Pass Default Password (wank) for 'wank' Account CVE-1999-0502 20 Feb 2003 9.8 (v3) Critical Pass Default Password (D13HH[) for 'root' Account CVE-1999-0502 20 Feb 2003 9.8 (v3) Critical Pass Default Password (D13hh[) for 'root' Account CVE-1999-0502 20 Feb 2003 9.8 (v3) Critical Pass Default Password (lrkr0x) for 'gamez' Account CVE-1999-0502 20 Feb 2003 9.8 (v3) Critical Pass Default Password (wh00t!) for 'root' Account CVE-1999-0502 20 Feb 2003 9.8 (v3) Critical Pass Default Password (satori) for 'rewt' Account CVE-1999-0502 20 Feb 2003 9.8 (v3) Critical Pass Unpassworded 'jill' Account CVE-1999-0502 20 Feb 2003 9.8 (v3) Critical Pass Invision Power Board ipchat.php root_path Parameter Remote File Inclusion CVE-2003-1385 27 Feb 2003 8.3 (v3) High Pass Apple QuickTime/Darwin Streaming Server Multiple Remote Vulnerabilities CVE-2003-0050 CVE-2003-0051 CVE-2003-0052 CVE-2003-0053 CVE-2003-0054 CVE-2003-0055 CVE-2003-1414 28 Feb 2003 7.5 (v2) High Pass TYPO3 < 3.5.0 Multiple Vulnerabilities 28 Feb 2003 10 (v2) Critical Pass myphpPageTool /doc/admin/index.php ptinclude Parameter Remote File Inclusion CVE-2007-4947 02 Mar 2003 8.3 (v3) High Pass PHP-Ping index.php pingto Parameter Arbitrary Code Execution 06 Mar 2003 7.5 (v2) High Pass Kietu index.php Remote File Inclusion 07 Mar 2003 8.3 (v3) High Pass IBM Lotus Domino < 5.0.12 / 6.0.1 Multiple Vulnerabilities CVE-2001-1311 CVE-2003-0123 10 Mar 2003 7.5 (v2) High Pass IBM Lotus Domino Directory Traversal Arbitrary File Access CVE-2001-0009 10 Mar 2003 5 (v2) Medium Pass Upload Lite upload.cgi Arbitrary File Upload 12 Mar 2003 7.5 (v2) High Pass smb2www Proxy Bypass 14 Mar 2003 5 (v2) Medium Pass MySQL datadir/my.cnf Modification Privilege Escalation CVE-2003-0150 14 Mar 2003 9 (v2) High Pass IBM Domino nsf File Argument XSS CVE-2001-1161 15 Mar 2003 4.3 (v2) Medium Pass Microsoft IIS shtml.dll XSS CVE-2000-0746 15 Mar 2003 4.7 (v3) Medium Pass Sun ONE (iPlanet) Application Server Detection 16 Mar 2003 None Pass Microsoft IIS WebDAV ntdll.dll Remote Overflow (MS03-007) CVE-2003-0109 18 Mar 2003 7.5 (v2) High Pass SquirrelMail 1.2.9 / 1.2.10 read_body.php Multiple Parameter XSS CVE-2002-1341 19 Mar 2003 4.3 (v2) Medium Pass Web Server Office File Inventory 19 Mar 2003 None Pass Guestbook tr3.a Password Disclosure CVE-2003-1541 22 Mar 2003 7.5 (v2) High Pass MS00-019: Microsoft IIS ISAPI Virtual Directory UNC Mapping ASP Source Disclosure (uncredentialed check)CVE-2000-0246 23 Mar 2003 4.3 (v2) Medium Pass Nuked-Klan index.php Multiple Module Vulnerabilities CVE-2003-1238 CVE-2003-1371 23 Mar 2003 5.8 (v2) Medium Pass Oracle 9iAS PL/SQL Gateway Web Admin Interface Null Authentication CVE-2002-0561 24 Mar 2003 7.5 (v2) High Pass J Walk Application Server Encoded Directory Traversal Arbitrary File Access CVE-2003-1529 25 Mar 2003 5 (v2) Medium Pass PHP socket_iovec_alloc() Function Overflow CVE-2003-0166 25 Mar 2003 6.8 (v2) Medium Pass Nukestyles.com viewpage.php Addon for PHP-Nuke File Parameter Traversal Arbitrary File Access CVE-2003-1545 25 Mar 2003 7.8 (v2) High Pass PostNuke Members_List Module Information Disclosure 26 Mar 2003 5 (v2) Medium Pass apcnisd / apcupsd Detection 26 Mar 2003 None Pass Horde IMP mailbox.php3 Multiple Parameter SQL Injection CVE-2003-0025 27 Mar 2003 7.5 (v2) High Pass GTcatalog password.inc Direct Request Password Disclosure 03 Apr 2003 5 (v2) Medium Pass AutomatedShops webc.cgi Installation Detection 04 Apr 2003 None Pass XMB < 1.9.1 Multiple XSS CVE-2002-0316 CVE-2003-0375 CVE-2003-0483 08 Apr 2003 4.3 (v2) Medium Pass Web Wiz Site News / Compulsive Media