|
2012-06-28
|
|
webERP 4.08.1 - Local/Remote File Inclusion
|
24 |
WEB
|
dun
|
|
2012-06-27
|
|
Zend Framework < 2.0.0 beta4 < 1.12 RC1 < 1.11.11 - Local File Disclosure
|
25 |
WEB
|
SEC Consult
|
|
2012-06-27
|
|
symantec Web gateway 5.0.2.8 - Multiple Vulnerabilities
|
26 |
WEB
|
S2 Crew
|
|
2012-06-26
|
|
SugarCRM CE 6.3.1 - 'Unserialize()' PHP Code Execution (Metasploit)
|
20 |
WEB
|
Metasploit
|
|
2012-06-26
|
|
WordPress Plugin Website FAQ 1.0 - SQL Injection
|
22 |
WEB
|
Chris Kellum
|
|
2012-06-25
|
|
WordPress Plugin Fancy Gallery 1.2.4 - Arbitrary File Upload
|
21 |
WEB
|
Sammy FORGIT
|
|
2012-06-25
|
|
Parodia 6.8 - 'employer-profile.asp' SQL Injection
|
21 |
WEB
|
Carlos Mario Penagos Hollmann
|
|
2012-06-24
|
|
UCCASS 1.8.1 - Blind SQL Injection
|
22 |
WEB
|
dun
|
|
2012-06-23
|
|
SugarCRM CE 6.3.1 - 'Unserialize()' PHP Code Execution
|
23 |
WEB
|
EgiX
|
|
2012-06-22
|
|
SoftPerfect Bandwidth Manager 2.9.10 - Authentication Bypass
|
20 |
WEB
|
Gitsnik
|
|
2012-06-22
|
|
LimeSurvey 1.92+ build120620 - Multiple Vulnerabilities
|
21 |
WEB
|
dun
|
|
2012-06-22
|
|
agora project 2.13.1 - Multiple Vulnerabilities
|
19 |
WEB
|
Chris Russell
|
|
2012-06-21
|
|
Commentics 2.0 - Multiple Vulnerabilities
|
18 |
WEB
|
Jean Pascal Pereira
|
|
2012-06-21
|
|
traq 2.3.5 - Multiple Vulnerabilities
|
23 |
WEB
|
AkaStep
|
|
2012-06-21
|
|
IBM System Storage DS Storage Manager Profiler - Multiple Vulnerabilities
|
21 |
WEB
|
LiquidWorm
|
|
2012-06-20
|
|
WordPress Plugin Schreikasten 0.14.13 - Cross-Site Scripting
|
22 |
WEB
|
Henry Hoggard
|
|
2012-06-19
|
|
iBoutique eCommerce 4.0 - Multiple Web Vulnerabilities
|
19 |
WEB
|
Vulnerability-Lab
|
|
2012-06-18
|
|
MyTickets 1.x < 2.0.8 - Blind SQL Injection
|
19 |
WEB
|
al-swisre
|
|
2012-06-18
|
|
QNAP Turbo NAS 3.6.1 Build 0302T - Multiple Vulnerabilities
|
21 |
WEB
|
Sense of Security
|
|
2012-06-16
|
|
iScripts EasyCreate 2.0 - Multiple Vulnerabilities
|
19 |
WEB
|
Vulnerability-Lab
|
|
2012-06-16
|
|
Nuked Klan SP CMS 4.5 - SQL Injection
|
22 |
WEB
|
Vulnerability-Lab
|
|
2012-06-16
|
|
WordPress Plugin Automatic 2.0.3 - SQL Injection
|
21 |
WEB
|
nick58
|
|
2012-06-16
|
|
Huawei HG866 - Authentication Bypass
|
21 |
WEB
|
hkm
|
|
2012-06-16
|
|
News Script PHP 1.2 - Multiple Vulnerabilities
|
24 |
WEB
|
Vulnerability-Lab
|
|
2012-06-16
|
|
PHP Decoda 3.3.1 - Local File Inclusion
|
20 |
WEB
|
Number 7
|
|
2012-06-16
|
|
webo site speedup 1.6.1 - Multiple Vulnerabilities
|
19 |
WEB
|
dun
|
|
2012-06-15
|
|
Useresponse 1.0.2 - Privilege Escalation / Remote Code Execution
|
21 |
WEB
|
mr_me
|
|
2012-06-14
|
|
qdPM 7 - Arbitrary File upload
|
20 |
WEB
|
loneferret
|
|
2012-06-14
|
|
Squirrelcart Cart Shop 3.3.4 - Multiple Web Vulnerabilities
|
23 |
WEB
|
Vulnerability-Lab
|
|
2012-06-14
|
|
Swoopo Gold Shop CMS 8.4.56 - Multiple Web Vulnerabilities
|
19 |
WEB
|
Vulnerability-Lab
|
|
2012-06-14
|
|
Cells Blog CMS 1.1 - Multiple Web Vulnerabilities
|
21 |
WEB
|
Vulnerability-Lab
|
|
2012-06-14
|
|
Myre Real Estate Mobile 2012 - Multiple Vulnerabilities
|
26 |
WEB
|
Vulnerability-Lab
|
|
2012-06-13
|
|
WordPress Plugin Foxypress - 'Uploadify.php' Arbitrary Code Execution (Metasploit)
|
22 |
WEB
|
Metasploit
|
|
2012-06-13
|
|
WordPress Plugin Foxypress - 'Uploadify.php' Arbitrary Code Execution (Metasploit)
|
21 |
WEB
|
Metasploit
|
|
2012-06-12
|
|
Symantec Web Gateway 5.0.2.8 - 'ipchange.php' Command Injection (Metasploit)
