CVE - CVE Reference Map for Source XF

About CVE

Terminology
Documents
FAQs
CVE List

About CVE Identifiers
Obtain a CVE Identifier
Search CVE
Search NVD
CVE In Use

CVE Adoption
CVE-Compatible Products
NVD for CVE Fix Information
More . . .
News & Events

Calendar
Free Newsletter
Community

CVE Editorial Board
Sponsor
Contact Us

Search the Site

CVE List

Data Updates & RSS Feeds
Reference Key/Maps
Data Sources
Versions
Search Tips
Editor's Commentary
Obtain a CVE Identifier
Editorial Policies
About CVE Identifiers

Items of Interest

Terminology
NVD

CVE Reference Map for Source XF

Source	XF
Description	X-Force Vulnerability Database
URL	http://xforce.iss.net
Notes

This reference map lists the various references for XF and provides the associated CVE entries or candidates. It uses data from CVE version 20061101 and candidates that were active as of 2008-09-03.

Note that the list of references may not be complete.

XF:04webserver-dos-devices-dos(18036)	CVE-2004-1514
XF:04webserver-error-page-xss(28354)	CVE-2006-4199
XF:04webserver-error-xss(18033)	CVE-2004-1512
XF:04webserver-user-id-bypass(28355)	CVE-2006-4200
XF:04webserver-web-log-spoofing(18034)	CVE-2004-1513
XF:0daylinkliste-index-file-include(36146)	CVE-2007-4486
XF:1024cms-download-directory-traversal(34004)	CVE-2007-2507
XF:1024cms-unspecified-csfr(37267)	CVE-2007-5575
XF:123flashchat-e107path-file-include(41867)	CVE-2008-1989
XF:123flashchat-user-directory-traversal(24137)	CVE-2006-0223
XF:123tkshop-include-read-files(9581)	CVE-2002-2167
XF:123tkshop-sql-injection(9582)	CVE-2002-2168
XF:12all-fckeditor-file-upload(34049)	CVE-2007-2630
XF:12planet-chat-server-xss(16605)	CVE-2004-0678
XF:1book-guestbook-code-execution(42854)	CVE-2008-2638
XF:1st-class-apop-dos(15314)	CVE-2004-2375
XF:1stclass-dotdot-directory-traversal(15812)	CVE-2004-2446
XF:1stclass-multiple-xss(15815)	CVE-2004-2447
XF:1stup-mail-server-bo	CVE-2001-0070
XF:1two-livere-dor-guestbook-xss(20589)	CVE-2005-1644
XF:1webcalendar-multiple-sql-injection(25373)	CVE-2006-1372
XF:2005commentsscript-kommentar-xss(26318)	CVE-2006-2290
XF:2020autogallery-vehicle-sql-injection(30400)	CVE-2006-6092
XF:2020datashed-multiple-sql-injection(30402)	CVE-2006-6067
XF:212cafeboard-list3-xss(31650)	CVE-2007-0549
XF:212cafeboard-read-sql-injection(36403)	CVE-2007-4719
XF:212cafeboard-search-xss(31651)	CVE-2007-0550
XF:2200net-adminlogin-sql-injection(24484)	CVE-2006-0610
XF:2200net-calendar-sql-injection(24483)	CVE-2006-0610
XF:2532gigs-activateuser-file-include(36267)	CVE-2007-4585
XF:2bgal-dispalbum-sql-injection(18645)	CVE-2004-1415
XF:2bgal-lang-file-include(29759)	CVE-2006-5505
XF:2bgal-langfilename-file-include(33375)	CVE-2007-1852
XF:2fax-bpcx-bo(10901)	CVE-2004-1255
XF:2wire-default-password(36043)	CVE-2007-4388
XF:2wire-xslt-csrf(36044)	CVE-2007-4387 CVE-2007-4389
XF:2wirerouter-crlf-dos(28578)	CVE-2006-4523
XF:2zproject-rating-sql-injection(34471)	CVE-2007-2898 CVE-2007-2905
XF:32bit-ftp-banner-bo(11234)	CVE-2003-1368
XF:35mmslidegallery-multiple-xss(27127)	CVE-2006-3036
XF:360web-form-sql-injection(39796)	CVE-2008-0430
XF:3cdaemon-command-obtain-information(18756)	CVE-2005-0278
XF:3cdaemon-ftp-bo(8970)	CVE-2002-0606
XF:3cdaemon-login-dos(18751)	CVE-2005-0276
XF:3cdaemon-long-command-dos(18754)	CVE-2005-0277
XF:3cdaemon-reserved-name-dos(18750)	CVE-2005-0275
XF:3com-baseline-dhcp-dos(26076)	CVE-2006-2054
XF:3com-nbx-cel-bo(10739)	CVE-2002-2300
XF:3com-nbx-scan-dos(16015)	CVE-2004-1977
XF:3com-officeconnect-gain-access(16267)	CVE-2004-0477
XF:3com-officeconnect-http-dos(6573)	CVE-2001-0740
XF:3com-officeconnect-information-disclosure(18994)	CVE-2005-0112
XF:3com-officeconnect-memory-leak(11999)	CVE-2003-0291
XF:3com-officeconnect-obtain-info(17723)	CVE-2004-1596
XF:3com-officeconnect-pat-access(9185)	CVE-2002-0888
XF:3com-officeconnect-telnet-bo(16257)	CVE-2004-0476
XF:3com-officeconnect-tk-xss(34776)	CVE-2006-3974
XF:3com-officeconnect-udp-dos(18081)	CVE-2004-2457
XF:3com-ss34400-snmp-information-disclosure(29779)	CVE-2006-5382
XF:3com-superstack-mngmt-dos(16497)	CVE-2004-2691
XF:3com-telnetd-brute-force(6855)	CVE-2001-1291
XF:3cserver-multiple-command-bo(19250)	CVE-2005-0419
XF:3ctftpsvc-transporting-mode-bo(30545)	CVE-2006-6183
XF:3dftp-ftp-banner-bo(11883)	CVE-2003-1472
XF:3dftp-list-mlsd-directory-traversal(43095)	CVE-2008-2822
XF:427bb-multiple-xss(42877)	CVE-2008-2561
XF:427bb-posts-xss(24040)	CVE-2006-0155
XF:427bb-profile-xss(19546)	CVE-2005-0629
XF:427bb-scripts-security-bypass(24038)	CVE-2006-0153
XF:427bb-showpost-sql-injection(42876)	CVE-2008-2560
XF:427bb-showthread-sql-injection(24039)	CVE-2006-0154
XF:4d-long-http-bo(9374)	CVE-2002-0966
XF:4d-webserver-directory-traversal(7010)	CVE-2001-0971
XF:4d-webstar-plugin-bo(20478)	CVE-2005-1507
XF:4dwebstar-long-ftp-bo(16686)	CVE-2004-0695
XF:4dwebstar-symlink(16689)	CVE-2004-0698
XF:4dwebstar-view-directory-listing(16687)	CVE-2004-0696
XF:4dwebstar-view-phpini-files(16688)	CVE-2004-0697
XF:4images-member-xss(25987)	CVE-2006-2011
XF:4images-search-sql-injection(29389)	CVE-2006-5236
XF:4images-sessionid-sql-injection(26184)	CVE-2006-2214
