Blog RSSExploits RSSFacebook

WEB

Date D   Description Plat. Author
2012-11-13   Eventy CMS 1.8 Plus - Multiple Vulnerabilities 32 WEB Vulnerability-Lab
2003-05-29   Geeklog 1.3.x - (Authenticated) SQL Injection 34 WEB pokleyzz
2003-05-29   philboard 1.14 - 'philboard_admin.asp' Authentication Bypass 37 WEB aresu@bosen.net
2003-05-29   Cafelog b2 0.6 - Remote File Inclusion 32 WEB pokleyzz
2003-05-29   Webfroot Shoutbox 2.32 - 'URI' File Disclosure 38 WEB pokleyzz
2003-05-28   Bandmin 1.4 - Cross-Site Scripting 35 WEB silent needel
2003-05-27   Newsscript 1.0 - Administrative Privilege Escalation 31 WEB Peter Winter-Smith
2012-11-12   vBulletin vBay 1.1.9 - Error-Based SQL Injection 35 WEB Dan UK
2012-11-12   Bananadance Wiki b2.2 - Multiple Vulnerabilities 36 WEB Vulnerability-Lab
2003-05-26   PostNuke 0.72x Phoenix Glossary Module - SQL Injection 33 WEB Lorenzo Manuel Hernandez Garcia-Hierro
2003-05-24   Ultimate PHP Board 1.9 - 'admin_iplog.php' Arbitrary PHP Execution 38 WEB euronymous
2003-05-24   BLNews 2.1.3 - Remote File Inclusion 36 WEB Over_G
2003-05-23   IISProtect 2.1/2.2 - Web Administration Interface SQL Injection 34 WEB Gyrniff
2003-06-22   XMB Forum 1.8 - 'member.php' Cross-Site Scripting 30 WEB Marc Ruef
2003-05-21   SudBox Boutique 1.2 - 'login.php' Authentication Bypass 36 WEB frog
2003-05-20   ttCMS 2.2/2.3 / ttForum 1.1 - 'index.php' Instant-Messages Preferences SQL Injection 33 WEB ScriptSlave@gmx.net
2003-05-17   ttCMS 2.2/2.3 - 'header.php' Remote File Inclusion 32 WEB ScriptSlave@gmx.net
2003-05-16   EZ Publish 2.2 - 'index.php' IMG Tag Cross-Site Scripting 34 WEB Ferruh Mavituna
2003-05-15   OneOrZero Helpdesk 1.4 - 'install.php' Administrative Access 31 WEB frog
2003-05-15   OneOrZero Helpdesk 1.4 - 'TUpdate.php' SQL Injection 33 WEB frog
2003-05-14   PHP-Proxima - 'autohtml.php' Information Disclosure 33 WEB Mind Warper
2003-05-14   Owl Intranet Engine 0.7 - Authentication Bypass 33 WEB cdowns
2003-05-14   vBulletin 3.0 - Private Message HTML Injection 33 WEB Ferruh Mavituna
2003-05-13   PHP-Nuke 6.0/6.5 Web_Links Module - Full Path Disclosure 32 WEB Rynho Zeros Web
2003-05-13   PHP-Nuke 6.5 (Multiple Downloads Module) - SQL Injection 36 WEB Albert Puigsech Galicia
2003-05-13   PHP-Nuke 6.5 - 'modules.php?Username' Cross-Site Scripting 35 WEB Ferruh Mavituna
2003-05-12   Happymall E-Commerce Software 4.3/4.4 - 'Normal_HTML.cgi' File Disclosure 33 WEB Julio Cesar
2012-11-09   NetOffice Dwins 1.4p3 - SQL Injection 33 WEB dun
2003-05-12   PHP-Nuke 5.x/6.x Web_Links Module - SQL Injection 31 WEB Albert Puigsech Galicia
2003-05-12   Happymall E-Commerce Software 4.3/4.4 - 'Normal_HTML.cgi' Cross-Site Scripting 32 WEB Julio Cesar
2003-05-10   Snitz Forums 2000 - 'register.asp' SQL Injection 32 WEB sharpiemarker
