Blog RSSExploits RSSFacebook

WEB

Date D   Description Plat. Author
2005-06-29   Community Link Pro - 'login.cgi?File' Remote Command Execution 29 WEB spher3
2004-10-24   Phorum 5.0.11 - 'Read.php' SQL Injection 28 WEB Positive Technologies
2005-06-29   CGI-Club imTRBBS 1.0 - Remote Command Execution 28 WEB blahplok
2013-06-03   PHD Help Desk 2.12 - SQL Injection 31 WEB drone
2005-06-28   Dynamic Biz Website Builder (QuickWeb) 1.0 - 'login.asp' SQL Injection 29 WEB basher13
2005-06-28   Hosting Controller 6.1 - 'error.asp' Cross-Site Scripting 30 WEB Ashiyane Digital Security Team
2005-06-28   Community Server Forums - 'SearchResults.aspx' Cross-Site Scripting 27 WEB abducter_minds@yahoo.com
2005-06-27   Mensajeitor 1.8.9 - 'IP' HTML Injection 28 WEB Megabyte
2005-06-27   ASPPlayGround.NET 3.2 SR1 - Arbitrary File Upload 27 WEB Psycho
2005-06-27   ASPNuke 0.80 - 'Language_Select.asp' HTTP Response Splitting 29 WEB Alberto Trivero
2005-06-27   ASPNuke 0.80 - 'register.asp' Multiple Cross-Site Scripting Vulnerabilities 26 WEB Alberto Trivero
2005-06-27   ASPNuke 0.80 - 'forgot_password.asp?email' Cross-Site Scripting 30 WEB Alberto Trivero
2005-06-24   K-COLLECT CSV_DB.CGI 1.0/i_DB.CGI 1.0 - Remote Command Execution 27 WEB blahplok
2005-06-24   UBBCentral UBB.Threads 5.5.1/6.x - 'grabnext.php?posted' SQL Injection 29 WEB GulfTech Security
2005-06-24   UBBCentral UBB.Threads 5.5.1/6.x - 'notifymod.php?Number' SQL Injection 30 WEB GulfTech Security
2005-06-24   UBBCentral UBB.Threads 5.5.1/6.x - 'addfav.php?main' SQL Injection 27 WEB GulfTech Security
2005-06-24   UBBCentral UBB.Threads 5.5.1/6.x - 'viewmessage.php?message' SQL Injection 28 WEB GulfTech Security
2005-06-24   UBBCentral UBB.Threads 5.5.1/6.x - 'modifypost.php?Number' SQL Injection 29 WEB GulfTech Security
2005-06-24   UBBCentral UBB.Threads 5.5.1/6.x - 'calendar.php' Multiple SQL Injections 31 WEB GulfTech Security
2005-06-24   UBBCentral UBB.Threads 5.5.1/6.x - 'download.php?Number' SQL Injection 26 WEB GulfTech Security
2005-06-23   CarLine Forum Russian Board 4.2 - 'enter.php' Multiple SQL Injections 28 WEB 1dt.w0lf
2005-06-23   CarLine Forum Russian Board 4.2 - 'in.php' Multiple SQL Injections 27 WEB 1dt.w0lf
2005-06-23   CarLine Forum Russian Board 4.2 - 'line.php' Multiple SQL Injections 29 WEB 1dt.w0lf
2005-06-23   CarLine Forum Russian Board 4.2 - 'memory.php' Multiple SQL Injections 28 WEB 1dt.w0lf
2005-06-23   CarLine Forum Russian Board 4.2 - 'edit_msg.php?name_ig_array1[1]' SQL Injection 28 WEB 1dt.w0lf
2005-06-23   CarLine Forum Russian Board 4.2 - 'new.php?name_ig_array1[1]' SQL Injection 31 WEB 1dt.w0lf
2005-06-23   CarLine Forum Russian Board 4.2 - 'reply.php?name_ig_array1[1]' SQL Injection 27 WEB 1dt.w0lf
2005-06-23   CarLine Forum Russian Board 4.2 - 'reply_in.php' Multiple SQL Injections 29 WEB 1dt.w0lf
2005-06-23   CarLine Forum Russian Board 4.2 - 'set.php?name_ig_array[1]' SQL Injection 31 WEB 1dt.w0lf
2005-06-23   CarLine Forum Russian Board 4.2 - 'menu_header.php?table_sql' SQL Injection 30 WEB 1dt.w0lf