CNU5 news.mdb Direct Request Database Disclosure 14 Apr 2003 5 (v2) Medium Pass Web Wiz Forums wwforum.mdb Direct Request Database Disclosure 17 Apr 2003 5 (v2) Medium Pass Oracle Net Services CREATE DATABASE LINK Query Overflow CVE-2003-0222 04 May 2003 9.9 (v3) Critical Pass CommuniGate Pro Referer Field Session Token Disclosure CVE-2003-1481 05 May 2003 5.8 (v2) Medium Pass MDaemon POP Server Multiple Command Remote Overflow DoS CVE-2002-1539 05 May 2003 4 (v2) Medium Pass MDaemon IMAP Server CREATE Command Mailbox Name Handling Overflow CVE-2003-1470 06 May 2003 9 (v2) High Pass XMB member.php Multiple Parameter SQL Injection 07 May 2003 5 (v2) Medium Pass YaBB SE < 1.5.2 Multiple Vulnerabilities CVE-2000-1176 07 May 2003 6.5 (v2) Medium Pass 12Planet Chat Server Administration Authentication Cleartext Credential Disclosure 07 May 2003 4.3 (v2) Medium Pass WebLogic Crafted GET Request Hostname Disclosure 08 May 2003 5 (v2) Medium Pass Apache 2.0.x < 2.0.46 on OS/2 filestat.c Device Name Request DoS CVE-2003-0134 08 May 2003 5.3 (v3) Medium Pass ttforum Multiple Vulnerabilities CVE-2003-1458 CVE-2003-1459 10 May 2003 7.3 (v3) High Pass Horde test.php Direct Reqest Information Disclosure 12 May 2003 5 (v2) Medium Pass Apple AirPort Base Station Authentication Credential Encryption Weakness CVE-2003-0270 12 May 2003 7.6 (v2) High Pass miniPortail admin.php Cookie Manipulation Security Bypass CVE-2003-0272 12 May 2003 10 (v2) Critical Pass SHOUTcast Server Admin Log File XSS 12 May 2003 4.3 (v2) Medium Pass Owl browse.php Authentication Bypass 14 May 2003 5 (v2) Medium Pass WebLogic Multiple Method Cleartext Password Disclosure CVE-2003-1224 CVE-2003-1225 CVE-2003-1226 14 May 2003 1.2 (v2) Low Pass phpMyAdmin < 2.6.0-pl2 Unspecified Arbitrary Command Execution CVE-2004-2630 17 Oct 2004 6 (v2) Medium Pass WebLogic SSL Certificate Chain User Spoofing 14 May 2003 6.4 (v2) Medium Pass Microsoft BizTalk Server Multiple Remote Vulnerabilities CVE-2003-0117 CVE-2003-0118 20 May 2003 7.5 (v2) High Pass OneOrZero Helpdesk tupdate.php sg Parameter SQL Injection CVE-2003-0303 21 May 2003 7.5 (v2) High Pass Sun ONE Application Server Upper Case Request JSP Source Disclosure CVE-2003-0411 28 May 2003 5 (v2) Medium Pass iisPROTECT Encoded URL Authentication Bypass CVE-2003-0317 28 May 2003 7.5 (v2) High Pass Apache 2.0.x < 2.0.46 Multiple DoS CVE-2003-0189 CVE-2003-0245 29 May 2003 5.3 (v3) Medium Pass PostNuke Sections Module Information Disclosure 29 May 2003 5 (v2) Medium Pass Geeklog <= 1.3.7sr1 Multiple Vulnerabilities (SQLi, XSS, Priv Esc) CVE-2002-0096 CVE-2002-0097 CVE-2002-0962 CVE-2003-1347 29 May 2003 7.5 (v2) High Pass Ultimate PHP Board admin_iplog.php Arbitrary Code Execution CVE-2003-0395 29 May 2003 10 (v2) Critical Pass Remote PC Access Server detection. 29 May 2003 5.8 (v2) Medium Pass Desktop Orbiter Server Detection 03 Jun 2003 7.5 (v2) High Pass WebStores 2000 browse_item_details.asp SQL Injection CVE-2004-0304 03 Jun 2003 7.5 (v2) High Pass Pi3Web Malformed GET Request Remote Overflow CVE-2003-0276 03 Jun 2003 5 (v2) Medium Pass Linux Kernel IP Stack ICMP Error Response Arbitrary Memory Information Disclosure CVE-2003-0418 09 Jun 2003 5 (v2) Medium Pass Lotus Domino SMTP Server Forged Localhost Mail Header DoS CVE-2000-1203 11 Jun 2003 5 (v2) Medium Pass PostNuke < 0.7.2.3 Multiple Script XSS 17 Jun 2003 4.3 (v2) Medium Pass CesarFTP Multiple Vulnerabilities (OF, File Access, more) CVE-2001-0826 CVE-2001-1335 CVE-2001-1336 CVE-2003-0329 CVE-2004-0298 CVE-2006-2961 18 Jun 2003 7.5 (v2) High Pass phpMyAdmin < 2.5.2 Multiple