Secunia
Login
|
|
Vulnerabilities Discovered or Coordinated by Secunia Research
Below shows a complete listing of current Secunia Research Advisories.
Dmitry Janushkevich
| Found vulnerabilities: | 2 |
| Company Name | Secunia Research |
ID | Description | Time to Patch | Vulnerabilities |
| 2014-5 | Autodesk SketchBook Pro PSD Channels RLE Decompression Buffer Overflow Vulnerability | 33 days | 1 |
| 2013-13 | IrfanView GIF Image Processing Buffer Overflow Vulnerability | 20 days | 1 |
Egidio Romano
| Found vulnerabilities: | 9 |
| Company Name | Secunia Research |
ID | Description | Time to Patch | Vulnerabilities |
| 2014-4 | X2CRM Profile Picture Arbitrary File Upload Vulnerability | 0 days | 1 |
| 2014-3 | Open Web Analytics PHP Object Injection Vulnerability | 3 days | 1 |
| 2014-2 | Zikula Application Framework PHP Object Injection Vulnerabilities | 32 days | 3 |
| 2014-1 | OpenPNE PHP Object Injection Vulnerability | 61 days | 1 |
| 2013-12 | Sharetronix Authentication Bypass Security Issue | Unpatched (152 days) | 1 |
| 2013-11 | Sharetronix Cross-Site Request Forgery Vulnerability | Unpatched (152 days) | 1 |
| 2013-10 | Sharetronix Two SQL Injection Vulnerabilities | Unpatched (152 days) | 2 |
| 2013-9 | Sharetronix Arbitrary File Upload Vulnerability | Unpatched (152 days) | 1 |
| 2013-8 | Sharetronix Two PHP Code Injection Vulnerabilities | Unpatched (152 days) | 2 |
Kaveh Ghaemmaghami
| Found vulnerabilities: | 11 |
ID | Description | Time to Patch | Vulnerabilities |
| SA56172 | XnView JXR IFD_ENTRY Processing Integer Overflow Vulnerability | Unpatched (247 days) | 1 |
| SA53266 | Kingsoft Writer 2012 WPS Font Names Buffer Overflow Vulnerability | 21 days | 1 |
| SA53484 | UMPlayer Insecure Library Loading Vulnerability | Unpatched (278 days) | 1 |
| SA53469 | Daum PotPlayer Insecure Library Loading Vulnerability | 15 days | 1 |
| SA52101 | XnView BMP and RGB File Processing Two Buffer Overflow Vulnerabilities | 130 days | 2 |
| SA52956 | VLC Media Player MKV Parsing Integer Overflow Vulnerability | 97 days | 1 |
| SA51749 | Adobe Digital Editions Embedded Font Processing Memory Corruption Vulnerability | 166 days | 1 |
| SA51652 | Google Picasa BMP "biBitCount" Handling Buffer Overflow Vulnerability | 71 days | 1 |
| SA51418 | Kingsoft Spreadsheets Multiple Buffer Overflow Vulnerabilities | Unpatched (458 days) | 3 |
| SA52707 | Corel PDF Fusion Insecure Library Loading and XPS Processing Buffer Overflow Vulnerabilities | Unpatched (316 days) | 2 |
| SA52705 | Sagelight BMP File Parsing Integer Overflow Vulnerability | Unpatched (327 days) | 1 |
Ahmad Moghimi
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA54465 | AhnLab V3 Internet Security 0xA3350014 IOCTL Handling Privilege Escalation Vulnerability | 139 days | 1 |
Hossen Lotfi
| Found vulnerabilities: | 1 |
| Company Name | Secunia Research |
ID | Description | Time to Patch | Vulnerabilities |
| 2013-14 | Google Picasa Four RAW Image Parsing Code Execution Vulnerabilities | 35 days | 4 |
Krystian Kloskowski (h07)
| Found vulnerabilities: | 5 |
ID | Description | Time to Patch | Vulnerabilities |
| SA52101 | XnView JPEG2000 File Processing Buffer Overflow Vulnerability | 130 days | 1 |
| SA42112 | Adobe Shockwave Player "Shockwave Settings" Use-After-Free Vulnerability | 98 days | 1 |
| SA40217 | Microsoft Windows Common Control Library Integer Truncation Vulnerability | 112 days | 1 |
| SA40729 | QuickTime Player Streaming Debug Error Logging Buffer Overflow | 18 days | 1 |
| SA45550 | DivX Plus Web Player "file://" Buffer Overflow Vulnerability | Unpatched (972 days) | 1 |
Parvez Anwar
| Found vulnerabilities: | 51 |
ID | Description | Time to Patch | Vulnerabilities |
| SA51647 | ERDAS APOLLO ECWP Browser Plugin Buffer Overflow Vulnerability | 84 days | 1 |
| SA54444 | IrfanView Formats PlugIn SID Image Processing Multiple Vulnerabilities | 113 days | 3 |
| SA51510 | Global Mapper Insecure Library Loading Vulnerability | Unpatched (453 days) | 1 |
| SA53173 | ERDAS ER Viewer Insecure Library Loading Vulnerability | Unpatched (418 days) | 1 |
| SA51725 | ERDAS ER Viewer "ERM_convert_to_correct_webpath()" Buffer Overflow Vulnerability | 55 days | 1 |
| SA53096 | DameWare Remote Support DameWare Exporter Buffer Overflow Vulnerability | 46 days | 1 |
| SA47175 | JasPer "jpc_dec_cp_setfromqcx()" Buffer Overflow Vulnerability | Unpatched (824 days) | 1 |
| SA49281 | CyberLink LabelPrint Project File Processing Buffer Overflow Vulnerability | Unpatched (657 days) | 1 |
| SA47282 | DVD Architect Pro / Studio Insecure Library Loading Vulnerability | Unpatched (837 days) | 1 |
| SA47281 | Jam Trax Express Insecure Library Loading Vulnerability | Unpatched (837 days) | 1 |
| SA47352 | XnView JPEG2000 Image Processing Buffer Overflow Vulnerability | Unpatched (826 days) | 1 |
| SA47477 | PhotoLine JPEG2000 Image Processing Buffer Overflow Vulnerability | 23 days | 1 |
| SA47831 | LuraWave JP2 Browser Plug-In File Processing Buffer Overflow Vulnerability | 29 days | 1 |
| SA47283 | Vegas Movie Studio HD Insecure Library Loading Vulnerability | Unpatched (837 days) | 1 |
| SA47362 | IvanView JPEG2000 Image Processing Buffer Overflow Vulnerability | Unpatched (824 days) | 1 |
| SA48924 | 3DVIA Composer Insecure Library Loading Vulnerability | Unpatched (719 days) | 1 |
| SA47284 | moviEZ HD Insecure Library Loading Vulnerability | Unpatched (837 days) | 1 |
| SA49311 | CyberLink KoanBox ActiveX Control Buffer Overflow Vulnerability | Unpatched (657 days) | 1 |
| SA49295 | CyberLink PowerProducer Insecure Library Loading Vulnerability | Unpatched (657 days) | 1 |
| SA50526 | Foxit Reader Insecure Library Loading Vulnerability | 16 days | 1 |
| SA49290 | CyberLink StreamAuthor Insecure Library Loading Vulnerability | Unpatched (657 days) | 1 |
| SA49281 | CyberLink LabelPrint Insecure Library Loading Vulnerability | Unpatched (657 days) | 1 |
| SA47333 | IrfanView RLE Compressed Bitmap Image Parsing Buffer Overflow | 98 days | 1 |
| SA48923 | 3D XML Player Insecure Library Loading Vulnerability | Unpatched (719 days) | 1 |
| SA48925 | 3D Life Player WebPlayer ActiveX Control Buffer Overflow Vulnerabilities | Unpatched (719 days) | 2 |
| SA47350 | LuraWave JP2 ActiveX Control File Processing Buffer Overflow Vulnerability | 29 days | 1 |
| SA46091 | Caminova DjVu Browser Plug-in "Sjbz" Chunk Parsing Buffer Overflow Vulnerability | 118 days | 1 |
| SA47122 | HP PKI ActiveX Control Arbitrary Process Termination Weakness | 9 days | 1 |
| SA45189 | Microsoft Windows Object Packager Insecure Executable Loading Vulnerability | 180 days | 1 |
| SA47360 | IrfanView PlugIns JPEG2000 Image Processing Buffer Overflow Vulnerability | 13 days | 1 |
| SA42805 | PDF-Pro PDF Reader ActiveX Control Unsafe Methods | Unpatched (1181 days) | 3 |
| SA42805 | PDF-Pro Dictionary Array Parsing Use-After-Free Vulnerability | Unpatched (1181 days) | 1 |
| SA42805 | PDF-Pro PDF Reader ActiveX Control "open_stream()" Use-After-Free Vulnerability | Unpatched (1181 days) | 1 |
| SA42805 | PDF-Pro PDF Reader ActiveX Control "open_stream()" Method Buffer Overflows | Unpatched (1181 days) | 2 |
| SA42805 | PDF-Pro PDF Reader ActiveX Control "open()" Method Buffer Overflow | Unpatched (1181 days) | 1 |
| SA43399 | IBM Rational System Architect ActiveBar ActiveX Control Vulnerabilities | 63 days | 4 |
| SA43474 | Data Dynamics ActiveBar ActiveX Control "SetLayoutData()" Vulnerability | Unpatched (1138 days) | 1 |
| SA43562 | ACDSee Picture Frame Manager Insecure Library Loading Vulnerability | Unpatched (1133 days) | 1 |
| SA43563 | ACDSee Photo Editor 2008 Insecure Library Loading Vulnerability | Unpatched (1133 days) | 1 |
| SA45020 | Microsoft Office Insecure Library Loading Vulnerability | 74 days | 1 |
| SA44722 | ACDSee FotoSlate PLP File Processing Buffer Overflow Vulnerability | Unpatched (1035 days) | 1 |
| SA43564 | ACDSee FotoSlate Insecure Library Loading Vulnerability | Unpatched (1132 days) | 1 |
| SA43349 | ISIS Papyrus AFP Viewer ActiveX Control Buffer Overflow Vulnerabilities | 52 days | 2 |
| SA41253 | L0phtCrack Insecure Library Loading Vulnerability | Unpatched (1314 days) | 1 |
| SA41348 | WebEx Meeting Manager WebexUCFObject ActiveX Control Insecure Library Loading | 82 days | 1 |
| SA41482 | McAfee VirusScan Enterprise Insecure Library Loading Vulnerability | 77 days | 1 |
| SA38733 | RemoteExec Computers List Buffer Overflow Vulnerability | 15 days | 1 |
| SA42805 | PDF-Pro Insecure Library Loading Vulnerability | Unpatched (1181 days) | 1 |
| SA41209 | Sophos Free Encryption / SafeGuard PrivateCrypto Insecure Library Loading Vulnerability | Unpatched (1316 days) | 1 |
| SA45665 | RSA SecurID Software Token Insecure Library Loading Vulnerability | 118 days | 1 |
| SA41108 | DivX Plus Player Insecure Library Loading Vulnerability | Unpatched (1321 days) | 1 |
Sudhanshu Chauhan
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA53920 | CMS Made Simple "handler" Script Insertion Vulnerability | Unpatched (256 days) | 1 |
Hossein Lotfi
| Found vulnerabilities: | 1 |
| Company Name | Secunia Research |
ID | Description | Time to Patch | Vulnerabilities |
| 2013-7 | Windows GDI "SetDIBitsToDevice()" API BITMAPINFOHEADER Processing biClrUsed Integer Overflow Vulnerability | 155 days | 1 |
Han Lee
| Found vulnerabilities: | 5 |
ID | Description | Time to Patch | Vulnerabilities |
| SA53170 | WordPress WP Ultimate Email Marketer Plugin Multiple Vulnerabilities | Unpatched (321 days) | 19 |
| SA53743 | CoreFTP "CWD" Buffer Overflow Vulnerability | 22 days | 1 |
| SA50981 | WordPress Spider Calendar Plugin "many_sp_calendar" Cross-Site Scripting Vulnerability | 8 days | 1 |
| SA49453 | eXtplorer "lang" Cross-Site Scripting Vulnerability | 25 days | 1 |
| SA49050 | Core FTP File Download Buffer Overflow Vulnerability | 7 days | 1 |
Nikhil Srivastava
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA54803 | WordPress "get_allowed_mime_types()" File Upload Script Insertion Vulnerability | 12 days | 1 |
Secunia Research
| Found vulnerabilities: | 147 |
ID | Description | Time to Patch | Vulnerabilities |
| 2013-6 | WordPress Mingle Forum Plugin Cross-Site Request Forgery Vulnerability | Unpatched (405 days) | 1 |
| 2013-5 | Zoom Player BMP File Processing Buffer Overflow Vulnerability | Unpatched (340 days) | 1 |
| 2013-4 | WordPress Mingle Forum Plugin Four SQL Injection Vulnerabilities | 99 days | 4 |
| 2013-3 | WordPress Mingle Forum Plugin Two Cross-Site Scripting Vulnerabilities | 112 days | 2 |
| 2012-28 | Baby Gekko URL Cross-Site Scripting Vulnerability | 29 days | 1 |
| 2012-24 | DokuWiki "ns" Cross-Site Scripting Vulnerability | 6 days | 1 |
| 2012-22 | SyndeoCMS "newsletter_email" SQL Injection Vulnerability | 300 days | 1 |
| 2012-13 | Quest Toad for Data Analysts Insecure Default Directory Permissions | Unpatched (728 days) | 1 |
| 2012-12 | SyndeoCMS Six Local File Inclusion Vulnerabilities | 164 days | 6 |
| 2012-11 | SyndeoCMS CKEditor Arbitrary File Upload Vulnerability | 164 days | 1 |
| 2012-10 | SyndeoCMS Nine SQL Injection Vulnerabilities | 164 days | 9 |
| 2012-7 | Csound pv_import Integer Overflow Vulnerability | Unpatched (809 days) | 1 |
| 2012-6 | Csound lpci_import Integer Overflow Vulnerability | 61 days | 2 |
| 2012-5 | MinaliC Three Buffer Overflow Vulnerabilities | Unpatched (760 days) | 3 |
| 2012-4 | Csound lpci_import Buffer Overflow Vulnerability | 61 days | 1 |
| 2012-3 | Csound "getnum()" Function Two Buffer Overflow Vulnerabilities | Unpatched (809 days) | 2 |
| 2011-91 | WordPress WP Symposium Plugin Two Arbitrary File Upload Vulnerabilities | 17 days | 2 |
| 2011-82 | WordPress WP Symposium Plugin "uid" Cross-Site Scripting | 1 days | 1 |
| 2011-79 | Support Incident Tracker Arbitrary File Upload Vulnerability | Unpatched (897 days) | 1 |
| 2011-78 | Support Incident Tracker "eval()" PHP Code Execution Vulnerability | Unpatched (897 days) | 1 |
| 2011-77 | Support Incident Tracker File Name SQL Injection Vulnerability | Unpatched (897 days) | 1 |
| 2011-76 | Support Incident Tracker "search_string" Cross-Site Scripting | Unpatched (897 days) | 1 |
| 2011-75 | Support Incident Tracker Attachments Path Disclosure Weakness | Unpatched (897 days) | 1 |
| 2011-71 | Autonomy Keyview Ichitaro Object Reconstruction Logic Vulnerability | 164 days | 1 |
| 2011-70 | Autonomy Keyview Ichitaro Text Parsing Buffer Overflow | 164 days | 1 |
| 2011-69 | Autonomy Keyview Ichitaro QLST Integer Overflow Vulnerability | 164 days | 1 |
| 2011-65 | phpList "findby" SQL Injection Vulnerability | 42 days | 1 |
| 2011-64 | phpList Two Script Insertion Vulnerabilities | 42 days | 2 |
| 2011-63 | phpList Two Cross-Site Scripting Vulnerabilities | 41 days | 2 |
