Pass Default Password (m) for 'root' Account CVE-1999-0502 CVE-2010-4233 15 Nov 2010 9.8 (v3) Critical Pass BitTorrent Mainline DHT Detection 22 Nov 2010 None Pass Apache Tomcat Examples Web Root Path Disclosure CVE-2002-2007 23 Nov 2010 5.3 (v3) Medium Pass Sybase PowerDesigner Repository Proxy Detection 24 Nov 2010 None Pass vtiger CRM phprint.php lang_crm Parameter Local File Inclusion CVE-2010-3910 29 Nov 2010 6.8 (v2) Medium Pass RSForm! Component for Joomla! 'lang' Parameter Local File Include 29 Nov 2010 9.8 (v3) Critical Pass Pandora FMS Console Authentication Bypass CVE-2010-4279 01 Dec 2010 7.5 (v2) High Pass MODx login.php 'username' Parameter XSS 09 Dec 2010 4.3 (v2) Medium Pass aspWebCalendar calendar.asp SQL Injection CVE-2004-1552 24 Sep 2004 6.8 (v2) Medium Pass MantisBT 'db_type' Parameter Local File Inclusion CVE-2010-4350 22 Dec 2010 5.1 (v2) Medium Pass Git gitweb Multiple Parameter XSS CVE-2010-3906 23 Dec 2010 4.3 (v2) Medium Pass PHP 5.3 < 5.3.4 Multiple Vulnerabilities CVE-2006-7243 CVE-2010-2094 CVE-2010-2950 CVE-2010-3436 CVE-2010-3709 CVE-2010-3710 CVE-2010-3870 CVE-2010-4150 CVE-2010-4156 CVE-2010-4409 CVE-2010-4697 CVE-2010-4698 CVE-2010-4699 CVE-2010-4700 CVE-2011-0753 CVE-2011-0754 CVE-2011-075513 Dec 2010 6.8 (v2) Medium Pass Pligg register.php reg_username Parameter XSS 07 Jan 2011 4.3 (v2) Medium Pass PhpGedView module.php pgvaction Parameter Traversal Local File Inclusion CVE-2011-0405 12 Jan 2011 7.5 (v2) High Pass vBulletin memberlist.php what Parameter XSS CVE-2004-1824 28 Sep 2004 4.3 (v2) Medium Pass BlogEngine.NET api/BlogImporter.asmx GetFile Function Unauthorized Access 18 Jan 2011 7.5 (v2) High Pass ExtCalendar 'cat_id' parameter SQL Injection 26 Jan 2011 7.5 (v2) High Pass IBM DB2 9.1 < Fix Pack 10 Multiple Vulnerabilities CVE-2010-3731 CVE-2011-0731 CVE-2011-0757 01 Feb 2011 9.8 (v3) Critical Pass PD9 MegaBBS Multiple Vulnerabilities 28 Sep 2004 7.5 (v2) High Pass Serendipity < 0.7.0beta3 Multiple Vulnerabilities CVE-2004-2157 CVE-2004-2158 28 Sep 2004 7.5 (v2) High Pass PHP-Fusion homepage address Parameter XSS 29 Sep 2004 4.3 (v2) Medium Pass IBM DB2 9.5 < Fix Pack 7 Multiple Vulnerabilities CVE-2011-0731 CVE-2011-1846 CVE-2011-1847 01 Feb 2011 9.8 (v3) Critical Pass Moodle 'PHPCOVERAGE_HOME' Parameter XSS 02 Feb 2011 4.3 (v2) Medium Pass OpenSSL SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG Ciphersuite Disabled Cipher Issue CVE-2008-7270 07 Feb 2011 4.3 (v2) Medium Pass CGI Generic SQL Injection (Parameters Names) 14 Feb 2011 7.5 (v2) High Pass Bind Shell Backdoor Detection 15 Feb 2011 9.8 (v3) Critical Pass HP StorageWorks File Migration Agent Unauthorized Access 14 Mar 2011 6.4 (v2) Medium Pass Eric Cooperation Server Detection 25 Mar 2011 None Pass MediaWiki CSS Comments XSS CVE-2011-0047 16 Feb 2011 4.3 (v2) Medium Pass Web Common Credentials (HTML form) 16 Feb 2011 7.5 (v2) High Pass Mod_auth_mysql Multibyte Encoding SQL