17925| [1008240] Half-Life Dedicated Server Discloses Configuration Files to Remote Users if Downloads Are Permitted
17926| [1008187] PostMast Proxy Server Permits Cross-Site Scripting Attacks
17927| [1008180] WebWasher Classic Proxy Input Validation Flaw Permits Remote Cross-Site Scripting Attacks
17928| [1008177] PeopleSoft PeopleTools iClient Lets Remote Users Upload and Execute Arbitrary Commands
17929| [1008156] BEA WebLogic Input Validation Flaw in Proxy Plug-in Lets Remote Users Crash the Service With Malformed URLs
17930| [1008075] IA WebMail Server Buffer Overflow in Processing HTTP Headers Lets Remote Users Execute Arbitrary Code
17931| [1008072] Plug and Play Web Server Proxy Service Can Be Crashed By Remote Users
17932| [1008068] frox FTP Proxy Can Be Crashed By Remote Users Conducting Port Scans
17933| [1008036] tc.SimpleWebServer Buffer Overflow in Processing the HTTP Referer Lets Remote Users Execute Arbitrary Code
17934| [1008031] thttpd 'Host' Header Directory Traversal Flaw May Disclose Files to Remote Users
17935| [1008015] sh-httpd Discloses Files to Remote Users
17936| [1008007] thttpd defang() Buffer Overflow Lets Remote Users Execute Arbitrary Code
17937| [1007980] Sun Java Runtime Environment Classloader Flaw May Let Untrusted Applets Gain Elevated Privileges
17938| [1007899] FirstClass HTTP Daemon Can Be Crashed By Remote Users
17939| [1007886] PHP-Nuke 'mailattach.php' Input Validation Flaw Lets Remote Users Upload Arbitrary Files and Execute Them
17940| [1007855] IBM DB2 Buffer Overflow in LOAD and INVOKE Commands Lets Remote Authenticated Users Execute Arbitrary Code
17941| [1007802] Null httpd Can Be Crashed By Remote Users Sending Incomplete HTTP POST Requests
17942| [1007799] Gauntlet Firewall 'sql-gw' Proxy Can Be Crashed By Remote Users Sending Invalid Data
17943| [1007797] TclHttpd 'dirlist.tcl' Discloses Directory Contents to Remote Users and Permits Remote Cross-Site Scripting Attacks
17944| [1007794] ProFTPD ASCII Mode File Upload Buffer Overflow Lets Certain Remote Users Execute Arbitrary Code
17945| [1007774] Xitami Web Server Can Be Crashed By Remote Users Sending Large HTTP GET Request Headers
17946| [1007708] Minihttp File Sharing for net Password Parsing Flaw Grants Admin Privileges to Remote Users
17947| [1007707] Minihttp Forum Web Server Password Parsing Flaw Grants Admin Privileges to Remote Users
17948| [1007566] AnalogX Proxy Input Validation Flaw Permits Remote Cross-Site Scripting Attacks Against Arbitrary Web Sites
17949| [1007553] Avant Browser Crashes When Loading a Long URL
17950| [1007470] Lil' HTTP Server Discloses Web Server Passwords to Local Users
17951| [1007460] FreeBSD 'ibcs2.ko' Loadable Kernel Module May Disclose Kernel Memory to Local Users
17952| [1007452] Xitami Web Server Fails to Log Non-HTTP Connections
17953| [1007383] Minihttp Forum Web Server Default Configuration Leaves Administrator Account Without a Password
17954| [1007364] IISShield May Fail to Drop a Specific Malformed HTTP Request
17955| [1007342] Cisco IOS Web Interface Buffer Overflow Lets Remote Users Send 2GB HTTP GET Requests to Execute Arbitrary Code
17956| [1007340] Small HTTP Server Discloses Administrator Password to Local Users
17957| [1007295] paFileDB Authentication Flaw Lets Remote Users Upload and Execute Arbitrary Code
17958| [1007278] Microsoft DirectX Heap Overflow in Loading MIDI Files Lets Remote Users Execute Arbitrary Code
17959| [1007230] Apache HTTP Server 'rotatelogs' Bug on Win32 and OS/2 May Cause the Logging to Stop
17960| [1007215] OmniHTTPd Web Server Has Input Validation Holes in Additional Sample Scripts That Let Remote Users Conduct Cross-Site Scripting Attacks
17961| [1007171] UMN Gopherd Buffer Overflows in GSisText() and in FTP Proxy Code Let Remote Users Execute Arbitrary Code
17962| [1007159] Mabry HTTPServer/X Discloses Files on the System to Remote Users
17963| [1007155] Q-Shop Shopping Cart Authentication Flaw Lets Remote Users Upload and Execute Arbitrary Code
17964| [1007126] Microsoft Internet Explorer Can By Crashed By Loading 'C:\aux' URL
17965| [1007111] ProductCart Shopping Cart Default Configuration Lets Remote Users Download the Shopping Database
17966| [1007104] Xbox Dashboard Font File Loader Integer Overflow Lets Local Users Execute Arbitrary Code
17967| [1007058] NetScreen HTTP, Telnet, and FTP Authentication Feature Can Be Bypassed in Certain Cases
17968| [1007007] Microsoft Internet Explorer Custom HTTP Error Pages May Let Remote Users Execute Scripts in the Local Computer Zone
17969| [1006992] myServer Web Server HTTP Parsing Flaw Lets Remote Users Crash the Web Service
17970| [1006945] Novell HTTPSTK Can Be Crashed By Remote Users
17971| [1006894] iisCART2000 Upload Authentication Error Lets Remote Users Upload and Execute Arbitrary Scripts
17972| [1006867] Microsoft IIS Buffer Overflow Lets Remote Users With Upload Privileges Execute Code - Remote Users Can Also Crash the Service
17973| [1006852] BRS WebWeaver HTTP Buffer Overflows Let Remote Users Crash the Web Service
17974| [1006845] AnalogX Proxy URL Buffer Overflow Lets Remote Users Execute Arbitrary Code With Administrator Privileges
17975| [1006836] CUPS Internet Printing Protocol HTTP Header Processing Flaw Lets Remote Users Deny Service
17976| [1006793] PHP-Nuke Input Validation Flaws in Several Modules (Sections, AvantGo, Surveys, Downloads, Reviews, Web_Links) Let Remote Users Inject SQL Commands
17977| [1006774] Microsoft Internet Explorer May Execute Arbitrary Code in the Wrong Security Domain When Processing Large Numbers of Download Requests
17978| [1006750] 3Com OfficeConnect DSL Router Memory Leak May Disclose Previous HTTP Request Data
17979| [1006670] Opera Web Browser Can Be Crashed When Downloading a File With a Long Filename Extension
17980| [1006666] SonicWALL Pro Can Be Crashed By Remote Users Due to Bug in Processing Large HTTP POST Requests
17981| [1006665] Pi3Web Server Can Be Crashed By Remote Users Sending Malformed HTTP GET Requests
17982| [1006634] Microsoft Internet Explorer Bugs (URLMON.DLL Buffer Overflow, File Upload Control Bypass, Plug-in URL Input Validation Flaw, CSS Modal Dialog Input Validation Flaw) Let Remote Users Execute Arbitrary Code or Access Local Files
17983| [1006616] AN HTTPD Web Server Sample Script ('count.pl') Lets Remote Users Create or Overwrite Files on the System.