| 2011-60 | UUSee UUPlayer ActiveX Control "SendLogAction()" Buffer Overflow | Unpatched (979 days) | 1 |
| 2011-59 | UUSee UUPlayer ActiveX Control "Play()" Code Execution Vulnerability | Unpatched (979 days) | 1 |
| 2011-58 | Provideo PAxPlayer ActiveX Control Two Buffer Overflows | Unpatched (1001 days) | 2 |
| 2011-57 | Provideo GMAXPlayer ActiveX Control Two Buffer Overflows | Unpatched (1001 days) | 2 |
| 2011-56 | Provideo alarm ActiveX Control "voice()" Buffer Overflow | Unpatched (1001 days) | 1 |
| 2011-55 | Foxit Reader ActiveX Control "OpenFile()" Buffer Overflow Vulnerability | 31 days | 1 |
| 2011-54 | Enano CMS "name" User Enumeration Weakness | Unpatched (1009 days) | 1 |
| 2011-53 | Enano CMS Five Cross-Site Scripting Vulnerabilities | 15 days | 5 |
| 2011-52 | Enano CMS Cross-Site Request Forgery Vulnerability | 15 days | 1 |
| 2011-51 | Enano CMS "subject" Script Insertion Vulnerability | 15 days | 1 |
| 2011-49 | NNT Change Tracker / Remote Angel Insecure File Permissions | 25 days | 1 |
| 2011-41 | Adobe Reader/Acrobat ACE.dll ICC Chunk Parsing Integer Overflow | 120 days | 1 |
| 2011-39 | Avaya IP Office Manager TFTP Directory Traversal Vulnerability | 80 days | 1 |
| 2011-30 | RunCMS "topicmanager.php" Cross-Site Scripting Vulnerability | Unpatched (1119 days) | 1 |
| 2011-29 | RunCMS Cross-Site Request Forgery Vulnerability | Unpatched (1119 days) | 1 |
| 2011-28 | RunCMS Multiple SQL Injection Vulnerabilities | Unpatched (1119 days) | 15 |
| 2011-27 | RunCMS File Upload Vulnerability | Unpatched (1119 days) | 1 |
| 2011-26 | Achievo Three Cross-Site Scripting Vulnerabilities | Unpatched (1236 days) | 3 |
| 2011-25 | Achievo Six SQL Injection Vulnerabilities | Unpatched (1236 days) | 6 |
| 2011-24 | Achievo "owner" Scheduler Security Bypass Vulnerability | Unpatched (871 days) | 1 |
| 2011-23 | Achievo Two Local File Inclusion Vulnerabilities | Unpatched (1236 days) | 2 |
| 2011-21 | LotusCMS Two PHP Code Execution Vulnerabilities | Unpatched (1125 days) | 2 |
| 2011-20 | LotusCMS Cross-Site Request Forgery Vulnerability | Unpatched (1125 days) | 1 |
| 2011-19 | LotusCMS Backup File Disclosure Vulnerability | Unpatched (1125 days) | 1 |
| 2011-18 | LotusCMS Arbitrary File Upload Vulnerability | Unpatched (1125 days) | 1 |
| 2011-17 | LotusCMS Two Cross-Site Scripting Vulnerabilities | 6 days | 2 |
| 2011-16 | LotusCMS "page" User Enumeration Weakness | 6 days | 1 |
| 2011-15 | LotusCMS Two File Disclosure Vulnerabilities | 6 days | 2 |
| 2011-14 | Foxit Reader/Phantom ICC Chunk Parsing Integer Overflow | 10 days | 1 |
| 2010-134 | webERP Multiple SQL Injection Vulnerabilities | Unpatched (1349 days) | 26 |
| 2010-133 | Seo Panel One Hundred and One SQL Injection Vulnerabilities | 128 days | 101 |
| 2010-132 | Seo Panel Two Script Insertion Vulnerabilities | Unpatched (1358 days) | 2 |
| 2010-131 | Seo Panel Ten Cross-Site Scripting Vulnerabilities | Unpatched (1358 days) | 10 |
| 2010-126 | Subtitle Translation Wizard Buffer Overflow Vulnerabilities | 5 days | 3 |
| 2010-125 | 4images "show_form_header()" Cross-Site Scripting Vulnerability | 34 days | 1 |
| 2010-124 | PhreeBooks Six Local File Inclusion Vulnerabilities | Unpatched (1293 days) | 6 |
| 2010-123 | PhreeBooks Forty Eight SQL Injection Vulnerabilities | Unpatched (1293 days) | 48 |
| 2010-122 | PhreeBooks "my_note" Script Insertion Vulnerability | Unpatched (1293 days) | 1 |
| 2010-121 | PhreeBooks Eight Cross-Site Scripting Vulnerabilities | Unpatched (1293 days) | 8 |
| 2010-116 | FreePBX Filename Command Injection Vulnerability | Unpatched (1289 days) | 1 |
| 2010-115 | Nagios XI "grab_request_var()" Cross-Site Scripting Vulnerability | 19 days | 1 |
| 2010-111 | Pligg Two SQL Injection Vulnerabilities | 1 days | 2 |
| 2010-108 | phpBugTracker "bugid" SQL Injection Vulnerability | Unpatched (1337 days) | 1 |
| 2010-107 | phpBugTracker "add_attachment()" Arbitrary File Upload | Unpatched (1337 days) | 1 |
| 2010-106 | KubeBlog Twelve Cross-Site Scripting Vulnerabilities | Unpatched (1345 days) | 12 |
| 2010-105 | KubeBlog "website" Script Insertion Vulnerability | Unpatched (1345 days) | 1 |
| 2010-103 | MantisBT "Add Category" Script Insertion Vulnerability | 43 days | 1 |
| 2010-101 | webERP Multiple Cross-Site Scripting Vulnerabilities | Unpatched (1349 days) | 8 |
| 2010-97 | Seo Panel Two Security Bypass Vulnerabilities | 128 days | 2 |
| 2010-96 | Seo Panel "file" File Disclosure Vulnerability | 128 days | 1 |
| 2010-94 | InterPhoto Gallery "file" Directory Traversal Vulnerability | 37 days | 1 |
| 2010-93 | Website Baker Four Local File Inclusion Vulnerabilities | 413 days | 4 |
| 2010-92 | Website Baker Two File Enumeration Vulnerabilities | 413 days | 2 |
| 2010-91 | Website Baker Nine SQL Injection Vulnerabilities | 413 days | 9 |
| 2010-90 | Website Baker Two Script Insertion Vulnerabilities | Unpatched (1401 days) | 2 |
| 2010-89 | Website Baker "username" Cross-Site Scripting Vulnerability | 413 days | 1 |
| 2010-87 | glpng PNG Processing Two Integer Overflow Vulnerabilities | Unpatched (1384 days) | 2 |
| 2010-84 | Joomla BookLibrary Component Four SQL Injection Vulnerabilities | 14 days | 4 |
| 2010-83 | Joomla BookLibrary From Same Author Module "id" SQL Injection | 21 days | 1 |
| 2010-82 | Joomla CKForms Component Arbitrary File Upload Vulnerability | 150 days | 1 |
| 2010-81 | Joomla CKForms Component Two SQL Injection Vulnerabilities | 150 days | 2 |
| 2010-79 | TaskFreak "password" SQL Injection Vulnerability | 18 days | 1 |
| 2010-78 | TaskFreak "tznMessage" Cross-Site Scripting Vulnerability | 18 days | 1 |
| 2010-59 | TomatoCMS Script Insertion Vulnerabilities | 25 days | 3 |
| 2010-58 | TomatoCMS Eight Cross-Site Scripting Vulnerabilities | Unpatched (1460 days) | 8 |
| 2010-57 | TomatoCMS Arbitrary File Upload Vulnerability | Unpatched (1460 days) | 1 |
| 2010-56 | TomatoCMS "q" SQL Injection Vulnerability | 25 days | 1 |
| 2010-51 | Pulse CMS Arbitrary File Writing Vulnerability | 5 days | 1 |
| 2010-48 | Pulse CMS Arbitrary File Deletion Vulnerability | 5 days | 1 |
| 2010-47 | Pulse CMS Arbitrary File Upload Vulnerability | 19 days | 1 |
| 2010-46 | Pulse CMS Cross-Site Request Forgery | 19 days | 1 |
| 2010-45 | Pulse CMS login.php Arbitrary File Writing Vulnerability | 5 days | 1 |
| 2010-44 | e107 Avatar/Photograph Image File Upload Vulnerability | 31 days | 1 |
| 2010-43 | e107 Content Management Plugin Script Insertion Vulnerability | 31 days | 1 |
| 2010-40 | Quicksilver Forums Cross-Site Request Forgery Vulnerability | Unpatched (1503 days) | 1 |
| 2010-39 | Quicksilver Forums Backup Information Disclosure | Unpatched (1503 days) | 1 |
| 2010-38 | Quicksilver Forums "mysqldump" Password Disclosure | Unpatched (1503 days) | 1 |
| 2010-26 | ViewVC Regular Expression Search Cross-Site Scripting | 18 days | 1 |
| 2010-12 | Employee Timeclock Software "mysqldump" Password Disclosure | Unpatched (1502 days) | 1 |
| 2010-11 | Employee Timeclock Software SQL Injection Vulnerabilities | Unpatched (1502 days) | 4 |
| 2010-10 | Employee Timeclock Software Backup Information Disclosure | Unpatched (1502 days) | 1 |
| 2010-7 | Bournal ccrypt Information Disclosure Security Issue | Unpatched (1515 days) | 1 |
| 2010-6 | Bournal Insecure Temporary Files Security Issue | 10 days | 1 |
| 2010-2 | Visualization Library DAT File Parsing Vulnerabilities | Unpatched (1559 days) | 16 |
| 2009-46 | RhinoSoft Serv-U TEA Decoding Buffer Overflow | 12 days | 1 |
| 2007-94 | Layton HelpBox Multiple Vulnerabilities | Unpatched (2330 days) | 23 |
| 2008-44 | Interact SQL Injection and Cross-Site Request Forgery | Unpatched (1992 days) | 1 |
| 2008-28 | Calendarix Basic Two SQL Injection Vulnerabilities | 63 days | 2 |
| 2008-15 | TorrentTrader Multiple SQL Injection Vulnerabilities | 7 days | 3 |
| 2008-12 | Lotus Notes kvdocve.dll Path Processing Buffer Overflow | 91 days | 1 |
| 2008-3 | Lotus Notes htmsr.dll Three Buffer Overflow Vulnerabilities | 91 days | 3 |
| 2007-89 | Miranda "ext_yahoo_contact_added()" Format String Vulnerability | 17 days | 1 |
| 2007-81 | IPSwitch IMail Server IMail Client Buffer Overflow | 73 days | 1 |
| 2006-76 | The Address Book Multiple Vulnerabilities | Unpatched (2770 days) | 25 |
| 2006-66 | Safari JavaScript Read Access to Protected Variable | 274 days | 1 |
| 2006-60 | 3Com OfficeConnect Secure Router Cross-Site Scripting | Unpatched (2805 days) | 1 |
| 2006-68 | PassGo SSO Plus Insecure Default Directory Permissions | 173 days | 1 |
| 2006-67 | MDaemon Insecure Default Directory Permissions | Unpatched (2779 days) | 1 |
| 2006-61 | CJ Tag Board Two PHP Code Injection Vulnerabilities | Unpatched (2783 days) | 2 |
| 2006-59 | My Firewall Plus Privilege Escalation Vulnerability | Unpatched (2805 days) | 1 |
| 2006-46 | BitZipper unacev2.dll Buffer Overflow Vulnerability | Unpatched (2898 days) | 1 |
| 2006-38 | AutoMate unacev2.dll Buffer Overflow Vulnerability | 205 days | 1 |
| 2006-36 | Rising Antivirus unacev2.dll Buffer Overflow Vulnerability | 22 days | 1 |
| 2006-33 | Eazel unacev2.dll Buffer Overflow Vulnerability | Unpatched (2897 days) | 1 |
| 2006-32 | IZArc unacev2.dll Buffer Overflow Vulnerability | 1324 days | 1 |
| 2006-30 | FilZip unacev2.dll Buffer Overflow Vulnerability | Unpatched (2904 days) | 1 |
| 2006-29 | UltimateZip unacev2.dll Buffer Overflow Vulnerability | Unpatched (2904 days) | 1 |
| 2006-27 | Anti-Trojan unacev2.dll Buffer Overflow Vulnerability | Unpatched (2892 days) | 1 |
| 2006-6 | ArGoSoft Mail Server Pro viewheaders Script Insertion | 3 days | 1 |
| 2006-4 | Macallan Mail Solution IMAP Commands Directory Traversal | 8 days | 1 |
| 2005-51 | MySource Cross-Site Scripting and File Inclusion Vulnerabilities | 15 days | 17 |
| 2005-31 | NetworkActiv Web Server Cross-Site Scripting Vulnerability | 0 days | 1 |
| 2005-26 | Gossamer Threads Links Script Insertion Vulnerabilities | 2043 days | 2 |
| 2004-18 | MercuryBoard "title" Script Insertion Vulnerability | 53 days | 1 |
| 2004-17 | Ansel "image" SQL Injection and Script Insertion Vulnerabilities | 19 days | 2 |
| 2004-13 | Multiple Browsers Window Injection Vulnerability | 24 days | 5 |
| 2004-9 | Pinnacle ShowCenter Skin File Cross-Site Scripting Vulnerability | Unpatched (3479 days) | 1 |
| 2004-3 | GdkPixbuf BMP Image Handling Denial of Service Vulnerability | 21 days | 1 |
Charlie Eriksen
| Found vulnerabilities: | 55 |
ID | Description | Time to Patch | Vulnerabilities |
| SA52877 | WordPress All in One Webmaster Plugin Cross-Site Request Forgery Vulnerability | 3 days | 1 |
| SA52876 | WordPress WP125 Plugin Cross-Site Request Forgery Vulnerability | 1 days | 1 |
| SA52863 | WordPress WP-DownloadManager Plugin Cross-Site Request Forgery Vulnerability | 3 days | 1 |
| SA52925 | WordPress WP Symposium Plugin "u" Redirection Weakness | Unpatched (369 days) | 1 |
| SA51344 | WordPress Video Gallery Plugin "playid" SQL Injection Vulnerability | 181 days | 1 |
| SA52878 | WordPress WP-Print Plugin Cross-Site Request Forgery Vulnerability | 1 days | 1 |
| SA51410 | TripAdvisor for iOS Login Credentials Disclosure Security Issue | Unpatched (479 days) | 1 |
| SA51366 | Call of Duty Elite for iOS Certificate Verification Security Issue | Unpatched (475 days) | 1 |
| SA50832 | WordPress Google Doc Embedder Plugin Arbitrary File Disclosure Vulnerability | 76 days | 1 |
| SA50833 | WordPress Zingiri Forum Plugin "url" Arbitrary File Disclosure Vulnerability | 93 days | 1 |
| SA50836 | WordPress WP Online Store Plugin File Disclosure and File Inclusion Vulnerabilities | 105 days | 2 |
| SA50674 | WordPress WP Symposium Plugin Multiple SQL Injection Vulnerabilities | 116 days | 6 |
| SA52864 | WordPress WP Symposium Plugin "u" Cross-Site Scripting Vulnerability | 8 days | 1 |
| SA52958 | WordPress Dropdown Menu Widget Plugin Cross-Site Request Forgery Vulnerability | Unpatched (351 days) | 1 |
| SA52962 | WordPress Facebook Members Plugin Cross-Site Request Forgery Vulnerability | 3 days | 1 |
| SA53116 | WordPress Download Monitor Plugin "p" Cross-Site Scripting Vulnerability | 5 days | 1 |
| SA53133 | WordPress Xhanch - My Twitter Plugin Cross-Site Request Forgery Vulnerability | 90 days | 1 |
| SA53138 | WordPress SexyBookmarks Plugin Cross-Site Request Forgery Vulnerability | 95 days | 1 |
| SA51917 | WordPress MailUp Plugin Ajax Functions Security Bypass | 27 days | 1 |
| SA52953 | WordPress Easy AdSense Lite Plugin Cross-Site Request Forgery Vulnerability | 11 days | 1 |
| SA52954 | WordPress Stream Video Player Plugin Cross-Site Request Forgery Vulnerability | Unpatched (350 days) | 1 |
| SA53151 | WordPress FourSquare Checkins Plugin Cross-Site Request Forgery Vulnerability | 3 days | 1 |