Injection CVE-2008-2384 22 Feb 2011 7.3 (v3) High Pass MyBB xmlhttp.php 'value' Parameter XSS 04 Apr 2011 4.3 (v2) Medium Pass Detect RPC over TCP 08 Apr 2011 None Pass Detect RPC over UDP 08 Apr 2011 None Pass EyeOS file Parameter Directory Traversal CVE-2011-1715 21 Apr 2011 5 (v2) Medium Pass Horde IMP HTML MIME Viewer Multiple XSS 29 Sep 2004 4.3 (v2) Medium Pass Unmanarc Remote Control Server (URCS) Detection 01 Oct 2004 10 (v2) Critical Pass NetworkActiv Web Server Encoded URL Request Remote DoS 05 Oct 2004 5 (v2) Medium Pass HP System Management Homepage < 6.3 Multiple Vulnerabilities CVE-2010-1917 CVE-2010-2531 CVE-2010-2939 CVE-2010-2950 CVE-2010-3709 CVE-2010-4008 CVE-2010-4156 CVE-2011-1540 CVE-2011-154122 Apr 2011 10 (v2) Critical Pass Plone Security Bypass CVE-2011-0720 25 Apr 2011 7.5 (v2) High Pass IBM DB2 9.7 < Fix Pack 4 Multiple Vulnerabilities CVE-2011-1846 CVE-2011-1847 25 Apr 2011 7.3 (v3) High Pass Symphony token Parameter SQL Injection 02 May 2011 7.5 (v2) High Pass Spreecommerce api/orders.json Search Function Arbitrary Command Execution 03 May 2011 8.8 (v3) High Pass Adobe Flash Media Server < 3.5.6 / 4.0.2 Multiple Vulnerabilities (APSB11-11) CVE-2010-3864 CVE-2011-0612 13 May 2011 10 (v2) Critical Pass Multiple Vendor RPC portmapper Access Restriction Bypass CVE-2011-0321 CVE-2011-1210 19 May 2011 6.4 (v2) Medium Pass eFront js/scripts.php 'load' Parameter Remote File Inclusion 23 May 2011 7.5 (v2) High Pass HP Data Protector Remote Command Execution CVE-2011-0923 03 May 2011 10 (v2) Critical Pass Skype for Mac 5.x < 5.1.0.922 Unspecified Remote Code Execution (uncredentialed check) CVE-2011-2074 09 May 2011 5.1 (v2) Medium Pass phpMyAdmin url.php Redirect (PMASA-2011-4) CVE-2011-1941 24 May 2011 5.8 (v3) Medium Pass Movable Type mt-comments.cgi static Parameter XSS 27 May 2011 4.3 (v2) Medium Pass Apache Archiva < 1.3.5 Multiple Vulnerabilities CVE-2011-1026 CVE-2011-1077 05 Jun 2011 7.5 (v2) High Pass Movable Type User Registration Restriction Bypass 23 Jun 2011 4.3 (v2) Medium Pass HP Data Protector <= A.06.20 Multiple Vulnerabilities (uncredentialed check) CVE-2011-1514 CVE-2011-1515 CVE-2011-1864 CVE-2011-1865 CVE-2011-1866 06 Jul 2011 10 (v2) Critical Pass AllVideos Reloaded! Plugin for Joomla! 'divid' Parameter SQLi 19 Jul 2011 7.3 (v3) High Pass AlphaRegistration Component for Joomla! 'email' Parameter SQLi 25 Jul 2011 5.6 (v3) Medium Pass jCart 1.1 my-item-name POST Parameter XSS 08 Aug 2011 4.3 (v2) Medium Pass Adobe Flash Media Server < 3.5.7 / 4.0.3 Denial of Service (APSB11-20) CVE-2011-2132 10 Aug 2011 7.8 (v2) High Pass CGI Generic Script Injection (quick test) 04 Aug 2011 4.3 (v2) Medium Pass Invision Power Board Referer field XSS CVE-2004-1578 06 Oct 2004 4.3 (v2) Medium Pass PHP 5.3 < 5.3.7 Multiple Vulnerabilities CVE-2011-1148 CVE-2011-1657 CVE-2011-1938 CVE-2011-2202 CVE-2011-2483 CVE-2011-3182 CVE-2011-3267 CVE-2011-3268 22 Aug 2011 10 (v2) Critical Pass PHP 5.3.7 crypt() MD5 Incorrect Return Value CVE-2011-3189 24 Aug 2011 7.5 (v2) High Pass Sitecore CMS 'default.aspx' XSS CVE-2009-2163 25 Aug 2011 4.3 (v2) Medium Pass Sitecore CMS < 6.4.1 rev.110720 'url' Parameter URI Redirection 25 Aug 2011 4.3 (v2) Medium Pass HP Client Automation radexecd.exe Remote Command Execution CVE-2011-0889 12 Sep 2011 10 (v2) Critical Pass OpenAdmin Tool for Informix informixserver Parameter XSS CVE-2011-3390 13 Sep 2011 4.3 (v2) Medium Pass phpMyAdmin 3.4.x < 3.4.5 XSS (PMASA-2011-14) 03 Oct 2011 4.3 (v2) Medium Pass MyBB 1.6.4 Backdoor PHP Remote Code Execution 14 Oct 2011 7.5 (v2) High Pass SonicWALL ViewPoint Server Default Credentials 26 Oct 2011 7.5 (v2) High Pass Dropbox Software Detection (uncredentialed check) 02 Nov 2011 None Pass phpLDAPadmin orderby Parameter Arbitrary PHP Code Execution CVE-2011-4075 03 Nov 2011 7.5 (v2) High Pass TimThumb Cache Directory 'src' Parameter Arbitrary PHP File Upload CVE-2011-4106 08 Nov 2011 7.5 (v2) High Pass IBM DB2 9.7 < Fix Pack 5 Multiple Denial of Service Vulnerabilities CVE-2010-4476 CVE-2011-1373 23 Nov 2011 5.3 (v3) Medium Pass SIP Username Enumeration 01 Dec 2011 5 (v2) Medium Pass Oracle WebLogic Server Web Services Security Policy not Enforced (CVE-2008-5459) CVE-2008-5459 07 Dec 2011 5 (v2) Medium Pass phpMyAdmin 3.4.x < 3.4.8 XSS (PMASA-2011-18) CVE-2011-4634 19 Dec 2011 4.3 (v2) Medium Pass FreeBSD 'telnetd' Daemon Remote Buffer Overflow CVE-2011-4862 09 Jan 2012 10 (v2) Critical Pass Plone Request Parsing Remote Command Execution CVE-2011-3587 20 Dec 2011 7.5 (v2) High Pass PHP < 5.3.9 Multiple Vulnerabilities CVE-2011-3379 CVE-2011-4566 CVE-2011-4885 CVE-2012-0057 CVE-2012-0781 CVE-2012-0788 CVE-2012-0789 13 Jan 2012 7.5 (v2) High Pass SimpleSAMLphp logout.php link_href Parameter XSS CVE-2012-0908 23 Jan 2012 4.3 (v2) Medium Pass MS12-007: Vulnerability in AntiXSS Library Could Allow Information Disclosure (2607664) (uncredentialed check)CVE-2012-0007 17 Jan 2012 5 (v2) Medium Pass Trend Micro Control Manager CmdProcessor.exe Detection 24 Jan 2012 None Pass PHP 5.3.9 'php_register_variable_ex()' Code Execution (banner check) CVE-2012-0830 03 Feb 2012 10 (v2) Critical Pass Skype for Windows < 5.8.0.154 Unspecified Vulnerability (uncredentialed check) 09 Feb 2012 9.3 (v2) High Pass Default Password (nasadmin) for 'root' Account CVE-1999-0502 13 Feb 2012 9.8 (v3) Critical Pass Default Password (nasadmin) for 'nasadmin' Account CVE-1999-0502 13 Feb 2012 9.8 (v3) Critical Pass Oracle WebCenter Content Default Administration Credentials 16 Feb 2012 7.5 (v2) High Pass Oracle WebCenter Content Help Component XSS CVE-2012-0085 16 Feb 2012 4.3 (v2) Medium Pass Oracle WebCenter Content 'GET_SEARCH_RESULTS' SQL Injection CVE-2012-0083 16 Feb 2012 6.4 (v2) Medium Pass Oracle WebCenter Content idc/idcplg Multiple Parameter XSS CVE-2012-0084 16 Feb 2012 4.3 (v2) Medium Pass Horde 3.3.12 