17984| [1006551] KDE Configuration Flaw Lets Remote Users Create Files That Will Execute Arbitrary Commands When Loaded
17985| [1006546] CC Log Input Validation Hole in HTTP Header Fields Lets Remote Users Conduct Cross-Site Scripting Attacks
17986| [1006534] Microsoft Proxy Service in Proxy Server 2.0 Has Unspecified Flaw That Lets Remote Users Stop Traffic
17987| [1006513] Opera Browser Buffer Overflow in Loading URLs May Let Remote Users Execute Code
17988| [1006508] Coppermine Photo Gallery File Extension Validation Flaw Lets Remote Users Upload and Execute PHP Code
17989| [1006489] Abyss Web Server HTTP Header Validation Flaw Lets Remote Users Crash the Web Server
17990| [1006330] Mutt Buffer Overflow May Cause Arbitrary Code to Be Executed When Downloading Mail
17991| [1006299] Kebi Academy 2001 Input Validation Flaw Lets Remote Authenticated Users View and Upload Files from/to Arbitrary Locations on the Server
17992| [1006269] Opera Browser Download Filename Buffer Overflow Lets Remote Users Execute Arbitrary Code
17993| [1006260] DeleGate Overflow in Processing 'robots.txt' Fields Lets Remote Users Execute Arbitrary Code on the Proxy Server
17994| [1006258] PeopleSoft PeopleTools Input Filtering Bug in SchedulerTransfer Java Servlet Lets Remote Users Upload and Execute Arbitrary Code
17995| [1006254] Upload Lite Temporary File Bug Lets Remote Users Upload and Execute Arbitrary CGI Code on the Server
17996| [1006217] Uploader PHP Script Default Configuration Lets Remote Users Upload Arbitrary Files and Then Execute Them
17997| [1006105] [Indy]News Forum Software Lets Remote Users Upload Files to the System
17998| [1006099] Symantec's Norton Anti-Virus Fails to Work After Loading Corrupt Anti-Virus Definitions
17999| [1006079] Opera Browser May Execute Arbitrary Code When Loading a Malicious URL
18000| [1006069] Eggdrop IRC Bot Lets Certain Remote Authenticated Users Invoke the Bot as a Proxy
18001| [1006056] IlohaMail Input Validation Bug Lets Remote Authenticated Users Upload Files to the Server
18002| [1006003] Replicom ProxyView Default Configuration Gives Remote Users Full Access
18003| [1005943] Shambala Server FTP Input Validation Bugs Let Remote Authenticated Users View and Upload Files and Crash the Server
18004| [1005915] Middleman Proxy Buffer Overflow May Let Remote Users Execute Arbitrary Code on the Proxy Server
18005| [1005912] Mambo Site Server Input Validation Bugs Let Remote Authenticated Users Upload and Execute Code on the Server
18006| [1005901] Cgihtml Script Package Contains Multiple Flaws That Let Remote Users Deny Service or Upload Files to the System
18007| [1005889] HTTP Fetcher Buffer Overflows May Let Remote Servers Execute Arbitrary Code
18008| [1005886] AN HTTPD Web Server Discloses Installation Path to Remote Users
18009| [1005884] Winamp Buffer Overflow in Loading 'b4s' Playlists Lets Remote Users Execute Arbitrary Code on the Player
18010| [1005857] Microsoft Internet Explorer Bug in Loading Multimedia Files May Let Remote Users Execute Arbitrary Scripting Code in Other Domains
18011| [1005851] Junkbuster Proxy Default Configuration on Red Hat Linux Lets Remote Users Send SPAM Via the Proxy
18012| [1005815] Symantec VelociRaptor Firewall Buffer Overflow in RealAudio Proxy Allows Remote Users to Deny Service and Possibly Execute Arbitrary Code on the Firewall
18013| [1005814] Symantec Enterprise Firewall Buffer Overflow in RealAudio Proxy Allows Remote Users to Deny Service and Possibly Execute Arbitrary Code on the Firewall
18014| [1005792] Multi-Tech ProxyServer Default Configuration Gives Remote Users Control of the System
18015| [1005784] Apt-www-proxy Server Format String Hole Lets Remote Users Execute Arbitrary Commands
18016| [1005768] TrendMicro InterScan VirusWall Proxy Bug Lets Remote Users Connect to Internal Hosts Via the Proxy
18017| [1005730] Webster HTTP Server Multiple Bugs Let Remote Users Execute Arbitrary Code and View Files on the System
18018| [1005699] Microsoft Internet Explorer (IE) Java Class Loader Security Flaw Lets Remote Users Bypass Java Security Restrictions
18019| [1005698] Microsoft Java Virtual Machine (VM) Class Loader Security Flaw Lets Remote Users Bypass Java Security Restrictions
18020| [1005695] AOL Instant Messenger (AIM) File Sharing Bug May Let Remote Users Silently Force Downloads
18021| [1005690] acFreeProxy Server Input Validation Flaw Allows Remote Users to Conduct Cross-Site Scripting Attacks Against Proxy Server Users
18022| [1005645] Zeroo HTTP Server Buffer Overflow Lets Remote Users Execute Arbitrary Code on the Server
18023| [1005624] LibHTTPd Buffer Overflow Lets Remote Users Execute Arbitrary Code
18024| [1005600] Light HTTPd (lhttpd) Buffer Overflow Lets Remote Users Execute Arbitrary Code to Gain Shell Access on the System
18025| [1005599] eZ httpbench Tool Discloses Files on the System to Remote Users
18026| [1005598] Tiny HTTPd Input Validation Bug Discloses Files on the Server to Remote Users and Also Lets Users Execute Commands
18027| [1005524] Com21 DOXport Cable Modems Let Remote Users on the Local Network Load an Alternate Configuration File
18028| [1005505] Microsoft Internet Information Server (IIS) Script Access Control Bug May Let Remote Authenticated Users Upload Unauthorized Executable Files
18029| [1005490] AN HTTPD Web Server Lets Remote Users Conduct Cross-Site Scripting Attacks
18030| [1005472] IBM Web Traffic Express Caching Proxy Server Allows Cross-Site Scripting Attacks
18031| [1005471] IBM Web Traffic Express Caching Proxy Server Can Be Crashed By Remote Users
18032| [1005457] AN HTTPD Buffer Overflow in Processing SOCKS4 Requests Allows Remote Code Execution
18033| [1005442] IP Filter Linux Firewall Software FTP Proxy Bug Lets Remote Users Bypass the Rule Set
18034| [1005417] Web Server 4 Everyone Can Be Crashed By Remote Users Sending Long HTTP GET Requests
18035| [1005415] Symantec VelociRaptor Firewall Secure Web Proxy Lets Remote Users Cause Denial of Service Conditions
18036| [1005414] Symantec Enterprise Firewall (Raptor Firewall) Secure Web Proxy Lets Remote Users Cause Denial of Service Conditions
18037| [1005400] VBZooM Bulletin Board Lets Remote Users Upload and Execute Files
18038| [1005350] IBM HTTP Server (IHS) Input Validation Bug Lets Remote Users Conduct Cross-Site Scripting Attacks
18039| [1005301] WASD HTTP Server for OpenVMS Has Multiple Flaws That Disclose Information and Let Remote Users Gain SYSTEM Access
18040| [1005297] acWEB HTTP Server Bugs Let Remote Users Crash the System and Permit Cross-Site Scripting Attacks
18041| [1005293] Monkey HTTP Daemon Discloses Files on the System to Remote Users
18042| [1005272] Null httpd Web Server Heap Overflow Lets Remote Users Execute Arbitrary Code With Root Privileges
18043| [1005259] IBM WebSphere Can Be Crashed By Remote Users Sending Large HTTP Headers
18044| [1005247] TrendMicro InterScan VirusWall Scanner Can Be Bypassed With HTTP Chunked Transfer Encoded Packets
18045| [1005214] KDE Konqueror URL Decoding Inconsistency May Result in a Web Page Loading in the Incorrect Security Domain
18046| [1005182] Microsoft Internet Explorer URL Decoding Inconsistency May Result in a Web Page Loading in the Incorrect Security Domain
18047| [1005177] Microsoft Visual FoxPro Filename Processing Bug Lets Remote Users Create HTML That Will Cause Arbitrary Code to Be Executed When the HTML is Loaded
18048| [1005167] NullLogic's Null httpd Web Server Input Validation Bug Lets Remote Users Conduct Cross-site Scripting Attacks