XF:4images-template-file-include(24938)	CVE-2006-0899
XF:4nalbum-displaycategory-file-include(15496)	CVE-2004-1820
XF:4nalbum-error path-disclosure(15493)	CVE-2004-1819
XF:4nalbum-modulesphp-SQL-injection(15498)	CVE-2004-1821
XF:4nalbum-nmimagephp-xss(15497)	CVE-2004-1818
XF:4nchat-roomid-sql-injection(41051)	CVE-2008-1220
XF:4nforum-modules-sql-injection(26729)	CVE-2006-2760
XF:4nguestbook-modules-xss(15478)	CVE-2004-2354
XF:5thavenue-categorylist-sql-injection(41885)	CVE-2008-1921
XF:5thstreet-dx8render-format-string(43370)	CVE-2008-3116
XF:602lansuite-webmail-directory-traversal(19258)	CVE-2005-0344
XF:602pro-admin-priviliges(10408)	CVE-2002-2152
XF:602pro-directory-listing(15349)	CVE-2004-0335
XF:602pro-get-directory-tree(10450)	CVE-2002-1928
XF:602pro-index-xss(15351)	CVE-2004-0337
XF:602pro-mail-post-dos(17977)	CVE-2004-1501
XF:602pro-path-disclosure(15350)	CVE-2004-0336
XF:602pro-telnet-loopback-dos(17979)	CVE-2004-1502
XF:602pro-telnet-proxy-dos(9768)	CVE-2002-2174
XF:602prolansuite-smtp-bo(34974)	CVE-2007-3203
XF:6517	CVE-2003-1273
XF:68classifieds-category-sql-injection(42465)	CVE-2008-2336
XF:6alblog-member-sql-injection(35048)	CVE-2007-3449
XF:6tunnel-open-socket-dos(7337)	CVE-2001-0830
XF:95-verv-tcp	CVE-1999-0016
XF:9x-plaintext-pwd	CVE-1999-0387
XF:@lex-guestbook-file-include(17516)	CVE-2004-1554
XF:@lexguestbook-index-path-disclosure(30638)	CVE-2006-6279
XF:@lexguestbook-index-xss(30639)	CVE-2006-6278
XF:@mail-atmail-xss(33591)	CVE-2007-2153
XF:@mail-compose-directory-traversal(24459)	CVE-2006-0611
XF:@mail-html-image-xss(24742)	CVE-2006-0842
XF:A+store-accountlogin-xss(30284)	CVE-2006-5960
XF:Adonis-tftp-privilege-escalation(35807)	CVE-2007-4226
XF:Adultdirectory-directory-sql-injection(35683)	CVE-2007-4056
XF:Applefileserver-fploginext-dos(19263)	CVE-2005-0340
XF:C07h2250v4-attacktool-malformed-packets(14173)	CVE-2004-2758
XF:Cedstat-index-xss(32537)	CVE-2007-1020
XF:Ch-classtemplate-file-include(32193)	CVE-2007-0809
XF:Communiqué-search-xss(23860)	CVE-2005-4580
XF:Ethereal-rtp-dos(18485)	CVE-2004-1140
XF:Hummingbird-docsfusionserver-disclose-path(13398)	CVE-2003-1101
XF:Hummingbird-docsfusionserver-file-access(13397)	CVE-2003-1102
XF:Ilohamail(18426)	CVE-2004-2500
XF:InnoMedia-videophone-bypass-authentication(15636)	CVE-2004-0334
XF:InstallshieldInstallfromtheweb-activex-bo(32645)	CVE-2007-0320
XF:Irater-common-file-include(25963)	CVE-2006-1929
XF:Kerberos-krb5anametolocalname-bo(16268)	CVE-2004-0523
XF:Linux-ftpd-ssl-vsprintf-bo(23016)	CVE-2005-3524
XF:Linux-rpm-execute-code(7349)	CVE-2001-0923
XF:Microsoftexporttool-clspack-bo(39975)	CVE-2006-5395
XF:Payprocart-usrdetails-xss(19955)	CVE-2005-1004
XF:Qnx-rtp-pppoed-flags-bo(17280)	CVE-2004-1390
XF:Rezervi-root-file-include(33737)	CVE-2007-2156
XF:Sharity-unspecified-dos(33774)	CVE-2007-2178
XF:Sispletcms-komentar-file-include(33455)	CVE-2007-2347
XF:Win-msdss-command-execution(21895)	CVE-2005-2127
XF:a+store-browse-sql-injection(30283)	CVE-2006-5959
XF:a1stats-a1admin-dos(6505)	CVE-2001-0562
XF:a1stats-dot-directory-traversal(6503)	CVE-2001-0561
XF:a6mambocredits-admin-file-include(28443)	CVE-2006-4288
XF:a6mambohelpdesk-admina6mambo-file-include(28054)	CVE-2006-3930
XF:aaabase-execute-dot-files	CVE-2000-0433
XF:aah-multiple-scripts-sql-injection(19977)	CVE-2005-1029
XF:aah-multiple-scripts-xss(19975)	CVE-2005-1030
XF:aaiportal-unspecified-sql-injection(29406)	CVE-2006-5225
XF:aardvark-lostpw-join-file-include(26189)	CVE-2006-2149 CVE-2006-7026
XF:aardvark-settingssql-newday-file-include(33342)	CVE-2007-1844
XF:aas-longhttp-request-dos(15003)	CVE-2004-2169
XF:abakt-zip-bo(26435)	CVE-2006-2161
XF:abarcar-realty-newsdetails-sql-injection(30135)	CVE-2006-5840
XF:abarcar-realty-portal-content-sql-injection(26993)	CVE-2006-2853
XF:abc2midi-eventspecific-bo(18574)	CVE-2004-1256
XF:abc2midi-eventtext-bo(18573)	CVE-2004-1256
XF:abc2mtex-processabc-bo(18578)	CVE-2004-1257
XF:abc2ps-abc-bo(26043)	CVE-2006-1513
XF:abcestore-index-sql-injection(36313)	CVE-2007-4627
XF:abcexcel-parserpath-file-include(34461)	CVE-2007-2857
XF:abcm2ps-putwords-bo(18579)	CVE-2004-1258
XF:abcpp-handledirective-bo(18581)	CVE-2004-1259
XF:abctab2ps-trimtitle-bo(18584)	CVE-2004-1260
XF:abctab2ps-writeheading-bo(18583)	CVE-2004-1260
XF:abcviewmanager-psp-bo(33862)	CVE-2007-2284
XF:abi-fcterm-sql-injection(40757)	CVE-2008-0943
XF:abi-gradebookoptions-loginproc-sql-injection(41429)	CVE-2008-1549
XF:abi-gradebookstuscores-sql-injection(40847)	CVE-2008-0942
XF:abi-loginproc-login-xss(41430)	CVE-2008-1548
XF:abi-newevent-xss(40756)	CVE-2008-0941
XF:ability-appe-bo(18405)	CVE-2004-1627
XF:ability-blank-string-dos(38586)	CVE-2007-6101
XF:ability-errormsg-xss(16676)	CVE-2004-2494
XF:ability-imap4-dos(38587)	CVE-2007-6101
XF:ability-mult-connection-dos(16677)	CVE-2004-2495
XF:abilityftpserver-stor-dos(17823)	CVE-2004-1626
XF:abitwhizzy-abitwhizzy-file-include(30458)	CVE-2006-6084
XF:abitwhizzy-multiple-directory-traversal(33277)	CVE-2007-1773
XF:abitwhizzy-multiple-xss(33279)	CVE-2007-1774
XF:abiword-linkgrammar-sentence-bo(38317)	CVE-2007-5395
