| 39617 | HP DDMI on Windows Unspecified Remote Agent Access | high |
| 39616 | HP DDMI Web Interface Default Credentials | high |
| 39537 | Movable Type Detection | info |
| 39536 | BASE < 1.2.5 readRoleCookie() Auth Bypass | high |
| 39535 | Basic Analysis and Security Engine Authentication Check | medium |
| 39501 | Zen Cart password_forgotten.php Admin Access Bypass | high |
| 39500 | Zen Cart Detection | info |
| 39482 | Acajoom Component for Joomla! <= 3.2.6 Backdoor Detection | high |
| 39480 | PHP < 5.2.10 Multiple Vulnerabilities | medium |
| 39470 | CGI Generic Tests Timeout | info |
| 39469 | CGI Generic Remote File Inclusion | high |
| 39468 | CGI Generic Header Injection | medium |
| 39467 | CGI Generic Path Traversal | medium |
| 39465 | CGI Generic Command Execution | high |
| 39447 | Apache Tomcat RequestDispatcher Directory Traversal Arbitrary File Access | medium |
| 39365 | Drupal SA-CONTRIB-2009-036: Services Module Key-Based Access Bypass | medium |
| 39314 | Sun Java System Directory Server Online Help Feature Information Disclosure | medium |
| 38974 | JVideo! Component for Joomla! 'user_id' Parameter SQLi | high |
| 38952 | CrashPlan Server Default Administrative Credentials | high |
| 38926 | DokuWiki config_cascade Parameter Remote File Inclusion | medium |
| 38925 | WP-Lytebox 'pg' Parameter Local File Inclusion | medium |
| 38890 | VICIDIAL Call Center Suite Default Administrative Credentials | high |
| 38889 | VICIDIAL Call Center Suite admin.php SQL Injection | medium |
| 38888 | TinyWebGallery lang Parameter Local File Inclusion | high |
| 38879 | Coppermine Photo Gallery GLOBALS[USER[lang] Parameter Local File Inclusion | medium |
| 38832 | HP System Management Homepage < 3.0.1.73 Multiple Flaws | medium |
| 38828 | Flyspeck lang Parameter Local File Inclusion | medium |
| 38794 | SquirrelMail map_yp_alias Username Mapping Alias Arbitrary Code Execution | high |
| 38762 | Open Virtual Desktop Detection | info |
| 38717 | IceWarp Merak WebMail Server < 9.4.2 Multiple Vulnerabilities | medium |
| 38701 | Oracle GlassFish Server Administration Console Default Credentials | high |
| 38695 | Sun Java System Identity Manager ext Parameter Arbitrary File Retrieval | high |
| 38694 | LimeSurvey sUser Parameter SQL Injection | high |
| 38688 | Openfire < 3.6.4 jabber:iq:auth Crafted password_change Request Password Manipulation | medium |
| 38665 | OpenCart route Parameter Local File Inclusion | medium |
| 38653 | Symantec Reporting Server Improper URL Handling Exposure | medium |
| 38648 | Atmail Webmail / AtmailOpen Webmail Detection | info |
| 38198 | Sun Java System Identity Manager Account Disclosure | medium |
| 38183 | ClearSpace Detection | info |
| 38156 | FogBugz Interface Detection | info |
| 38155 | Fortify 360 Web Interface Detection | info |
| 38152 | Linksys WVC54GCA Wireless-G '/img/main.cgi' Information Disclosure | medium |
| 36205 | Novell Teaming Login User Account Enumeration Weakness | medium |
| 36171 | phpMyAdmin Setup Script Configuration Parameters Arbitrary PHP Code Injection (PMASA-2009-4) | high |
| 36170 | phpMyAdmin setup.php save Action Arbitrary PHP Code Injection (PMASA-2009-3) | high |
| 36144 | Geeklog SEC_authenticate Function SQL Injection | high |
| 36143 | Geeklog Detection | info |
| 36129 | HP LaserJet Web Server Unspecified Admin Component Traversal Arbitrary File Access | high |
| 36102 | Jinzora name Parameter Local File Inclusion | medium |
| 36083 | phpMyAdmin file_path Parameter Vulnerabilities (PMASA-2009-1) | medium |