2005-06-23   CarLine Forum Russian Board 4.2 - 'edit_msg.php' Multiple Cross-Site Scripting Vulnerabilities 28 WEB 1dt.w0lf
2005-06-23   CarLine Forum Russian Board 4.2 - 'new.php' Multiple Cross-Site Scripting Vulnerabilities 28 WEB 1dt.w0lf
2005-06-23   CarLine Forum Russian Board 4.2 - 'reply.php' Multiple Cross-Site Scripting Vulnerabilities 32 WEB 1dt.w0lf
2005-06-23   CarLine Forum Russian Board 4.2 - 'set.php?name_ig_array[]' Cross-Site Scripting 29 WEB 1dt.w0lf
2005-06-23   CarLine Forum Russian Board 4.2 - 'search.php?text_poisk' Cross-Site Scripting 30 WEB 1dt.w0lf
2005-06-23   CarLine Forum Russian Board 4.2 - 'menu_tema.php' Multiple Cross-Site Scripting Vulnerabilities 31 WEB 1dt.w0lf
2005-06-23   CarLine Forum Russian Board 4.2 - 'menu_header.php' Multiple Cross-Site Scripting Vulnerabilities 31 WEB 1dt.w0lf
2005-06-23   CarLine Forum Russian Board 4.2 - IMG Tag Cross-Site Scripting 28 WEB 1dt.w0lf
2005-06-23   CarLine Forum Russian Board 4.2 - 'menu_footer.php' Multiple Cross-Site Scripting Vulnerabilities 27 WEB 1dt.w0lf
2005-06-23   Whois.Cart 2.2.x - 'profile.php' Cross-Site Scripting 31 WEB Elzar Stuffenbach
2005-06-22   Ipswitch WhatsUp Professional 2005 SP1 - 'login.asp' SQL Injection 27 WEB anonymous
2005-06-01   DUware DUclassmate 1.x - 'edit.asp?iPro' SQL Injection 30 WEB Dedi Dwianto
2005-06-01   DUware DUclassmate 1.x - 'default.asp?iState' SQL Injection 28 WEB Dedi Dwianto
2005-06-22   DUware DUforum 3.0/3.1 - 'userEdit.asp?id' SQL Injection 31 WEB Dedi Dwianto
2005-06-22   DUware DUforum 3.0/3.1 - 'forums.asp?iFor' SQL Injection 28 WEB Dedi Dwianto
2005-06-22   DUware DUforum 3.0/3.1 - 'post.asp?iFor' SQL Injection 25 WEB Dedi Dwianto
2005-06-22   DUware DUforum 3.0/3.1 - 'messages.asp?iMsg' SQL Injection 28 WEB Dedi Dwianto
2005-06-22   DUware DUpaypal 3.0/3.1 - 'sub.asp?iSub' SQL Injection 28 WEB Dedi Dwianto
2005-06-22   DUware DUpaypal 3.0/3.1 - 'detail.asp?iPro' SQL Injection 29 WEB Dedi Dwianto
2005-06-22   DUware DUamazon Pro 3.0/3.1 - 'detail.asp?iSub' SQL Injection 29 WEB Dedi Dwianto
2005-06-22   DUware DUamazon Pro 3.0/3.1 - 'review.asp?iPro' SQL Injection 33 WEB Dedi Dwianto
2005-06-22   DUware DUamazon Pro 3.0/3.1 - 'catDelete.asp?iCat' SQL Injection 26 WEB Dedi Dwianto
2005-06-22   DUware DUamazon Pro 3.0/3.1 - 'productEdit.asp?iCat' SQL Injection 26 WEB Dedi Dwianto
2005-06-22   DUware DUamazon Pro 3.0/3.1 - 'productDelete.asp?iCat' SQL Injection 29 WEB Dedi Dwianto
2005-06-22   DUware DUamazon Pro 3.0/3.1 - 'type.asp?iType' SQL Injection 29 WEB Dedi Dwianto
2005-06-20   RaXnet Cacti 0.5/0.6/0.8 - 'Top_Graph_Header.php' Remote File Inclusion 28 WEB Maciej Piotr Falkiewicz
2005-06-22   DUware DUportal 3.4.3 Pro - Multiple SQL Injections 27 WEB Dedi Dwianto
2005-06-20   RaXnet Cacti 0.5/0.6/0.8 - 'Config_Settings.php' Remote File Inclusion 30 WEB Maciej Piotr Falkiewicz
2005-06-20   PAFaq - Administrator 'Username' SQL Injection 27 WEB GulfTech Security
2005-06-20   I-Gallery - Folder Argument Cross-Site Scripting 27 WEB Seyed Hamid Kashfi