18049| [1005137] OmniHTTPd Web Server Input Validation Holes in Sample Applications Let Remote Users Conduct Cross-Site Scripting Attacks
18050| [1005108] Microsoft Windows Media Player Allows Malicious Windows Media Download (.wmd) Files to Silently Create Files in a Known Location and Execute Them
18051| [1005063] Microsoft Windows XP Help and Support Center Hole Lets Remote Users Create URLs That, When Loaded, Will Delete Arbitrary Files on Your System
18052| [1004988] Tinyproxy Double Freed Memory Bug May Let Remote Users Execute Arbitrary Code on the System
18053| [1004957] Jana Web Server Buffer Overflow in Processing HTTP Commands May Let Remote Users Execute Arbitrary Code on the System
18054| [1004953] 602Pro LAN Suite Web Server and Telnet Proxy Bugs Let Remote Users Consume All Available Memory on the System
18055| [1004893] eUpload CGI Web-based File Upload Utility Access Control Flaw Discloses User Passwords to Remote Users
18056| [1004867] Lucent Access Point Routers Can Be Crashed By Remote Users Sending a Large HTTP GET Request to the Web Management Interface
18057| [1004798] World Wide Web Offline Explorer (WWWOFFLE) Proxy Buffer Overflow May Let Remote Users Execute Arbitrary Code on the System
18058| [1004759] ATPhttpd Web Server Buffer Overflows Let Remote Users Execute Arbitrary Code on the Server
18059| [1004751] Lil' HTTP Server 'pbcgi.cgi' Script Input Validation Flaw Allows Remote Users to Conduct Cross-site Scripting Attacks Against Web Server Users
18060| [1004736] Radio Community Server Default Configuration Lets Remote Users Create Users Accounts and Upload Arbitrary Files to the Server
18061| [1004722] Mac OS X SoftwareUpdate Feature Uses Unauthenticated Connections for Downloading and Automatically Installing Software Updates, Allowing Remote Users to Install Arbitrary Code on the System
18062| [1004704] Squid Proxy Cache Has Buffer Overflows in Processing Gopher and FTP Data and May Incorrectly Forward Proxy Authentication Credentials to Remote Web Sites
18063| [1004699] Noguska's NOLA Web-based Accounting and Inventory Management Package Lets Remote Users Upload and Execute PHP Code
18064| [1004675] AnalogX Proxy Server Buffer Overflow Lets Remote Users Execute Arbitrary Code on the System
18065| [1004672] OmniHTTPd Web Server Bug in Processing Long HTTP Protocol Parameters Allows Remote Users to Crash the Web Service
18066| [1004581] 4D Web Server Buffer Overflow in Processing Long HTTP Requests May Let Remote Users Execute Arbitrary Code or Crash the Service
18067| [1004572] Mozilla Mail Download Can Be Crashed By Remote Users Sending Malicious E-mail via POP3
18068| [1004571] Netscape Communicator Mail Download Can Be Crashed By Remote Users Sending Malicious E-mail via POP3
18069| [1004561] Cisco uBR7100/7200 Series Cable Modem Routers Have Integrity Verification Flaw That Lets Remote Users Load Alternate Configurations on the Router
18070| [1004518] Microsoft Proxy Server Buffer Overflow in Processing Gopher Protocol Responses Allows Remote Users to Execute Code on the Server to Gain Full Control of the Server
18071| [1004480] MetaMachine's 'eDonkey' File Sharing Software Has a Buffer Overflow May Let Remote Create URLs That Will Cause Arbitrary Arbitrary Code to Be Executed When Loaded
18072| [1004446] Squid Proxy Caching Server 'Msntauth' Authentication Module Format String Hole Lets Remote Users Execute Arbitrary Code on the Server
18073| [1004319] Hosting Controller Software for Web Hosting Companies Has Input Validation Errors in 'dsnmanager.asp' and 'imp_rootdir.asp' Scripts That Allow Remote Users to View Files on the System and Upload and Copy Files With Administrator Privileges
18074| [1004300] Microsoft Internet Explorer (IE) Zone Spoofing Hole Lets Remote Users Create HTML That, When Loaded, May Run in a Less-Secure IE Security Zone
18075| [1004241] Novel Border Manager Firewall Can Be Crashed By Remote Users Sending Specially Crafted Packets to the FTP Proxy, IP/IPX Gateway, or RTSP Proxy Ports
18076| [1004221] Squid_auth_ldap LDAP Authentication Module for the Squid Proxy Server Has Format String Bugs That Let Remote Users Execute Arbitrary Shell Commands on the System
18077| [1004211] 4D Web Server Buffer Overflow in Processing Basic HTTP Authentication Lets Remote Users Crash the Server and May Allow Arbitrary Code to Be Executed
18078| [1004191] Sun Solaris 'lbxproxy' Display Name Buffer Overflow Lets Local Users Obtain Root Group Privileges
18079| [1004187] Mozilla Browser XMLHTTP Redirect Bug Lets Remote Users View Files on a User's Computer
18080| [1004186] Netscape Browser XMLHTTP Redirect Bug Lets Remote Users View Files on a User's Computer
18081| [1004134] ICQ Instant Messaging Client Can Be Crashed When Malformed '.hpf' Files are Loaded
18082| [1004123] Lil' HTTP Server Discloses Files Located Outside of the Web Document Directory to Remote Users and Allows Remote Users to Conduct Cross-site Scripting Attacks Against Administrators
18083| [1004080] AOLserver Format String Flaw and Buffer Overflow in 'libnspd.a' API for External Database Driver Proxy Daemons May Let Remote Users Execute Arbitrary Code
18084| [1004056] Symantec Enterprise Firewall (Raptor) FTP Proxy Allows Remote Users to Conduct FTP Bounce Attacks Using Protected FTP Servers
18085| [1004014] Microsoft Internet Information Server ASP HTTP Header Processing Buffer Overflow Lets Remote Users Execute Arbitrary Code on the Server
18086| [1003992] Funk Software Proxy Remote Control Software May Let Remote Users Gain Unauthorized Access to the System
18087| [1003905] Cisco CallManager Memory Leak Lets Remote Users Cause the Server to Crash and Reload.
18088| [1003896] Squid Proxy Caching Server Heap Overflow in Processing Compressed DNS Responses Could Allow Remote DNS Servers to Crash the Service
18089| [1003873] Imlib Image Loader malloc() Argument Bug May Let Local Users Execute Arbitrary Code on the System
18090| [1003855] PHP safe_mode Restrictions Can Be Bypassed By Remote Users Via the 'move_uploaded_file' Function
18091| [1003839] Microsoft Internet Explorer (IE) 6 Lets Remote Users Cause Files to Be Downloaded and Executed Without the Knowledge or Consent of the Victim
18092| [1003778] Cobalt XTR User Interface Access Control Issue and File Uploading Authentication Bug Let Local Users Write to Files with Root Privileges
18093| [1003743] Thttpd Web Server Filtering Flaw Lets Remote Users Steal Cookies Via Cross-Site Scripting Attacks
18094| [1003740] Zope Web Application Content Server Proxy Role Error May Let Users Access Unauthorized Objects
18095| [1003732] Netscape Web Broswer Java Environment Lets Remote Malicious Applets Redirect Web Proxy Connections
18096| [1003731] Sun Java Runtime Environment (JRE) Lets Remote Malicious Applets Redirect Web Proxy Connections
18097| [1003730] Microsoft Java Virtual Machine in Internet Explorer Lets Remote Malicious Applets Redirect Web Proxy Connections
18098| [1003700] Network Associates Gauntlet Firewall Proxy Bug Lets Remote Users Bypass Some Access Controls and Connect to Arbitrary Ports on Internal/Protected Hosts
18099| [1003676] PHP File Upload Bugs Let Remote Users Execute Arbitrary Code on a PHP-enabled Web Server
18100| [1003643] FreeRADIUS Authentication Server (and Possibly Other RADIUS Servers) May Become Overloaded By a Remote Flood of Access-Request Packets from a Single User