XF:abiword-rtf-importer-bo(22454)	CVE-2005-2964
XF:abledesign-research-xss(23830)	CVE-2005-4434
XF:ablespace-advcat-sql-injection(42635)	CVE-2008-2491
XF:ablog-menu-file-include(29164)	CVE-2006-5092
XF:ablog-multiple-file-include(29218)	CVE-2006-5135
XF:ablog-unspecified-xss(31038)	CVE-2006-6729
XF:absolute-gallery-sql-injection(33005)	CVE-2007-1469
XF:absolute-gallery-xss(25466)	CVE-2006-1411
XF:absolutebannermanager-abm-sql-injection(38921)	CVE-2007-6291
XF:absolutefaqmanager-search-xss(25463)	CVE-2006-1416
XF:absolutelivesupport-register-xss(25434)	CVE-2006-1410
XF:absolutepollmanager-msg-xss(36362)	CVE-2007-4630
XF:absolutetelnet-title-bar-bo(11265)	CVE-2003-1090
XF:abuse-lisp-gain-privileges(11300)	CVE-2002-1253
XF:abuse-net-command-bo(10519)	CVE-2002-1250
XF:abyss-admin-console-access(9957)	CVE-2002-1080
XF:abyss-get-directory-traversal(9941)	CVE-2002-1079
XF:abyss-http-directory-traversal(9940)	CVE-2002-1079
XF:abyss-http-get-bo(12466)	CVE-2003-1337
XF:abyss-http-get-dos(11718)	CVE-2003-1364
XF:abyss-plus-file-disclosure(9956)	CVE-2002-1081
XF:abyss-slash-directory-traversal(9721)	CVE-2002-1078
XF:abyss-unicode-directory-traversal(8805)	CVE-2002-0543
XF:abyss-web-admin-bruteforce(11310)	CVE-2003-1363
XF:academicsuite-frameset-crossdomain-loading(23558)	CVE-2005-4206
XF:academicwebtools-download-dir-traversal(43175)	CVE-2008-2969
XF:academicwebtools-multiple-xss(43178)	CVE-2008-2878 CVE-2008-2967
XF:academicwebtools-rating-sql-injection(43177)	CVE-2008-2968
XF:acajoom-index-sql-injection(41290)	CVE-2008-1427
XF:acal-day-file-include(26278)	CVE-2006-2261
XF:acal-header-footer-code-execute(24107)	CVE-2006-0183
XF:acal-login-auth-bypass(24104)	CVE-2006-0182
XF:acart-category-product-sql-injection(30279)	CVE-2006-6111
XF:acart-categoryasp-sql-injection(15661)	CVE-2004-1873
XF:acart-deliverasp-billingasp-xss(15660)	CVE-2004-1874
XF:acart-search-sql-injection(30280)	CVE-2006-6111
XF:acc-tigris-login	CVE-1999-0383
XF:accelx-display-bo	CVE-1999-0778
XF:access2asp-supplierslist-xss(35025)	CVE-2007-3414
XF:accipterdirectserver-directory-traversal(14198)	CVE-2004-0072
XF:account-manager-overwrite-password(5125)	CVE-2000-0689
XF:accountingsoftware-length-bo(25841)	CVE-2006-5266
XF:accountingsoftware-magic-number-dos(25844)	CVE-2006-5265
XF:accountingsoftware-string-handling(25840)	CVE-2006-5266
XF:acctexp-index-sql-injection(42794)	CVE-2008-2632
XF:acdsee-ais-description-bo(9052)	CVE-2002-1756
XF:acdsee-xpm-bo(33812)	CVE-2007-2193
XF:ace-image-albums-sql-injection(38941)	CVE-2007-6393
XF:aceboard-recherche-sql-injection(35793)	CVE-2007-4209
XF:acedirector-http-reveal-ip(8010)	CVE-2002-0209
XF:aceftp-server-bo(34795)	CVE-2007-3161
XF:acer-lunchappaplunch-command-execution(30417)	CVE-2006-6121
XF:aceserver-udp-packet-dos	CVE-2000-0522
XF:acfp-error-page-xss(10682)	CVE-2002-2418
XF:acftp-authentication-bypass(10681)	CVE-2002-2417
XF:acftp-user-dos(26258)	CVE-2006-2242
XF:acgnews-index-sql-injection(36293)	CVE-2007-4603
XF:acgptp-index-xss(44603)	CVE-2008-3782
XF:acgv-annu-acgv-file-include(34108)	CVE-2007-2560
XF:acgv-multiple-security-bypass(31893)	CVE-2007-0697
XF:acgvclick-function-file-include(31859)	CVE-2007-0577
XF:acgvnews-glossaire-sql-injection(42490)	CVE-2008-2412
XF:acgvnews-glossaire-xss(42491)	CVE-2008-2413
XF:acgvnews-pathnews-file-include(28763)	CVE-2006-4637 CVE-2006-4638
XF:achievo-atkselector-sql-injection(26755)	CVE-2006-2688
XF:achievo-index-file-include(34305)	CVE-2007-2736
XF:achievo-php-execute-code(9947)	CVE-2002-1435
XF:acidcat-admincolorsswatch-xss(41919)	CVE-2008-1991
XF:acidcat-default-sql-injection(41918)	CVE-2008-1990
XF:acidcat-email-security-bypass(41921)	CVE-2008-1992
XF:acidcat-fckeditor-file-upload(41922)	CVE-2008-1993
XF:acidcatcms-default-sql-injection(23870)	CVE-2005-4370
XF:acidfree-albums-sql-injection(31724)	CVE-2007-0507
XF:ackertodo-index-xss(28810)	CVE-2006-4668
XF:ackertodo-login-sql-injection(29375)	CVE-2006-5228
XF:acme-serve-directory-traversal(6634)	CVE-2001-0748
XF:acme-thttpd-ssi	CVE-2000-0900
XF:acon-home-bo(41915)	CVE-2008-1994
XF:acoustica-asx-m3u-bo(34647)	CVE-2007-3006
XF:acp3-index-download-xss(34110)	CVE-2007-2579
XF:acp3-index-feeds-sql-injection(34111)	CVE-2007-2577
XF:acrobat-pdf-distilling-bo(27676)	CVE-2006-3453
XF:acrobat-reader-activex-bo(16998)	CVE-2004-0629
XF:acrobat-reader-execute-code(16973)	CVE-2004-0630
XF:acrobat-reader-insecure-permissions(27678)	CVE-2006-3452
XF:acrobat-reader-invalid-id-handle-bo(20216)	CVE-2005-1347
XF:acrobatreader-pdf-dos(42886)	CVE-2008-2549
XF:acrobatreader-xfdf-bo(15384)	CVE-2004-0194
XF:acronis-groupserver-dos(41071)	CVE-2008-1279
XF:acronis-windows-agent-dos(41070)	CVE-2008-1280
XF:acronissnap-pxeserver-directory-traversal(41074)	CVE-2008-1410
XF:acronissnap-pxeserver-dos(41075)	CVE-2008-1411
XF:acronym-adminacronyms-sql-injection(31129)	CVE-2006-6842
XF:acs-blog-search-xss(19728)	CVE-2005-0802
XF:acs-url-directory-traversal(31613)	CVE-2007-0389
XF:acsblog-tags-xss(19864)	CVE-2005-0945
XF:act-p202s-default-port(24149)	CVE-2006-0374 CVE-2006-0375
XF:actinic-html-tags-css(8180)	CVE-2002-1732