| SA51412 | Cisco WebEx for iOS Certificate Verification Security Issue | Unpatched (479 days) | 1 |
| SA53125 | WordPress WP Maintenance Mode Plugin Cross-Site Request Forgery Vulnerability | 15 days | 1 |
| SA52881 | WordPress underConstruction Plugin Cross-Site Request Forgery Vulnerability | 57 days | 1 |
| SA50971 | WordPress Amazon Associate Plugin "callback" Cross-Site Scripting Vulnerability | Unpatched (541 days) | 1 |
| SA50972 | WordPress Buddystream Plugin "content" and "link" Cross-Site Scripting Vulnerabilities | Unpatched (541 days) | 2 |
| SA50982 | WordPress post-views Plugin "search_input" Cross-Site Scripting Vulnerability | Unpatched (538 days) | 1 |
| SA50976 | WordPress WP125 Plugin "editad" Cross-Site Scripting Vulnerability | 21 days | 1 |
| SA49505 | WordPress A Page Flip Book Plugin "pageflipbook_language" File Inclusion Vulnerability | Unpatched (664 days) | 1 |
| SA49534 | WordPress WP Symposium Plugin Multiple SQL Injection Vulnerabilities | 17 days | 13 |
| SA49854 | WordPress Global Content Blocks Plugin Multiple Vulnerabilities | 2 days | 3 |
| SA49910 | WordPress Flexi Quote Rotator Plugin Cross-Site Request Forgery and SQL Injection Vulnerabilities | 4 days | 2 |
| SA49630 | WordPress Paid Memberships Pro Plugin Membership Information Disclosure Vulnerability | 1 days | 1 |
| SA49506 | WordPress Sendit Newsletter Plugin "id" SQL Injection Vulnerability | Unpatched (655 days) | 1 |
| SA49653 | WordPress Quotes Collection Plugin Cross-Site Request Forgery Vulnerability | 10 days | 1 |
| SA49201 | WordPress Profile Builder Plugin Recover Password Security Bypass Vulnerability | 4 days | 1 |
| SA49652 | WordPress TheCartPress Plugin Order Information Security Bypass | 1 days | 1 |
| SA49538 | WordPress Nmedia MailChimp Plugin "abs_path" Remote File Inclusion Vulnerability | 1 days | 1 |
| SA49676 | WordPress Zingiri Web Shop Plugin "abspath" Remote File Inclusion Vulnerability | 3 days | 1 |
| SA49650 | WordPress Mac Photo Gallery Plugin "albid" Arbitrary File Disclosure Vulnerability | 2 days | 1 |
| SA49850 | WordPress GD Star Rating Plugin Export Security Bypass Security Issue | 3 days | 1 |
| SA49836 | WordPress Mac Photo Gallery Plugin Multiple Script Insertion Vulnerabilities | 13 days | 6 |
| SA50975 | WordPress Zingiri Bookings Plugin "error" Cross-Site Scripting Vulnerability | 0 days | 1 |
| SA50834 | WordPress Cimy User Manager Plugin "cimy_um_filename" Arbitrary File Disclosure Vulnerability | Unpatched (540 days) | 1 |
| SA50873 | WordPress FireStorm Professional Real Estate Plugin SQL Injection Vulnerabilities | 17 days | 2 |
| SA50980 | WordPress Pretty Link Lite Plugin "search" Cross-Site Scripting Vulnerability | 19 days | 1 |
| SA50874 | Wordpress All Video Gallery Plugin "vid" SQL Injection Vulnerabilities | 25 days | 2 |
| SA50977 | WordPress Thank You Counter Button Plugin "paged" Cross-Site Scripting Vulnerability | 2 days | 1 |
| SA50875 | WordPress UnGallery Plugin "search" Arbitrary Command Execution Vulnerability | 6 days | 1 |
| SA49398 | WordPress Zingiri Web Shop Plugin Cookie SQL Injection Vulnerability | 70 days | 1 |
| SA49791 | WordPress WP Symposium Plugin Authentication Check Security Bypass | 21 days | 1 |
| SA49923 | WordPress Mac Photo Gallery Plugin Two Security Bypass Security Issues | 57 days | 2 |
| SA50983 | WordPress Zingiri Form Builder Plugin "error" Cross-Site Scripting Vulnerability | 0 days | 1 |
| SA50804 | WordPress Crayon Syntax Highlighter Plugin "wp_load" Remote File Inclusion Vulnerability | 14 days | 1 |
Shubham Mittal
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA53493 | DotNetNuke "Display Name" Script Insertion Vulnerability | 54 days | 1 |
Christopher Gabriel
| Found vulnerabilities: | 1 |
| Company Name | Telos |
ID | Description | Time to Patch | Vulnerabilities |
| SA53773 | Chasys Draw IES BMP Image Processing Buffer Overflow Vulnerability | 14 days | 1 |
Jennifer Bornholt
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA54082 | Joomla! Jomres Component Script Insertion and SQL Injection Vulnerabilities | 12 days | 2 |
Jacek Sowinski
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA53614 | WordPress BulletProof Security Plugin Security Log Script Insertion Vulnerability | 3 days | 1 |
Ivan Markovic
| Found vulnerabilities: | 5 |
ID | Description | Time to Patch | Vulnerabilities |
| SA53265 | dotCMS Multiple Cross-Site Scripting Vulnerabilities | 23 days | 3 |
| SA39098 | Axon Virtual PBX Multiple Vulnerabilities | Unpatched (1476 days) | 4 |
| SA39164 | Elastix "id_nodo" Local File Inclusion Vulnerability | 31 days | 1 |
| SA39464 | GetSimple CMS Multiple Cross-Site Scripting Vulnerabilities | 169 days | 6 |
| SA44033 | IT Dashboard "value" Cross-Site Scripting Vulnerability | 4 days | 1 |
James Fitts
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA53620 | ERDAS ER Viewer ERS File Parsing Two Buffer Overflow Vulnerabilities | 9 days | 2 |
Fernando Munoz
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA51501 | Oracle WebLogic Server "SNMPMonitoringTablePortlet[SNMPMonitoringTable]sortby" Cross-Site Scripting Vulnerability | 118 days | 1 |
Fernando Muñoz
| Found vulnerabilities: | 2 |
ID | Description | Time to Patch | Vulnerabilities |
| SA52396 | Chamilo Multiple Cross-Site Scripting and Script Insertion Vulnerabilities | 3 days | 3 |
| SA51855 | PDF-XChange Viewer JPEG Stream Processing Buffer Overflow Vulnerability | 3 days | 1 |
Juan Pablo Lopez Yacubian
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA51652 | Google Picasa TIFF Image Handling Buffer Underflow Vulnerability | 77 days | 1 |
ADLab
| Found vulnerabilities: | 5 |
| Company Name | VenusTech |
ID | Description | Time to Patch | Vulnerabilities |
| SA51791 | Adobe Acrobat PCX Image Conversion Buffer Overflow Vulnerability | 78 days | 1 |
| SA47388 | XnView PCX File Processing Buffer Overflow Vulnerability | 108 days | 1 |
| SA46809 | DAEMON Tools 222850h IOCTL Handling Privilege Escalation Vulnerability | 95 days | 1 |
| SA45264 | KMPlayer Playlist Processing Buffer Overflow Vulnerability | Unpatched (993 days) | 1 |
| SA46872 | WinMount 87342000h IOCTL NULL Pointer Dereference Denial of Service | Unpatched (873 days) | 1 |
Zhao Liang
| Found vulnerabilities: | 1 |
| Company Name | Beijing Leadsec Technology |
ID | Description | Time to Patch | Vulnerabilities |
| SA51088 | WordPress Car Demon Plugin Multiple Script Insertion Vulnerabilities | Unpatched (529 days) | 1 |
Pawel Haldrzynski
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA51921 | Newscoop URL Cross-Site Scripting Vulnerability | 11 days | 1 |
worstenbrood
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA50260 | Lockstep Systems Backup for Workgroups Login Buffer Overflow Vulnerability | 175 days | 1 |
Sumit Soni
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA51923 | PostgreSQL "enum_recv()" Denial of Service Vulnerability | 3 days | 1 |
Zhao Liang
| Found vulnerabilities: | 5 |
ID | Description | Time to Patch | Vulnerabilities |
| SA51531 | WordPress DVS Custom Notification Plugin Cross-Site Request Forgery Vulnerability | Unpatched (480 days) | 1 |
| SA50974 | SmarterMail "txtDisplayAs_SettingText" Script Insertion Vulnerability | 47 days | 1 |
| SA51082 | WordPress DX-Contribute Plugin Cross-Site Request Forgery Vulnerability | Unpatched (530 days) | 1 |
| SA50631 | Winmail Server Multiple Script Insertion Vulnerabilities | Unpatched (559 days) | 3 |
| SA50595 | TurboFTP Server PORT Command Processing Buffer Overflow Vulnerability | Unpatched (572 days) | 1 |
Francis Provencher
| Found vulnerabilities: | 30 |
| Company Name | Protek Research Lab's |
ID | Description | Time to Patch | Vulnerabilities |
| SA51602 | Cool PDF Reader PDF Processing Buffer Overflow Vulnerability | Unpatched (465 days) | 1 |
| SA49936 | Oracle Outside In LWP Buffer Overflow Vulnerability | 14 days | 1 |
| SA48804 | ACDsee Pro RLE Image Parsing Buffer Overflow Vulnerability | 64 days | 1 |
| SA48666 | XnView GIF ImageDescriptor Structure Parsing Vulnerability | 78 days | 1 |
| SA48666 | XnView PICT Image Decompression Vulnerability | 73 days | 1 |
| SA49936 | Oracle Outside In FPX and JP2 Buffer Overflow Vulnerabilities | 27 days | 2 |
| SA48804 | ACDsee Pro PCT Image Parsing Buffer Overflow Vulnerability | 64 days | 1 |
| SA49091 | XnView RAS Image Processing Integer Truncation Vulnerability | 22 days | 1 |
| SA49856 | IrfanView RLE Decompression Buffer Overflow Vulnerability | 170 days | 1 |
| SA49091 | XnView ECW Image Processing Buffer Overflow Vulnerability | 22 days | 1 |
| SA48804 | ACDsee Pro GIF Logical Screen Descriptor Parsing Vulnerability | 64 days | 1 |
| SA49091 | XnView FPX Image Processing Buffer Overflow Vulnerability | 31 days | 1 |
| SA50622 | Novell GroupWise Internet Agent "Content-Length" Integer Overflow Vulnerability | 142 days | 1 |
| SA47898 | Observer SNMP SetRequest Denial of Service Vulnerability | 125 days | 1 |
| SA49856 | IrfanView TIFF Image Decompression Buffer Overflow Vulnerability | 112 days | 1 |
| SA48430 | CYME ChartFX Client Server ActiveX Control Array Indexing Vulnerability | Unpatched (754 days) | 1 |
| SA49929 | Adobe Camera Raw Plug-in TIFF Image LZW Decoding Buffer Underflow Vulnerability | 146 days | 1 |
| SA49987 | WibuKey Runtime for Windows ActiveX Control Buffer Overflow Vulnerability | 131 days | 1 |
| SA50993 | Oracle Outside In Technology JPG Import Filter Denial of Service Vulnerability | 99 days | 1 |
| SA49141 | Adobe Photoshop PNG Image Processing Buffer Overflow Vulnerability | 94 days | 1 |
| SA47388 | XnView FlashPix Image Processing Signedness Error Vulnerability | 66 days | 1 |
| SA49176 | IrfanView Formats PlugIn DjVu Image Decompression Buffer Overflow Vulnerability | 30 days | 1 |
| SA48666 | XnView TIFF SGI32LogLum Decompression Two Vulnerabilities | 83 days | 2 |
| SA48804 | ACDsee Pro CUR "ColorsImportant" Parsing Buffer Overflow Vulnerability | 64 days | 1 |
| SA48772 | IrfanView FlashPix PlugIn Image Decompression Buffer Overflow | 2 days | 1 |
| SA48571 | DecisionTools SharpGrid ActiveX Control Code Execution Vulnerability | Unpatched (740 days) | 1 |
| SA49204 | IrfanView Formats PlugIn ECW Image Decompression Buffer Overflow Vulnerability | 8 days | 1 |
| SA47065 | IrfanView TIFF Image Processing Buffer Overflow Vulnerability | 13 days | 1 |
| SA47246 | libfpx "Free_All_Memory()" Double-Free Vulnerability | 1 days | 1 |
| SA47322 | IrfanView FlashPix PlugIn Double-Free Vulnerability | 6 days | 1 |
Dmitriy Pletnev
| Found vulnerabilities: | 26 |
| Company Name | Secunia Research |
ID | Description | Time to Patch | Vulnerabilities |
| 2013-2 | Oracle Outside In Technology Paradox Database Handling Buffer Overflow | 97 days | 1 |
| 2013-1 | Oracle Outside In Technology Paradox Database Handling Denial of Service | 97 days | 1 |
| 2012-31 | Adobe Camera Raw Plug-in TIFF Image Processing Integer Overflow | 146 days | 1 |
| 2012-27 | Citrix Access Gateway Plug-in for Windows nsepacom ActiveX Control Buffer Overflow | 388 days | 1 |
| 2012-26 | Citrix Access Gateway Plug-in for Windows nsepacom ActiveX Control Integer Overflow | 388 days | 1 |
| 2012-23 | GEAR CD DVD Filter Driver GEARAspiWDM.sys IOCTL Handling Integer Overflow | Unpatched (684 days) | 1 |
| 2012-21 | Network Instruments Observer SNMP Processing Buffer Overflows | 96 days | 2 |
| 2012-20 | Network Instruments Observer SNMP OID Processing Denial of Service | Unpatched (759 days) | 1 |
| 2012-9 | Helix Server SNMP Master Agent Service Two Denial of Service Vulnerabilities | 257 days | 2 |
| 2012-8 | RealNetworks Helix Server Credentials Disclosure Security Issue | 257 days | 1 |
| 2011-83 | Sterling Trader Data Processing Buffer Overflow Vulnerability | Unpatched (864 days) | 1 |
| 2011-81 | Winamp AVI Parsing Two Integer Overflow Vulnerabilities | 26 days | 2 |
| 2011-62 | GEAR CD DVD Filter Driver GEARAspiWDM.sys Two Array-Indexing Vulnerabilities | 70 days | 2 |
| 2011-61 | InduSoft ISSymbol ActiveX Control Buffer Overflow Vulnerabilities | 82 days | 3 |
| 2011-50 | RSLinx OPC Automation ActiveX Control Buffer Overflow | 8 days | 1 |
| 2011-37 | Advantech Studio ISSymbol ActiveX Control Buffer Overflow Vulnerabilities | Unpatched (1160 days) | 4 |
| 2011-36 | InduSoft ISSymbol ActiveX Control Buffer Overflow Vulnerabilities | 76 days | 4 |
| 2011-35 | CA Output Management Web Viewer UOMWV_Helper ActiveX Control Buffer Overflow | 41 days | 1 |
| 2011-34 | CA Output Management Web Viewer PPSViewer ActiveX Control Buffer Overflow | 41 days | 1 |
| 2011-11 | Dell DellSystemLite.Scanner ActiveX Control "WMIAttributesOfInterest" Unsafe Property | Unpatched (1167 days) | 1 |
