owaspbwa tickets

来源  https://sourceforge.net/p/owaspbwa/tickets/

192 SQL Injection in pic_id parameter Peruggia High
1911AWStatsMedium
190GetBoo reflected XSS in http:/?/?owaspbwa/?getboo/?psearch.phpGetBooMedium
34CSRF to change password and e-mailCSRFYazdMedium
33Lack of access controlsPeruggiaMedium
32Reflected XSSPeruggiaMedium
31Local File InclusionPeruggiaMedium
30SQL Injection Login BypassPeruggiaHigh
29Directory TraversalPeruggiaMedium
28INSERT SQL InectionOWASP VicnumHigh
27AppSensor viewProfile lack of access controlOWASP AppSensor Demo ApplicationMedium
26GetBoo Email Forgotten Password SQL injectionGetBooHigh
25GetBoo Email Forgotten Password SQL injectionGetBooHigh
24GetBoo stored XSSXSS, stored, cross, site, scriptingGetBooMedium
23Vanilla SQL InjectionOWASP VicnumMedium
22Remote PHP Injection (CVE-2007-5423)TikiWikiHigh
21Cross-site scripting (XSS) vulnerability in tiki-featured_link.php (CVE-2006-5703)XSSTikiWikiMedium
20Directory traversal in tiki-listmovies.php (CVE-2007-6528)TikiWikiMedium
19XSS vulnerability in tiki-special_chars.php (CVE-2007-6526)XSSTikiWikiMedium
18CVE-2008-1047XSSTikiWikiMedium
15Reflected XSS in http:/?/?owaspbwa/?yazd/?bay/?account.jspYazdMedium
14Reflected XSS in http:/?/?owaspbwa/?yazd/?bay/?post.jspYazdMedium
13Reflected XSS in http:/?/?owaspbwa/?gtd-php/?editList.phpGTD-PHPMedium
12Reflected XSS in http:/?/?owaspbwa/?gtd-php/?editChecklist.phpGTD-PHPMedium
11Internal Path DisclosureAWStats_Low
10Open RedirectAWStats_Low
9Malicious File ExecutionWordPressHigh
8SQL InjectionWordPressHigh
7SQL InjectionWordPressHigh
6Command InjectionWordPressHigh
5Reflected XSS in http:/?/?owaspbwa/?mono/?simple-reflected-xss.aspxSimple ASP.NET FormsMedium
4Reflected XSS in http:/?/?owaspbwa/?vicnum/?vicnum5.phpOWASP VicnumMedium
3State ManipulationOWASP VicnumHigh
2Reflected XSS in http:/?/?owaspbwa/?mandiant-struts-form-vulnerable/?submitname.doMandiant Struts FormsMedium
1Reflected XSS in http:/?/?owaspbwa/?vicnum/?cgi-bin/?vicnum1.pl