2005-06-20   PAFaq - Question Cross-Site Scripting 27 WEB GulfTech Security
2005-06-20   I-Gallery - Folder Argument Directory Traversal 32 WEB Seyed Hamid Kashfi
2013-05-31   PhpTax 0.8 - File Manipulation 'newvalue' / Remote Code Execution 31 WEB CWH Underground
2005-06-20   PAFaq beta4 - Database Unauthorized Access 28 WEB james
2003-12-07   LaGarde StoreFront 5.0 Shopping Cart - 'login.asp' SQL Injection 30 WEB G00db0y
2005-05-20   cPanel 9.1 - 'User' Cross-Site Scripting 27 WEB abducter_minds@yahoo.com
2005-06-20   UApplication Ublog Reload 1.0.5 - 'Trackback.asp' Cross-Site Scripting 26 WEB Dedi Dwianto
2005-06-20   Ublog Reload 1.0.5 - 'blog_comment.asp?y' SQL Injection 30 WEB Dedi Dwianto
2005-06-20   Ublog Reload 1.0.5 - 'index.asp' Multiple SQL Injections 27 WEB Dedi Dwianto
2005-06-17   osCommerce 2.1/2.2 - Multiple HTTP Response Splitting Vulnerabilities 27 WEB GulfTech Security
2005-06-16   Cool Cafe Chat 1.2.1 - 'login.asp' SQL Injection 28 WEB Morning Wood
2005-06-16   Ultimate PHP Board 1.8/1.9 - Weak Password Encryption 33 WEB Alberto Trivero
2005-06-16   ATutor 1.4.3 - 'Directory.php' Multiple Cross-Site Scripting Vulnerabilities 30 WEB Lostmon
2005-06-16   ATutor 1.4.3 - 'subscribe_forum.php?us' Cross-Site Scripting 35 WEB Lostmon
2005-06-16   ATutor 1.4.3 - 'tile.php' Multiple Cross-Site Scripting Vulnerabilities 32 WEB Lostmon
2005-06-16   ATutor 1.4.3 - '/inbox/index.php?view' Cross-Site Scripting 30 WEB Lostmon
2005-06-16   ATutor 1.4.3 - 'search.php' Multiple Cross-Site Scripting Vulnerabilities 30 WEB Lostmon
2005-06-16   ATutor 1.4.3 - 'send_message.php?l' Cross-Site Scripting 29 WEB Lostmon
2005-06-16   ATutor 1.4.3 - 'content.php?cid' Cross-Site Scripting 27 WEB Lostmon
2005-06-16   ATutor 1.4.3 - 'contact.php?subject' Cross-Site Scripting 28 WEB Lostmon
2005-06-16   ATutor 1.4.3 - 'browse.php?show_course' Cross-Site Scripting 26 WEB Lostmon
2005-06-16   Ultimate PHP Board 1.8/1.9 - Multiple Cross-Site Scripting Vulnerabilities 38 WEB Alberto Trivero
2005-06-15   PAFileDB 1.1.3/2.1.1/3.0/3.1 - Multiple Input Validation Vulnerabilities 28 WEB GulfTech Security
2005-06-15   McGallery 1.0/1.1 - Lang Argument File Disclosure 29 WEB D_BuG
2005-06-14   Annuaire 1Two 1.0/1.1 - 'index.php' Cross-Site Scripting 28 WEB An0nym0uS
2005-06-13   FusionBB 0.x - Multiple Input Validation Vulnerabilities 30 WEB GulfTech Security
2005-06-13   Singapore 0.9.11 Beta Image Gallery - 'index.php' Cross-Site Scripting 28 WEB TheGreatOne2176
2005-06-12   JamMail 1.8 - Jammail.pl Arbitrary Command Execution 30 WEB blahplok
2005-06-10   Ovidentia FX - Remote File Inclusion 27 WEB Status-x
2013-05-29   Zavio IP Cameras Firmware 1.6.03 - Multiple Vulnerabilities 28 WEB Core Security
2013-05-29   MayGion IP Cameras Firmware 09.27 - Multiple Vulnerabilities 28 WEB Core Security
2013-05-29   TP-Link IP Cameras Firmware 1.6.18P12 - Multiple Vulnerabilities 28 WEB Core Security
2013-05-29   YeaLink IP Phone Firmware 9.70.0.100 - Phone Call 26 WEB b0rh
2013-05-29   TP-Link WR842ND - Remote Multiple SSID Directory Traversals 28 WEB Adam Simuntis