XF:actinvr-deletexmlfile-file-overwrite(36303)	CVE-2007-4583
XF:actinvr-savexmlfile-file-overwrite(36304)	CVE-2007-4583
XF:actionapps-globals-file-include(26776)	CVE-2006-2686
XF:actionpoll-multiple-file-include(33691)	CVE-2007-2064
XF:active-classifieds-admin-access(6754)	CVE-2001-1290
XF:active-default-sql-injection(33129)	CVE-2007-1629
XF:active-link-default-sql-injection(33111)	CVE-2007-1630
XF:active-webcam-dos(19647)	CVE-2005-0730
XF:active-webcam-file-disclosure(19654)	CVE-2005-0733
XF:active-webcam-filelist-dos(19650)	CVE-2005-0731
XF:active-webcam-memory-dos(19653)	CVE-2005-0734
XF:active-webcam-path-disclosure(19652)	CVE-2005-0732
XF:activeauctionpro-default-sql-injection(33182)	CVE-2007-1712
XF:activebuyandsell-buyersend-sql-injection(33183)	CVE-2005-2062
XF:activecalendar-multiple-scripts-xss(32690)	CVE-2007-1111
XF:activecalendar-showcode-file-include(32691)	CVE-2007-1110
XF:activecampaign-index-command-execution(24989)	CVE-2006-0970
XF:activegs-unspecified-bo(33759)	CVE-2007-1690
XF:activekb-admin-security-bypass(42427)	CVE-2008-2338
XF:activekb-index-sql-injection(36831)	CVE-2007-5131
XF:activemail-script-tag-header(9358)	CVE-2002-0950
XF:activemod-unspecified-bo(33757)	CVE-2007-1691
XF:activenews-multiple-sql-injection(30352)	CVE-2006-6094 CVE-2006-6095
XF:activenewsletter-newspaperid-sql-injection(33197)	CVE-2007-1696
XF:activeperl-perlis-filename-bo(7539)	CVE-2001-0815
XF:activeperl-sitecustomize-code-execution(26915)	CVE-2006-2856
XF:activepost-dotdot-directory-traversal(17488)	CVE-2004-1548
XF:activepost-long-filename-dos(17482)	CVE-2004-1547
XF:activepost-plaintext-password(17486)	CVE-2004-1549
XF:activepython-activex-read-files(7910)	CVE-2002-0131
XF:activereport-savelayout-file-overwrite(35539)	CVE-2007-3982
XF:activesquare-namoinstaller-code-execution(39943)	CVE-2008-0551
XF:activetrade-default-sql-injection(33184)	CVE-2007-1705
XF:activeweb-contentserver-msg-xss(35389)	CVE-2007-3014
XF:activeweb-editor-insecure-permissions(35400)	CVE-2007-3018
XF:activeweb-picturerealedit-sql-injection(35390)	CVE-2007-3013
XF:activeweb-worklistedit-xss(35399)	CVE-2007-3017
XF:activitymodplus-multiple-file-include(26857)	CVE-2006-2735
XF:activwebserver-html-xss(9540)	CVE-2002-2189
XF:actsite-base-file-include(36868)	CVE-2007-5175
XF:actsite-news-file-include(36870)	CVE-2007-5174
XF:actualanalyzer-direct-file-include(25893)	CVE-2006-1959
XF:acunetix-content-length-dos(31279)	CVE-2007-0120
XF:acusend-unauthorized-file-access(10473)	CVE-2002-1538
XF:acvswebservices-transport-file-include(33840)	CVE-2007-2202
XF:acweb-device-name-dos(10190)	CVE-2002-2421
XF:acweb-xss(10191)	CVE-2002-2171
XF:adboard-trr-sql-injection(44532)	CVE-2008-3725
XF:adcycle-insert-sql-command(6837)	CVE-2001-1053
XF:adcycle-modify-sql-query(7762)	CVE-2001-1226
XF:addressbook-addressbook-file-include(33243)	CVE-2007-1720
XF:addressdirectory-sql-injection(43492)	CVE-2008-3038
XF:addressdirectory-unspecified-xss(43491)	CVE-2008-3037
XF:adesguestbook-read-xss(23909)	CVE-2005-4596
XF:adm-bstrfilepath-bo(17221)	CVE-2004-2433
XF:adman-login-xss(35580)	CVE-2007-4020
XF:adman-multiple-path-disclosure(25404)	CVE-2006-1375
XF:adman-viewstatement-sql-injection(25403)	CVE-2006-1374
XF:admanager-submit-xss(27161)	CVE-2006-3037
XF:admanagerpro-common-ad-file-include(27523)	CVE-2006-3192
XF:admbook-index-command-execution(24771)	CVE-2006-0852
XF:admentor-adminlogin-sql-injection(31908)	CVE-2007-0575
XF:admentor-asp-gain-access(8245)	CVE-2002-0308
XF:adminbot-livestatus-file-include(34580)	CVE-2007-2986
XF:admintoolcms-fsid-xss(30014)	CVE-2006-5769
XF:adobe-access-control-bypass(25769)	CVE-2006-1627
XF:adobe-acrobat-acropdf-code-execution(30574)	CVE-2006-6027 CVE-2006-6236
XF:adobe-acrobat-character-dos(31273)	CVE-2007-0048
XF:adobe-acrobat-etd-format-string(18478)	CVE-2004-1153
XF:adobe-acrobat-insecure-permissions(7024)	CVE-2001-1069
XF:adobe-acrobat-maillistlspdf-bo(18477)	CVE-2004-1152
XF:adobe-acrobat-msvcrt-code-execution(31272)	CVE-2007-0046
XF:adobe-acrobat-null-bo(16667)	CVE-2004-0632
XF:adobe-acrobat-pdf-bo(3318)	CVE-1999-1576
XF:adobe-acrobat-pdf-csrf(31266)	CVE-2007-0044
XF:adobe-acrobat-pdf-xss(31271)	CVE-2007-0045
XF:adobe-acrobat-reader-plugin-bo(21860)	CVE-2005-2470
XF:adobe-acrobat-swf-read-files(17694)	CVE-2004-1598
XF:adobe-acrobat-tmpfile-symlink(9407)	CVE-2002-1764
XF:adobe-acrobat-uudecode-bo(16972)	CVE-2004-0631
XF:adobe-acrobat-xmlhttp-response-splitting(31291)	CVE-2007-0047
XF:adobe-acropdf-activex-dos(31167)	CVE-2006-6236
XF:adobe-actionid-op-xss(25771)	CVE-2006-1786
XF:adobe-appcheckforupdate-code-execution(42237)	CVE-2008-2042
XF:adobe-asfunction-protocol-xss(39130)	CVE-2007-6244
XF:adobe-bmp-image-file-bo(41941)	CVE-2008-1765
XF:adobe-breeze-directory-traversal(29444)	CVE-2006-5200
XF:adobe-coldfusion-cfc-security-bypass(41720)	CVE-2008-1656
XF:adobe-coldfusion-useragent-xss(41144)	CVE-2008-0643
XF:adobe-connect-edge-bo(40471)	CVE-2007-6149
XF:adobe-connect-information-disclosure(36573)	CVE-2007-4651
XF:adobe-connect-unspecified-code-execution(40504)	CVE-2007-6431
XF:adobe-download-aom-bo(30742)	CVE-2006-5856