18101| [1003639] Squid Proxy Cache Server Buffer Overflow Lets Remote Users Create Denial of Service Conditions and May Let Remote Users Execute Arbitrary Code on the System
18102| [1003636] Trend Micro's InterScan VirusWall Proxy Bug Lets Remote Users Bypass Some Access Controls and Connect to Arbitrary Ports on Internal/Protected Hosts
18103| [1003635] Finjan SurfinGate Proxy Bug Lets Remote Users Bypass Some Access Controls and Connect to Arbitrary Ports on Internal/Protected Hosts
18104| [1003614] Symantec Enterprise Firewall (Raptor) SMTP Proxy Fails to Fully Rewrite Some SMTP Headers
18105| [1003613] Lil' HTTP Server Discloses Files in Password Protected Directories on the Web Server to Remote Users
18106| [1003604] RealSystem Server and RealSystem Proxy Buffer Overflows May Let Remote Users Execute Arbitrary Code on the Server or Cause the Server to Crash
18107| [1003598] ScriptEase Mini WebServer Can Be Crashed By Remote Users Sending Long HTTP Requests
18108| [1003584] Dino's WebServer Can Be Crashed By Remote Users Sending Multiple Long HTTP GET Requests
18109| [1003553] DansGuardian Web Content Filtering Proxy Bug Lets Remote Users Bypass File Name Extension Filtering Restrictions
18110| [1003474] DeleGate Proxy Server Has Multiple Buffer Overflow Vulnerabilities That Let Remote Users Execute Arbitrary Code on the Server
18111| [1003466] Opera Web Browser Allows Cross-site Scripting Attacks Via Non-HTTP Servers
18112| [1003462] Microsoft Internet Explorer Web Browser Allows Cross-site Scripting Attacks Via Non-HTTP Servers
18113| [1003419] Microsoft Site Server Commerce Edition Lets Remote Users With Valid NT Accounts Upload and Then Execute ASP Scripts on the Server or Consume Disk Space on the Server
18114| [1003411] NETGEAR Router Web Content Filtering Mechanism Can Be Bypassed By Remote Users With Certain Malformed HTTP GET Requests
18115| [1003403] UBBThreads Bulletin Board Application Lets Remote Users With Accounts on the Bulletin Board Upload Files With Prohibited Extensions, Including PHP Scripts Which Can Subsequently Be Executed on the System
18116| [1003391] Cisco Catalyst CatOS Telnet Daemon Buffer Overflow Lets Remote Users Crash and Reload the Switch
18117| [1003331] Chuid File Permission Utility Incorrectly Lets Users Change Permission of Files Located Outside of the Upload Directory and Files Owned By Root
18118| [1003282] Avirt Gateway Web Proxy Buffer Overflow Lets Remote Users Execute Arbitrary Code on the Server with SYSTEM Level Privileges
18119| [1003281] Avirt Gateway Suite Telnet Proxy Flaw Gives Remote Users Telnet Command Line Access to the Server With SYSTEM Level Privileges
18120| [1003251] Sapporo Works 'BlackJumboDog' Web Proxy Buffer Overflow Lets Remote Users Execute Arbitrary Code on the Host Running the Proxy
18121| [1003210] Pi3Web HTTP Server Can Be Crashed By Remote Users Sending Long CGI Parameters
18122| [1003170] Cisco SN 5420 Storage Router Bugs Disclose the Router Configuration to Remote Users and Allow Remote Users to Crash the Router With Large HTTP Headers or Fragmented Packets
18123| [1003133] PostNuke Downloads Module 'ttitle' Parameter Allows Cross-Site Scripting Attacks
18124| [1003125] Hosting Controller Windows-based Web Hosting Management Software Lets Remote Users Establish Administrator Accounts and Upload and Execute Arbitrary Code on the Server
18125| [1003116] PHPFileExchange Web-Based File Storage System Has Access Control Bug That Allows Remote Users With Valid Accounts to Upload Files to Read-Only Directories
18126| [1003111] Pine E-mail Client Allows Remote Users to Send Malicious URLs Within a Message That Will Execute Arbitrary Shell Commands on the Recipient's Host When the URL is Loaded
18127| [1003103] Anti-Web HTTPD (awhttpd) Web Server Can Be Crashed By Local Users
18128| [1003096] Sfxload Sound Font Loader Component of AWESFX Utility Package Has Buffer Overflow That May Allow a Local User to Obtain Elevated Privileges on the Host
18129| [1003068] DeleGate Proxy Server Allows Cross-Site Scripting Attacks
18130| [1003065] ELSA Lancom Router Discloses the Administrator Password to Remote Users, Allowing Them to Change the Router's Configuration and Upload Modified Firmware
18131| [1003038] IBM AIX Loadable Authentication Modules Gives Root Access to Remote Users
18132| [1003002] WMCube/GDK Load Monitoring Tool Has Buffer Overflow That Lets Local Users Gain Elevated Privileges
18133| [1002988] Tivoli SecureWay Policy Director WebSEAL Server Can Be Crashed By Remote Users Appending '%2e' to HTTP Requests
18134| [1002970] ATPhttpd Web Server Can Be Crashed By Remote Users Sending Long URLs
18135| [1002957] Microsoft Internet Information Server Can Be Crashed By Remote Users With HTTP Requests Containing Invalid Content-Length Values
18136| [1002908] Platform Computing's Platform LSF Load Sharing Application Contains Multiple Flaws, Disclosing Files to Local Users, Giving Local Users Root Access, and Crashing When Remote Users Send Malformed Packets
18137| [1002890] Outlook Express for Macintosh May Crash While Downloading POP3 Mail Containing a Long Line
18138| [1002878] AspUpload Default Configuration Installs Scripts That Allow Remote Users to Upload Arbitrary Files to the Server and Rename Those Files
18139| [1002867] Frox FTP Proxy Server May Allow Remote Users to Execute Arbitrary Code on the Server in a Certain Configuration
18140| [1002820] Microsoft Internet Explorer Allows Malicious Web Pages to Spoof Downloadable File Types And Execute Code on the User's Computer When Opened Directly from the Browser
18141| [1002818] Oracle9iAS Web Cache Can Be Crashed By Remote Users Sending Malformed HTTP Content Length Header
18142| [1002783] Thttpd Web Server Has a One Byte Buffer Overflow That Allows Remote Users to Execute Arbitrary Code
18143| [1002752] Cisco 12000 Series Internet Routers Can Be Degraded or Crashed By Remote Users Due to CPU Overloading in Generating ICMP Unreachable Messages
18144| [1002743] mini_httpd Web Server Discloses Password-Protected and Non-Readable Files to Remote Users
18145| [1002742] thttpd Web Server Discloses Password-Protected and Non-Readable Files to Remote Users in Certain Configurations
18146| [1002721] Rational ClearCase Configuration Management Software Buffer Overflow in db_loader Lets Local Users Execute Arbitrary Code with Root Level Privileges
18147| [1002713] Symantec Enterprise Firewall (Raptor Firewall) Netbios Proxy Can Be Crashed By Remote Users and UDP Proxy Can Be Made to Consume All CPU Resources
18148| [1002712] IBM AS/400 HTTP Server Discloses Source Code of Java Server Pages to Remote Users
18149| [1002600] Mozilla Browser Will Return HTTP Cookies to an FTP Server at the Same Domain as the HTTP Server, Which Could Be a Different Domain if the HTTP Server is Hosting Virtual Domains
18150| [1002594] Microsoft Internet Explorer for Mac OS X is Configured to Automatically Execute Downloaded Files
18151| [1002526] Microsoft Internet Explorer (IE) Web Browser Has Multiple URL-related Flaws That May Allow for Remote Code Execution, Remote HTTP Request Generation, and Application of Incorrect Security Restrictions
18152| [1002466] Meteor FTP Server Directory Traversal Security Hole Lets Remote Users Download Files From the Server That Are Located Outside the FTP Directory
18153| [1002459] PHP-Nuke Lets Remote Users Upload Files to the Server and Copy Files on the Server, Yielding User Level Access on the Server
18154| [1002439] Squid Proxy Caching Server Can Be Crashed by Remote Users with Mkdir PUT Requests
