| 20176 | MailWatch authenticate() Function SQL Injection | medium |
| 20171 | Horde Admin Account Default Password | critical |
| 20170 | phpWebThings Multiple Scripts SQL Injection | high |
| 20169 | PHPFM Arbitrary File Upload | high |
| 20168 | toendaCMS < 0.6.2.1 Multiple Vulnerabilities | medium |
| 20137 | CuteNews Multiple Script Traversal Privilege Escalation | high |
| 20133 | vCard define.inc.php match Parameter Remote File Inclusion | high |
| 20132 | phpBB <= 2.0.17 Multiple Vulnerabilities | high |
| 20131 | Comersus BackOffice comersus_backoffice_menu.asp Multiple Parameter SQL Injection | high |
| 20130 | Comersus Cart /comersus/database/comersus.mdb Direct Request Datbase Disclosure | medium |
| 20129 | e107 Detection | info |
| 20112 | Invision Gallery index.php st Parameter SQL Injection | high |
| 20111 | PHP < 4.4.1 / 5.0.6 Multiple Vulnerabilities | high |
| 20110 | GNUMP3d < 2.9.6 Multiple Remote Vulnerabilities (XSS, Traversal) | medium |
| 20095 | ATutor < 1.5.1-pl1 Multiple Remote Vulnerabilities (XSS, RFI, Command Exe) | high |
| 20093 | Mantis < 0.19.3 Multiple Vulnerabilities | medium |
| 20091 | PHP iCalendar index.php phpicalendar Parameter Remote File Inclusion | medium |
| 20088 | phpMyAdmin < 2.6.4-pl3 Multiple Vulnerabilities | medium |
| 20069 | e107 resetcore.php user Field SQL Injection | high |
| 20068 | TWiki %INCLUDE Parameter Arbitrary Command Injection | medium |
| 20061 | w-Agora <= 4.2.0 Multiple Vulnerabilities | high |
| 20015 | Gallery main.php g2_itemId Parameter Traversal Arbitrary File Access | medium |
| 20014 | WebGUI < 6.7.6 Asset.pm Asset Addition Arbitrary Code Execution | high |
| 20013 | PunBB search.php old_searches Parameter SQL Injection | medium |
| 20011 | phpWebSite index.php Search Module SQL Injection | high |
| 20009 | PHP-Fusion < 6.00.110 Multiple Scripts SQL Injection | medium |
| 19950 | phpMyAdmin grab_globals.lib.php subform Parameter Traversal Local File Inclusion | medium |
| 19949 | MediaWiki < 1.3.17 / 1.4.11 / 1.5.0 Multiple Vulnerabilities | medium |
| 19947 | Mailgust Password Reminder email Field SQL Injection | medium |
| 19942 | GuppY < 4.5.6a Multiple Vulnerabilities | medium |
| 19941 | TWiki Detection | info |
| 19939 | 3Com Network Supervisor Traversal Arbitrary File Access | high |
| 19784 | IceWarp Web Mail Multiple Flaws (4) | high |
| 19780 | Alkalay.Net Multiple Scripts Arbitrary Command Execution | high |
| 19779 | Interchange < 5.0.2 / 5.2.1 Multiple Vulnerabilities (SQLi, Code Exe) | high |
| 19778 | phpMyFAQ < 1.5.2 Multiple Vulnerabilities | medium |
| 19776 | Movable Type < 3.2 Multiple Vulnerabilities | medium |
| 19775 | PunBB < 1.2.8 Multiple Vulnerabilities | medium |
| 19774 | Land Down Under HTTP Referer Header SQL Injection | medium |
| 19770 | Digital Scribe login.php SQL Injection | high |
| 19768 | PHP Advanced Transfer Manager <= 1.30 Multiple Vulnerabilities | medium |
| 19765 | ATutor Password Reminder SQL Injection | high |
| 19760 | vBulletin <= 3.0.9 Multiple Vulnerabilities | high |
| 19756 | CuteNews flood.db.php Client-IP HTTP Header Arbitrary Code Injection | high |
| 19755 | Hosting Controller <= 6.1 Hotfix 2.3 Information Disclosure Vulnerabilities | medium |
| 19753 | phpGroupWare < 0.9.16 Addressbook Unspecified Vulnerability | low |
| 19751 | Discuz! <= 4.0.0 rc4 Arbitrary File Upload | medium |
| 19750 | DeluxeBB Multiple Scripts SQL Injection | high |
| 19749 | Calendar Express Multiple Vulnerabilities (SQLi, XSS) | high |
| 19748 | Sendcard sendcard.php id Parameter SQL Injection | high |
