漏洞資料庫

Armorize的漏洞資料庫是一個完整的資料庫，

讓你可以有效的搜尋網路軟體的漏洞，並即時的展示搜尋結果。

第一步：選擇排序方式
請選擇搜尋結果的排序方式
Category Line_ChartLanguage Bar_Chart

第二步：開始搜尋
請輸入專案的關鍵字並選擇搜尋準則－漏洞類別、年份、語言－以篩選搜尋結果。

快速搜尋:
請點選年份，以將該年漏洞分佈以圓餅圖顯示。
1999 2000 2001 2002 2003 2004 2005 2006

<< FIRST PAGE < PREVIOUS PAGE NEXT PAGE > LAST PAGE >>
(Page 1 of 375 )

CVE Name	Language	Vulnerability Type	BUGTRAQ ID	Exploit
CVE-2006-3056	PHP	Input Validation Error	18403	YES
Description: SQL injection vulnerability in language.php in VBZooM 1.01 allows remote attackers to execute arbitrary SQL commands via the Action parameter. \| View Details...

CVE Name	Language	Vulnerability Type	BUGTRAQ ID	Exploit
CVE-2006-3055	PHP	Input Validation Error	18403	YES
Description: Multiple SQL injection vulnerabilities in VBZooM 1.02 allow remote attackers to execute arbitrary SQL commands via the (1) QuranID, (2) ShowByQuranID, or (3) Action parameters to meaning.php. \| View Details...

CVE Name	Language	Vulnerability Type	BUGTRAQ ID	Exploit
CVE-2006-3054	PHP	Input Validation Error	18403	YES
Description: Multiple SQL injection vulnerabilities in VBZooM 1.11 allow remote attackers to execute arbitrary SQL commands via the (1) sobjectID or (2) MAINID parameters to (a) show.php or (3) MainID parameter to (b) subject.php. \| View Details...

CVE Name	Language	Vulnerability Type	BUGTRAQ ID	Exploit
CVE-2006-3053	PHP	Input Validation Error	16977	YES
Description: PHP remote file inclusion vulnerability in common.php in PHORUM 5.1.13 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the PHORUM[http_path] parameter. \| View Details...

CVE Name	Language	Vulnerability Type	BUGTRAQ ID	Exploit
CVE-2006-3052	PHP	N/A	N/A	N/A
Description: Cross-site scripting (XSS) vulnerability in Event Registration allows remote attackers to inject arbitrary web script or HTML via the (1) event_id parameter to view-event-details.php or (2) select_events parameter to event- registration.php. NOTE: the provenance of this information is unknown; the details are obtained from third party information. \| View Details...

CVE Name	Language	Vulnerability Type	BUGTRAQ ID	Exploit
CVE-2006-3051	PHP	Input Validation Error	18393	YES
Description: Cross-site scripting (XSS) vulnerability in list.php in SixCMS 6.0 and earlier allows remote attackers to inject arbitrary script code or HTML via the page parameter. \| View Details...

CVE Name	Language	Vulnerability Type	BUGTRAQ ID	Exploit
CVE-2006-3050	PHP	Input Validation Error	18395	YES
Description: Directory traversal vulnerability in detail.php in SixCMS 6.0 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) sequence and trailing null (%00) byte in the template parameter. \| View Details...

CVE Name	Language	Vulnerability Type	BUGTRAQ ID	Exploit
CVE-2006-3049	PHP	N/A	N/A	N/A
Description: Multiple cross-site scripting (XSS) vulnerabilities in booking3.php in Mole Group Ticket Booking Script allow remote attackers to inject arbitrary web script or HTML via the (1) name, (2) address1, (3) address2, (4) county, (5) postcode, (6) email, (7) phone, or (8) mobile parameters to booking2.php. \| View Details...

CVE Name	Language	Vulnerability Type	BUGTRAQ ID	Exploit
CVE-2006-3045	PHP	N/A	N/A	N/A
Description: PHP remote file inclusion vulnerability in manage_songs.php in Foing 0.7.0e and earlier allows remote attackers to execute arbitrary PHP code via a URL in the foing_root_path parameter. \| View Details...

CVE Name	Language	Vulnerability Type	BUGTRAQ ID	Exploit
CVE-2006-3042	PHP	N/A	N/A	N/A
Description: Multiple PHP remote file inclusion vulnerabilities in ISPConfig 2.2.3 allow remote attackers to execute arbitrary PHP code via a URL in the (1) go_info[isp][classes_root] parameter in (a) server.inc.php, and the (2) go_info [server][classes_root] parameter in (b) app.inc.php, (c) login.php, and (d) trylogin.php. \| View Details...

<< FIRST PAGE < PREVIOUS PAGE NEXT PAGE > LAST PAGE >>
(Page 1 of 375)

下載

漏洞資料庫

阿碼漏洞通報