18155| [1002301] HP-UX Process Resource Manager (PRM) and Workload Manager (WLM) Allow Local Users to Obtain Root Level Privileges on the Host
18156| [1002267] AOLserver Can Be Crashed By Remote Users With a Long HTTP Authentication String And May Execute Arbitrary Code
18157| [1002229] Dynu FTP Server Lets Remote Users Traverse the Directory and Download Files Outside of the FTP Server Directory
18158| [1002187] Sambar Telnet Proxy/Server Password Buffer Overflow May Allow Remote Users to Execute Arbitrary Code on the Server
18159| [1002074] Proxomitron Web Filtering Proxy Allows Remote Users to Conduct Cross-site Scripting Attacks and Cause Arbitrary Code to be Executed by the Proxomitron Users' Browser, Possibly Disclosing Cookies
18160| [1002056] Tcl/Tk May Load Malicious Libraries That Can Give Root Privileges to Local Users
18161| [1002050] OmniSecure's HTTProtect Temporary File Flaw May Let Local Users Overwrite Files
18162| [1002045] Squid Proxy Caching Server Lets Remote Users Conduct Portscans Against Other Hosts Via the Squid Server in Certain Configurations
18163| [1002034] Caldera Docview Documentation Web Server Lets Local Users Gain Httpd User Account Privileges
18164| [1002013] HP/UX 11.11 Dynamically Loadable Kernel Modules Feature Lets Local Users Get Root Privileges
18165| [1001956] Xloadimage Used By Netscape Browser May Execute Arbitrary Code Specified By a Malicious Remote Web Server
18166| [1001905] Small HTTP Server Can Be Crashed By Remote Users
18167| [1001893] Another Buffer Overflow in GazTek ghttpd Web Server Lets Remote Users Execute Arbitrary Code on the Server
18168| [1001854] Cisco IOS Gives Remote Users Full Control of IOS Devices When HTTP Server Authentication with Local Authorization is Enabled
18169| [1001801] SurfControl's SuperScout Web Filter Fails to Block Packets Relayed Via Proxy Servers
18170| [1001772] GazTek ghttpd Web Server Executes Arbitrary Code Supplied By Remote Users
18171| [1001713] WatchGuard Firebox Firewall SMTP Proxy Fails to Block E-mail Based Executables and Scripts in Certain Conditions
18172| [1001618] OmniHTTP Web Server Allows Remote Users to Obtain Source Code of PHP Scripts and to Cause the Server to Consume All CPU Cycles
18173| [1001607] Cisco IOS Router Software May Reload Itself After Receiving a Vulnerability Scan
18174| [1001606] Norton AntiVirus E-mail Virus Scanner Module (poproxy.exe) Allows Remote Users to Cause the Host to Crash
18175| [1001555] OmniHTTPd Pro Web Server Can Be Crashed By Remote Users
18176| [1001475] CrushFTP Java-based FTP Server Lets Remote Users Change Directories and Download Files Outside of the FTP Server's Root Document Directory
18177| [1001427] Small HTTP Server Can Be Crashed By Remote Users
18178| [1001400] Opera Web Browser May Execute Files Selected for Download Instead of Prompting the User for Approval
18179| [1001378] RitLab's The Bat! E-Mail Client Allows a User's E-Mail to Be Made Unretrievable When Downloading a Specifically Formatted E-Mail Message
18180| [1001311] Netscape's SmartDownload Can Automatically Execute Arbitrary Code Without User Intervention or Knowledge for Both Netscape and Microsoft Browsers
18181| [1001248] Savant Web Server Can Be Crashed Remotely With Certain HTTP Requests
18182| [1001153] Symantec (Axent) Raptor Firewall May Allow Unauthorized Access Through the Firewall Using the HTTP Protocol
18183| [1001149] Nearly All of Compaq's Web-Enabled Management Software Inadvertently Acts As a Web Proxy Server, Allowing Web Surfers to Bypass Normal Proxy Server Filtering
18184| [1001139] SurfControl for Microsoft Proxy Server May Fail to Block Sites
18185| [1000992] WhitSoft's SlimServe HTTPd Web Server Gives Users Remote Access to Files Outside of the Server's Main Directory
18186|
18187| OSVDB - http://www.osvdb.org:
18188| [90557] Apache HTTP Server mod_proxy_balancer balancer-manager Interface Multiple Parameter XSS
18189| [75647] Apache HTTP Server mod_proxy_ajp Module mod_proxy_balancer HTTP Request Remote DoS
18190| [43259] Apache HTTP Server on Windows mod_proxy_balancer URL Handling Remote Memory Corruption
18191| [42937] Apache HTTP Server mod_proxy_balancer balancer-manager Unspecified CSRF
18192| [40264] Apache HTTP Server mod_proxy_balancer balancer_handler Function bb Variable Remote DoS
18193| [40263] Apache HTTP Server mod_proxy_balancer balancer-manager Multiple Parameter XSS
18194| [94090] Wireshark HTTP Dissector packet-http.c http_payload_subdissector Function Crafted Packet Handling Remote DoS
18195| [93048] IBM Sterling Secure Proxy HTTP Header Web Server Version Disclosure
18196| [92200] MiniWeb HTTP Server Non-existent Directory Arbitrary File Upload
18197| [92198] MiniWeb HTTP Server filename Parameter Traversal Arbitrary File Upload
18198| [91975] HAProxy HTTP Content Inspection Mechanism HTTP Request Handling Remote Overflow DoS
18199| [91703] Google Chrome PPB_URLLoader_Proxy::OnMsgReadResponseBodyAck URL Loader Out-of-bounds Memory Disclosure
18200| [91613] Zend Framework Multiple Class HTTP Header Proxy Information Handling Spoofing Weakness
18201| [91137] Flexera AdminStudio / InstallShield ActiveX (ISProxy.dll ) Multiple Method DLL Loading Arbitrary Code Execution
18202| [90736] Zen Load Balancer Multiple Unspecified Issues
18203| [90422] Mozilla Multiple Product Proxy 407 Response HTTPS Address Spoofing
18204| [89275] Apache HTTP Server mod_proxy_ajp Module Expensive Request Parsing Remote DoS
18205| [88581] Squid Web Proxy HTTP Accelerator Mode Proxied Port Scan Weakness
18206| [88287] Squid Crafted XMLHttpRequest Remote Proxy-Authorization Cleartext Credential Disclosure
18207| [88274] TVMOBiLi Media Server HttpUtils.dll CHTTPServerTransaction::LoadFile() Method Request Parsing Overflow
18208| [88239] BugTracker.NET download_file.aspx filename Parameter HTTP Response Splitting
18209| [88174] TVMOBiLi Media Server HttpUtils.dll CHTTPServerTransaction::LoadResource() Method Request Parsing Overflow DoS
18210| [88016] BlackJumboDog HTTP Proxy Multiple String Parsing Remote Overflow
18211| [87958] IBM WebSphere Message Broker ProxyServlet / MQ HTTP Connection Cleartext Credential Disclosure
18212| [87457] Tor Directory Connection HttpProxyAuthenticator Remote Fingerprinting Weakness
18213| [86549] libproxy px_pac_reload() Function Content-Length Header Handling Remote Overflow
18214| [85838] 602Pro LAN SUITE HTTP Proxy-Authorization Header Handling Remote Overflow DoS
18215| [85809] RubyGems HTTPS to HTTP Redirection MitM Downloaded Installation File Manipulation
18216| [85692] Zen Load Balancer content3-2.cgi if Parameter Remote Command Execution
18217| [85691] Zen Load Balancer upload.cgi Arbitrary File Upload
18218| [85690] Zen Load Balancer Multiple Directory Permissions Weakness Information Disclosure
18219| [85654] Zen Load Balancer content2-2.cgi Multiple Parameter Remote Command Execution
18220| [85584] Cisco Application Control Engine (ACE) Module for Cisco Catalyst Load Balancer (LB) Queue Monitoring Application Traffic Parsing Remote DoS
18221| [85090] Apache HTTP Server mod_proxy_ajp.c mod_proxy_ajp Module Proxy Functionality Cross-client Information Disclosure
18222| [85089] Apache HTTP Server mod_proxy_http.c mod_proxy_http Module Cross-client Information Disclosure
18223| [84319] Scrutinizer NetFlow and sFlow Analyzer HTTP Request Parsing Arbitrary File Upload
18224| [83057] Python SimpleHTTPServer Module Crafted Filename Upload Directory Listing XSS