2003-05-09   Phorum 3.4.x - 'Message Form' HTML Injection 34 WEB WiciU
2003-05-09   ttCMS 2.2 / ttForum 1.1 - 'install.php?installdir' Remote File Inclusion 35 WEB Charles Reinold
2003-05-09   ttCMS 2.2 / ttForum 1.1 - 'news.php?template' Remote File Inclusion 32 WEB Charles Reinold
2003-05-08   HappyMall E-Commerce Software 4.3/4.4 - 'Member_HTML.cgi' Command Execution 37 WEB Revin Aldi
2003-05-07   HappyMall E-Commerce Software 4.3/4.4 - 'Normal_HTML.cgi' Command Execution 36 WEB Revin Aldi
2003-05-01   Stockman Shopping Cart 7.8 - Arbitrary Command Execution 36 WEB Aleksey Sintsov
2003-05-01   PHP-Nuke Splatt Forum 4.0 Module - HTML Injection 35 WEB Morning Wood
2003-05-01   PHP-Nuke Splatt Forum 4.0 Module - Cross-Site Scripting 30 WEB Morning Wood
2003-04-30   Microsoft BizTalk Server 2000/2002 DTA - 'RawCustomSearchField.asp' SQL Injection 33 WEB Cesar Cerrudo
2003-04-30   Microsoft BizTalk Server 2000/2002 DTA - 'rawdocdata.asp' SQL Injection 32 WEB Cesar Cerrudo
2012-11-07   AVerCaster Pro RS3400 Web Server - Directory Traversal 31 WEB Patrick Saladino
2012-11-07   Xivo 1.2 - Arbitrary File Download 32 WEB Mr.Un1k0d3r
2012-11-07   Invision Power Board (IP.Board) 3.3.4 - Unserialize Regex Bypass 36 WEB webDEViL
2003-04-26   Mike Bobbitt Album.PL 0.61 - Remote Command Execution 32 WEB aresu@bosen.net
2003-04-26   Macromedia ColdFusion MX 6.0 - Error Message Full Path Disclosure 30 WEB Network Intelligence
2003-04-25   Onecenter Forum 4.0 - IMG Tag Script Injection 30 WEB David F. Madrid
2003-04-25   Xoops 1.3.x/2.0 MyTextSanitizer - HTML Injection 34 WEB magistrat
2003-04-25   Truegalerie 1.0 - Unauthorized Administrative Access 31 WEB frog
2003-04-23   Battleaxe Software BTTLXE Forum - 'login.asp' SQL Injection 33 WEB Du|L
2012-11-06   ZenPhoto 1.4.3.3 - Multiple Vulnerabilities 32 WEB waraxe
2003-04-22   XMB Forum 1.8 - 'member.php' SQL Injection 27 WEB zeez@bbugs.org
2003-04-22   OpenBB 1.0/1.1 - 'member.php' SQL Injection 26 WEB Albert Puigsech Galicia
2003-04-22   OpenBB 1.0/1.1 - 'board.php' SQL Injection 32 WEB Albert Puigsech Galicia
2003-04-22   OpenBB 1.0/1.1 - 'index.php' SQL Injection 35 WEB Albert Puigsech Galicia
2003-04-21   MPCSoftWeb 1.0 - Database Disclosure 35 WEB drG4njubas
2003-04-17   Web Wiz Forum 6.34 - Information Disclosure 29 WEB Uziel aka nuJIurpuM
2003-03-31   Xonic.ru News 1.0 - 'script.php' Remote Command Execution 29 WEB DWC Gr0up
2003-05-05   IkonBoard 3.1 - Lang Cookie Arbitrary Command Execution (2) 32 WEB snooq
2003-04-15   IkonBoard 3.1 - Lang Cookie Arbitrary Command Execution (1) 30 WEB Nick Cleaton
2003-04-15   osCommerce 2.2 - Authentication Bypass 26 WEB Lorenzo Hernandez Garcia-Hierro