| 2011-10 | Dell DellSystemLite.Scanner ActiveX Control "GetData()" Directory Traversal | Unpatched (1167 days) | 1 |
| 2011-2 | SigPlus Pro ActiveX Control Buffer Overflow Vulnerabilities | 27 days | 3 |
| 2011-1 | SigPlus Pro ActiveX Control "SetLogFilePath()" Unsafe Method | 27 days | 1 |
| 2010-135 | SAP Crystal Reports Print ActiveX Control Buffer Overflow | Unpatched (1235 days) | 1 |
| 2010-117 | SonicWALL SSL-VPN End-Point ActiveX Control Buffer Overflow | 28 days | 1 |
| 2010-112 | MailEnable SMTP Service Two Denial of Service Vulnerabilities | 10 days | 2 |
Luca Carettoni and Claudio Criscione
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA51093 | SBLIM "cmpi-base" UnixProcessProvider Shell Command Injection Vulnerability | 8 days | 1 |
Kevin Biloski and Charlie Eriksen
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA51037 | WordPress Advanced Custom Fields Plugin "acf_abspath" Remote File Inclusion Vulnerability | 29 days | 1 |
Sunil Yadav
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA49878 | DotNetNuke Multiple Vulnerabilities | 192 days | 3 |
Hans-Martin Muench
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA48572 | Adobe InDesign Server "RunScript" SOAP Message Command Execution Vulnerability | 204 days | 1 |
Stefan Schurtz
| Found vulnerabilities: | 9 |
ID | Description | Time to Patch | Vulnerabilities |
| SA46748 | X3 CMS "username" and "password" Cross-Site Scripting Vulnerability | 62 days | 1 |
| SA46748 | X3 CMS "admin/login" URL Cross-Site Scripting Vulnerability | 63 days | 1 |
| SA50510 | Piwigo "username_or_email" Cross-Site Scripting Vulnerability | Unpatched (574 days) | 1 |
| SA50574 | Zen Cart "zen_get_all_get_params()" Cross-Site Scripting Vulnerability | 14 days | 1 |
| SA46805 | Seo Panel Two Cross-Site Scripting Vulnerabilities | Unpatched (879 days) | 2 |
| SA51022 | gpEasy CMS Two Cross-Site Scripting Vulnerabilities | 39 days | 2 |
| SA47010 | Meditate "username_input" SQL Injection Vulnerability | 3 days | 1 |
| SA46766 | PHP-SCMS "lang" Cross-Site Scripting Vulnerability | Unpatched (880 days) | 1 |
| SA46881 | Seotoaster "selectUserIdByLoginPass()" SQL Injection Vulnerability | 28 days | 1 |
Georgi Geshev
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA49792 | Novell Remote Manager Off-by-One Denial of Service Vulnerability | 91 days | 1 |
Carsten Eiram
| Found vulnerabilities: | 157 |
| Company Name | Secunia Research |
ID | Description | Time to Patch | Vulnerabilities |
| 2012-30 | Novell GroupWise iCalendar Date/Time Parsing Denial of Service | 333 days | 1 |
| 2012-29 | Adobe Photoshop TIFF SGI24LogLum Decompression Buffer Overflow | 156 days | 1 |
| 2012-25 | Cisco Linksys PlayerPT ActiveX Control "SetSource()" Buffer Overflow | Unpatched (745 days) | 1 |
| 2012-2 | NTR ActiveX Control "StopModule()" Input Validation Vulnerability | 155 days | 1 |
| 2012-1 | NTR ActiveX Control Four Buffer Overflow Vulnerabilities | 155 days | 4 |
| 2011-80 | DVR Remote ActiveX Control DVRobot Library Loading Vulnerability | Unpatched (897 days) | 1 |
| 2011-67 | Novell GroupWise Internet Agent HTTP Interface Buffer Overflow | 200 days | 1 |
| 2011-66 | Novell GroupWise Internet Agent "TZNAME" Parsing Vulnerability | 206 days | 1 |
| 2011-47 | Adobe Shockwave Player DEMX Data Size Calculation Integer Overflows | 63 days | 6 |
| 2011-46 | Adobe Shockwave Player DEMX Structure Creation Integer Overflow | 63 days | 1 |
| 2011-45 | Adobe Shockwave Player DEMX Input Validation Vulnerability | 63 days | 1 |
| 2011-44 | Adobe Shockwave Player DEMX Memory Reallocation Vulnerability | 63 days | 1 |
| 2011-43 | Adobe Shockwave Player Memory Allocation Logic Vulnerability | 63 days | 1 |
| 2011-42 | Adobe Shockwave Player DEMX Invalid Loop Count Vulnerability | 63 days | 1 |
| 2011-40 | Adobe Shockwave Player "rcsL" Chunk Parsing Vulnerability | 84 days | 1 |
| 2011-33 | Microsoft Windows Wordpad Word 97 Converter Vulnerabilities | 186 days | 2 |
| 2011-22 | Honeywell ScanServer ActiveX Control Use-After-Free Vulnerability | 167 days | 1 |
| 2011-9 | Panda Products APPFLT.SYS 6660E18h IOCTL Vulnerability | 7 days | 1 |
| 2011-8 | Panda Products APPFLT.SYS IOCTL Handling Array-Indexing Vulnerabilities | 7 days | 4 |
| 2011-7 | Panda Products APPFLT.SYS IOCTL Input Data Buffer Overflow | 7 days | 1 |
| 2011-6 | Panda Products APPFLT.SYS 6660D6Ch/6660D70h IOCTL Buffer Overflow | 7 days | 1 |
| 2011-5 | Adobe Shockwave Player CSWV Integer Overflow Vulnerability | 96 days | 1 |
| 2011-4 | Adobe Shockwave Player CSWV Signedness Error Vulnerability | 97 days | 1 |
| 2011-3 | Adobe Shockwave Player CSWV Input Validation Vulnerability | 98 days | 1 |
| 2010-127 | Winamp NSV Table of Contents Parsing Integer Overflow | 29 days | 1 |
| 2010-119 | RealPage Module Upload ActiveX Control Two Buffer Overflows | 29 days | 2 |
| 2010-118 | RealPage Module Upload ActiveX Control "Upload()" Unsafe Method | 29 days | 1 |
| 2010-114 | Adobe Shockwave Player "DEMX" Chunk Parsing Vulnerability | 52 days | 1 |
| 2010-104 | Novell iPrint Client "call-back-url" Buffer Overflow Vulnerability | 17 days | 1 |
| 2010-100 | Symantec Products wkssr.dll Integer Underflow Vulnerability | 127 days | 1 |
| 2010-98 | IBM Lotus Notes wkssr.dll Integer Underflow Vulnerability | 127 days | 1 |
| 2010-95 | Winamp VP6 Content Parsing Buffer Overflow Vulnerability | 134 days | 1 |
| 2010-88 | Adobe Reader GIF Image Parsing Array-Indexing Vulnerability | 46 days | 1 |
| 2010-86 | GIGABYTE Dldrv2 ActiveX Control Array Indexing Vulnerability | Unpatched (1390 days) | 1 |
| 2010-85 | GIGABYTE Dldrv2 ActiveX Control Unsafe Methods | Unpatched (1390 days) | 2 |
| 2010-72 | QuickTime Track Dimensions Buffer Overflow Vulnerability | 218 days | 1 |
| 2010-65 | Microsoft Excel Ghost Record Type Parsing Vulnerability | 176 days | 1 |
| 2009-64 | PDF-XChange Viewer Content Parsing Memory Corruption Vulnerability | 2 days | 1 |
| 2010-60 | QuickTime Sorenson Video 3 Array-Indexing Vulnerability | 211 days | 1 |
| 2009-59 | Microsoft Excel String Parsing Uninitialised Variable Vulnerability | 168 days | 1 |
| 2010-55 | Microsoft Excel Lotus 1-2-3 File Parsing Vulnerability | 186 days | 1 |
| 2009-54 | Microsoft Excel Record Parsing Input Validation Vulnerability | 185 days | 1 |
| 2010-52 | Creative Software AutoUpdate Engine 2 ActiveX Control Buffer Overflow | Unpatched (1471 days) | 1 |
| 2010-49 | Autonomy KeyView wkssr.dll Integer Underflow Vulnerability | 127 days | 1 |
| 2009-39 | Microsoft Office TIFF Image Converter Endian Conversion Vulnerability | 158 days | 1 |
| 2010-37 | Symantec Products wkssr.dll String Indexing Vulnerability | 132 days | 1 |
| 2010-36 | IBM Lotus Notes wkssr.dll String Indexing Vulnerability | 132 days | 1 |
| 2010-35 | Autonomy KeyView wkssr.dll String Indexing Vulnerability | 132 days | 1 |
| 2009-31 | Microsoft Office Document Imaging Endian Conversion Vulnerability | 523 days | 1 |
| 2010-30 | IBM Lotus Notes wkssr.dll Record Parsing Buffer Overflows | 134 days | 2 |
| 2009-30 | Microsoft Office TIFF Image Converter Two Buffer Overflows | 525 days | 2 |
| 2010-29 | Symantec Products wkssr.dll Record Parsing Buffer Overflows | 134 days | 2 |
| 2010-28 | Autonomy KeyView wkssr.dll Record Parsing Buffer Overflows | 134 days | 2 |
| 2009-28 | Microsoft PowerPoint File Path Handling Buffer Overflow | 265 days | 1 |
| 2010-25 | Symantec Products wkssr.dll Floating Point Conversion Buffer Overflow | 137 days | 1 |
| 2010-24 | IBM Lotus Notes wkssr.dll Floating Point Conversion Buffer Overflow | 140 days | 1 |
| 2010-23 | Autonomy KeyView wkssr.dll Floating Point Conversion Buffer Overflow | 140 days | 1 |
| 2010-21 | Symantec Products Compound File Parsing Buffer Overflow | 144 days | 1 |
| 2010-18 | IBM Lotus Notes Compound File Parsing Buffer Overflow | 146 days | 1 |
| 2010-16 | Autonomy KeyView Compound File Parsing Buffer Overflow | 148 days | 1 |
| 2010-15 | RealPlayer AAC Spectral Data Parsing Vulnerability | 284 days | 1 |
| 2010-13 | RealPlayer QCP Sample Chunk Parsing Buffer Overflow | 234 days | 1 |
| 2010-8 | RealPlayer QCP Audio Content Parsing Buffer Overflow | 184 days | 1 |
| 2010-5 | RealPlayer YUV420 Transformation Processing Vulnerability | 189 days | 1 |
| 2008-56 | SAP GUI KWEdit ActiveX Control "SaveDocumentAs()" Insecure Method | 137 days | 1 |
| 2008-54 | TSC2 Help Desk CTab ActiveX Control Buffer Overflow | 419 days | 1 |
| 2008-53 | SAP GUI TabOne ActiveX Control Caption List Buffer Overflow | 55 days | 1 |
| 2008-52 | ComponentOne SizerOne ActiveX Control Buffer Overflow | 53 days | 1 |
| 2008-46 | Microsoft PowerPoint Atom Parsing Buffer Overflows | 193 days | 2 |
| 2009-44 | Novell iPrint Client Date/Time Parsing Buffer Overflow | 34 days | 1 |
| 2008-43 | Trend Micro NSC Firewall Configuration Vulnerability | 88 days | 1 |
| 2008-42 | Trend Micro Network Security Component Vulnerabilities | 93 days | 3 |
| 2009-41 | Lateral Arts Photobox uploader ActiveX Control Buffer Overflow | Unpatched (1617 days) | 1 |
| 2009-40 | Novell iPrint Client "target-frame" Parameter Buffer Overflow | 36 days | 1 |
| 2009-38 | Roxio Creator Image Rendering Integer Overflow Vulnerability | 76 days | 1 |
| 2008-37 | Microsoft Office BMP Image Colour Handling Integer Overflow | 424 days | 1 |
| 2009-29 | Microsoft PowerPoint Freelance Layout Parsing Vulnerability | Unpatched (1782 days) | 1 |
| 2008-17 | Danske Bank e-Sec Control Module Error Logging Buffer Overflow | Unpatched (2183 days) | 1 |
| 2009-12 | Microsoft Excel String Parsing Integer Overflow Vulnerability | 90 days | 1 |
| 2009-10 | QuickTime Sorenson Video 3 Content Parsing Vulnerability | 95 days | 1 |
| 2009-5 | Free Download Manager Torrent Parsing Buffer Overflows | 3 days | 5 |
| 2009-3 | Free Download Manager Remote Control Server Buffer Overflow | 3 days | 1 |
| 2009-1 | Microsoft Excel Record Parsing Array Indexing Vulnerability | 153 days | 1 |
| 2007-100 | Internet Explorer Data Stream Handling Vulnerability | 136 days | 1 |
| 2007-92 | Lotus Notes EML Reader Buffer Overflows | 151 days | 4 |
| 2007-91 | Autonomy Keyview EML Reader Buffer Overflows | 151 days | 4 |
| 2007-87 | activePDF Server Packet Handling Buffer Overflow | 120 days | 1 |
| 2007-72 | Microsoft Hierarchical FlexGrid Control Integer Overflows | 469 days | 1 |
| 2007-64 | Blue Coat K9 Web Protection Response Handling Buffer Overflows | Unpatched (2469 days) | 2 |
| 2007-61 | Blue Coat K9 Web Protection "Referer" Header Buffer Overflow | Unpatched (2475 days) | 1 |
| 2008-33 | Novell iPrint Client nipplib.dll "IppCreateServerRef()" Buffer Overflow | 9 days | 1 |
| 2008-30 | Novell iPrint Client ActiveX Control "GetFileList()" Information Disclosure | 75 days | 1 |
| 2008-27 | Novell iPrint Client ActiveX Control Multiple Buffer Overflows | 77 days | 7 |
| 2008-2 | Winamp Ultravox Streaming Metadata Parsing Buffer Overflows | 14 days | 1 |
| 2007-75 | IBM Tivoli Storage Manager Client CAD Service Script Insertion | Unpatched (2372 days) | 1 |
| 2007-54 | eScan Products Agent Service Command Decryption Buffer Overflow | 6 days | 1 |
| 2007-53 | Symantec Products NavComUI ActiveX Control Code Execution | 90 days | 1 |
| 2007-51 | VCDGear Cue File Parsing Buffer Overflow Vulnerabilities | Unpatched (2531 days) | 2 |
| 2007-50 | BearShare NCTAudioFile2 ActiveX Control Buffer Overflow | Unpatched (2535 days) | 1 |
| 2007-46 | CinePlayer SonicDVDDashVRNav.dll Buffer Overflow Vulnerability | Unpatched (2583 days) | 1 |
| 2007-45 | eScan Products Agent Service Missing User Authentication | Unpatched (2610 days) | 1 |
| 2007-37 | InterActual Player / CinePlayer IASystemInfo.dll ActiveX Control Buffer Overflow | Unpatched (2635 days) | 1 |
| 2007-34 | Cool Audio Products NCTAudioFile2 ActiveX Control Buffer Overflow | Unpatched (2637 days) | 1 |
| 2007-33 | Altdo Software Products NCTAudioFile2 ActiveX Control Buffer Overflow | Unpatched (2637 days) | 1 |
| 2007-32 | NextLevel Systems Products NCTAudioFile2 ActiveX Control Buffer Overflow | Unpatched (2637 days) | 1 |
| 2007-31 | Internet Explorer File Download Handling Memory Corruption | 277 days | 1 |
| 2007-30 | MP3 WAV Converter NCTAudioFile2 ActiveX Control Buffer Overflow | Unpatched (2637 days) | 1 |
| 2007-29 | McFunSoft Products NCTAudioFile2 ActiveX Control Buffer Overflow | Unpatched (2637 days) | 1 |
| 2007-28 | RecordNRip NCTAudioFile2 ActiveX Control Buffer Overflow | Unpatched (2637 days) | 1 |
| 2007-27 | Easy Ringtone Maker NCTAudioFile2 ActiveX Control Buffer Overflow | Unpatched (2637 days) | 1 |
| 2007-26 | Absolute Software Products NCTAudioFile2 ActiveX Control Buffer Overflow | Unpatched (2637 days) | 1 |
| 2007-25 | Xrlly Software NCTAudioFile2 ActiveX Control Buffer Overflow | Unpatched (2637 days) | 1 |