2005-06-09   Invision Community Blog 1.0/1.1 - Multiple Input Validation Vulnerabilities 30 WEB GulfTech Security
2005-06-09   Invision Power Services Invision Gallery 1.0.1/1.3 - SQL Injection 32 WEB GulfTech Security
2005-06-08   Loki Download Manager 2.0 - 'Catinfo.asp' SQL Injection 27 WEB hack_912
2005-06-08   Loki Download Manager 2.0 - 'default.asp' SQL Injection 29 WEB hack_912
2005-06-08   Cerberus Helpdesk 0.97.3/2.6.1 - Multiple Cross-Site Scripting Vulnerabilities 33 WEB Dedi Dwianto
2005-06-07   FlatNuke 2.5.x - 'referer.php' Crafted Referer Arbitrary PHP Code Execution 29 WEB SecWatch
2005-06-07   FlatNuke 2.5.x - 'help.php' Multiple Cross-Site Scripting Vulnerabilities 31 WEB SecWatch
2005-06-07   FlatNuke 2.5.x - 'index.php?where' Full Path Disclosure 29 WEB SecWatch
2005-06-06   Early Impact ProductCart 2.6/2.7 - 'OptionFieldsEdit.asp?idccr' SQL Injection 33 WEB Dedi Dwianto
2005-06-06   Early Impact ProductCart 2.6/2.7 - 'modCustomCardPaymentOpt.asp?idc' SQL Injection 29 WEB Dedi Dwianto
2005-06-06   Early Impact ProductCart 2.6/2.7 - 'editCategories.asp?lid' SQL Injection 30 WEB Dedi Dwianto
2005-06-06   Early Impact ProductCart 2.6/2.7 - 'viewPrd.asp?idcategory' SQL Injection 32 WEB Dedi Dwianto
2005-06-06   YaPiG 0.9x - 'upload.php' Directory Traversal 31 WEB anonymous
2005-06-06   YaPiG 0.9x - 'view.php' Cross-Site Scripting 31 WEB anonymous
2005-06-06   YaPiG 0.9x - Local/Remote File Inclusion 30 WEB anonymous
2005-06-06   WWWeb Concepts Events System 1.0 - 'login.asp' SQL Injection 29 WEB Romty
2005-06-03   Popper Webmail 1.41 - 'ChildWindow.Inc.php' Remote File Inclusion 31 WEB Leon Juranic
2005-06-03   LiteWEB Web Server 2.5 - Authentication Bypass 33 WEB Ziv Kamir
2005-06-03   MWChat 6.7 - 'Start_Lobby.php' Remote File Inclusion 32 WEB Status-x
2005-06-02   Liberum Help Desk 0.97.3 - Multiple SQL Injections 30 WEB Dedi Dwianto
2005-06-01   Livingcolor Livingmailing 1.3 - 'login.asp' SQL Injection 31 WEB Dj romty
2005-06-01   NEXTWEB (i)Site - 'login.asp' SQL Injection 32 WEB Jim Pangalos
2005-06-01   JiRo's Upload System 1.0 - 'login.asp' SQL Injection 30 WEB Romty
2005-05-31   MyBulletinBoard (MyBB) RC4 - Multiple Cross-Site Scripting / SQL Injections 34 WEB Alberto Trivero
2005-05-31   Calendarix 0.8.20071118 - Multiple SQL Injections / Cross-Site Scripting Vulnerabilities 29 WEB DarkBicho
2005-05-31   PowerDownload 3.0.2/3.0.3 - IncDir Remote File Inclusion 31 WEB SoulBlack Group
2005-05-30   Qualiteam X-Cart 4.0.8 - 'giftcert.php' Multiple SQL Injections 30 WEB CENSORED Search Vulnerabilities
2005-05-30   Qualiteam X-Cart 4.0.8 - 'search.php?mode' SQL Injection 30 WEB CENSORED Search Vulnerabilities
2005-05-30   Qualiteam X-Cart 4.0.8 - 'register.php?mode' SQL Injection 29 WEB CENSORED Search Vulnerabilities
2005-05-30   Qualiteam X-Cart 4.0.8 - 'orders.php?mode' SQL Injection 32 WEB CENSORED Search Vulnerabilities
2005-05-30   Qualiteam X-Cart 4.0.8 - 'help.php?section' SQL Injection 32 WEB CENSORED Search Vulnerabilities