open_calendar.js Backdoor CVE-2012-0209 17 Feb 2012 7.5 (v2) High Pass phpLDAPadmin lib/QueryRender.php base Parameter XSS CVE-2012-0834 20 Feb 2012 4.3 (v2) Medium Pass FreePBX gen_amp_conf.php Information Disclosure 22 Feb 2012 7.5 (v2) High Pass IBM solidDB 6.5 < 6.5.0.8 Multiple Denial of Service Vulnerabilities CVE-2010-4055 CVE-2010-4056 CVE-2010-4057 23 Feb 2012 5 (v2) Medium Pass DB2 9.5 < Fix Pack 9 Multiple Vulnerabilities CVE-2012-0709 CVE-2012-0710 CVE-2012-0711 CVE-2012-0712 CVE-2012-1796 CVE-2012-1797 08 Mar 2012 6.3 (v3) Medium Pass Java Debug Wire Protocol Detection 20 Mar 2012 7.5 (v2) High Pass WebGlimpse query Parameter Command Injection CVE-2012-1795 21 Mar 2012 7.5 (v2) High Pass nginx < 1.0.10 ngx_resolver_copy Function DNS Response Parsing Buffer Overflow CVE-2011-4315 21 Mar 2012 5.6 (v3) Medium Pass Zenphoto 404 Error Page XSS CVE-2012-0995 23 Mar 2012 4.3 (v2) Medium Pass Zenphoto viewer_size_image_saved Cookie Value eval() Call Remote PHP Code Execution CVE-2012-0993 23 Mar 2012 8.8 (v3) High Pass Microsoft ASP.NET ValidateRequest Filters Bypass CVE-2008-3842 CVE-2008-3843 05 Apr 2012 5.4 (v3) Medium Pass Dolibarr passwordforgotten.php theme Parameter Local File Inclusion 13 Apr 2012 6.8 (v2) Medium Pass Dolibarr 3.1.0 admin/company.php username Parameter XSS CVE-2011-4329 13 Apr 2012 4.3 (v2) Medium Pass SSL/TLS Protocol Initialization Vector Implementation Information Disclosure Vulnerability (BEAST) CVE-2011-3389 16 Apr 2012 5.3 (v3) Medium Pass Apache 2.4.x < 2.4.2 'LD_LIBRARY_PATH' Insecure Library Loading CVE-2012-0883 19 Apr 2012 7 (v3) High Pass HP System Management Homepage < 7.0 Multiple Vulnerabilities CVE-2009-0037 CVE-2010-0734 CVE-2010-1452 CVE-2010-1623 CVE-2010-2068 CVE-2010-2791 CVE-2010-3436 CVE-2010-4409 CVE-2010-4645 CVE-2011-0014 CVE-2011-0195 CVE-2011-0419 CVE-2011-1148 CVE-2011-1153 CVE-2011-1464 CVE-2011-1467 CVE-2011-1468 CVE-2011-1470 CVE-2011-1471 CVE-2011-1928 CVE-2011-1938 CVE-2011-1945 CVE-2011-2192 CVE-2011-2202 CVE-2011-2483 CVE-2011-3182 CVE-2011-3189 CVE-2011-3192 CVE-2011-3207 CVE-2011-3210 CVE-2011-3267 CVE-2011-3268 CVE-2011-3348 CVE-2011-3368 CVE-2011-3639 CVE-2011-3846 CVE-2012-0135 CVE-2012-199320 Apr 2012 10 (v2) Critical Pass phpBB Cash_Mod admin_cash.php Arbitrary Command Execution CVE-2004-1535 18 Nov 2004 8.3 (v3) High Pass IBM Tivoli Directory Server Web Administration Tool Unspecified XSS CVE-2012-0740 20 Apr 2012 4.3 (v2) Medium Pass Moodle MSA-11-0007 'coursetags_more.php' XSS 27 Apr 2012 4.3 (v2) Medium Pass PHP < 5.3.11 Multiple Vulnerabilities CVE-2011-1398 CVE-2012-0831 CVE-2012-1172 02 May 2012 6.8 (v2) Medium Pass PHP 5.4.x < 5.4.1 Multiple Vulnerabilities CVE-2012-1172 CVE-2012-4388 02 May 2012 5 (v2) Medium Pass PHP Unsupported Version Detection 04 May 2012 10 (v3) Critical Pass PHP 5.4.x < 5.4.3 Multiple Vulnerabilities CVE-2012-2311 CVE-2012-2329 CVE-2012-2335 CVE-2012-2336 09 May 2012 8.3 (v2) High 55