XF:adobe-ebook-bypass-activation(9740)	CVE-2002-1017
XF:adobe-ebook-bypass-restrictions(9634)	CVE-2002-1016
XF:adobe-error-account-enumeration(25772)	CVE-2006-1788
XF:adobe-flash-declarefunction2-bo(41717)	CVE-2007-6019
XF:adobe-flash-fla-code-execution(41327)	CVE-2008-1201
XF:adobe-flash-navigatetourl-csrf(41718)	CVE-2008-1654
XF:adobe-insecure-default-permissions(24464)	CVE-2006-0525
XF:adobe-installer-security-bypass(34342)	CVE-2007-2682
XF:adobe-javascript-method-code-execution(43307)	CVE-2008-2641
XF:adobe-jsessionid-information-disclosure(25773)	CVE-2006-1787
XF:adobe-lifecycle-loginpage-xss(41143)	CVE-2008-1202
XF:adobe-livecycle-information-disclosure(25779)	CVE-2006-1628
XF:adobe-log-password-disclosure(29441)	CVE-2006-5199
XF:adobe-memory-privilege-escalation(39136)	CVE-2007-6246
XF:adobe-multiple-activex-bo(41142)	CVE-2007-6253
XF:adobe-multiple-files-bo(33838)	CVE-2007-2244
XF:adobe-navigatetourl-xss(39131)	CVE-2007-6244
XF:adobe-pagemaker-bo(37041)	CVE-2007-5169
XF:adobe-photodeluxe-execute-java(8210)	CVE-2002-1601
XF:adobe-php-sdk-cachedgateway-file-include(29776)	CVE-2006-5549
XF:adobe-pngfile-bo(33956)	CVE-2007-2365 CVE-2007-2366
XF:adobe-reader-acroread-symlink(40987)	CVE-2008-0883
XF:adobe-readerurl-xss(25770)	CVE-2006-1785
XF:adobe-root-page-node-dos(19946)	CVE-2005-0492
XF:adobe-shockwave-swctl-bo(38359)	CVE-2007-5941
XF:adobe-swf-code-execution(39128)	CVE-2007-6242
XF:adobe-unauth-command-access(25247)	CVE-2006-1182
XF:adobe-unspecified-pdf-code-execution(36722)	CVE-2007-5020
XF:adobe-unspecified-response-splitting(39134)	CVE-2007-6245
XF:adobe-unspecified-security-bypass(39129)	CVE-2007-6243
XF:adobeflex-historymanagement-xss(43150)	CVE-2008-2640
XF:adodb-postgresql-sql-injection(24314)	CVE-2006-0410
XF:adodb-server-command-execution(24051)	CVE-2006-0146
XF:adodb-tmssql-command-execution(24052)	CVE-2006-0147
XF:adonis-dnsdhcpcli-privilege-escalation(36082)	CVE-2007-4390
XF:adp-elite-gain-privileges(20622)	CVE-2005-0497
XF:adp-forum-subject-xss(25189)	CVE-2006-1157
XF:adpforum-admin-information-disclosure(31220)	CVE-2006-6891
XF:adplan-unspecified-xss(34764)	CVE-2007-3117
XF:adplug-dmo-file-bo(27670)	CVE-2006-3582
XF:adplug-dtm-file-bo(27673)	CVE-2006-3581
XF:adplug-s3m-file-bo(27674)	CVE-2006-3581
XF:adplug-u6m-file-bo(27677)	CVE-2006-3582
XF:adrenalin-unspecified-script-xss(32203)	CVE-2007-0814
XF:adrotate-sql-execute-commands(7736)	CVE-2001-1224
XF:adsense-wordpress-adsensedeluxe-csrf(34416)	CVE-2007-2828
XF:adserve-adclick-sql-injection(40045)	CVE-2008-0507
XF:adtran-ping-dos	CVE-2000-0292
XF:adultscript-administrator-security-bypass(39034)	CVE-2007-6414
XF:adultscript-id-sql-injection(39229)	CVE-2007-6576
XF:adv-guestbook-addentry-file-include(26217)	CVE-2006-2152
XF:advanced-index-directory-traversal(34152)	CVE-2007-0609
XF:advanced-multiple-script-info-disclosure(34161)	CVE-2007-0608
XF:advanced-picture-index-xss(34156)	CVE-2007-0605
XF:advanced-poll-comments-file-include(29396)	CVE-2003-1178
XF:advanced-profiledit-file-include(33321)	CVE-2007-1766
XF:advancedclanscript-mcf-file-include(29127)	CVE-2006-5061
XF:advancedelectronforum-beg-xss(41951)	CVE-2008-1983
XF:advancedguestbook-guestbook-sql-injection(27908)	CVE-2006-7077
XF:advancedguestbook-guestbook-xss(27907)	CVE-2006-7076
XF:advancedguestbook-sql-injection(15892)	CVE-2004-1952 CVE-2005-3588
XF:advancedpoll-classpoll-sql-injection(26152)	CVE-2006-2130
XF:advancedpoll-comments-page-sql-injection(25676)	CVE-2006-1616
XF:advancedpoll-comments-page-xss(25677)	CVE-2006-1617
XF:advancedpoll-header-spoofing(26154)	CVE-2006-2131
XF:advancedpoll-index-code-execution(32337)	CVE-2007-0845
XF:advancedpoll-php-admin-access(7861)	CVE-2001-1423
XF:advancedpoll-php-file-include(13514)	CVE-2003-1179 CVE-2003-1180
XF:advancedpoll-php-injection(13513)	CVE-2003-1178
XF:advancedpoll-phpinfo-obtain-information(13515)	CVE-2003-1181
XF:advancedsearchbar-ischecked-dos(35805)	CVE-2007-4250
XF:advanceflow-unspecified-xss(34404)	CVE-2007-2811
XF:adventia-chat-field-xss(21317)	CVE-2005-0919
XF:advguestbook-indexphp-xss(18334)	CVE-2004-1213
XF:advserver-http-crlf-dos(9410)	CVE-2002-1994
XF:adzapper-squid-redirect-dos(24640)	CVE-2006-0046
XF:aedating-design-file-include(28981)	CVE-2006-4870
XF:aedating-multiple-scripts-xss(27339)	CVE-2006-3279
XF:aedating-searchresult-sql-injection(22301)	CVE-2005-2985
XF:aenovo-password-information-disclosure(22549)	CVE-2005-3209
XF:aenovo-password-sql-injection(22547)	CVE-2005-3208
XF:aenovo-strsql-sql-injection(22551)	CVE-2005-3208
XF:aenovo-xss(22553)	CVE-2005-3208
XF:aeon-getconfig-bo(19951)	CVE-2005-1019
XF:aepartner-designinc-file-include(27050)	CVE-2006-2996
XF:aeries-lostpwd-sql-injection(39176)	CVE-2007-6517
XF:aeromail-obtain-files(8345)	CVE-2002-0410
XF:aeromail-subject-css(8346)	CVE-2002-0411
XF:aestiva-htmlos-cgi-xss(10029)	CVE-2002-1494
XF:af-fork-directory-disclosure(17569)	CVE-2004-1572
XF:afaq-faqdsp-sql-injection(31130)	CVE-2006-6831
XF:afcommerce-newreview-xss(27847)	CVE-2006-3800
XF:afcommerce-search-sql-injection(27846)	CVE-2006-3794
XF:afd-multiple-binaries-bo(10036)	CVE-2002-1503