18225| [82774] HAProxy http_auth_group() Function User Parsing Weakness
18226| [82768] HAProxy Secure / HttpOnly Flag Cookie Weakness
18227| [82651] SEIL Routers HTTP-Proxy/Gateway HTTP Request Parsing URL Filter Bypass
18228| [81524] Mozilla Multiple Product RSS / Atom XML HTTPS Content Loading URL Spoofing Weakness
18229| [81164] Squid Proxy HTTP Header Host Field Parsing URL Filter Bypass
18230| [79290] Google Chrome Translation Script Unsafe HTTP Download UXSS
18231| [78987] CVS src/client.c proxy_connect() Function HTTP Version Response Parsing Remote Overflow
18232| [78774] Mozilla Multiple Products IPv6 Proxy Generated XMLHttpRequest Object Handling Remote Information Disclosure
18233| [78667] Oracle Java SE / Java for Business java:classes_net HttpsUrlConnection Authenticated Proxy Tunnel Handling Overflow
18234| [77444] Apache HTTP Server mod_proxy Mdule Web Request HTTP/0.9 Protocol URL Parsing Proxy Remote Security Bypass
18235| [77310] Apache HTTP Server mod_proxy Reverse Proxy Mode Security Bypass Weakness (2011-4317)
18236| [76079] Apache HTTP Server mod_proxy Mdule Web Request URL Parsing Proxy Remote Security Bypass (2011-3368)
18237| [74346] HAProxy src/proto_http.c manage_server_side_cookies() Function HTTP Set-Cookie Header Remote DoS
18238| [73624] PHP Streams Component HTTP Proxy FTP Wrapper ftp:// URL DoS
18239| [73354] IBM WebSphere Application Server (WAS) HTTP Transport SIP Proxy UDP Message Saturation Remote DoS
18240| [71647] Apache HttpComponents HttpClient Proxy-Authorization Credentials Remote Disclosure
18241| [69817] Microsoft SharePoint Office Document Load Balancer Crafted SOAP Request Remote Code Execution
18242| [69667] Google Chrome HTTP Proxy Authentication Required Response Handling DoS
18243| [68162] OmniVista 4760 HTTP Proxy Crafted HTTP Request Remote Overflow
18244| [67296] WebKit loader/DocumentThreadableLoader.cpp XMLHttpRequest Cross-origin Request Credential Handling Weakness
18245| [67270] Blue Coat ProxySG HTTPS Privilege Enforcement Bypass
18246| [66727] PHP HTTP Upload Unspecified DoS
18247| [65661] Spring Framework class.classLoader.URLs[0]=jar: Crafted JAR File HTTP Request Arbitrary Code Execution
18248| [65654] Apache HTTP Server mod_proxy_http mod_proxy_http.c Timeout Detection Weakness HTTP Request Response Disclosure
18249| [65157] sblim-sfcb httpAdapter.c GetPayload Function Content-Length Header Multiple Overflow
18250| [64504] Consona SdcUser.TgConCtl ActiveX (tgctlcm.dll) HTTPDownloadFile Arbitrary Command Execution
18251| [64002] WebKit DocumentThreadableLoader::preflightFailure Synchronous Preflight XMLHttpRequest CSRF
18252| [62676] Apache HTTP Server mod_proxy_ajp Module Crafted Request Remote DoS
18253| [62674] Apache HTTP Server mod_isapi Module Unloading Crafted Request Remote DoS
18254| [62009] Apache HTTP Server src/modules/proxy/proxy_util.c mod_proxy ap_proxy_send_fb() Function Overflow
18255| [60010] HP Praesidium Webproxy Crafted HTTP Request Forwarding Weakness
18256| [60001] HP LoadRunner Persits.XUpload.2 ActiveX (XUpload.ocx) MakeHttpRequest Method Traversal Arbitrary File Creation
18257| [59022] Apache Shindig ConcatProxyServlet HTTP Header Response Splitting
18258| [57882] Apache HTTP Server mod_proxy_ftp Authorization HTTP Header Arbitrary FTP Command Injection
18259| [57851] Apache HTTP Server mod_proxy_ftp EPSV Command NULL Dereference Remote DoS
18260| [57367] Universal HTTP Upload ActiveX (UUploaderSvrD.dll) Arbitrary File Deletion
18261| [56712] Live Chat Component for Joomla! xmlhttp.php Open HTTP Proxy
18262| [56489] Microsoft IE Proxy Server CONNECT Response Cached Certificate Use MiTM HTTPS Site Spoofing
18263| [56488] Google Chrome Proxy Server CONNECT Response Cached Certificate Use MiTM HTTPS Site Spoofing
18264| [56487] Opera Proxy Server CONNECT Response Cached Certificate Use MiTM HTTPS Site Spoofing
18265| [56247] Akamai Download Manager ActiveX manager.exe Redswoosh Download HTTP Response Handling Overflow
18266| [55653] MiniWeb HTTP Server Crafted Request Forced File Download / Source Disclosure
18267| [55553] Apache HTTP Server mod_proxy Module mod_proxy_http.c stream_reqbody_cl Function CPU Consumption DoS
18268| [55133] Mozilla Firefox HTTP Host Header Proxy Server CONNECT Response Document Context SSL Tampering Weakness
18269| [55132] Google Chrome src/net/http/http_transaction_winhttp.cc HTTP Host Header Proxy Server CONNECT Response Document Context SSL Tampering Weakness
18270| [55129] Microsoft IE HTTP Host Header Proxy Server CONNECT Response Document Context SSL Tampering Weakness
18271| [54768] IPFilter ippool lib/load_http.c URL Hostname Handling Local Overflow
18272| [53921] Apache HTTP Server mod_proxy_ajp Cross Thread/Session Information Disclosure
18273| [53396] Versalsoft HTTP Image Uploader ActiveX (UUploaderSvrD.dll) RemoveFileOrDir Method Arbitrary File Deletion
18274| [52413] Blue Coat ProxySG Transparent Interception Mode HTTP Host Header Dependancy Media Access Control Bypass
18275| [52412] Ziproxy Transparent Interception Mode HTTP Host Header Dependancy Media Access Control Bypass
18276| [51745] Free Download Manager (FDM) Remote Control Server HTTP Authorization Header Handling Overflow
18277| [50714] Blue Coat ProxySG Management Console /Secure/Local/console/install_upload_from_file.htm file Parameter XSS
18278| [50066] FlexCell Grid FlexCell.Grid ActiveX (FlexCell.ocx) HttpDownloadFile() Method Arbitrary File Overwrite
18279| [48528] CCProxy HTTP Proxy CONNECT Request Handling Remote Overflow
18280| [47866] Ultra.Office ActiveX (OfficeCtrl.ocx) HttpUpload() Method Overflow
18281| [47512] HTTP Anti Virus Proxy (HAVP) Infinite Loop Connection Saturation DoS
18282| [47474] Apache HTTP Server mod_proxy_ftp Directory Component Wildcard Character XSS
18283| [46085] Apache HTTP Server mod_proxy ap_proxy_http_process_response() Function Interim Response Forwarding Remote DoS
18284| [44577] phpMyAdmin Crafted HTTP Request UploadDir Parameter Arbitrary File Access
18285| [44345] Coppermine Photo Gallery upload.php Content-Type HTTP Header SQL Injection
18286| [44135] Nortel VPN Gateway Malformed HTTP Request SSL Proxy Remote DoS
18287| [44132] Nortel iSD-SSL Malformed HTTP Request SSL Proxy Remote DoS
18288| [43913] Perlbal lib/Perlbal/ClientProxy.pm Chunked Upload File Upload Handling Overflow DoS
18289| [42507] HTTP File Server (HFS) Traversal Arbitrary File Upload
18290| [42214] Apache HTTP Server mod_proxy_ftp UTF-7 Encoded XSS
18291| [42122] Kerio WinRoute Firewall Proxy Server Unspecified HTTP Fallback
18292| [41862] DeleGate HTTP Cache Proxy Unspecified DoS
18293| [41019] Apache HTTP Server mod_negotiation Module Multi-Line Filename Upload XSS
18294| [41018] Apache HTTP Server mod_negotiation Module Multi-Line Filename Upload CRLF
18295| [39291] ELinks https Proxy CONNECT Request Cleartext Information Disclosure
18296| [38832] EDraw Office Viewer Component ActiveX (officeviewer.ocx) HttpDownloadFileToTempDir Method Overflow
18297| [38794] EDraw Office Viewer Component ActiveX (officeviewer.ocx) HttpDownloadFile Method Traversal Arbitrary File Overwrite
18298| [38665] F5 Firepass SSL VPN download_plugin.php3 backurl Parameter XSS
18299| [38415] EDraw Flowchart EDIMAGE.EDImageCtrl ActiveX (EDImage.ocx) HttpDownloadFile() Method Arbitrary File Overwrite
18300| [37345] Astaro Security Gateway (ASG) HTTP Proxy Unspecified DoS
18301| [37051] Apache HTTP Server mod_proxy modules/proxy/proxy_util.c Crafted Header Remote DoS
