| 2447 | PHP Live! < 2.8.2 Remote Configuration File Include | high |
| 2446 | ViewCVS < 1.0-dev Multiple Unspecified Vulnerabilities | high |
| 2445 | PAFileDB Multiple Information Disclosure Vulnerabilities | medium |
| 2440 | Post-Nuke pnTresMailer Directory Traversal Arbitrary File Access | medium |
| 2439 | YaBB Shadow BBCode Tag XSS | low |
| 2433 | KorWeblog < 1.6.2 Remote Directory Listing | medium |
| 2431 | Brooky CubeCart < 2.0.2 index.php cat_id Parameter SQL Injection | high |
| 2423 | Nucleus CMS Multiple Vulnerabilities | high |
| 2422 | Invision PowerBoard < 2.0.3 SQL Injection | medium |
| 2421 | phpMyAdmin < 2.6.0-p12 Multiple RCE | high |
| 2420 | phpMyAdmin < 2.5.2 Multiple Vulnerabilities | medium |
| 2419 | phpMyAdmin < 2.5.6-rc1 Arbitrary File Access | medium |
| 2418 | phpMyAdmin < 2.2.1 'sql.php' Arbitrary File Access | medium |
| 2417 | phpMyAdmin < 2.6.0-p13 XSS | low |
| 2416 | phpMyAdmin Unsupported Version Detection | info |
| 2415 | PHP-Kit < 1.6.04 Multiple Input Validation Vulnerabilities | high |
| 2414 | WebGUI < 6.2.9 Unspecified Vulnerability | high |
| 2411 | phpBB Login Form SQL Injection | high |
| 2410 | phpScheduleIt < 1.0.1 Reservation.class.php Arbitrary Reservation Modification | medium |
| 2409 | PowerPortal index.php index_page Parameter SQL Injection | high |
| 2407 | miniBB < 1.7f index.php user Parameter SQL Injection | high |
| 2401 | SquirrelMail < 1.4.4 decodeHeader HTML Injection | medium |
| 2398 | eGroupWare < 1.0.0.006 JiNN Application Unspecified Vulnerability | medium |
| 2394 | Mantis < 0.19.1 Multiple Information Disclosure Vulnerabilities | medium |
| 2388 | Moodle < 1.4.3 Glossary Module SQLi | high |
| 2372 | Bugzilla Authentication Bypass and Information Disclosure | medium |
| 2356 | WordPress < 1.2.1 'wp-login.php' HTTP Response Splitting | medium |
| 2352 | PHP-Fusion Database Multiple Vulnerabilities | high |
| 2336 | Serendipity < 0.7-beta3 Multiple Vulnerabilities | high |
| 2318 | Full Revolution album.asp aspWebAlbum SQL Injection | high |
| 2317 | Full Revolution aspWebCalendar calendar.asp SQL Injection | high |
| 2312 | YaBB < Gold SP 1.3.2 Multiple Input Validation Vulnerabilities | low |
| 2308 | Tutos Multiple Vulnerabilities | high |
| 2305 | YaBB Multiple Vulnerabilities | medium |
| 2302 | Snitz Forum < 3.4.05 HTTP Response Splitting | medium |
| 2294 | vBulletin authorize.php x_invoice_num Parameter SQL Injection | high |
| 2289 | SnipSnap < 1.0b1 POST Request HTTP Response Splitting | low |
| 2280 | Turbo Seek < 1.7.2 tseekdir.cgi location Parameter Information Disclosure | medium |
| 2278 | PerlDesk < 2 pdesk.cgi lang Parameter Traversal Server-Side Script Execution | medium |
| 2273 | SAFE TEAM Regulus Customer Statistics Connection Log Information Disclosure | medium |
| 2272 | SAFE TEAM Regulus Customers Accounts Password Hash Disclosure | medium |
| 2271 | SAFE TEAM Regulus Staff Accounts Password Hash Disclosure | medium |
| 2269 | PHPGroupWare < 0.9.16.003 Wiki Module XSS | low |
| 2267 | OpenCA < 0.9.1-9 Web Interface Form Input Field XSS | low |
| 2266 | PSNews v1.1 index.php Multiple Parameter XSS | low |
| 2191 | phpScheduleIt < 1.0.0 New User Registration HTML Injection | low |
| 2187 | Nagl Dictionary Module for XOOPS XSS | low |
| 2166 | Webmatic < 1.9.0 Multiple Vulnerabilities | high |
| 1687 | ddicgi.exe Multiple Vulnerabilities | critical |
| 1598 | myPHPnuke displayCategory.php Remote Command Execution (deprecated) | high |