| 2007-24 | DanDans Digital Media Products NCTAudioFile2 ActiveX Control Buffer Overflow | Unpatched (2637 days) | 1 |
| 2007-23 | Power Audio Editor NCTAudioFile2 ActiveX Control Buffer Overflow | Unpatched (2637 days) | 1 |
| 2007-22 | Mystik Media Products NCTAudioFile2 ActiveX Control Buffer Overflow | Unpatched (2637 days) | 1 |
| 2007-21 | Cheetah CD/DVD Burner NCTAudioFile2 ActiveX Control Buffer Overflow | Unpatched (2637 days) | 1 |
| 2007-20 | Virtual CD Products NCTAudioFile2 ActiveX Control Buffer Overflow | Unpatched (2637 days) | 1 |
| 2007-19 | Joshua Software Products NCTAudioFile2 ActiveX Control Buffer Overflow | Unpatched (2637 days) | 1 |
| 2007-18 | Audio Edit Magic NCTAudioFile2 ActiveX Control Buffer Overflow | Unpatched (2637 days) | 1 |
| 2007-17 | Roemer Software Products NCTAudioFile2 ActiveX Control Buffer Overflow | Unpatched (2637 days) | 1 |
| 2007-16 | MP3 Normalizer NCTAudioFile2 ActiveX Control Buffer Overflow | Unpatched (2637 days) | 1 |
| 2007-15 | Sienzo Digital Music Mentor NCTAudioFile2 ActiveX Control Buffer Overflow | 2 days | 1 |
| 2007-14 | SoftDiv Software Products NCTAudioFile2 ActiveX Control Buffer Overflow | Unpatched (2637 days) | 1 |
| 2007-13 | Movavi Products NCTAudioFile2 ActiveX Control Buffer Overflow | Unpatched (2637 days) | 1 |
| 2007-12 | Code-it Software Products NCTAudioFile2 ActiveX Control Buffer Overflow | Unpatched (2637 days) | 1 |
| 2007-11 | CDBurnerXP Pro NCTAudioFile2 ActiveX Control Buffer Overflow | Unpatched (2637 days) | 1 |
| 2007-10 | RMBSoft Products NCTAudioFile2 ActiveX Control Buffer Overflow | Unpatched (2637 days) | 1 |
| 2007-9 | Quikscribe Products NCTAudioFile2 ActiveX Control Buffer Overflow | Unpatched (2637 days) | 1 |
| 2007-8 | iMesh NCTAudioFile2 ActiveX Control Buffer Overflow | Unpatched (2637 days) | 1 |
| 2007-7 | EXPStudio Audio Editor NCTAudioFile2 ActiveX Control Buffer Overflow | 1602 days | 1 |
| 2007-6 | J. Hepple Products NCTAudioFile2 ActiveX Control Buffer Overflow | Unpatched (2637 days) | 1 |
| 2007-5 | DB Audio Mixer And Editor NCTAudioFile2 ActiveX Control Buffer Overflow | Unpatched (2637 days) | 1 |
| 2007-4 | Aurora Media Workshop NCTAudioFile2 ActiveX Control Buffer Overflow | Unpatched (2637 days) | 1 |
| 2007-3 | Magic Video Products NCTAudioFile2 ActiveX Control Buffer Overflow | Unpatched (2637 days) | 1 |
| 2007-2 | NCTsoft Products NCTAudioFile2 ActiveX Control Buffer Overflow | Unpatched (2651 days) | 1 |
| 2006-75 | MailEnable POP Service "PASS" Command Buffer Overflow | 0 days | 1 |
| 2006-69 | AOL CDDBControl ActiveX Control "SetClientInfo()" Buffer Overflow | 746 days | 1 |
| 2006-55 | FileCOPA Directory Argument Handling Buffer Overflow | 0 days | 1 |
| 2006-53 | Mozilla Firefox XPCOM Event Handling Memory Corruption | 35 days | 1 |
| 2006-51 | PC Tools AntiVirus Insecure Default Directory Permissions | Unpatched (2820 days) | 1 |
| 2005-34 | Lotus Notes TAR Reader File Extraction Buffer Overflow | 177 days | 1 |
| 2005-32 | Lotus Notes HTML Speed Reader Link Two Buffer Overflows | 188 days | 2 |
| 2005-29 | IBM Lotus Notes Insecure Default Folder Permissions | 88 days | 1 |
| 2006-8 | AOL Insecure Default Directory Permissions | 189 days | 1 |
| 2004-20 | My Firewall Plus Arbitrary File Corruption Vulnerability | 28 days | 1 |
| 2005-14 | WhatsUp Small Business Report Service Directory Traversal | Unpatched (3239 days) | 1 |
| 2005-13 | WhatsUp Professional "Login.asp" SQL Injection | 28 days | 1 |
| 2005-6 | Adobe Reader for Linux Insecure Temporary File Creation | 56 days | 1 |
| 2004-6 | Yahoo! Messenger Audio Setup Wizard Privilege Escalation | 43 days | 1 |
| 2004-16 | My Firewall Plus Privilege Escalation Vulnerability | Unpatched (3335 days) | 1 |
| 2004-14 | Spy Sweeper Enterprise Client Privilege Escalation Vulnerability | 34 days | 1 |
| 2004-5 | StarOffice / OpenOffice Insecure Temporary File Creation | 27 days | 1 |
| 2004-4 | SquirrelMail Change_passwd Plugin Insecure Temporary File Creation | 3 days | 1 |
| 2004-1 | IBM Net.Data Macro Name Cross-Site Scripting Vulnerability | Unpatched (4015 days) | 1 |
| 2003-6 | BRS WebWeaver Error Page Cross-Site Scripting Vulnerability | 56 days | 1 |
| 2003-5 | Xeneo Web Server URL Encoding Denial of Service | 1 days | 1 |
| 2003-3 | FTPServer/X Response Handling Buffer Overflow Vulnerability | 72 days | 1 |
Robin François
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA50441 | IceWarp Mail Server Information Disclosure Security Issue | Unpatched (587 days) | 1 |
Sow Ching Shiong
| Found vulnerabilities: | 18 |
ID | Description | Time to Patch | Vulnerabilities |
| SA43012 | HP System Management Homepage Cross-Site Request Forgery | 451 days | 1 |
| SA43942 | Oracle iPlanet Web Server Multiple Cross-Site Scripting Vulnerabilities | 397 days | 7 |
| SA43662 | Symantec Endpoint Protection Manager Cross-Site Request Forgery | 153 days | 1 |
| SA43058 | HP Power Manager Four Cross-Site Scripting Vulnerabilities | Unpatched (1167 days) | 4 |
| SA43049 | F-Secure Policy Manager Web Reporting Cross-Site Scripting Vulnerability | 31 days | 1 |
| SA43011 | Oracle Secure Backup Cross-Site Request Forgery | 176 days | 1 |
| SA43157 | Symantec IM Manager Multiple Cross-Site Scripting Vulnerabilities | 217 days | 4 |
| SA39852 | CompleteFTP Server Two Vulnerabilities | 13 days | 2 |
| SA42503 | PrestaShop Cross-Site Scripting Vulnerability | 15 days | 1 |
| SA39866 | SnugServer FTP Directory Traversal Vulnerabilities | 7 days | 9 |
| SA39843 | FileCOPA Directory Traversal Vulnerability | 1 days | 1 |
| SA43058 | HP Power Manager Cross-Site Request Forgery Vulnerability | Unpatched (1167 days) | 1 |
| SA43011 | Oracle Secure Backup "mode" Cross-Site Scripting Vulnerability | 176 days | 1 |
| SA44970 | Trend Micro Control Manager "module" File Disclosure Vulnerability | 74 days | 1 |
| SA44134 | Trend Micro Control Manager "ApHost" Cross-Site Scripting Vulnerability | 48 days | 1 |
| SA43013 | Adobe ColdFusion Cross-Site Request Forgery Vulnerability | 144 days | 1 |
| SA43049 | F-Secure Policy Manager Web Reporting Path Disclosure Weakness | 31 days | 1 |
| SA43662 | Symantec Endpoint Protection Manager Two Cross-Site Scripting Vulnerabilities | 153 days | 2 |
Tielei Wang
| Found vulnerabilities: | 17 |
ID | Description | Time to Patch | Vulnerabilities |
| SA47447 | Apple QuickTime File Path Handling Buffer Overflow | 125 days | 1 |
| SA47118 | Adobe Illustrator JPEG Image Parsing Integer Overflow Vulnerability | 153 days | 1 |
| SA47386 | Hancom Office Hanword PNG Image Processing Integer Overflow Vulnerability | Unpatched (832 days) | 1 |
| SA47388 | XnView Directory Parsing Buffer Overflow Vulnerability | 101 days | 1 |
| SA47183 | GNU Gnash "GnashImage::size()" Integer Overflow Vulnerability | 90 days | 1 |
| SA47041 | Yahoo Messenger JPG Photo Sharing Integer Overflow Vulnerability | 21 days | 1 |
| SA47116 | Adobe Flash Professional JPG Processing Integer Overflow Vulnerability | 152 days | 1 |
| SA46992 | OpenOffice.org vclmi.dll Integer Overflow Vulnerability | 166 days | 1 |
| SA47244 | LibreOffice vclmi.dll Integer Overflow Vulnerability | 154 days | 1 |
| SA47363 | JustSystems Multiple Products JPEG Image Parsing Integer Overflow | 119 days | 1 |
| SA47245 | IBM Lotus Symphony Image Processing Integer Overflow Vulnerability | 38 days | 1 |
| SA47386 | Hancom Office Hanword "ImportGR()" Integer Overflow Vulnerability | Unpatched (832 days) | 1 |
| SA47314 | RenRen Talk Image Parsing Two Vulnerabilities | Unpatched (833 days) | 2 |
| SA47450 | ACDSee BMP Image Processing Integer Overflow Vulnerability | Unpatched (822 days) | 1 |
| SA38753 | Google Picasa for Mac JPEG Processing Memory Corruption | 21 days | 1 |
| SA38435 | Google Picasa JPEG Processing Integer Overflow Vulnerability | 21 days | 1 |
| SA36634 | Microsoft Windows Paint JPEG Parsing Integer Overflow Vulnerability | 152 days | 1 |
Martin Obiols
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA50001 | concrete5 "fID" File Disclosure Vulnerability | 35 days | 1 |
Matthew Joyce
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA49999 | ConcourseSuite Script Insertion and Cross-Site Request Forgery Vulnerabilities | 14 days | 8 |
Lufeng Li
| Found vulnerabilities: | 1 |
| Company Name | Neusoft Corporation |
ID | Description | Time to Patch | Vulnerabilities |
| SA49200 | Windows win32k.sys Hook Procedure Creation Privilege Escalation | 91 days | 1 |
Hans-Martin Munch
| Found vulnerabilities: | 3 |
ID | Description | Time to Patch | Vulnerabilities |
| SA49103 | Eaton Network Shutdown Module Accounts Database Insecure File Permissions | 21 days | 1 |
| SA49103 | Eaton Network Shutdown Module User Session Disclosure Security Issue | 21 days | 1 |
| SA49103 | Eaton Network Shutdown Module PHP Code Execution Vulnerability | 21 days | 1 |
Hossein Lotfi
| Found vulnerabilities: | 14 |
ID | Description | Time to Patch | Vulnerabilities |
| SA46624 | Winamp AVI "TSCC" Processing Buffer Overflow Vulnerability | 296 days | 1 |
| SA45852 | Adobe Reader/Acrobat BMP Image Parsing Signedness Vulnerability | 127 days | 1 |
| SA46624 | Winamp AVI "UYVY" Processing Buffer Overflow Vulnerability | 296 days | 1 |
| SA46624 | Winamp AVI "BI_RGB" Processing Buffer Overflow Vulnerability | 296 days | 1 |
| SA45978 | Adobe Reader / Acrobat BMP Image Parsing Buffer Overflow | 7 days | 1 |
| SA45080 | Winamp PAF File Parsing Integer Overflow Vulnerability | 7 days | 1 |
| SA46882 | Winamp IT File Parsing Buffer Overflow Vulnerability | 19 days | 1 |
| SA45279 | Winamp in_nsv.dll NSV Header Parsing Buffer Overflow | 86 days | 1 |
| SA45279 | Winamp in_mod.dll AMF Header Parsing Buffer Overflow | 93 days | 1 |
| SA45066 | VLC Media Player AVI File Parsing Integer Underflow Vulnerability | 17 days | 1 |
| SA45125 | libsndfile PAF File Processing Integer Overflow Vulnerability | 9 days | 1 |
| SA45131 | libmodplug Multiple Vulnerabilities | 27 days | 3 |
| SA45279 | Winamp in_midi.dll CMF Header Parsing Buffer Overflow | 93 days | 1 |
| SA45066 | VLC Media Player RealMedia File Parsing Integer Overflow Vulnerability | 17 days | 1 |
Andrei Costin
| Found vulnerabilities: | 2 |
ID | Description | Time to Patch | Vulnerabilities |
| SA49472 | Oracle Java Printing Insecure Temporary File Permissions Security Issue | 154 days | 1 |
| SA47855 | Ghostscript "OutputFile" Buffer Overflow Vulnerability | 36 days | 1 |
hamburgers maccoy
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA48429 | Microsoft Lync Client Insecure Library Loading Vulnerability | 88 days | 1 |
Kasper Lindgaard
| Found vulnerabilities: | 2 |
ID | Description | Time to Patch | Vulnerabilities |
| 2012-19 | Pligg CMS Four SQL Injection Vulnerabilities | 10 days | 4 |
| 2012-18 | Pligg CMS Six Cross-Site Scripting Vulnerabilities | 10 days | 6 |
Jon Butler
| Found vulnerabilities: | 4 |
ID | Description | Time to Patch | Vulnerabilities |
| 2012-17 | Joomla! JCE Component Security Bypass Vulnerability | 18 days | 1 |
| 2012-16 | Joomla! JCE Component "search" Cross-Site Scripting Vulnerability | 18 days | 1 |
| 2012-15 | Joomla! JCE Component Arbitrary File Upload Vulnerability | 11 days | 1 |
| 2012-14 | Joomla! JCE Component "search" Cross-Site Scripting Vulnerability | 11 days | 1 |
Anonymous
| Found vulnerabilities: | 4 |
ID | Description | Time to Patch | Vulnerabilities |
| SA48741 | PAC-Designer File Processing Buffer Overflow Vulnerability | Unpatched (732 days) | 1 |
| SA48740 | ispVM System XCF File Processing Buffer Overflow Vulnerabilities | Unpatched (732 days) | 2 |
| SA48739 | ispLEVER Classic Project File Processing Buffer Overflow Vulnerability | Unpatched (732 days) | 1 |
| SA48431 | Lattice Diamond EPIC and Power Calculator File Processing Vulnerabilities | Unpatched (732 days) | 2 |
Arnault Pachot
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA48036 | PrestaShop Socolissimo Module Parameter Names and Values Cross-Site Scripting Vulnerabilities | 33 days | 2 |
Damian Put
| Found vulnerabilities: | 2 |
ID | Description | Time to Patch | Vulnerabilities |
| SA47023 | Cisco WebEx Player atas32.dll Integer Overflow Vulnerability | 124 days | 1 |
| SA47023 | Cisco WebEx Player atdl2006.dll WRF Decompression Vulnerability | 124 days | 1 |
Byoungyoung Lee
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA48268 | FreeType BDF Font Parsing Integer Overflow Vulnerability | 0 days | 1 |
Mario Gomes
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA47934 | Pluck Cross-Site Request Forgery Vulnerability | Unpatched (804 days) | 1 |
Andrea Micalizzi (rgod)
| Found vulnerabilities: | 4 |
ID | Description | Time to Patch | Vulnerabilities |
| SA47666 | Lenovo ThinkManagement Console Web Services Arbitrary File Deletion | Unpatched (802 days) | 1 |