XF:affiliate-network-index-xss(23075)	CVE-2005-3795
XF:affiliate-network-information-disclosure(23078)	CVE-2005-3794
XF:affiliate-network-login-sql-injection(23073)	CVE-2005-3793
XF:affiliate-network-php-code-injection(23076)	CVE-2005-3796
XF:affiliatemanager-functions-sql-injection(23415)	CVE-2005-4037
XF:affiliatemarket-detail-sql-injection(40515)	CVE-2008-1177
XF:affiliatemarket-header-file-include(40472)	CVE-2008-0794
XF:affiliatemarket-sideblock-xss(40514)	CVE-2008-1176
XF:afflib-multiple-bo(33961)	CVE-2007-2053
XF:afflib-multiple-command-execution(33964)	CVE-2007-2055
XF:afflib-multiple-format-string(33969)	CVE-2007-2054
XF:afgbguestbook-htmls-file-include(29511)	CVE-2006-5307
XF:aflog-comments-sql-injection(39825)	CVE-2008-0397
XF:aforum-func-file-include(34202)	CVE-2007-2596 CVE-2007-2634
XF:aforum-unspecified-xss(31610)	CVE-2007-0398
XF:africabegone-index-file-include(44195)	CVE-2008-3570
XF:aftpd-crash-core-dump(7832)	CVE-2002-0104
XF:afuse-filenames-command-execution(43834)	CVE-2008-2232
XF:agares-articleblock-sql-injection(39641)	CVE-2008-0262
XF:age-of-sail-bo(17791)	CVE-2004-1619
XF:agency4net-download2-directory-traversal(39343)	CVE-2008-0091
XF:agephone-sip-bo(27944)	CVE-2006-4029
XF:agermenu-topinc-file-include(32283)	CVE-2007-0837
XF:aggregation-access-security-bypass(43017)	CVE-2008-3000
XF:aggregation-unspecified-file-upload(43011)	CVE-2008-3001
XF:aggregation-unspecified-sql-injection(43010)	CVE-2008-2999
XF:aggregation-unspecified-xss(43008)	CVE-2008-2998
XF:agilebill-proxy-dos(30751)	CVE-2006-6422
XF:agora-cgi-css(7708)	CVE-2001-1199
XF:agora-cgi-revel-path(8011)	CVE-2002-0215
XF:agora-mysqlfinderadmin-file-include(30031)	CVE-2006-7194
XF:agsm-response-bo(17046)	CVE-2004-2277
XF:ahg-search-execute-commands(8032)	CVE-2002-2113
XF:ahnlab-antivirus-zip-code-execution(38514)	CVE-2007-6060
XF:ahnlab-v3flt2k-gain-privilege(22297)	CVE-2005-2986
XF:aida-web-information-disclosure(38504)	CVE-2007-6056
XF:aide-checksum-security-bypass(36452)	CVE-2007-3849
XF:aide-conf-bypass-detection(10015)	CVE-2002-2199
XF:aidex-http-request-dos(31153)	CVE-2006-6855
XF:aigaion-authorpublication-xss(34665)	CVE-2007-3078
XF:aigaion-index-sql-injection(35306)	CVE-2007-3683
XF:aim-addbuddy-bo(9058)	CVE-2002-0785
XF:aim-addexternalapp-bo(9017)	CVE-2002-0362
XF:aim-away-bo(16926)	CVE-2004-0636
XF:aim-buddy-info-bo(24362)	CVE-2006-0629
XF:aim-buddy-predictable-location(15310)	CVE-2004-2373
XF:aim-direct-connection-files(8870)	CVE-2002-0591
XF:aim-file-transfer-dos	CVE-2000-1000
XF:aim-game-overflow(7743)	CVE-2002-0005 CVE-2002-0028
XF:aim-getfile-screenname-bo(13443)	CVE-2003-1503
XF:aim-goim-screenname-bo(9950)	CVE-2002-1953
XF:aim-hijack-connection(8931)	CVE-2002-0592
XF:aim-html-comments-dos(7233)	CVE-2001-1419
XF:aim-http-refresh-functions(9616)	CVE-2002-2169
XF:aim-icq-filetransfer-directory-traversal(33538)	CVE-2007-1904
XF:aim-large-buddyicon-dos(7255)	CVE-2001-1417
XF:aim-long-filename-dos(7254)	CVE-2001-1420
XF:aim-multiple-fonts-dos(7757)	CVE-2001-1421
XF:aim-remote-bo(5732)	CVE-2000-1093
XF:aim-sniff-symlink(15199)	CVE-2004-0279
XF:aim-url-execute-files(10441)	CVE-2002-1813
XF:aim-wav-file-dos(10686)	CVE-2001-1418
XF:aimstats-config-command-execution(33742)	CVE-2007-2167 CVE-2007-2168
XF:ains-ainsmain-file-include(31850)	CVE-2007-0570
XF:aiocp-choosedlanguage-sql-injection(30051)	CVE-2006-5829
XF:aiocp-cpconfig-xss(34038)	CVE-2007-2624
XF:aiocp-cpdpage-path-disclosure(30052)	CVE-2006-5832
XF:aiocp-cpdpage-xss(34762)	CVE-2007-3120
XF:aiocp-index-file-include(30050)	CVE-2006-5831
XF:aiocp-topid-xss(30045)	CVE-2006-5830
XF:aiocp-unspecified-xss(31486)	CVE-2007-0365
XF:aiocp-userprofile-xss(30048)	CVE-2006-5830
XF:aipifou-livre-file-include(29050)	CVE-2006-4914
XF:aipo-aipoasp-session-hijacking(36850)	CVE-2007-5154
XF:aircrackng-airodumpng-bo(33626)	CVE-2007-2057
XF:airdefense-https-dos(36691)	CVE-2007-5036
XF:airfilemanager-unspecified-code-execution(42449)	CVE-2008-2345
XF:airfilemanager-unspecified-xss(42448)	CVE-2008-2344
XF:airport-auth-credentials-disclosure(11980)	CVE-2003-0270
XF:airport-beacon-dos(30663)	CVE-2006-6292
XF:airport-driver-code-execution(29965)	CVE-2006-5710
XF:airport-extremebasestation-afp-dos(41325)	CVE-2008-1012
XF:airportextreme-airportdisk-info-disclosure(33527)	CVE-2007-0734
XF:airportextreme-ipv6-security-bypass(33526)	CVE-2007-1338
XF:aisan-unspecified-privilege-escalation(33341)	CVE-2007-1781
XF:aix-acctctl-command-execution(29163)	CVE-2006-5010
XF:aix-aixterm-libim-bo(11309)	CVE-2003-0087
XF:aix-anon-ftp(3154)	CVE-1999-1119
XF:aix-arp-iftype-bo(24628)	CVE-2006-0674
XF:aix-at-bo(35976)	CVE-2007-4355
XF:aix-auditselect-format-string(19255)	CVE-2005-0250
XF:aix-bellmail-bo(38150)	CVE-2007-4623
XF:aix-bosrtelvm-gain-privileges(25299)	CVE-2006-1246
XF:aix-capture-bo(35626)	CVE-2007-3333
XF:aix-cdmount-insecure-call	CVE-2000-0466
XF:aix-cfgmgr-file-overwrite(29152)	CVE-2006-5006
XF:aix-cfgmgr-privilege-escalation(29153)	CVE-2006-5006
XF:aix-chcod-gain-privileges(18625)	CVE-2004-1028
XF:aix-chdev-format-string(19244)	CVE-2005-0240