18302| [36992] Bitflux Upload Progress Meter uploadprogress.c uploadprogress_php_rfc1867_file Function HTTP POST Overflow
18303| [36980] 3Proxy HTTP Redirection Unspecified DoS
18304| [36074] BEA WebLogic HttpClusterServlet / HttpProxyServlet SecureProxy Admin Functionality Access
18305| [36045] EDraw Office Viewer Component ActiveX (edrawofficeviewer.ocx) HttpDownloadFile Method Overflow
18306| [35237] 3Proxy HTTP Proxy Crafted Transparent Request Remote Overflow
18307| [35033] WebCreator http/load.inc.php moddir Parameter Remote File Inclusion
18308| [34339] HTTP File Uploader ActiveX (UFileUploaderD.dll) AddFile Method Overflow
18309| [33097] Blue Coat WinProxy HTTP CONNECT Request Overflow
18310| [28428] Ruby on Rails File Upload Request HTTP Header Unspecified Issue
18311| [27944] libmusicbrainz MBHttp::Download Redirect HTTP Reply Overflow
18312| [26300] Mozilla Multiple Products via Proxy Server HTTP Response Smuggling
18313| [26008] PHPGallue Proxy Cache HTTP Header Information Disclosure
18314| [25940] Etype Eserv/3 HTTP Server File Upload Name Validation Bypass
18315| [25565] phpBB usercp_avatar.php Arbitrary HTTP Proxy
18316| [22876] HTTP Anti Virus Proxy Multiple AV Scanner Failure
18317| [22853] Blue Coat ProxySG SGOS HTTP Proxy Arbitrary Port Connection
18318| [22237] Blue Coat WinProxy HTTP Request Overflow DoS
18319| [21762] Microsoft IE HTTPS Proxy Basic Authentication URL Cleartext Transmission
18320| [19792] Astaro Security Linux Proxy index.fpl wfe_download Parameter Traversal Arbitrary File Access
18321| [19008] Simpleproxy HTTP Proxy Reply Remote Format String
18322| [18284] Netquery HTTP GET Request Panel Unauthorized Proxy
18323| [16388] Mozilla with Proxy HTTP Header Arbitrary Cookie Disclosure
18324| [16082] Apple Mac OS X Server HTTP Proxy Unrestricted Access
18325| [16014] IBM Web Traffic Express Caching Proxy Server HTTP GET Request XSS
18326| [15413] Linux Kernel Equalizer Load-balancer (eql.c) Local DoS
18327| [14573] HTTP Anti Virus Proxy Archive Scanning Failure
18328| [14270] Sun Java JRE HTTP Proxy Java Applet Session Hijack
18329| [14155] BitlBee HTTP Proxy Support Unspecified Security Issue
18330| [12558] Apache HTTP Server IPv6 FTP Proxy Socket Failure DoS
18331| [12191] Falk eSolutions FLB02/CP Load Balancer Redirect Failure
18332| [11638] Bajie HTTP JServer UploadServlet upload.html File Upload Arbitrary Program Execution
18333| [11593] CCProxy Logging Component HTTP GET Request Remote Overflow
18334| [11375] ezContents uploadfile.php HTTP POST Arbitrary File/Directory Modification
18335| [9742] Apache HTTP Server mod_ssl char_buffer_read Function Reverse Proxy DoS
18336| [9688] Apache HTTP Server mod_proxy Malformed FTP Command DoS
18337| [7929] Apache HTTP Server mod_ssl ssl_engine_log.c mod_proxy Hook Function Remote Format String
18338| [7714] AnomicHTTPProxy Invalid HTTP Command Proxy Localhost Block
18339| [7713] AnomicHTTPProxy Administration Password Dementia
18340| [7709] AnomicHTTPProxy Double Dot Arbitrary File Access
18341| [6839] Apache HTTP Server mod_proxy Content-Length Overflow
18342| [6804] Avirt Gateway/Gateway Suite/SOHO HTTP Proxy Overflow
18343| [6187] Trend Micro InterScan VirusWall HTTP CONNECT Proxying
18344| [6162] Trend Micro InterScan VirusWall HTTP Proxy Content Scanning Circumvention
18345| [4433] Check Point FireWall-1 HTTP Proxy Traffic Bypass
18346| [4366] Symantec Personal Firewalls HTTP Proxy Remote Overflow
18347| [4028] PSOProxy Long HTTP Request Overflow
18348| [4015] Jigsaw HTTP Proxy Error Page XSS
18349| [3876] Jack's formmail.php Malformed HTTP Referer Arbitrary File Upload
18350| [3732] Gaim HTTP Proxy Connect Overflow
18351| [3723] ProxyNow! HTTP Request Overflow
18352| [3718] Finjan SurfinGate Proxy FHTTP Command Admin Functions Authentication Bypass
18353| [2764] Plug and Play Web Server Proxy Service HTTP Request Handling DoS
18354| [1789] Microsoft ISA Server Web Proxy Malformed HTTP Request Parsing Remote DoS
18355| [1429] SapporoWorks WinProxy Malformed HTTP GET Request DoS
18356| [1336] CProxy SP2 Long HTTP Request DoS
18357| [1050] Persits Software AspUpload AspUpload.dll HTTP Request Overflow
18358| [787] Compaq Web-enabled Management Software HTTP Server Arbitrary Traffic Proxy
18359|_
18360139/tcp closed netbios-ssn
18361443/tcp open ssl/https
18362| fingerprint-strings:
18363| FourOhFourRequest, HTTPOptions:
18364| HTTP/1.1 200 OK
18365| Cache-Control: no-cache
18366| Connection: close
18367| Content-Type: text/html; charset=utf-8
18368| Pragma: no-cache
18369| Content-Length: 3512
18370| <!DOCTYPE html>
18371| <style>
18372| a:focus,
18373| a:hover {
18374| color: #000;
18375| text-decoration: none;
18376| .btn-secondary,
18377| .btn-secondary:hover,
18378| .btn-secondary:focus {
18379| color: #333;
18380| text-shadow: none;
18381| background-color: #fff;
18382| border: .05rem solid #fff;
18383| Base structure
18384| html,
18385| body {
18386| height: 100%;
18387| background-color: #FFF;
18388| background: url(ata_ucak2.jpg) no-repeat center center fixed;
18389| body {
18390| color: #000;
18391| text-align: center;
18392| text-shadow: 0 .05rem .1rem rgba(0,0,0,.5);
18393| Extra markup and styles for table-esque vertical and horizontal centering */
18394| .site-wrapper {
18395| display: table;
18396| width: 100%;
18397| height: 100%; /* For at least Firefox */
18398| min-height: 100%;
18399| -webkit-box-shadow: inset 0 0 5r
18400| GetRequest:
18401| HTTP/1.1 302 Found
18402| Cache-Control: private
18403| Content-Type: text/html; charset=utf-8
18404| Location: /
18405| X-Frame-Options: SAMEORIGIN
18406| Date: Fri, 11 Oct 2019 17:46:15 GMT
18407| Connection: close
18408| <html><head><title>Object moved</title></head><body>
18409| <h2>Object moved to <a href="/">here</a>.</h2>
18410|_ </body></html>
18411445/tcp closed microsoft-ds
184121 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at https://nmap.org/cgi-bin/submit.cgi?new-service :
18413SF-Port443-TCP:V=7.80%T=SSL%I=7%D=10/11%Time=5DA0BFE8%P=x86_64-pc-linux-gn
18414SF:u%r(GetRequest,12E,"HTTP/1\.1\x20302\x20Found\r\nCache-Control:\x20priv
18415SF:ate\r\nContent-Type:\x20text/html;\x20charset=utf-8\r\nLocation:\x20/\r
18416SF:\nX-Frame-Options:\x20SAMEORIGIN\r\nDate:\x20Fri,\x2011\x20Oct\x202019\
18417SF:x2017:46:15\x20GMT\r\nConnection:\x20close\r\n\r\n<html><head><title>Ob
18418SF:ject\x20moved</title></head><body>\r\n<h2>Object\x20moved\x20to\x20<a\x
18419SF:20href=\"/\">here</a>\.</h2>\r\n</body></html>\r\n")%r(HTTPOptions,E47,
18420SF:"HTTP/1\.1\x20200\x20OK\r\nCache-Control:\x20no-cache\r\nConnection:\x2
18421SF:0close\r\nContent-Type:\x20text/html;\x20charset=utf-8\r\nPragma:\x20no
18422SF:-cache\r\nContent-Length:\x203512\r\n\r\n<!DOCTYPE\x20html>\r\n<style>\
18423SF:r\n\r\n\r\na,\r\na:focus,\r\na:hover\x20{\r\n\x20\x20color:\x20#000;\r\
18424SF:n\x20\x20text-decoration:\x20none;\r\n}\r\n\r\n\.btn-secondary,\r\n\.bt
18425SF:n-secondary:hover,\r\n\.btn-secondary:focus\x20{\r\n\x20\x20color:\x20#
18426SF:333;\r\n\x20\x20text-shadow:\x20none;\x20\r\n\x20\x20background-color:\
18427SF:x20#fff;\r\n\x20\x20border:\x20\.05rem\x20solid\x20#fff;\r\n}\r\n\r\n\r
18428SF:\n/\*\r\n\x20\*\x20Base\x20structure\r\n\x20\*/\r\n\r\nhtml,\r\nbody\x2
18429SF:0{\r\n\x20\x20height:\x20100%;\r\n\x20\x20background-color:\x20#FFF;\r\
18430SF:n\x20\x20background:\x20url\(ata_ucak2\.jpg\)\x20no-repeat\x20center\x2
18431SF:0center\x20fixed;\r\n}\r\nbody\x20{\r\n\x20\x20color:\x20#000;\r\n\x20\
18432SF:x20text-align:\x20center;\r\n\x20\x20text-shadow:\x200\x20\.05rem\x20\.
