Services
CVE Board
Type de vulnerabilité
CVE
Authentication Issues
110
Buffer Errors
740
Code Injection
499
Configuration
55
Credentials Management
54
Cross-Site Request Forgery (CSRF)
75
Cross-Site Scripting (XSS)
817
Cryptographic Issues
37
Design Error
300
Format String Vulnerability
38
Information Leak / Disclosure
175
Input Validation
377
Insufficient Information
367
Link Following
12
Not in CWE
6
Numeric Errors
143
OS Command Injections
7
Other
14
Path Traversal
355
Permissions, Privileges, and Access Control
295
Race Conditions
13
Resource Management Errors
168
SQL Injection
700
axengine.exe in Symantec Altiris Deployment Soluti ...
Freelance Auction Script 1.0 stores user passwords ...
The default configuration of Firebird before 2.0.3 ...
iScripts SocialWare stores passwords in cleartext ...
Terong PHP Photo Gallery (aka Advanced Web Photo G ...
The Advanced User Interface Pages in the ProST Web ...
Airspan Base Station Distribution Unit (BSDU) has ...
ZyXEL Prestige routers have a minimum password len ...
Plone CMS 3.x uses invariant data (a client userna ...
Plone CMS 3.0.5, and probably other 3.x versions, ...
The AsteriskGUI HTTP server in Asterisk Open Sourc ...
Argument injection vulnerability in Dovecot 1.0.x ...
The DNSSEC validation library (libval) library in ...
EMV DiskXtender 6.20.060 has a hard-coded login an ...
BEA WebLogic Server and Express 7.0 through 10.0 a ...
The Everything Development Engine in The Everythin ...
The LDAP authentication feature in XLight FTP Serv ...
Unspecified vulnerability in the SSH server in (1) ...
AlstraSoft Forum Pay Per Post Exchange 2.0 stores ...
actions.php in WebPortal CMS 0.6-beta generates pr ...
Cisco Application Velocity System (AVS) before 5.1 ...
2z project 0.9.6.1 allows attackers to change the ...
admin/administrator.php in Adult Script 1.6 and ea ...
index.php in Flat PHP Board 1.2 and earlier allows ...
Microsoft Office 2007 12.0.6015.5000 and MSO 12.0. ...
The installation process for Oracle 10g and llg us ...
Ingate Firewall before 4.6.0 and SIParator before ...
Wordpress 1.5 through 2.3.1 uses cookie values bas ...
blocks/shoutbox_block.php in BtiTracker 1.4.4 does ...
Adobe ColdFusion 8 and MX 7 allows remote attacker ...
login.php in Pligg CMS 9.5 uses a guessable confir ...
Adam Scheinberg Flip 3.0 and earlier stores sensit ...
Certificate Server 7.2 in Red Hat Certificate Syst ...
The login_to_simulator method in Linden Lab Second ...
Argument injection vulnerability in the Linden Lab ...
Entrust Entelligence Security Provider (ESP) 8 doe ...
EZPhotoSales 1.9.3 and earlier stores sensitive in ...
MailWasher Server before 2.2.1, when used with LDA ...
Cactushop 6 and earlier stores sensitive informati ...
Session fixation vulnerability in eggblog 3.1.0 an ...
OpenSSL before 0.9.7, 0.9.7 before 0.9.7k, and 0.9 ...
The pswd.js script relies on the client to calcula ...
NETGEAR WGT624 Wireless DSL router has a default a ...
The search functionality in XWiki 0.9.793 indexes ...
Gyach Enhanced (Gyach-E) before 1.0.0 stores passw ...
FlashFXP 1.4 uses a weak encryption algorithm for ...
Secure Internet Live Conferencing (SILC) 0.9.11 an ...
message.php in Petitforum does not properly authen ...
login.php in php-Board 1.0 stores plaintext passwo ...
CoffeeCup Software Password Wizard 4.0 stores sens ...
TheServer 1.74 web server stores server.ini under ...
Netgear FM114P firmware 1.3 wireless firewall, whe ...
Oracle 9i Application Server 9.0.2 stores the web ...
ClickCartPro 4.0 stores the admin_user.db data fil ...