XF:aix-chpath-rmpath-devinstall-bo(35971)	CVE-2007-4353
XF:aix-clear-netstat	CVE-2000-0873
XF:aix-console-commands-symlink(16008)	CVE-2004-2634
XF:aix-diagela(23108)	CVE-2005-3749
XF:aix-diagnostics-gain-privileges(18620)	CVE-2004-1329
XF:aix-diagrpt-root-shell(6734)	CVE-2001-1080
XF:aix-dig-dnsnamefromtext-integer-underflow(38169)	CVE-2007-4622
XF:aix-digest(7477)	CVE-1999-1487
XF:aix-digest-bo(5620)	CVE-2000-1120
XF:aix-enq-bo(5619)	CVE-2000-1121
XF:aix-enq-format-string(14037)	CVE-2003-1018
XF:aix-fc-client-bo(10127)	CVE-2002-1619
XF:aix-fileplace-bo(35972)	CVE-2007-4354
XF:aix-frcactrl	CVE-2000-0249
XF:aix-ftp-bo(35627)	CVE-2007-4004
XF:aix-ftp-domacro-bo(38162)	CVE-2007-4217
XF:aix-ftpd-bo	CVE-1999-0789
XF:aix-ftpd-gain-access(11823)	CVE-2003-0170
XF:aix-genfilt-filtering	CVE-1999-0903
XF:aix-getconf-bo(22442)	CVE-2005-3060
XF:aix-getlvcb-bo(18317)	CVE-2004-0544
XF:aix-infod	CVE-1999-0118
XF:aix-inventory-scout-file-overwrite(29162)	CVE-2006-5002
XF:aix-invscout-gain-privileges(18619)	CVE-2004-1054
XF:aix-invscoutd-gain-privileges(15620)	CVE-2004-2697
XF:aix-jfs2-race-condition(20604)	CVE-2005-1176
XF:aix-kernel-dos(24711)	CVE-2006-0666
XF:aix-keyfile-world-writable(8923)	CVE-2001-1079
XF:aix-libi18n-lang-bo(6863)	CVE-2001-0533
XF:aix-libodm-bo(35321)	CVE-2007-3680
XF:aix-local-filesystem	CVE-2000-0441
XF:aix-login-privilege-escalation(29155)	CVE-2006-5005
XF:aix-login-unauth-access(8269)	CVE-2001-1440
XF:aix-lqueryvg-sprintf-bo(38165)	CVE-2007-4513
XF:aix-lsfs-path(7007)	CVE-2001-0573
XF:aix-lvm-commands-symlink(16011)	CVE-2004-0545
XF:aix-mailservices-rlogin-security-bypass(31875)	CVE-2007-0618
XF:aix-make-cc-bo(15554)	CVE-2004-2312
XF:aix-mklvcopy-code-execution(25849)	CVE-2006-1246
XF:aix-mkvg-privilege-escalation(29165)	CVE-2006-4416
XF:aix-named8-privilege-escalation(29160)	CVE-2006-5003
XF:aix-nslookup-hostname-bo(8031)	CVE-1999-1583
XF:aix-nslookup-lex-bo(7867)	CVE-1999-1574
XF:aix-paginit-username-bo(18618)	CVE-2004-1330
XF:aix-password-enumeration(15172)	CVE-2004-0243
XF:aix-pdnsd-bo	CVE-1999-0745
XF:aix-piobe-bo(5616)	CVE-2000-1124
XF:aix-pioout-bo	CVE-2000-1123
XF:aix-pioout-r-bo(35628)	CVE-2007-4003
XF:aix-portmir-echoerror-bo(7929)	CVE-2000-1216
XF:aix-print-format-string(12000)	CVE-2003-0257
XF:aix-pssp-information-disclosure(10671)	CVE-2002-1620
XF:aix-ptrace-halt	CVE-1999-0694
XF:aix-putlvcb-bo(15555)	CVE-2004-0544
XF:aix-rdist-bo(32184)	CVE-2007-0670
XF:aix-rdist-file-overwrite(29159)	CVE-2006-5004
XF:aix-rm-mlcache-file-overwrite(25848)	CVE-2006-1247
XF:aix-rmpvc-dos(35845)	CVE-2007-4228
XF:aix-rpc-datatype-bo(10112)	CVE-2002-1622
XF:aix-sadc-timex(7675)	CVE-1999-1486
XF:aix-sendmail-getipnodebyname-dos(13328)	CVE-2003-0696
XF:aix-sendmail-mail-relay(11993)	CVE-2003-0285
XF:aix-setlocale-privilege-escalation(28482)	CVE-2006-4254
XF:aix-setsenv-bo(5621)	CVE-2000-1119
XF:aix-snappd-privilege-escalation(29157)	CVE-2006-5011
XF:aix-snmpd-rst-dos(6996)	CVE-2001-0487
XF:aix-swcons-bo(32508)	CVE-2007-0978
XF:aix-swcons-insecure-permissions(38154)	CVE-2007-5804 CVE-2007-5805
XF:aix-sysback-elevate-privileges(6432)	CVE-2000-1222
XF:aix-tcp-flood-dos(10326)	CVE-2002-1201
XF:aix-techlibss-symbolic-link	CVE-2000-0080
XF:aix-ttdbserver	CVE-1999-0003
XF:aix-utape-file-overwrite(29154)	CVE-2006-5008
XF:aix-utape-privilege-escalation(29151)	CVE-2006-5008
XF:aix-uucp-privilege-escalation(29156)	CVE-2006-5007
XF:aix-websm-dos(34631)	CVE-2007-2995
XF:aix-xlock-bo(29161)	CVE-2006-5009
XF:aj-fork-path-disclosure(17568)	CVE-2004-1571
XF:aj-fork-usersdbphp-write-access(17571)	CVE-2004-1573
XF:ajauctionpro-subcat-sql-injection(32789)	CVE-2007-1298
XF:ajax-settingsinc-file-include(36604)	CVE-2007-4921
XF:ajaxchat-chatid-information-disclosure(28085)	CVE-2006-3972
XF:ajaxchat-userid-xss(28086)	CVE-2006-3971
XF:ajaxportal-login-search-sql-injection(27644)	CVE-2006-3666
XF:ajclassifieds-postingdetails-sql-injection(32786)	CVE-2007-1296
XF:ajdating-userid-sql-injection(42326)	CVE-2007-1297
XF:ajdating-viewprofile-sql-injection(32788)	CVE-2007-1297
XF:ajforum-topictitle-sql-injection(32785)	CVE-2007-1295
XF:ajlogin-ajlogin-info-disclosure(31331)	CVE-2007-0153
XF:ajportal2php-pageprefix-file-include(33703)	CVE-2007-2142
XF:akamai-download-code-execution(42117)	CVE-2007-6339
XF:akamai-download-manager-bo(33697)	CVE-2007-1892
XF:akarru-main-file-include(28760)	CVE-2006-4645
XF:akarru-users-sql-injection(25115)	CVE-2006-1051
XF:akfingerd-connect-dos(10794)	CVE-2002-2243
XF:akfingerd-plan-symlink-dos(10795)	CVE-2002-2244
XF:akfingerd-read-files(10796)	CVE-2002-2274
XF:akismet-wordpress-unspecified(34338)	CVE-2007-2714
XF:akkywarehouse-zip-bo(36459)	CVE-2007-4725
XF:akobook-gb-xss(36471)	CVE-2007-4745
XF:akocomment-akocomment-sql-injection(25451)	CVE-2006-1421
XF:akocomment-akocomments-file-include(28458)	CVE-2006-4281
XF:akogallery-index-sql-injection(40141)	CVE-2008-0561
XF:akopia-interchange-gain-access(6273)	CVE-2001-0372
XF:aktivate-shopping-css(7717)	CVE-2001-1212
XF:aktueldownload-haberdetay-sql-injection(32527)	CVE-2007-1015
XF:al-caricatier-ss-bypass-security(22840)	CVE-2005-4653
XF:alabanza-unauthorized-access	CVE-2000-1023