2012-11-05   CheckPoint/Sofaware Firewall - Multiple Vulnerabilities 33 WEB Procheckup
2003-04-15   EZ Publish 2.2.7/3.0 - Multiple Full Path Disclosure Vulnerabilities 32 WEB gregory Le Bras
2003-04-15   EZ Publish 2.2.7/3.0 - Multiple Cross-Site Scripting Vulnerabilities 35 WEB gregory Le Bras
2012-11-05   ZPanel 10.0.1 - Cross-Site Request Forgery / Cross-Site Scripting / SQL Injection / Password Reset 37 WEB pcsjj
2003-04-14   Web Wiz Site News 3.6 - Information Disclosure 31 WEB drG4njubas
2003-04-14   InstaBoard 1.3 - 'index.cfm' SQL Injection 32 WEB Jim Dew
2003-04-11   Ocean12 ASP Guestbook Manager 1.0 - Information Disclosure 30 WEB drG4njubas
2003-04-10   Guestbook 4.0 - Sensitive Information Disclosure 31 WEB Over_G
2002-04-10   Super Guestbook 1.0 - Sensitive Information Disclosure 31 WEB Over_G
2003-04-09   PHPay 2.2 - Cross-Site Scripting 35 WEB Ahmet Sabri ALPER
2003-04-09   PHPay 2.2 - Multiple Full Path Disclosure Vulnerabilities 35 WEB Ahmet Sabri ALPER
2003-04-07   Py-Membres 4.0 - SQL Injection 31 WEB frog
2003-04-07   Coppermine Photo Gallery 1.0 - PHP Code Injection 34 WEB Berend-Jan Wever
2012-11-04   WordPress Plugin Spider Catalog 1.1 - HTML Code Injection / Cross-Site Scripting 31 WEB D4NB4R
2003-04-05   Invision Board 1.1.1 - 'functions.php' SQL Injection 34 WEB Gossi The Dog
2003-04-04   PHPSysInfo 2.0/2.1 - 'index.php' LNG File Disclosure 29 WEB Albert Puigsech Galicia
2003-04-03   PHPSysInfo 2.0/2.1 - 'index.php' File Disclosure 32 WEB Albert Puigsech Galicia
2003-04-02   Phorum 3.4 - Email Subject Line Script Injection 30 WEB peter
2003-03-29   ScozBook 1.1 - Full Path Disclosure 30 WEB euronymous
2003-03-29   Justice Guestbook 1.3 - Full Path Disclosure 30 WEB euronymous
2003-03-29   Beanwebb Guestbook 1.0 - Unauthorized Administrative Access 33 WEB euronymous
2003-03-28   PostNuke 0.72x Members_List Module - Full Path Disclosure 30 WEB rkc
2003-03-28   PostNuke 0.72x Stats Module - Full Path Disclosure 31 WEB rkc
2002-03-27   MyGuestBK - Unauthorized Admin Panel Access 30 WEB Over_G
2002-03-27   MyGuestBK - 'Add.asp' Cross-Site Scripting 30 WEB Over_G
2012-11-02   Achievo 1.4.5 - Multiple Vulnerabilities (1) 35 WEB Canberk BOLAT
2012-11-02   PrestaShop 1.5.1 - Persistent Cross-Site Scripting 29 WEB David Sopas
2012-11-02   vBulletin ChangUonDyU Advanced Statistics - SQL Injection 28 WEB Juno_okyo
2012-11-02   WordPress Plugin All Video Gallery 1.1 - SQL Injection 29 WEB Ashiyane Digital Security Team
2003-03-25   PHP-Nuke 6.0/6.5 Forum Module - 'viewforum.php' SQL Injection 29 WEB frog
2003-03-25   PHP-Nuke 6.0/6.5 Forum Module - 'viewtopic.php' SQL Injection 29 WEB frog
2003-03-25   PHP-Nuke 6.5 Addon - 'Viewpage.php' File Disclosure 31 WEB Zero-X www.lobnan.de Team