| SA47657 | 2X ApplicationServer TuxSystem ActiveX Control "ExportSettings()" Insecure Method | Unpatched (805 days) | 1 |
| SA47661 | 2X Client TuxClientSystem ActiveX Control "InstallClient()" Unsafe Method | 43 days | 1 |
| SA47666 | Lenovo ThinkManagement Console Web Services Arbitrary File Upload | Unpatched (802 days) | 1 |
Krystian Kloskowski
| Found vulnerabilities: | 2 |
ID | Description | Time to Patch | Vulnerabilities |
| SA45758 | Apple Safari Plug-in Unloading Vulnerability | Unpatched (949 days) | 1 |
| SA44976 | Apple Safari "setInterval()" Address Bar Spoofing Vulnerability | Unpatched (1020 days) | 1 |
Russ McRee
| Found vulnerabilities: | 42 |
ID | Description | Time to Patch | Vulnerabilities |
| SA47382 | Redaxscript Cross-Site Request Forgery Vulnerability | 59 days | 1 |
| SA39680 | TomatoCMS Cross-Site Request Forgery Vulnerability | Unpatched (1429 days) | 1 |
| SA43176 | CMME Arbitrary File Read Vulnerability | Unpatched (1216 days) | 1 |
| SA40669 | Xinha URL Appending Cross-Site Scripting Vulnerability | Unpatched (1217 days) | 1 |
| SA40669 | Xinha Arbitrary File Upload Vulnerability | Unpatched (1217 days) | 1 |
| SA39942 | odCMS Cross-Site Request Forgery Vulnerability | Unpatched (1413 days) | 1 |
| SA40670 | Seo Panel Cross-Site Request Forgery Vulnerability | Unpatched (1358 days) | 1 |
| SA39395 | OneCMS Cross-Site Scripting Vulnerabilities | Unpatched (1448 days) | 2 |
| SA43176 | CMME "page" Cross-Site Scripting Vulnerability | Unpatched (1216 days) | 1 |
| SA39680 | TomatoCMS Cross-Site Scripting Vulnerabilities | Unpatched (1429 days) | 5 |
| SA39395 | OneCMS Multiple SQL Injection Vulnerabilities | Unpatched (1448 days) | 4 |
| SA39942 | odCMS Multiple Cross-Site Scripting Vulnerabilities | Unpatched (1413 days) | 6 |
| SA40015 | eBox Platform Cross-Site Request Forgery Vulnerability | 15 days | 1 |
| SA39320 | TomatoCMS Multiple Script Insertion Vulnerabilities | 33 days | 3 |
| SA39860 | Horde Groupware / Horde Groupware Webmail Edition Cross-Site Request Forgery | 135 days | 1 |
| SA38222 | WebCalendar Cross-Site Scripting and Request Forgery Vulnerabilities | 15 days | 5 |
| SA42390 | LightNEasy Mini Cross-Site Scripting and Script Insertion Vulnerabilities | Unpatched (1222 days) | 2 |
| SA43046 | web@all Cross-Site Scripting and SQL Injection Vulnerabilities | 4 days | 3 |
| SA38422 | Docebo Cross-Site Request Forgery Vulnerability | 244 days | 1 |
| SA38635 | DFD Cart Cross-Site Scripting and Cross-Site Request Forgery Vulnerabilities | 34 days | 4 |
| SA39562 | Various Snare Agents Cross-Site Request Forgery Vulnerabilities | 63 days | 1 |
| SA39128 | Webessence CMS Cross-Site Scripting and Request Forgery Vulnerabilities | 16 days | 2 |
| SA38307 | eclime Multiple Vulnerabilities | 41 days | 4 |
| SA41619 | Pluck Cross-Site Request Forgery Vulnerability | 14 days | 1 |
| SA40471 | InterPhoto Gallery Arbitrary File Upload Vulnerability | Unpatched (1372 days) | 1 |
| SA42391 | LightNEasy "page" and "id" SQL Injection Vulnerabilities | 280 days | 2 |
| SA42179 | TinyWebGallery Multiple Cross-Site Scripting Vulnerabilities | 12 days | 9 |
| SA42369 | TheHostingTool "updateResource()" SQL Injection Vulnerability | 30 days | 1 |
| SA43152 | Newscoop "request" Cross-Site Scripting Vulnerability | 19 days | 1 |
| SA43756 | Silex "id_site" Cross-Site Scripting Vulnerability | 85 days | 1 |
| SA43421 | BoltWire "p" Cross-Site Scripting Vulnerability | Unpatched (1140 days) | 1 |
| SA41865 | Avactis Shopping Cart Cross-Site Request Forgery | 137 days | 1 |
| SA42074 | NibbleBlog Cross-Site Request Forgery Vulnerability | Unpatched (1252 days) | 1 |
| SA42233 | Phire CMS Multiple Vulnerabilities | 10 days | 21 |
| SA41712 | 4images Cross-Site Request Forgery Vulnerability | 34 days | 1 |
| SA41764 | Avactis Shopping Cart "User-Agent" SQL Injection Vulnerability | Unpatched (1275 days) | 1 |
| SA41560 | SkyBlueCanvas Cross-Site Request Forgery Vulnerability | Unpatched (1294 days) | 1 |
| SA40670 | Seo Panel Multiple Cross-Site Scripting Vulnerabilities | Unpatched (1358 days) | 8 |
| SA41717 | SilverStripe Cross-Site Request Forgery Vulnerability | 28 days | 1 |
| SA42081 | The Bug Genie Cross-Site Scripting and Request Forgery Vulnerabilities | 16 days | 2 |
| SA42270 | WonderCMS "page" Cross-Site Scripting and File Disclosure Vulnerabilities | 1 days | 2 |
| SA41945 | KaiBB Multiple Vulnerabilities | 20 days | 3 |
Julien Ahrens
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA47912 | Ricoh DC Software DL-10 FTP Server Buffer Overflow Vulnerability | Unpatched (789 days) | 1 |
Mateusz Krzeszowiec
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA47587 | GForge Advanced Server "startdate" and "enddate" Cross-Site Scripting Vulnerabilities | 18 days | 2 |
AbdulAziz Hariri
| Found vulnerabilities: | 2 |
ID | Description | Time to Patch | Vulnerabilities |
| SA44063 | Avaya Interaction Center ORB Service Buffer Overflow Vulnerability | 256 days | 1 |
| SA38748 | Citrix Products ActiveSync Service Denial of Service Vulnerability | 381 days | 1 |
Jan Fischbach
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA46780 | pfSense "style" Cross-Site Scripting Vulnerability | 38 days | 1 |
mghack
| Found vulnerabilities: | 5 |
ID | Description | Time to Patch | Vulnerabilities |
| SA46706 | e107 "username" SQL Injection Vulnerability | 42 days | 1 |
| SA46706 | e107 "link" BBCode User Signature Script Insertion Vulnerability | 47 days | 1 |
| SA46864 | PunBB "linkedin" Script Insertion Vulnerability | 20 days | 1 |
| SA46893 | Simple PHP Blog "entry" and "category" Cross-Site Scripting Vulnerabilities | Unpatched (871 days) | 2 |
| SA46706 | e107 Cross-Site Scripting Vulnerabilities | 47 days | 3 |
Stefan Cornelius
| Found vulnerabilities: | 44 |
| Company Name | Secunia Research |
ID | Description | Time to Patch | Vulnerabilities |
| 2011-90 | Notepad++ NppFTP "PASV" Buffer Overflow Vulnerabilities | Unpatched (903 days) | 3 |
| 2011-68 | Cyrus IMAPd NNTP Authentication Bypass Vulnerability | 16 days | 1 |
| 2011-38 | MuPDF Firefox Plugin Buffer Overflow Vulnerability | Unpatched (1172 days) | 1 |
| 2011-13 | SumatraPDF Two Integer Overflow Vulnerabilities | 34 days | 2 |
| 2011-12 | MuPDF Two Integer Overflow Vulnerabilities | 34 days | 2 |
| 2010-109 | KDE Okular PDB Parsing RLE Decompression Buffer Overflow | 14 days | 1 |
| 2010-102 | Mono libgdiplus Image Processing Three Integer Overflows | Unpatched (1335 days) | 3 |
| 2010-80 | SWFTools Two Integer Overflow Vulnerabilities | Unpatched (1398 days) | 2 |
| 2010-75 | Ziproxy Two Integer Overflow Vulnerabilities | 1 days | 2 |
| 2010-73 | Orbit Downloader metalink "name" Directory Traversal | Unpatched (1439 days) | 1 |
| 2010-71 | aria2 metalink "name" Directory Traversal Vulnerability | 13 days | 1 |
| 2010-70 | KDE KGet Insecure File Operation Vulnerability | 13 days | 1 |
| 2010-69 | KDE KGet metalink "name" Directory Traversal Vulnerability | 13 days | 1 |
| 2010-68 | Free Download Manager Four Buffer Overflow Vulnerabilities | 22 days | 4 |
| 2010-67 | Free Download Manager metalink "name" Directory Traversal | 22 days | 1 |
| 2010-62 | Internet Download Manager FTP Buffer Overflow Vulnerability | 11 days | 1 |
| 2009-60 | XnView DICOM Parsing Integer Overflow Vulnerability | 79 days | 1 |
| 2010-54 | imlib2 "IMAGE_DIMENSIONS_OK()" Logic Error | Unpatched (1462 days) | 1 |
| 2010-42 | IrfanView PSD RLE Decompression Buffer Overflow | 54 days | 1 |
| 2010-41 | IrfanView PSD Image Parsing Sign-Extension Vulnerability | 54 days | 1 |
| 2008-63 | ksquirrel-libs Radiance RGBE Buffer Overflows | Unpatched (1914 days) | 2 |
| 2008-62 | SHOUTcast DNAS Relay Server Buffer Overflow | Unpatched (1914 days) | 1 |
| 2008-61 | EasyHDR Pro Radiance RGBE Buffer Overflow | 11 days | 1 |
| 2008-60 | OpenSG Radiance RGBE Buffer Overflow Vulnerability | Unpatched (1914 days) | 1 |
| 2008-59 | DevIL "iGetHdrHeader()" Buffer Overflow Vulnerabilities | 31 days | 2 |
| 2009-51 | DevIL DICOM "GetUID()" Buffer Overflow Vulnerability | Unpatched (1592 days) | 1 |
| 2009-43 | Gimp PSD Image Parsing Integer Overflow Vulnerability | 47 days | 1 |
| 2009-42 | Gimp BMP Image Parsing Integer Overflow Vulnerability | 49 days | 1 |
| 2009-20 | IrfanView Formats Plug-in XPM Parsing Integer Overflow | 6 days | 1 |
| 2008-50 | Streamripper Multiple Buffer Overflows | 15 days | 3 |
| 2008-26 | Motion "read_client()" HTTP Request Buffer Overflow | 13 days | 1 |
| 2008-25 | imlib2 PNM and XPM Buffer Overflows | 148 days | 2 |
| 2008-24 | XnView, NConvert, and GFL SDK Sun TAAC Buffer Overflow | Unpatched (2141 days) | 1 |
| 2008-16 | Blender "imb_loadhdr()" Buffer Overflow Vulnerability | Unpatched (2185 days) | 1 |
| 2008-6 | XnView Slideshow "FontName" Buffer Overflow Vulnerability | 61 days | 1 |
| 2008-1 | XnView, NConvert, and GFL SDK Radiance RGBE Buffer Overflow | 25 days | 1 |
| 2007-71 | IrfanView Palette File Importing Buffer Overflow Vulnerability | 49 days | 1 |
| 2007-68 | Qtpfsgui "readRadianceHeader()" Buffer Overflow Vulnerability | 3 days | 1 |
| 2007-67 | pfstools "readRadianceHeader()" Buffer Overflow Vulnerability | 146 days | 1 |
| 2007-63 | Gimp PSD Plugin Integer Overflow Vulnerability | 25 days | 1 |
| 2007-56 | KVIrc irc:// URI Handler Command Execution Vulnerability | Unpatched (2485 days) | 1 |
| 2007-55 | MPlayer CDDB Parsing Buffer Overflow | Unpatched (2503 days) | 1 |
| 2007-40 | kmz_ImportWithMesh.py Script for Blender Command Injection | 10 days | 1 |
| 2007-39 | Blender KML/KMZ Import Command Injection Vulnerability | 4 days | 1 |
Morten Bartvig
| Found vulnerabilities: | 9 |
| Company Name | Secunia |
ID | Description | Time to Patch | Vulnerabilities |
| 2011-89 | Wuzly Authentication Bypass Vulnerability | Unpatched (861 days) | 1 |
| 2011-88 | Wuzly Four SQL Injection Vulnerabilities | Unpatched (861 days) | 4 |
| 2011-87 | Wuzly "preview" Local File Inclusion Vulnerability | Unpatched (861 days) | 1 |
| 2011-86 | Wuzly "username" Script Insertion Vulnerability | Unpatched (861 days) | 1 |
| 2011-85 | Wuzly Cross-Site Request Forgery Vulnerability | Unpatched (861 days) | 1 |
| 2011-84 | Wuzly Twenty Four Cross-Site Scripting Vulnerabilities | Unpatched (861 days) | 24 |
| 2011-74 | KaiBB Three SQL Injection Vulnerabilities | Unpatched (921 days) | 5 |
| 2011-73 | KaiBB Two Cross-Site Scripting Vulnerabilities | Unpatched (921 days) | 2 |
| 2011-72 | KaiBB Two SQL Injection Vulnerabilities | Unpatched (921 days) | 2 |
Joshua Tiago
| Found vulnerabilities: | 2 |
| Company Name | Cirosec |
ID | Description | Time to Patch | Vulnerabilities |
| SA43513 | Novell GroupWise WebAccess Three Script Insertion Vulnerabilities | 95 days | 3 |
| SA46831 | LimeSurvey Survey Text Field Tooltip Script Insertion Vulnerability | 1 days | 1 |
Stefano Angaran
| Found vulnerabilities: | 4 |
ID | Description | Time to Patch | Vulnerabilities |
| SA37920 | Xoops Cross-Site Scripting and SQL Injection Vulnerabilities | 7 days | 2 |
| SA37822 | Snitz Forums 2000 "X-Forwarded-For" SQL Injection Vulnerability | 26 days | 1 |
| SA42487 | XOOPS xNews Module Cross-Site Scripting Vulnerabilities | 13 days | 2 |
| SA42308 | Snitz Forums 2000 "M_NAME" Cross-Site Scripting and SQL Injection Vulnerabilities | 25 days | 2 |
Matt Farey
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA38026 | IBM Lotus Domino Web Access Cross-Site Scripting Vulnerabilities | 203 days | 3 |
Swatej Kumar
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA39261 | Apache Tomcat Web Application Manager / Host Manager Cross-Site Request Forgery | 4 days | 1 |
Josh Mitchell
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA40974 | Explorer Suite CFF Explorer Name Identifier Buffer Overflow Vulnerability | Unpatched (1334 days) | 1 |
Aleksandar Nikolic
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA42139 | webApp.secure "Content-Length" Denial of Service Vulnerability | 14 days | 1 |
BraniX
| Found vulnerabilities: | 2 |
ID | Description | Time to Patch | Vulnerabilities |
| SA41439 | IrfanView LuraDocument Format PlugIn Memory Corruption Vulnerability | 30 days | 1 |
| SA41020 | IrfanView LuraWave Format PlugIns Multiple Vulnerabilities | 108 days | 4 |
Dennis P. Nikolaenko
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA43293 | TeamViewer Insecure Directory Permissions Security Issue | 26 days | 1 |
Dejan Levaja
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA44144 | MDaemon WorldClient Email Subject Script Insertion Vulnerability | 16 days | 1 |
Abdul-Aziz Hariri
| Found vulnerabilities: | 4 |
ID | Description | Time to Patch | Vulnerabilities |
| SA44062 | Avaya WinPDM Multiple Buffer Overflow Vulnerabilities | 35 days | 5 |