XF:aladdin-etoken-pin-reset	CVE-2000-0427
XF:alathkar-include-file-include(35818)	CVE-2007-4170
XF:albatross-context-command-execution(24130)	CVE-2006-0044
XF:alberghi-index-sql-injection(41285)	CVE-2008-1459
XF:albert-easysite-logout-file-include(28584)	CVE-2006-4426
XF:albinator-multiple-xss(26240)	CVE-2006-2181
XF:album-photo-getimg-file-include(29473)	CVE-2006-5320
XF:albumpl-command-execution(11878)	CVE-2003-1456
XF:alcaricatier-catviewed-xss(35810)	CVE-2007-4167
XF:alcaricatier-viewcaricatier-xss(25493)	CVE-2006-1556
XF:alcatel-blank-password(6335)	CVE-2001-1424
XF:alcatel-expert-account(6354)	CVE-2001-1425
XF:alcatel-omniswitch-backdoor(10664)	CVE-2002-1272
XF:alcatel-omniswitch-nessus-dos(15318)	CVE-2004-2377
XF:alcatel-speedtouch-nmap-dos(7893)	CVE-2002-0119
XF:alcatel-tftp-lan-access(6336)	CVE-2001-1426 CVE-2001-1484
XF:alcatel-unified-mastercgi-command-execution(36632)	CVE-2007-3010
XF:alcatellucent-voip-unauthorized-access(34760)	CVE-2007-2512
XF:alchemy-http-dot-commands(7625)	CVE-2001-0871
XF:alchemy-http-dot-variant(7626)	CVE-2001-0871
XF:alchemy-http-view-log(7630)	CVE-2001-0870
XF:aldap-bind-manager-access(10733)	CVE-2002-2279
XF:alexis-http-plaintext-information(7205)	CVE-2001-1253
XF:alexnews-newscomments-sql-injection(26946)	CVE-2006-2879
XF:alftp-mkd-dir-traversal(30282)	CVE-2006-5949
XF:alftp-ren-path-disclosure(30281)	CVE-2006-5950
XF:alftpftp-list-directory-traversal(42900)	CVE-2008-2702
XF:alguest-php-admin-access(8623)	CVE-2002-0491
XF:alibaba-url-file-manipulation	CVE-1999-0885
XF:alice-cms-index-file-include(29633)	CVE-2006-5433
XF:alice-messenger-hp-unauth-access(36408)	CVE-2007-4740
XF:alicegate2pluswifi-admin-security-bypass(41110)	CVE-2008-1269
XF:alien-arena-clientconnect-dos(36465)	CVE-2007-4755
XF:alien-arena-safebprintf-format-string(36463)	CVE-2007-4754
XF:alien-cmd-sa-f-bo(25200)	CVE-2006-1146
XF:alien-com-sprintf-dos(25201)	CVE-2006-1147
XF:alien-safe-cprintf-format-string(25199)	CVE-2006-1145
XF:alienform2-directory-traversal(9325)	CVE-2002-0934
XF:alipager-chat-xss(27269)	CVE-2006-3345
XF:alipager-elementz-sql-injection(26378)	CVE-2006-2344
XF:alipager-elementz-xss(26379)	CVE-2006-2345
XF:alipay-activex-code-execution(32367)	CVE-2007-0827
XF:alisveristr-login-sql-injection(23507)	CVE-2005-4081
XF:alitalk-adminindex-sql-injection(39735)	CVE-2008-0371
XF:alitalk-index-sql-injection(39745)	CVE-2008-0371
XF:alitalk-receivertwo-sql-injection(39733)	CVE-2008-0371
XF:alitalk-usercp-sql-injection(39736)	CVE-2008-0371
XF:alivesites-sql-injection(17730)	CVE-2004-2212
XF:alivesites-xss(17725)	CVE-2004-2211
XF:alkalinephp-adduser-security-bypass(42502)	CVE-2008-2346
XF:alkalinephp-thread-sql-injection(42520)	CVE-2008-2395
XF:allaire-clustercats-url-redirect	CVE-2000-0382
XF:allaire-forums-allaccess	CVE-2000-0297
XF:allaire-forums-file-read(1748)	CVE-1999-0800
XF:allaire-forums-message-spoofing(7841)	CVE-2002-0108
XF:allaire-jrun-jsessionid-appended(7679)	CVE-2001-1545
XF:allaire-jrun-jsp-execute	CVE-2000-1053
XF:allaire-jrun-jws-directory-traversal(7678)	CVE-2001-1544
XF:allaire-jrun-servlet-dos	CVE-2000-1049
XF:allaire-jrun-sessionid-duplicated(7680)	CVE-2001-1513
XF:allaire-jrun-ssifilter-url	CVE-2000-1051
XF:allaire-jrun-view-directory(7623)	CVE-2001-1510
XF:allaire-jrun-view-jsp-source(7676)	CVE-2001-1511
XF:allaire-jrun-view-source(7622)	CVE-2001-0926
XF:allaire-jrun-webinf-access	CVE-2000-1050
XF:allaire-jrun-webinf-metainf-jsp(7677)	CVE-2001-1512
XF:allaire-spectra-admin-access	CVE-2000-0862
XF:allaire-spectra-config-dos	CVE-2000-0051
XF:allaire-spectra-container-editor-preview	CVE-2000-0334
XF:allaire-spectra-ras-access(4025)	CVE-2000-0120
XF:allaire-webtop-access	CVE-2000-0050
XF:allcommerce-temp-symlink(6830)	CVE-2001-1146
XF:allfaclassfieds-level2-file-include(33798)	CVE-2007-2254
XF:alliedtelesis-vlan-security-bypass(30924)	CVE-2006-6717
XF:allmyguests-index-sql-injection(41910)	CVE-2008-1961
XF:allmyguests-multiple-file-include(31310)	CVE-2007-0172
XF:allmyguests-php-file-include(15227)	CVE-2004-0285
XF:allmyguests-signin-file-include(29064)	CVE-2006-4993
XF:allmylinks-file-include(15226)	CVE-2004-0285
XF:allmylinks-index-file-include(31314)	CVE-2007-0171
XF:allmyvisitors-file-include(15228)	CVE-2004-0285
XF:allmyvisitors-index-file-include(31316)	CVE-2007-0170
XF:allonsvoter-admin-authentication-bypass(32431)	CVE-2007-0874
XF:alm-read-sql-injection(42320)	CVE-2008-2529
XF:almnzm-orderid-information-disclosure(34574)	CVE-2007-3173
XF:alpass-alpass-db-file-bo(36235)	CVE-2007-4549
XF:alpass-apw-bo(36257)	CVE-2007-4549
XF:alpass-apw-format-string(36256)	CVE-2007-4550
XF:alphablackzero-udp-packet-dos(17545)	CVE-2004-1207
XF:alphacontent-index-sql-injection(41428)	CVE-2008-1559
XF:alphadmin-cookie-security-bypass(43970)	CVE-2008-3300
XF:alphamail-logging-password-disclosure(28907)	CVE-2006-4787
XF:alpoll-admin-auth-bypass(28737)	CVE-2006-4652 CVE-2006-4653
XF:alpoll-login-security-bypass(28737)	CVE-2006-4652 CVE-2006-4653
XF:alsaplayer-cddblookup-bo(28308)	CVE-2006-4089
XF:alsaplayer-command-line-bo(10157)	CVE-2002-1896
XF:alsaplayer-gtkpl