| 39470 | CGI Generic Tests Timeout | info |
| 39469 | CGI Generic Remote File Inclusion | high |
| 39468 | CGI Generic Header Injection | medium |
| 39467 | CGI Generic Path Traversal | medium |
| 39465 | CGI Generic Command Execution | high |
| 39447 | Apache Tomcat RequestDispatcher Directory Traversal Arbitrary File Access | medium |
| 39365 | Drupal SA-CONTRIB-2009-036: Services Module Key-Based Access Bypass | medium |
| 39314 | Sun Java System Directory Server Online Help Feature Information Disclosure | medium |
| 38974 | JVideo! Component for Joomla! 'user_id' Parameter SQLi | high |
| 38952 | CrashPlan Server Default Administrative Credentials | high |
| 38926 | DokuWiki config_cascade Parameter Remote File Inclusion | medium |
| 38925 | WP-Lytebox 'pg' Parameter Local File Inclusion | medium |
| 38890 | VICIDIAL Call Center Suite Default Administrative Credentials | high |
| 38889 | VICIDIAL Call Center Suite admin.php SQL Injection | medium |
| 38888 | TinyWebGallery lang Parameter Local File Inclusion | high |
| 38879 | Coppermine Photo Gallery GLOBALS[USER[lang] Parameter Local File Inclusion | medium |
| 38832 | HP System Management Homepage < 3.0.1.73 Multiple Flaws | medium |
| 38828 | Flyspeck lang Parameter Local File Inclusion | medium |
| 38794 | SquirrelMail map_yp_alias Username Mapping Alias Arbitrary Code Execution | high |
| 38762 | Open Virtual Desktop Detection | info |
| 38717 | IceWarp Merak WebMail Server < 9.4.2 Multiple Vulnerabilities | medium |
| 38701 | Oracle GlassFish Server Administration Console Default Credentials | high |
| 38695 | Sun Java System Identity Manager ext Parameter Arbitrary File Retrieval | high |
| 38694 | LimeSurvey sUser Parameter SQL Injection | high |
| 38688 | Openfire < 3.6.4 jabber:iq:auth Crafted password_change Request Password Manipulation | medium |
| 38665 | OpenCart route Parameter Local File Inclusion | medium |
| 38653 | Symantec Reporting Server Improper URL Handling Exposure | medium |
| 38648 | Atmail Webmail / AtmailOpen Webmail Detection | info |
| 38198 | Sun Java System Identity Manager Account Disclosure | medium |
| 38183 | ClearSpace Detection | info |
| 38156 | FogBugz Interface Detection | info |
| 38155 | Fortify 360 Web Interface Detection | info |
| 38152 | Linksys WVC54GCA Wireless-G '/img/main.cgi' Information Disclosure | medium |
| 36205 | Novell Teaming Login User Account Enumeration Weakness | medium |
| 36171 | phpMyAdmin Setup Script Configuration Parameters Arbitrary PHP Code Injection (PMASA-2009-4) | high |
| 36170 | phpMyAdmin setup.php save Action Arbitrary PHP Code Injection (PMASA-2009-3) | high |
| 36144 | Geeklog SEC_authenticate Function SQL Injection | high |
| 36143 | Geeklog Detection | info |
| 36129 | HP LaserJet Web Server Unspecified Admin Component Traversal Arbitrary File Access | high |
| 36102 | Jinzora name Parameter Local File Inclusion | medium |
| 36083 | phpMyAdmin file_path Parameter Vulnerabilities (PMASA-2009-1) | medium |
| 36074 | MapServer < 5.2.2 / 4.10.4 Multiple Flaws | high |
| 36050 | Moodle LaTeX Information Disclosure | medium |
| 36019 | Tenable Security Center Default Credentials | high |
| 36018 | Sitecore CMS < 5.3.2 rev. 090212 Web Service Security Database Information Disclosure | medium |
| 36017 | NextApp Echo XML Parsing Information Disclosure Vulnerability | high |
| 35975 | AWStats 'awstats.pl' Path Disclosure | medium |
| 35974 | AWStats Detection | info |
| 35805 | OneOrZero Helpdesk default_language Local File Inclusion | medium |
| 35803 | zFeeder admin.php Direct Request Admin Authentication Bypass | high |