| SA44525 | MaxDB Handshake Packet Processing Denial of Service Vulnerability | 64 days | 1 |
| SA40183 | Oracle Business Intelligence Integer Overflow Vulnerability | 399 days | 1 |
| SA45079 | HP Operations / Performance Agent OV Communication Broker Arbitrary File Deletion | 90 days | 1 |
Chris Carton
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA38176 | Microsoft Windows OpenType Compact Font Format Driver Vulnerability | 143 days | 1 |
Mehul Revankar
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| SA40820 | Novell GroupWise WebAccess Agent/Document Viewer Agent Arbitrary File Download | 92 days | 1 |
Kasper Lindgaard
| Found vulnerabilities: | 1 |
| Company Name | Secunia Research |
ID | Description | Time to Patch | Vulnerabilities |
| 2011-48 | Drupal Color Module Script Insertion Vulnerability | 27 days | 1 |
Alin Rad Pop
| Found vulnerabilities: | 56 |
| Company Name | Secunia Research |
ID | Description | Time to Patch | Vulnerabilities |
| 2011-32 | Microsoft Excel External Record Parsing Signedness Vulnerability | 379 days | 1 |
| 2011-31 | Microsoft Excel Substream Parsing Integer Underflow Vulnerability | 379 days | 1 |
| 2010-76 | Microsoft Word LFO Parsing Double-Free Vulnerability | 140 days | 1 |
| 2010-74 | Adobe Reader JPEG Uninitialised Memory Vulnerability | 54 days | 1 |
| 2010-64 | Microsoft Excel Record Parsing Integer Overflow Vulnerability | 197 days | 1 |
| 2009-63 | Adobe Shockwave Player Four Integer Overflow Vulnerabilities | 22 days | 4 |
| 2010-63 | Microsoft Excel Extra Out of Boundary Record Vulnerability | 172 days | 1 |
| 2009-62 | Adobe Shockwave Player 3D Model Two Integer Overflows | 28 days | 2 |
| 2010-61 | Microsoft PowerPoint PP7X32.DLL Record Parsing Vulnerability | 209 days | 1 |
| 2009-61 | Adobe Shockwave Player 3D Model Buffer Overflow | 29 days | 1 |
| 2010-50 | Adobe Shockwave Player Font Processing Buffer Overflow | 49 days | 1 |
| 2009-47 | HP Power Manager "formExportDataLogs" Buffer Overflow | 71 days | 1 |
| 2009-37 | VMWare VMnc Codec HexTile Encoding Two Integer Truncation Vulnerabilities | 207 days | 2 |
| 2009-34 | Microsoft Office PICT Filter Integer Truncation Vulnerability | 518 days | 1 |
| 2010-34 | Adobe Shockwave Player Asset Entry Parsing Vulnerability | 55 days | 1 |
| 2010-22 | Adobe Shockwave Player Integer Overflow Vulnerability | 64 days | 1 |
| 2010-20 | Adobe Shockwave Player Array Indexing Vulnerability | 69 days | 1 |
| 2010-19 | Adobe Shockwave Player Signedness Error Vulnerability | 69 days | 1 |
| 2010-17 | Adobe Shockwave Player 3D Parsing Memory Corruption | 70 days | 1 |
| 2010-14 | RealPlayer "cook" Arbitrary Free Vulnerability | 287 days | 1 |
| 2010-9 | RealPlayer "cook" Uninitialised Memory Vulnerability | 289 days | 1 |
| 2010-3 | RealPlayer QCP Parsing Integer Overflow Vulnerability | 196 days | 1 |
| 2010-1 | Adobe Shockwave Player Integer Overflow Vulnerability | 8 days | 1 |
| 2008-58 | AXIS Camera Control "image_pan_tilt" Property Buffer Overflow | Unpatched (1914 days) | 1 |
| 2008-57 | DivX Web Player Stream Format Chunk Buffer Overflow | 118 days | 1 |
| 2009-48 | HP Power Manager "formExportDataLogs" Directory Traversal | 71 days | 1 |
| 2008-47 | Sun Solaris "sadmind" Integer Overflow Vulnerability | 203 days | 1 |
| 2008-45 | Sun Solaris "sadmind" Buffer Overflow Vulnerability | 204 days | 1 |
| 2009-36 | VMWare VMnc Codec HexTile Encoding Buffer Overflow | 207 days | 1 |
| 2009-35 | Mozilla Firefox Floating Point Memory Allocation Vulnerability | 44 days | 1 |
| 2009-25 | VMWare VMnc Codec Mismatched Dimensions Buffer Overflow | 130 days | 1 |
| 2009-24 | Adobe Reader JBIG2 Text Region Segment Buffer Overflow | 57 days | 1 |
| 2009-21 | Ghostscript jbig2dec JBIG2 Processing Buffer Overflow | 63 days | 1 |
| 2009-18 | CUPS pdftops JBIG2 Symbol Dictionary Buffer Overflow | 21 days | 1 |
| 2009-17 | Xpdf JBIG2 Symbol Dictionary Buffer Overflow Vulnerability | 21 days | 1 |
| 2009-14 | Adobe Reader JBIG2 Symbol Dictionary Buffer Overflow | 19 days | 1 |
| 2009-13 | Novell eDirectory iMonitor "Accept-Language" Buffer Overflow | 130 days | 1 |
| 2009-11 | Foxit Reader JBIG2 Symbol Dictionary Processing Vulnerability | 10 days | 1 |
| 2009-8 | Winamp CAF Processing Integer Overflow Vulnerability | 18 days | 1 |
| 2009-7 | libsndfile CAF Processing Integer Overflow Vulnerability | 11 days | 1 |
| 2009-6 | Apple QuickTime MS ADPCM Encoding Buffer Overflow | 116 days | 1 |
| 2007-103 | Adobe Flash Player "Declare Function (V7)" Heap Overflow | 110 days | 1 |
| 2008-34 | Trend Micro HouseCall "notifyOnLoadNative()" Vulnerability | 118 days | 1 |
| 2008-32 | Trend Micro HouseCall ActiveX Control Arbitrary Code Execution | 126 days | 1 |
| 2008-29 | VLC Media Player WAV Processing Integer Overflow | 19 days | 1 |
| 2008-23 | Evolution iCalendar "DESCRIPTION" Property Buffer Overflow | 365 days | 1 |
| 2008-22 | Evolution iCalendar Timezone Buffer Overflow | 365 days | 1 |
| 2008-20 | Samba "receive_smb_raw()" Buffer Overflow Vulnerability | 14 days | 1 |
| 2008-11 | ClamAV Upack Processing Buffer Overflow Vulnerability | 35 days | 1 |
| 2008-10 | xine-lib "sdpplin_parse()" Array Indexing Vulnerability | 10 days | 1 |
| 2007-99 | Samba "send_mailslot()" Buffer Overflow Vulnerability | 18 days | 1 |
| 2007-90 | Samba "reply_netbios_packet()" Buffer Overflow Vulnerability | 16 days | 1 |
| 2007-88 | Xpdf "Stream.cc" Multiple Vulnerabilities | 22 days | 3 |
| 2007-79 | AbiWord Link Grammar "separate_sentence()" Buffer Overflow | 17 days | 1 |
| 2007-78 | Link Grammar "separate_sentence()" Buffer Overflow | Unpatched (2359 days) | 1 |
| 2007-76 | CUPS IPP Tags Memory Corruption Vulnerability | 16 days | 1 |
Dyon Balding
| Found vulnerabilities: | 61 |
| Company Name | Secunia Research |
ID | Description | Time to Patch | Vulnerabilities |
| 2010-99 | Symantec Products rtfsr.dll RTF Parsing Signedness Error | 130 days | 1 |
| 2010-66 | Windows Movie Maker String Parsing Buffer Overflow | 148 days | 1 |
| 2009-58 | Adobe Illustrator Encapsulated Postscript Parsing Vulnerability | 25 days | 1 |
| 2009-55 | libmikmod Module Parsing Vulnerabilities | 38 days | 4 |
| 2009-50 | Sun Java JDK/JRE Soundbank Resource Parsing Buffer Overflow | 139 days | 1 |
| 2009-49 | Sun Java JDK/JRE Soundbank Resource Name Buffer Overflow | 139 days | 1 |
| 2009-33 | Microsoft Office FlashPix Property Set Parsing Buffer Overflow | 505 days | 1 |
| 2010-33 | Symantec Products wosr.dll Data Block Parsing Buffer Overflow | 133 days | 1 |
| 2009-32 | Microsoft Office FlashPix Tile Data Two Buffer Overflows | 505 days | 2 |
| 2010-32 | IBM Lotus Notes wosr.dll Data Block Parsing Buffer Overflow | 133 days | 1 |
| 2010-31 | Autonomy KeyView wosr.dll Data Block Parsing Buffer Overflow | 133 days | 1 |
| 2010-27 | Autonomy KeyView rtfsr.dll RTF Parsing Signedness Error | 134 days | 1 |
| 2009-15 | Microsoft Outlook Content Parsing Integer Underflow Vulnerability | 566 days | 1 |
| 2010-4 | Microsoft Office Drawing Shape Container Parsing Vulnerability | 270 days | 1 |
| 2009-57 | Winamp Oktalyzer Parsing Integer Overflow Vulnerability | 10 days | 1 |
| 2009-56 | Winamp Ultratracker File Parsing Buffer Overflow | 10 days | 1 |
| 2008-55 | IBM Tivoli Storage Manager Remote Agent Service Buffer Overflows | 171 days | 2 |
| 2009-53 | Winamp Impulse Tracker Sample Parsing Buffer Overflow | 14 days | 1 |
| 2009-52 | Winamp Impulse Tracker Instrument Parsing Buffer Overflows | 14 days | 3 |
| 2008-51 | IBM Tivoli Storage Manager Client CAD Service Buffer Overflow | 362 days | 1 |
| 2008-49 | UltraISO Image Parsing Buffer Overflow Vulnerabilities | 147 days | 3 |
| 2008-48 | UltraISO Image Name Parsing Format String Vulnerabilities | 147 days | 2 |
| 2008-38 | HP OpenView Network Node Manager "ovalarmsrv" Integer Overflow | 710 days | 1 |
| 2009-27 | OpenOffice.org Word Document Table Parsing Buffer Overflow | 112 days | 1 |
| 2009-26 | OpenOffice.org Word Document Table Parsing Integer Underflow | 116 days | 1 |
| 2009-23 | Oracle BEA WebLogic Server Plug-ins Certificate Buffer Overflow | 44 days | 1 |
| 2009-22 | Oracle BEA WebLogic Server Plug-ins Integer Overflow | 44 days | 1 |
| 2009-16 | Garmin Communicator Plug-In Domain Locking Security Bypass | 110 days | 1 |
| 2007-107 | Lotus Notes Folio Flat File Parsing Buffer Overflows | 101 days | 21 |
| 2007-106 | activePDF DocConverter Folio Flat File Parsing Buffer Overflows | 519 days | 21 |
| 2007-105 | Symantec Mail Security Folio Flat File Parsing Buffer Overflows | 68 days | 21 |
| 2007-104 | Autonomy Keyview Folio Flat File Parsing Buffer Overflows | 101 days | 21 |
| 2007-98 | Symantec Mail Security Applix Graphics Parsing Vulnerabilities | 111 days | 4 |
| 2007-97 | activePDF DocConverter Applix Graphics Parsing Vulnerabilities | 114 days | 4 |
| 2007-96 | Lotus Notes Applix Graphics Parsing Vulnerabilities | 138 days | 4 |
| 2007-95 | Autonomy Keyview Applix Graphics Parsing Vulnerabilities | 138 days | 4 |
| 2007-93 | RealPlayer SWF Frame Handling Buffer Overflow | 254 days | 1 |
| 2007-84 | HP SiteScope SNMP Trap Script Insertion Vulnerability | Unpatched (2367 days) | 1 |
| 2007-83 | HP OpenView Products Shared Trace Service Denial of Service | 420 days | 1 |
| 2007-82 | CA ARCserve Backup RPC "handle_t" Argument Vulnerability | 414 days | 1 |
| 2008-40 | Trend Micro OfficeScan CGI Parsing Buffer Overflow | 42 days | 1 |
| 2008-39 | Trend Micro OfficeScan Directory Traversal Vulnerability | 28 days | 1 |
| 2008-36 | Microsoft Excel NAME Record Array Indexing Vulnerability | 10 days | 1 |
| 2008-35 | Trend Micro OfficeScan "cgiRecvFile.exe" Buffer Overflow | Unpatched (2044 days) | 1 |
| 2008-31 | Trend Micro Products Web Management Authentication Bypass | 10 days | 1 |
| 2008-21 | Microsoft Word RTF Polyline/Polygon Integer Overflow | 207 days | 1 |
| 2008-19 | Akamai Red Swoosh Cross-Site Request Forgery | 24 days | 1 |
| 2008-18 | Foxit Reader "util.printf()" Buffer Overflow | 33 days | 1 |
| 2008-14 | Adobe Acrobat/Reader "util.printf()" Buffer Overflow | 202 days | 1 |
| 2008-9 | Apple QuickTime PICT Image Parsing Buffer Overflow | 91 days | 1 |
| 2008-7 | uTorrent / BitTorrent Web UI HTTP "Range" Header DoS | 31 days | 1 |
| 2008-5 | Orb Networks Orb Variant Array Parsing Buffer Overflow | 69 days | 1 |
| 2007-69 | McAfee E-Business Server Auth Packet Handling Buffer Overflow | 79 days | 1 |
| 2007-65 | Microsoft Excel rtWnDesk Record Memory Corruption Vulnerability | 29 days | 1 |
| 2007-62 | CA BrightStor ARCserve Backup RPC Argument Parsing Vulnerabilities | 104 days | 3 |
| 2007-52 | Apple QuickTime Java Extension Code Execution | 22 days | 1 |
| 2007-49 | CA BrightStor ARCserve Backup RPC String Buffer Overflow | 167 days | 1 |
| 2007-48 | Symantec Mail Security for SMTP Boundary Errors | 95 days | 2 |
| 2007-43 | Numara Asset Manager XferWan.exe Packet Parsing Buffer Overflows | Unpatched (2594 days) | 2 |
| 2007-42 | Symantec Discovery XferWan.exe Packet Parsing Buffer Overflows | Unpatched (2594 days) | 2 |
| 2007-41 | Centennial Discovery XferWan.exe Packet Parsing Buffer Overflows | 63 days | 2 |
Carsten Eiram
| Found vulnerabilities: | 1 |
| Company Name | Secunia Research. |
ID | Description | Time to Patch | Vulnerabilities |
| 2010-113 | Adobe Shockwave Player "pamm" Chunk Parsing Vulnerability | 56 days | 1 |
Jakob Balle and Sven Krewitt
| Found vulnerabilities: | 1 |
| Company Name | Secunia Research |
ID | Description | Time to Patch | Vulnerabilities |
| 2010-110 | Opera "Download" Dialog File Execution Security Issue | 28 days | 1 |
by Alin Rad Pop
| Found vulnerabilities: | 1 |
| Company Name | Secunia Research |
ID | Description | Time to Patch | Vulnerabilities |
| 2009-45 | Mozilla Firefox Memory Corruption Vulnerability | 106 days | 1 |
Carsten Eiram and Dyon Balding
| Found vulnerabilities: | 1 |
| Company Name | Secunia Research |
ID | Description | Time to Patch | Vulnerabilities |
| 2007-77 | Microsoft Windows Flash Player Movie Unloading Vulnerability | Unpatched (2364 days) | 1 |
Jakob Balle and Carsten Eiram
| Found vulnerabilities: | 3 |
| Company Name | Secunia Research |
ID | Description | Time to Patch | Vulnerabilities |
| 2009-65 | Google Chrome Pop-Up Block Menu Handling Vulnerability | 27 days | 1 |
| 2009-19 | Mozilla Firefox Java Applet Loading Vulnerability | 76 days | 1 |
| 2006-58 | Internet Explorer Script Error Handling Memory Corruption | 119 days | 1 |
JJ Reyes
| Found vulnerabilities: | 13 |
| Company Name | Secunia Research |
ID | Description | Time to Patch | Vulnerabilities |
| 2008-13 | HP OpenView Network Node Manager Multiple Vulnerabilities | 381 days | 7 |
| 2007-101 | Symantec Backup Exec Calendar Control Multiple Vulnerabilities | 88 days | 3 |