Vulnerabilities 18 Jun 2003 5 (v2) Medium Pass Kerio WebMail < 5.7.7 Multiple Vulnerabilities CVE-2002-1434 CVE-2003-0487 CVE-2003-0488 18 Jun 2003 7.5 (v2) High Pass phpBB viewtopic.php topic_id Parameter SQL Injection CVE-2003-0486 19 Jun 2003 7.5 (v2) High Pass e107 db.php User Database Disclosure 24 Jul 2003 5 (v2) Medium Pass PHP < 4.3.3 php_check_safe_mode_include_dir Function Safemode Bypass CVE-2003-0863 25 Jul 2003 5 (v2) Medium Pass Gallery search.php searchstring Parameter XSS CVE-2003-0614 28 Jul 2003 4.3 (v2) Medium Pass ePolicy Orchestrator Multiple Remote Vulnerabilities (OF, FS) CVE-2003-0148 CVE-2003-0149 CVE-2003-0616 31 Jul 2003 10 (v2) Critical Pass Horde IMP IMP_MIME_Viewer_html Class XSS 08 Aug 2003 4.3 (v2) Medium Pass iPlanet Web Server Enterprise Edition URL-encoded Host: Information Disclosure CVE-2001-0327 29 Sep 2003 5.3 (v3) Medium Pass Default Password (ibmdb2) for 'db2inst1' Account CVE-1999-0502 CVE-2001-0051 01 Oct 2003 9.8 (v3) Critical Pass Default Password (db2fenc1) for 'db2fenc1' Account CVE-1999-0502 CVE-2001-0051 01 Oct 2003 9.8 (v3) Critical Pass Default Password (ibmdb2) for 'db2fenc1' Account CVE-1999-0502 CVE-2001-0051 01 Oct 2003 9.8 (v3) Critical Pass Default Password (db2inst) for 'db2inst1' Account CVE-1999-0502 CVE-2001-0051 01 Oct 2003 9.8 (v3) Critical Pass Default Password (ibmdb2) for 'db2as' Account CVE-1999-0502 CVE-2001-0051 01 Oct 2003 9.8 (v3) Critical Pass Default Password (db2as) for 'db2as' Account CVE-1999-0502 CVE-2001-0051 01 Oct 2003 9.8 (v3) Critical Pass SOCKS Server Detection 03 Oct 2003 None Pass Microsoft IIS 404 Response Service Pack Signature 09 Oct 2003 None Pass Gallery index.php GALLERY_BASEDIR Parameter Remote File Inclusion CVE-2003-1227 11 Oct 2003 8.3 (v3) High Pass Compaq Web-enabled Management Software Default Account 13 Oct 2003 7.5 (v2) High Pass NetInfo Daemon Detection 19 Oct 2003 None Pass Open Shortest Path First (OSPF) Agent Detection 25 Oct 2003 None Pass EGP Detection 25 Oct 2003 None Pass PostgreSQL to_ascii() Function Remote Overflows CVE-2003-0901 04 Nov 2003 7.5 (v2) High Pass Resin Status Page Information Disclosure 22 Nov 2003 5 (v2) Medium Pass phpBB < 2.0.7 Multiple Script SQL Injection CVE-2003-1215 CVE-2003-1216 04 Dec 2003 7.5 (v2) High Pass PHP-Ping php-ping.php count Parameter Arbitrary Command Execution 29 Dec 2003 7.5 (v2) High Pass vBulletin calendar.php eventid Parameter SQL Injection CVE-2004-0036 06 Jan 2004 7.5 (v2) High Pass PhpDig config.php relative_script_path Parameter Remote File Inclusion CVE-2004-0068 15 Jan 2004 8.3 (v3) High Pass Gallery HTTP Global Variables File Inclusion CVE-2004-2124 29 Jan 2004 5.8 (v3) Medium Pass Serv-U SITE CHMOD Command Multiple Vulnerabilities CVE-2004-2111 CVE-2004-2533 02 Feb 2004 8.5 (v2) High Pass Photopost PHP Pro photo Parameter SQL Injection CVE-2004-0239 03 Feb 2004 7.5 (v2) High Pass phpMyAdmin export.php what Parameter Traversal Arbitrary File Access CVE-2004-0129 03 Feb 2004 5.1 (v2) Medium Pass Oracle Database 9i Multiple Functions Local Overflow CVE-2003-1208 06 Feb 2004 10 (v2) Critical Pass Oracle Multiple Products SOAP Message Crafted DTD Remote DoS CVE-2004-2244 21 Feb 2004 5 (v2) Medium Pass X-News Password MD5 Hash Authentication Bypass CVE-2002-1656 21 Feb 2004 7.5 (v2) High Pass phpBB < 2.0.7 Multiple XSS CVE-2004-1809 14 Mar 2004 4.3 (v2) Medium Pass Novell NetWare LDAP Server Anonymous Bind 15 Mar 2004 5 (v2) Medium Pass Unreal Tournament Server Detection 23 Mar 2004 None Pass Default Password (swift) for 'swift' Account CVE-1999-0502 24 Mar 2004 9.8 (v3) Critical 61