sonyy Pendulab ChatBlazer 8.5 - 'Username' Cross-Site Scripting
webapps php

sonyy Invision Power Board (IP.Board) 4.2.1 - 'searchText' Cross-Site Scripting
webapps php

sonyy JavaBB 0.99 - 'userId' Cross-Site Scripting
webapps java

sonyy Omnistar Live - Cross-Site Scripting / SQL Injection
webapps php

sonyy Bontq - 'user/' URI Cross-Site Scripting
webapps php OSVDB-79667

sonyy Tiki Wiki CMS Groupware - 'url' Open Redirection
webapps php CVE-2012-5321;OSVDB-79409

sonyy JaWiki - 'versionNo' Cross-Site Scripting
webapps java

sonyy ButorWiki 3.0 - 'service' Cross-Site Scripting
webapps php OSVDB-80211

sonyy Impulsio CMS - 'id' SQL Injection
webapps php CVE-2012-1294;OSVDB-79603

sonyy SMW+ 1.5.6 - 'target' HTML Injection
webapps php

sonyy Zimbra - 'view' Cross-Site Scripting
webapps php CVE-2012-1213;OSVDB-79596

sonyy ProWiki - 'id' Cross-Site Scripting
webapps php

sonyy RabbitWiki - 'title' Cross-Site Scripting
webapps php

sonyy GForge 5.7.1 - Multiple Cross-Site Scripting Vulnerabilities
webapps php

sonyy xClick Cart 1.0.x - 'shopping_url' Cross-Site Scripting
webapps php CVE-2012-5225;OSVDB-85976

sonyy Gregarius 0.6.1 - Multiple SQL Injections / Cross-Site Scripting
webapps php