2003-03-25   Web Chat Manager 2.0 - HTML Code Injection 30 WEB Over_G
2003-03-23   PHP-Nuke 5.6/6.x News Module - 'index.php' SQL Injection 30 WEB frog
2003-03-22   PHP-Nuke 5.6/6.x News Module - 'article.php' SQL Injection 30 WEB frog
2003-03-22   Advanced Poll 2.0 - Remote Information Disclosure 31 WEB subj
2003-03-22   PHP-Nuke 5.6/6.x - 'banners.php' Banner Manager Password Disclosure 29 WEB frog
2003-03-21   Planetmoon - Guestbook Clear Text Password Retrieval 30 WEB subj
2012-11-01   MyBB Follower User Plugin - SQL Injection 30 WEB Zixem
2012-11-01   Joomla! Component Spider Catalog 1.1 - 'Product_ID' SQL Injection 30 WEB D4NB4R
2012-11-01   Endpoint Protector 4.0.4.2 - Multiple Persistent Cross-Site Scripting Vulnerabilities 28 WEB CYBSEC Labs
2012-11-01   Invision Power Board (IP.Board) 3.3.4 - 'Unserialize()' PHP Code Execution 28 WEB EgiX
2012-11-01   WordPress Plugin bbPress - Multiple Vulnerabilities 29 WEB Dark-Puzzle
2003-03-20   osCommerce 2.1/2.2 - 'Checkout_Payment.php' Error Output Cross-Site Scripting 31 WEB iProyectos group
2003-03-20   osCommerce 2.1/2.2 - Info_Message Cross-Site Scripting 31 WEB iProyectos group
2003-03-20   osCommerce 2.1/2.2 - Error_Message Cross-Site Scripting 31 WEB iProyectos group
2003-03-20   XOOPS 2.0 XoopsOption - Information Disclosure 33 WEB gregory Le Bras
2003-03-19   DCP-Portal 5.3.1 - 'calendar.php' Cross-Site Scripting 30 WEB Ertan Kurt
2003-03-19   Siteframe CMS 2.2.4 - 'download.php' Information Disclosure 29 WEB Ertan Kurt
2003-03-19   Basit 1.0 Search Module - Cross-Site Scripting 33 WEB Ertan Kurt
2003-03-19   Basit 1.0 Submit Module - Cross-Site Scripting 30 WEB Ertan Kurt
2003-03-18   Mambo Site Server 4.0.10 - 'index.php' Cross-Site Scripting 31 WEB Ertan Kurt
2003-01-05   Smart Search 4.25 - Remote Command Execution 30 WEB knight420
2003-03-17   MyABraCaDaWeb 1.0 - Full Path Disclosure 30 WEB gregory Le Bras
2003-03-17   Kebi Academy 2001 - Input Validation 33 WEB dong-h0un U
2012-10-31   WordPress Plugin foxypress 0.4.2.5 - Multiple Vulnerabilities 30 WEB waraxe
2012-10-31   PG Dating Pro CMS 1.0 - Multiple Vulnerabilities 28 WEB Vulnerability-Lab
2012-10-31   vam shop 1.69 - Multiple Vulnerabilities 30 WEB Security Effect Team
2003-03-17   Outblaze Webmail - Cookie Authentication Bypass 30 WEB dong-h0un U
2003-03-15   RSA ClearTrust 4.6/4.7 - Login Page Cross-Site Scripting 30 WEB sir.mordred@hushmail.com
2003-03-12   PHP-Nuke Splatt Forum 3.2 Module - Full Path Disclosure 33 WEB Rynho Zeros Web
2003-03-12   PHP-Nuke 5.5/6.0 News Module - Full Path Disclosure 28 WEB Rynho Zeros Web
2003-03-12   PHP-Nuke 5.5/6.0 AvantGo Module - Full Path Disclosure 30 WEB Rynho Zeros Web
2003-03-11   VPOPMail 0.9x - 'vpopmail.php' Remote Command Execution 30 WEB ERRor