18433SF:1rem\x20rgba\(0,0,0,\.5\);\r\n}\r\n\r\n/\*\x20Extra\x20markup\x20and\x2
18434SF:0styles\x20for\x20table-esque\x20vertical\x20and\x20horizontal\x20cente
18435SF:ring\x20\*/\r\n\.site-wrapper\x20{\r\n\x20\x20display:\x20table;\r\n\x2
18436SF:0\x20width:\x20100%;\r\n\x20\x20height:\x20100%;\x20/\*\x20For\x20at\x2
18437SF:0least\x20Firefox\x20\*/\r\n\x20\x20min-height:\x20100%;\r\n\x20\x20-we
18438SF:bkit-box-shadow:\x20inset\x200\x200\x205r")%r(FourOhFourRequest,E47,"HT
18439SF:TP/1\.1\x20200\x20OK\r\nCache-Control:\x20no-cache\r\nConnection:\x20cl
18440SF:ose\r\nContent-Type:\x20text/html;\x20charset=utf-8\r\nPragma:\x20no-ca
18441SF:che\r\nContent-Length:\x203512\r\n\r\n<!DOCTYPE\x20html>\r\n<style>\r\n
18442SF:\r\n\r\na,\r\na:focus,\r\na:hover\x20{\r\n\x20\x20color:\x20#000;\r\n\x
18443SF:20\x20text-decoration:\x20none;\r\n}\r\n\r\n\.btn-secondary,\r\n\.btn-s
18444SF:econdary:hover,\r\n\.btn-secondary:focus\x20{\r\n\x20\x20color:\x20#333
18445SF:;\r\n\x20\x20text-shadow:\x20none;\x20\r\n\x20\x20background-color:\x20
18446SF:#fff;\r\n\x20\x20border:\x20\.05rem\x20solid\x20#fff;\r\n}\r\n\r\n\r\n/
18447SF:\*\r\n\x20\*\x20Base\x20structure\r\n\x20\*/\r\n\r\nhtml,\r\nbody\x20{\
18448SF:r\n\x20\x20height:\x20100%;\r\n\x20\x20background-color:\x20#FFF;\r\n\x
18449SF:20\x20background:\x20url\(ata_ucak2\.jpg\)\x20no-repeat\x20center\x20ce
18450SF:nter\x20fixed;\r\n}\r\nbody\x20{\r\n\x20\x20color:\x20#000;\r\n\x20\x20
18451SF:text-align:\x20center;\r\n\x20\x20text-shadow:\x200\x20\.05rem\x20\.1re
18452SF:m\x20rgba\(0,0,0,\.5\);\r\n}\r\n\r\n/\*\x20Extra\x20markup\x20and\x20st
18453SF:yles\x20for\x20table-esque\x20vertical\x20and\x20horizontal\x20centerin
18454SF:g\x20\*/\r\n\.site-wrapper\x20{\r\n\x20\x20display:\x20table;\r\n\x20\x
18455SF:20width:\x20100%;\r\n\x20\x20height:\x20100%;\x20/\*\x20For\x20at\x20le
18456SF:ast\x20Firefox\x20\*/\r\n\x20\x20min-height:\x20100%;\r\n\x20\x20-webki
18457SF:t-box-shadow:\x20inset\x200\x200\x205r");
18458Device type: WAP
18459Running (JUST GUESSING): Linux 2.6.X (91%)
18460OS CPE: cpe:/o:linux:linux_kernel:2.6.22
18461Aggressive OS guesses: Tomato firmware (Linux 2.6.22) (91%)
18462No exact OS matches for host (test conditions non-ideal).
18463Network Distance: 2 hops
18464Service Info: Device: load balancer
18465
18466TRACEROUTE (using port 25/tcp)
18467HOP RTT ADDRESS
184681 53.12 ms 10.252.204.1
184692 53.11 ms host-82-222-182-112.reverse.superonline.net (82.222.182.112)
18470
18471NSE: Script Post-scanning.
18472Initiating NSE at 13:48
18473Completed NSE at 13:48, 0.00s elapsed
18474Initiating NSE at 13:48
18475Completed NSE at 13:48, 0.00s elapsed
18476Read data files from: /usr/bin/../share/nmap
18477OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
18478Nmap done: 1 IP address (1 host up) scanned in 293.54 seconds
18479 Raw packets sent: 131302 (5.783MB) | Rcvd: 114 (4.688KB)
18480#######################################################################################################################################
18481Starting Nmap 7.80 ( https://nmap.org ) at 2019-10-11 13:48 EDT
18482NSE: Loaded 47 scripts for scanning.
18483NSE: Script Pre-scanning.
18484Initiating NSE at 13:48
18485Completed NSE at 13:48, 0.00s elapsed
18486Initiating NSE at 13:48
18487Completed NSE at 13:48, 0.00s elapsed
18488Initiating Parallel DNS resolution of 1 host. at 13:48
18489Completed Parallel DNS resolution of 1 host. at 13:48, 0.02s elapsed
18490Initiating UDP Scan at 13:48
18491Scanning host-82-222-182-112.reverse.superonline.net (82.222.182.112) [15 ports]
18492Completed UDP Scan at 13:49, 1.80s elapsed (15 total ports)
18493Initiating Service scan at 13:49
18494Scanning 13 services on host-82-222-182-112.reverse.superonline.net (82.222.182.112)
18495Service scan Timing: About 7.69% done; ETC: 14:10 (0:19:36 remaining)
18496Completed Service scan at 13:50, 102.59s elapsed (13 services on 1 host)
18497Initiating OS detection (try #1) against host-82-222-182-112.reverse.superonline.net (82.222.182.112)
18498Retrying OS detection (try #2) against host-82-222-182-112.reverse.superonline.net (82.222.182.112)
18499Initiating Traceroute at 13:50
18500Completed Traceroute at 13:50, 7.12s elapsed
18501Initiating Parallel DNS resolution of 1 host. at 13:50
18502Completed Parallel DNS resolution of 1 host. at 13:50, 0.00s elapsed
18503NSE: Script scanning 82.222.182.112.
18504Initiating NSE at 13:50
18505Completed NSE at 13:51, 7.11s elapsed
18506Initiating NSE at 13:51
18507Completed NSE at 13:51, 1.01s elapsed
18508Nmap scan report for host-82-222-182-112.reverse.superonline.net (82.222.182.112)
18509Host is up (0.041s latency).
18510
18511PORT STATE SERVICE VERSION
1851253/udp open|filtered domain
1851367/udp open|filtered dhcps
1851468/udp open|filtered dhcpc
1851569/udp open|filtered tftp
1851688/udp open|filtered kerberos-sec
18517123/udp open|filtered ntp
18518137/udp filtered netbios-ns
18519138/udp filtered netbios-dgm
18520139/udp open|filtered netbios-ssn
18521161/udp open|filtered snmp
18522162/udp open|filtered snmptrap
18523389/udp open|filtered ldap
18524500/udp open|filtered isakmp
18525|_ike-version: ERROR: Script execution failed (use -d to debug)
18526520/udp open|filtered route
185272049/udp open|filtered nfs
18528Too many fingerprints match this host to give specific OS details
18529
18530TRACEROUTE (using port 138/udp)
18531HOP RTT ADDRESS
185321 ...
185332 78.82 ms 10.252.204.1
185343 ... 4
185355 95.43 ms 10.252.204.1
185366 95.42 ms 10.252.204.1
185377 95.42 ms 10.252.204.1
185388 95.41 ms 10.252.204.1
185399 95.41 ms 10.252.204.1
1854010 95.44 ms 10.252.204.1
1854111 ... 16
1854217 17.84 ms 10.252.204.1
1854318 ... 19
1854420 80.83 ms 10.252.204.1
1854521 78.75 ms 10.252.204.1
1854622 19.20 ms 10.252.204.1
1854723 ... 29
1854830 19.07 ms 10.252.204.1
18549
18550NSE: Script Post-scanning.
18551Initiating NSE at 13:51
18552Completed NSE at 13:51, 0.00s elapsed
18553Initiating NSE at 13:51
18554Completed NSE at 13:51, 0.00s elapsed
18555Read data files from: /usr/bin/../share/nmap
18556OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
18557Nmap done: 1 IP address (1 host up) scanned in 123.13 seconds
18558 Raw packets sent: 149 (10.404KB) | Rcvd: 25 (1.982KB)
18559######################################################################################################################################
18560address mac name os_name os_flavor os_sp purpose info comments
18561------- --- ---- ------- --------- ----- ------- ---- --------
1856282.222.182.112 host-82-222-182-112.reverse.superonline.net Linux 2.6.X server
18563
18564[0mServices
18565========
18566
18567host port proto name state info
18568---- ---- ----- ---- ----- ----
1856982.222.182.112 25 tcp smtp closed
1857082.222.182.112 53 udp domain unknown
1857182.222.182.112 67 udp dhcps unknown
1857282.222.182.112 68 udp dhcpc unknown
1857382.222.182.112 69 udp tftp unknown
1857482.222.182.112 80 tcp http-proxy open F5 BIG-IP load balancer http proxy
1857582.222.182.112 88 udp kerberos-sec unknown
1857682.222.182.112 123 udp ntp unknown
1857782.222.182.112 137 udp netbios-ns filtered
1857882.222.182.112 138 udp netbios-dgm filtered
1857982.222.182.112 139 tcp netbios-ssn closed
1858082.222.182.112 139 udp netbios-ssn unknown
1858182.222.182.112 161 udp snmp unknown
1858282.222.182.112 162 udp snmptrap unknown
1858382.222.182.112 389 udp ldap unknown
1858482.222.182.112 443 tcp ssl/https open
1858582.222.182.112 445 tcp microsoft-ds closed
1858682.222.182.112 500 udp isakmp unknown
1858782.222.182.112 520 udp route unknown
1858882.222.182.112 2049 udp nfs unknown
18589#######################################################################################################################################
18590 Anonymous JTSEC #OpTurkey Full Recon `3