| 2007-80 | Adobe PageMaker PMD File Processing Buffer Overflows | Unpatched (2359 days) | 2 |
| 2008-4 | HP OpenView Network Node Manager OpenView5.exe Directory Traversal | 182 days | 1 |
| 2007-74 | Symantec Backup Exec Job Engine Denial of Service | 57 days | 1 |
| 2007-73 | ACDSee Products Image and Archive Plug-ins Buffer Overflows | 45 days | 3 |
| 2006-72 | PentaZip Archive Handling Three Vulnerabilities | 46 days | 3 |
| 2007-57 | Novell Client NWSPOOL.DLL Buffer Overflow Vulnerabilities | 116 days | 2 |
| 2007-38 | MailEnable Web Mail Client Multiple Vulnerabilities | 7 days | 5 |
| 2007-36 | Internet Explorer HTML Objects Memory Corruption Vulnerability | 109 days | 1 |
| 2006-73 | MailEnable IMAP Service Buffer Overflow Vulnerability | 0 days | 1 |
| 2006-71 | MailEnable IMAP Service Two Vulnerabilities | 4 days | 2 |
| 2006-70 | Borland Products idsql32.dll Buffer Overflow Vulnerability | Unpatched (2700 days) | 1 |
Sarid Harper
| Found vulnerabilities: | 1 |
| Company Name | Secunia |
ID | Description | Time to Patch | Vulnerabilities |
| 2009-4 | OpenX Multiple Vulnerabilities | Unpatched (1903 days) | 51 |
Chaitanya Sharma
| Found vulnerabilities: | 1 |
| Company Name | Secunia Research |
ID | Description | Time to Patch | Vulnerabilities |
| 2009-2 | AproxEngine Multiple Vulnerabilities | Unpatched (1585 days) | 13 |
Ulf Harnhammar
| Found vulnerabilities: | 7 |
| Company Name | Secunia Research |
ID | Description | Time to Patch | Vulnerabilities |
| 2007-102 | IMP Mail Deletion Security Bypass Vulnerability | 28 days | 1 |
| 2008-41 | GNU Enscript "setfilename" Special Escape Buffer Overflow | Unpatched (2008 days) | 1 |
| 2008-8 | Evolution Encrypted Message Format String Vulnerability | 8 days | 1 |
| 2007-70 | Sylpheed / Sylpheed-Claws POP3 Format String Vulnerability | Unpatched (2421 days) | 1 |
| 2007-66 | Vim "helptags" Command Format String Vulnerability | Unpatched (2457 days) | 1 |
| 2007-44 | Evolution Shared Memo Categories Format String Vulnerability | 817 days | 1 |
| 2003-2 | Alexandria-dev / sourceforge Multiple Vulnerabilities | Unpatched (4037 days) | 7 |
Sven Krewitt
| Found vulnerabilities: | 8 |
| Company Name | Secunia Research |
ID | Description | Time to Patch | Vulnerabilities |
| 2007-60 | Numara Asset Manager Insecure File Permissions | Unpatched (2486 days) | 1 |
| 2007-59 | Symantec Discovery Insecure File Permissions | Unpatched (2504 days) | 1 |
| 2007-58 | Centennial Discovery Insecure File Permissions | Unpatched (2504 days) | 1 |
| 2007-47 | XMMS Integer Overflow and Underflow Vulnerabilities | Unpatched (2617 days) | 2 |
| 2006-65 | Joomla BSQ Sitestats Script Insertion and SQL Injection | 20 days | 2 |
| 2006-63 | Joomla BSQ Sitestats Component Multiple Vulnerabilities | 3 days | 6 |
| 2006-57 | Jetbox Multiple Vulnerabilities | Unpatched (2825 days) | 9 |
| 2006-47 | phpRaid SQL Injection and File Inclusion Vulnerabilities | Unpatched (2874 days) | 19 |
JJ Reyes and Carsten Eiram
| Found vulnerabilities: | 1 |
| Company Name | Secunia Research |
ID | Description | Time to Patch | Vulnerabilities |
| 2006-74 | Microsoft Agent URL Parsing Memory Corruption Vulnerability | 119 days | 1 |
Jakob Balle
| Found vulnerabilities: | 21 |
| Company Name | Secunia |
ID | Description | Time to Patch | Vulnerabilities |
| 2007-1 | Internet Explorer 7 "onunload" Event Spoofing Vulnerability | 276 days | 1 |
| 2006-49 | Opera SSL Certificate "Stealing" Weakness | 89 days | 1 |
| 2005-44 | SqWebMail Conditional Comments Script Insertion Vulnerability | 0 days | 1 |
| 2005-42 | Opera Mail Client Attachment Spoofing and Script Insertion | 19 days | 2 |
| 2005-39 | SqWebMail HTML Emails Script Insertion Vulnerability | 0 days | 1 |
| 2005-35 | SqWebMail Attached File Script Insertion Vulnerability | Unpatched (3150 days) | 1 |
| 2005-21 | Internet Explorer Suppressed "Download Dialog" Vulnerability | 170 days | 1 |
| 2005-19 | Opera Suppressed "Download Dialog" Vulnerability | 32 days | 1 |
| 2005-18 | Opera Image Dragging Vulnerability | 38 days | 1 |
| 2004-15 | Mozilla / Mozilla Firefox Download Dialog Source Spoofing Vulnerability | 118 days | 1 |
| 2005-12 | Safari Dialog Origin Spoofing Vulnerability | 190 days | 1 |
| 2005-11 | Mozilla Products Dialog Origin Spoofing Vulnerability | 59 days | 1 |
| 2005-9 | Microsoft Internet Explorer Dialog Origin Spoofing Vulnerability | Unpatched (3241 days) | 1 |
| 2005-8 | Opera Dialog Origin Spoofing Vulnerability | 28 days | 1 |
| 2005-5 | Opera "javascript:" URLs Cross-Site Scripting | 29 days | 1 |
| 2005-4 | Opera 8 XMLHttpRequest Security Bypass | 58 days | 1 |
| 2005-1 | Konqueror Download Dialog Source Spoofing | Unpatched (3380 days) | 1 |
| 2004-10 | Multiple Browsers Tabbed Browsing Vulnerabilities | 8 days | 10 |
| 2004-2 | Opera Browser Address Bar Spoofing Vulnerability | 10 days | 1 |
| 2003-4 | Opera Browser File Extension Handling Two Buffer Overflows | 17 days | 2 |
| 2003-1 | Opera Browser Page Redirection Cross-Site Scripting Vulnerability | 9 days | 1 |
Andreas Sandblad
| Found vulnerabilities: | 25 |
| Company Name | Secunia Research |
ID | Description | Time to Patch | Vulnerabilities |
| 2006-64 | Panda ActiveScan Three Vulnerabilities | 43 days | 3 |
| 2006-62 | Tagger LE PHP "eval()" Injection Vulnerabilities | Unpatched (2778 days) | 6 |
| 2006-54 | Microsoft Windows Object Packager Dialog Spoofing | 104 days | 1 |
| 2006-52 | CMS Mundo SQL Injection Vulnerabilities | Unpatched (2870 days) | 10 |
| 2006-44 | DeluxeBB SQL Injection and File Inclusion Vulnerabilities | Unpatched (2874 days) | 10 |
| 2006-43 | CMS Mundo SQL Injection and File Upload Vulnerabilities | 15 days | 2 |
| 2006-41 | Internet Explorer Exception Handling Memory Corruption Vulnerability | 49 days | 1 |
| 2006-40 | MyBB "domecode()" PHP Code Execution Vulnerability | 6 days | 1 |
| 2006-39 | SelectaPix Cross-Site Scripting and SQL Injection Vulnerabilities | 23 days | 7 |
| 2005-22 | Mozilla Thunderbird Attachment Spoofing Vulnerability | 195 days | 1 |
| 2006-7 | Microsoft Internet Explorer "createTextRange()" Code Execution | 56 days | 1 |
| 2005-52 | PHP-Fusion Two SQL Injection Vulnerabilities | 0 days | 2 |
| 2005-46 | Mantis "t_core_path" File Inclusion Vulnerability | 22 days | 1 |
| 2005-25 | Opera Download Dialog Spoofing Vulnerability | 23 days | 1 |
| 2004-21 | Mozilla / Firefox "Save Link As" Download Dialog Spoofing Vulnerability | 91 days | 1 |
| 2005-16 | Netscape Property Manipulation Cross-Site Scripting | 70 days | 1 |
| 2005-15 | Mozilla / Firefox Property Manipulation Cross-Site Scripting | 52 days | 1 |
| 2004-12 | Microsoft Internet Explorer "createControlRange()" Memory Corruption | 96 days | 1 |
| 2004-11 | Mozilla Firefox Download Dialog Spoofing Vulnerabilities | 191 days | 2 |
| 2004-8 | Microsoft Internet Explorer Four Vulnerabilities | 127 days | 4 |
| 2004-7 | Sun Java Plug-In Predictable File Location Weakness | Unpatched (3563 days) | 1 |
| 2005-7 | Microsoft Internet Explorer Keyboard Shortcut Processing Vulnerability | 203 days | 1 |
| 2005-3 | Mathopd Insecure Dump File Creation Vulnerability | 1 days | 1 |
| 2005-2 | Yahoo! Messenger File Transfer Filename Spoofing | 38 days | 1 |
| 2004-19 | Opera Download Dialog Spoofing Vulnerability | 23 days | 1 |
Tan Chew Keong
| Found vulnerabilities: | 50 |
| Company Name | Secunia Research |
ID | Description | Time to Patch | Vulnerabilities |
| 2006-56 | AutoVue SolidModel Professional Buffer Overflow Vulnerability | Unpatched (2832 days) | 1 |
| 2006-50 | ZipTV ARJ Archive Handling and unacev2.dll Buffer Overflows | Unpatched (2875 days) | 2 |
| 2006-48 | WinGate IMAP Commands Directory Traversal Vulnerability | 24 days | 1 |
| 2006-45 | jetAudio ID Tag Handling Buffer Overflow Vulnerability | Unpatched (2870 days) | 1 |
| 2006-42 | PicoZip "zipinfo.dll" Multiple Archives Buffer Overflow | 8 days | 1 |
| 2005-37 | Lotus Notes ZIP File Handling Buffer Overflow | 191 days | 1 |
| 2006-37 | Eserv/3 IMAP and HTTP Server Multiple Vulnerabilities | 16 days | 7 |
| 2005-36 | Lotus Notes UUE File Handling Buffer Overflow | 278 days | 1 |
| 2006-35 | ZipCentral ZIP File Handling Buffer Overflow Vulnerability | Unpatched (2875 days) | 1 |
| 2006-34 | CAM UnZip ZIP File Handling Buffer Overflow Vulnerability | 16 days | 1 |
| 2006-31 | Abakt ZIP File Handling Buffer Overflow Vulnerability | 3 days | 1 |
| 2005-28 | Adobe Document/Graphics Server File URI Resource Access | Unpatched (3178 days) | 1 |
| 2006-26 | TZipBuilder ZIP File Handling Buffer Overflow Vulnerability | 6 days | 1 |
| 2006-25 | WinHKI unacev2.dll Buffer Overflow Vulnerability | 32 days | 1 |
| 2006-24 | Servant Salamander unacev2.dll Buffer Overflow Vulnerability | 1 days | 1 |
| 2006-23 | SpeedProject Products ACE Archive Handling Buffer Overflow | 26 days | 1 |
| 2006-22 | Blazix Web Server JSP Source Code Disclosure Vulnerability | 5 days | 1 |
| 2006-21 | AN HTTPD Script Source Disclosure Vulnerability | 11 days | 1 |
| 2006-20 | Xeneo Web Server Script Source Disclosure Vulnerability | Unpatched (2938 days) | 1 |
| 2006-19 | Quick 'n Easy/Baby Web Server ASP Code Disclosure Vulnerability | 2 days | 1 |
| 2006-18 | BlueDragon Server Cross-Site Scripting and Denial of Service | 110 days | 1 |
| 2006-17 | NOD32 Scheduled Scan Privilege Escalation Vulnerability | 32 days | 1 |
| 2006-16 | unalz Filename Handling Directory Traversal Vulnerability | 11 days | 1 |
| 2006-15 | RaidenHTTPD Script Source Disclosure Vulnerability | 3 days | 1 |
| 2006-14 | VisNetic Mail Server Two File Inclusion Vulnerabilities | 142 days | 2 |
| 2006-13 | Dwarf HTTP Server Source Disclosure and Cross-Site Scripting | 24 days | 1 |
| 2006-12 | IceWarp Web Mail Two File Inclusion Vulnerabilities | 1 days | 2 |
| 2006-11 | Orion Application Server JSP Source Disclosure Vulnerability | 34 days | 1 |
| 2006-10 | NetworkActiv Web Server Script Source Disclosure Vulnerability | 8 days | 1 |
| 2006-9 | Lighttpd Script Source Disclosure Vulnerability | 14 days | 1 |
| 2006-5 | NJStar Word Processor Font Name Buffer Overflow | 15 days | 1 |
| 2006-3 | NeoMail neomail-prefs.pl Missing Session ID Validation | 4 days | 1 |
| 2006-2 | @Mail Webmail Attachment Upload Directory Traversal | 2 days | 1 |
| 2006-1 | E-Post Mail Server Products Multiple Vulnerabilities | 5 days | 6 |
| 2005-53 | WinRAR Format String and Buffer Overflow Vulnerabilities | 10 days | 2 |
| 2005-50 | PowerArchiver ACE/ARJ Archive Handling Buffer Overflow | 13 days | 1 |
| 2005-49 | ALZip Multiple Archive Handling Buffer Overflow | 9 days | 1 |
| 2005-48 | AhnLab V3 Antivirus ALZ/UUE/XXE Archive Handling Buffer Overflow | 24 days | 1 |
| 2005-47 | HAURI Anti-Virus ALZ Archive Handling Buffer Overflow | 8 days | 1 |
| 2005-45 | 7-Zip ARJ Archive Handling Buffer Overflow | 16 days | 1 |
| 2005-43 | AVIRA Antivirus ACE Archive Handling Buffer Overflow | 9 days | 1 |
| 2005-41 | ALZip ACE Archive Handling Buffer Overflow | 14 days | 1 |
| 2005-40 | NOD32 Anti-Virus ARJ Archive Handling Buffer Overflow | 4 days | 1 |
| 2005-33 | HAURI Anti-Virus ACE Archive Handling Buffer Overflow | 8 days | 1 |
| 2005-27 | MDaemon Content Filter Directory Traversal Vulnerability | 1 days | 1 |
| 2005-24 | HAURI Anti-Virus Compressed Archive Directory Traversal | 48 days | 1 |
| 2005-23 | Novell NetMail NMAP Agent "USER" Buffer Overflow Vulnerability | 84 days | 1 |
| 2005-20 | avast! Antivirus ACE File Handling Two Vulnerabilities | Unpatched (5242 days) | 2 |
| 2005-17 | Ahnlab V3 Antivirus Three Vulnerabilities | 77 days | 3 |
| 2005-10 | Webroot Desktop Firewall Two Vulnerabilities | 78 days | 2 |
Tan Chew Keong and Carsten Eiram
| Found vulnerabilities: | 1 |
| Company Name | Secunia Research |
ID | Description | Time to Patch | Vulnerabilities |
| 2005-30 | Lotus Notes Multiple Archive Handling Directory Traversal | 190 days | 1 |
Jakob Balle and Tan Chew Keong
| Found vulnerabilities: | 1 |
| Company Name | Secunia Research |
ID | Description | Time to Patch | Vulnerabilities |
| 2005-38 | IBM Lotus Domino iNotes Client Script Insertion Vulnerabilities | 172 days | 4 |
| Found vulnerabilities: | 1 |
ID | Description | Time to Patch | Vulnerabilities |
| 2006-28 | Where Is It unacev2.dll Buffer Overflow Vulnerability | 5 days | 1 |
Carsten Eiram and Tan Chew Keong
| Found vulnerabilities: | 1 |
| Company Name | Secunia Research |
ID | Description | Time to Patch | Vulnerabilities |
| 2005-68 | Adobe Document Server for Reader Extensions Multiple Vulnerabilities | 261 days | 6 |
Secunia Customer Login
Not a customer already?Learn more about how our market leading Vulnerability Management solutions can help you manage risk and ensure compliance. |
