This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:boonex:dolphin
Detail
VendorBoonexFirst view 2006-08-16
ProductDolphinLast view 2014-06-19
VersionTypeApplication
Edition 
Language 
Update 

Activity : Overall

COMMON PLATFORM ENUMERATION : Repartition per Version

CPE NameAffected CVE
cpe:/a:boonex:dolphin:7.1.42
cpe:/a:boonex:dolphin:7.1.32
cpe:/a:boonex:dolphin:7.1.22
cpe:/a:boonex:dolphin:7.1.12
cpe:/a:boonex:dolphin:7.1.02
Hide | Show 16 More...
CPE NameAffected CVE
cpe:/a:boonex:dolphin:7.1.0:b12
cpe:/a:boonex:dolphin:7.1.0:b22
cpe:/a:boonex:dolphin:7.0.92
cpe:/a:boonex:dolphin:7.0.82
cpe:/a:boonex:dolphin:7.0.73
cpe:/a:boonex:dolphin:7.0.63
cpe:/a:boonex:dolphin:7.0.53
cpe:/a:boonex:dolphin:7.0.44
cpe:/a:boonex:dolphin:7.0.33
cpe:/a:boonex:dolphin:7.0.3:beta3
cpe:/a:boonex:dolphin:7.0.23
cpe:/a:boonex:dolphin:7.0.13
cpe:/a:boonex:dolphin:7.0.03
cpe:/a:boonex:dolphin:6.1.22
cpe:/a:boonex:dolphin:5.22
cpe:/a:boonex:dolphin:5.12

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
6.8 2014-06-19 CVE-2014-4333 Network Medium None Requ...
6.5 2014-06-19 CVE-2014-3810 Network Low Requires ...
4.3 2012-02-23 CVE-2012-0873 Network Medium None Requ...
5 2011-09-23 CVE-2011-3728 Network Low None Requ...
9.3 2008-07-14 CVE-2008-3167 Network Medium None Requ...
Hide | Show 2 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
5.1 2006-10-20 CVE-2006-5410 Network High None Requ...
5.1 2006-08-16 CVE-2006-4189 Network High None Requ...

CWE : Common Weakness Enumeration

%idName
20% (1)CWE-352Cross-Site Request Forgery (CSRF)
20% (1)CWE-200Information Exposure
20% (1)CWE-94Failure to Control Generation of Code ('Code Injection')
20% (1)CWE-89Improper Sanitization of Special Elements used in an SQL Command ('...
20% (1)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')

Open Source Vulnerability Database (OSVDB)

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
75764Dolphin Multiple Script Direct Request Path Disclosure
46862SafeHTML safehtml.php dir[plugins] Parameter Remote File Inclusion
46861SafeHTML HTMLSax3.php dir[plugins] Parameter Remote File Inclusion
31004Dolphin index.php dir[inc] Parameter Remote File Inclusion
28530Dolphin vkiss.php dir[inc] Parameter Remote File Inclusion
Hide | Show 20 More...
idDescription
28529Dolphin video_pop.php dir[inc] Parameter Remote File Inclusion
28528Dolphin unregister.php dir[inc] Parameter Remote File Inclusion
28527Dolphin terms_of_use.php dir[inc] Parameter Remote File Inclusion
28526Dolphin tellfriend.php dir[inc] Parameter Remote File Inclusion
28525Dolphin story_view.php dir[inc] Parameter Remote File Inclusion
28524Dolphin story.php dir[inc] Parameter Remote File Inclusion
28523Dolphin stories.php dir[inc] Parameter Remote File Inclusion
28522Dolphin sound_pop.php dir[inc] Parameter Remote File Inclusion
28521Dolphin shoutbox.php dir[inc] Parameter Remote File Inclusion
28520Dolphin service.php dir[inc] Parameter Remote File Inclusion
28519Dolphin search_result.php dir[inc] Parameter Remote File Inclusion
28518Dolphin search.php dir[inc] Parameter Remote File Inclusion
28517Dolphin sdating.php dir[inc] Parameter Remote File Inclusion
28516Dolphin result.php dir[inc] Parameter Remote File Inclusion
28515Dolphin rate.php dir[inc] Parameter Remote File Inclusion
28514Dolphin profile_video.php dir[inc] Parameter Remote File Inclusion
28513Dolphin profile_sound.php dir[inc] Parameter Remote File Inclusion
28512Dolphin profile_photos.php dir[inc] Parameter Remote File Inclusion
28511Dolphin profile_edit.php dir[inc] Parameter Remote File Inclusion
28510Dolphin profile_customize.php dir[inc] Parameter Remote File Inclusion

Milw0rm Exploits

idDescription
2008-07-08Boonex Dolphin 6.1.2 Multiple Remote File Inclusion Vulnerabilities

OpenVAS Exploits

idDescription
2011-09-30Name : Dolphin '.php' Files Information Disclosure Vulnerability
File : nvt/secpod_dolphin_php_info_disc_vuln.nasl

Snort® IPS/IDS

DateDescription
2014-01-16BoonEx Dolphin 6.1.2 remote file include attempt
RuleID : 28944 - Type : SERVER-WEBAPP - Revision : 1
2014-01-16BoonEx Dolphin 6.1.2 remote file include attempt
RuleID : 28943 - Type : SERVER-WEBAPP - Revision : 1
2014-01-16BoonEx Dolphin 6.1.2 remote file include attempt
RuleID : 28942 - Type : SERVER-WEBAPP - Revision : 1

Nessus® Vulnerability Scanner

idDescription
2008-07-09Name : The remote web server contains a PHP application that is affected by multiple...
File : dolphin_file_includes.nasl - Type : ACT_ATTACK