| 34209 | Simple Machines Forum Validation Code Prediction Arbitrary Password Reset | high |
| 34202 | Calendarix Basic cal_cat.php catview Parameter SQL Injection | high |
| 34169 | pluck < 4.5.3 Multiple Local File Include Vulnerabilities | medium |
| 34110 | Simple PHP Blog config/users.php Arbitrary User Password Hash Disclosure | medium |
| 34109 | Simple PHP Blog Detection | info |
| 34108 | Zen Cart products_id[] Array SQL Injection | medium |
| 34095 | Moodle 'lib/kses.php' 'kses_bad_protocol_once' Function Arbitrary PHP Code Execution | high |
| 34055 | AWStats Totals awstatstotals.php multisort() Function sort Parameter Arbitrary PHP Code Execution | high |
| 34031 | TWiki bin/configure 'image' Parameter Traversal Arbitrary File Access/Execution | high |
| 34029 | Kayako SupportSuite < 3.30.01 Multiple Vulnerabilities | medium |
| 33927 | Web Server Generic 3xx Redirect | medium |
| 33926 | Adobe Dreamweaver dwsync.xml Remote Information Disclosure | medium |
| 33925 | dotCMS Multiple Script id Parameter Traversal Local File Inclusion | medium |
| 33903 | MailScan WebAdministrator Cookie Authentication Bypass | high |
| 33882 | Joomla! reset.php Reset Token Validation Forgery | critical |
| 33869 | JBoss Enterprise Application Platform (EAP) Status Servlet Request Remote Information Disclosure | medium |
| 33867 | Novell iManager < 2.7 SP1 Property Book Pages Arbitrary Plug-in Studio Deletion | medium |
| 33866 | Apache Tomcat allowLinking UTF-8 Traversal Arbitrary File Access | medium |
| 33860 | RTH login.php uname Parameter SQL Injection | medium |
| 33856 | e107 download.php extract() Function Variable Overwrite | high |
| 33849 | PHP < 4.4.9 Multiple Vulnerabilities | high |
| 33848 | Pligg settemplate.php template Parameter Local File Inclusion | medium |
| 33823 | Plogger plog-download.php checked[] Parameter SQL Injection | medium |
| 33822 | XAMPP Example Pages Detection | high |
| 33821 | .svn/entries Disclosed via Web Server | medium |
| 33811 | Symphony sym_auth Cookie SQL Injection | high |
| 33789 | Coppermine Photo Gallery include/functions.inc.php _data Cookie lang Parameter Traversal Local File Inclusion | medium |
| 33761 | Gregarius ajax.php rsargs[] Parameter Array SQL Injection | high |
| 33546 | fuzzylime (cms) comssrss.php files[] Parameter Traversal Local File Inclusion | high |
| 33532 | CGI::Session File Driver CGISESSID Cookie Traversal Authentication Bypass | medium |
| 33483 | Maian Scripts Cookie Manipulation Authentication Bypass | high |
| 33479 | Mambo < 4.6.5 mos_user_template Local File Inclusion | medium |
| 33478 | Xerox CentreWare Web < 4.6.46 Multiple Vulnerabilities (XRX08-008) | medium |
| 33446 | Dolphin Multiple Scripts Remote File Inclusion | medium |
| 33445 | trixbox Dashboard user/index.php langChoice Parameter Local File Inclusion | high |
| 33439 | Sun Java System ASP < 4.0.3 Multiple Vulnerabilities | critical |
| 33437 | Sun Java ASP Server Default Admin Password | high |
| 33391 | Wordtrans-web exec_wordtrans Function Arbitrary Command Execution | high |
| 33274 | TrailScout Module For Drupal Session Cookie SQL Injection | high |
| 33272 | nBill component for Joomla! 'cid' Parameter SQLi | high |
| 33271 | Trac quickjump Search Script q Parameter Arbitrary Site Redirect | medium |
| 33270 | ASP.NET DEBUG Method Enabled | medium |
| 33269 | Ektron CMS400.NET WorkArea/ContentRatingGraph.aspx res Parameter SQL Injection | high |
| 33103 | LifeType for Drupal (pLog) index.php albumId Parameter SQL Injection | high |
| 32505 | AEC Subscription Manager Component for Mambo / Joomla! 'usage' Parameter SQLi | high |
| 32475 | Symantec Backup Exec System Recovery Manager Traversal Arbitrary File Access | medium |
| 32381 | ViewVC Direct Request CVSROOT Information Disclosure | medium |
| 32325 | Site Documentation Module for Drupal Database Tables Access Content Permission Information Disclosure | high |
| 32324 | Mantis manage_user_create.php CSRF New User Creation | medium |
| 32318 | Web Site Cross-Domain Policy File Detection | info |