|
24 |
WEB
|
Metasploit
|
|
2012-06-11
|
|
TheBlog 2.0 - Multiple Vulnerabilities
|
23 |
WEB
|
WhiteCollarGroup
|
|
2012-06-11
|
|
Agora-Project 2.12.11 - Arbitrary File Upload
|
22 |
WEB
|
Misa3l
|
|
2012-06-11
|
|
WordPress Plugin Custom Content Type Manager 0.9.5.13-pl - Arbitrary File Upload
|
28 |
WEB
|
Adrien Thierry
|
|
2012-06-11
|
|
WordPress Plugin drag and drop file upload 0.1 - Arbitrary File Upload
|
20 |
WEB
|
Adrien Thierry
|
|
2012-06-11
|
|
WordPress Plugin Mac Photo Gallery 2.7 - Arbitrary File Upload
|
21 |
WEB
|
Adrien Thierry
|
|
2012-06-11
|
|
WordPress Plugin Pica Photo Gallery 1.0 - Arbitrary File Upload
|
22 |
WEB
|
Adrien Thierry
|
|
2012-06-11
|
|
WordPress Plugin SfBrowser 1.4.5 - Arbitrary File Upload
|
23 |
WEB
|
Adrien Thierry
|
|
2012-06-11
|
|
WordPress Plugin Top Quark Architecture 2.10 - Arbitrary File Upload
|
22 |
WEB
|
Adrien Thierry
|
|
2012-06-11
|
|
WordPress Plugin User Meta 1.1.1 - Arbitrary File Upload
|
21 |
WEB
|
Adrien Thierry
|
|
2012-06-11
|
|
ClanSuite 2.9 - Arbitrary File Upload
|
23 |
WEB
|
Adrien Thierry
|
|
2012-06-11
|
|
WordPress Plugin wp-gpx-map 1.1.21 - Arbitrary File Upload
|
18 |
WEB
|
Adrien Thierry
|
|
2012-06-10
|
|
Symantec Web Gateway 5.0.2.8 - Arbitrary '.PHP' File Upload (Metasploit)
|
20 |
WEB
|
Metasploit
|
|
2012-06-10
|
|
WordPress Plugin Content Flow 3D 1.0.0 - Arbitrary File Upload
|
21 |
WEB
|
g11tch
|
|
2012-06-10
|
|
freepost 0.1 r1 - Multiple Vulnerabilities
|
19 |
WEB
|
ThE g0bL!N
|
|
2012-06-10
|
|
Webspell dailyinput Movie Addon 4.2.x - SQL Injection
|
20 |
WEB
|
Easy Laster
|
|
2012-06-08
|
|
phpAcounts 0.5.3 - SQL Injection
|
17 |
WEB
|
loneferret
|
|
2012-06-08
|
|
WordPress Plugin wpStoreCart 2.5.27-2.5.29 - Arbitrary File Upload
|
19 |
WEB
|
Sammy FORGIT
|
|
2012-06-08
|
|
WordPress Plugin TinyMCE Thumbnail Gallery 1.0.7 - Remote File Disclosure
|
21 |
WEB
|
Sammy FORGIT
|
|
2012-06-08
|
|
WordPress Plugin Thinkun Remind 1.1.3 - Remote File Disclosure
|
23 |
WEB
|
Sammy FORGIT
|
|
2012-06-08
|
|
WordPress Plugin Simple Download Button ShortCode 1.0 - Remote File Disclosure
|
18 |
WEB
|
Sammy FORGIT
|
|
2012-06-08
|
|
WordPress Plugin RBX Gallery 2.1 - Arbitrary File Upload
|
18 |
WEB
|
Sammy FORGIT
|
|
2012-06-08
|
|
WordPress Plugin NewsLetter 1.5 - Remote File Disclosure
|
24 |
WEB
|
Sammy FORGIT
|
|
2012-06-08
|
|
WordPress Plugin PICA Photo Gallery 1.0 - Remote File Disclosure
|
14 |
WEB
|
Sammy FORGIT
|
|
2012-06-08
|
|
WordPress Plugin Easy Contact Forms Export 1.1.0 - Information Disclosure
|
19 |
WEB
|
Sammy FORGIT
|
|
2012-06-08
|
|
WordPress Plugin Front File Manager 0.1 - Arbitrary File Upload
|
18 |
WEB
|
Adrien Thierry
|
|
2012-06-08
|
|
Webspell FIRSTBORN Movie-Addon - Blind SQL Injection
|
18 |
WEB
|
Easy Laster
|
|
2012-06-07
|
|
WordPress Plugin Omni Secure Files 0.1.13 - Arbitrary File Upload
|
21 |
WEB
|
Adrien Thierry
|
|
2012-06-07
|
|
WordPress Plugin Front End Upload 0.5.3 - Arbitrary File Upload
|
21 |
WEB
|
Adrien Thierry
|
|
2012-06-07
|
|
PHPNet 1.8 - 'ler.php' SQL Injection
|
16 |
WEB
|
WhiteCollarGroup
|
|
2012-06-07
|
|
SN News 1.2 - '/admin/loger.php' Authentication Bypass
|
22 |
WEB
|
Yakir Wizman
|
|
2012-06-06
|
|
vanilla kpoll plugin 1.2 - Persistent Cross-Site Scripting
|
22 |
WEB
|
Henry Hoggard
|
|
2012-06-06
|
|
SN News 1.2 - 'visualiza.php' SQL Injection
|
18 |
WEB
|
WhiteCollarGroup
|
|
2012-06-06
|
|
WordPress Plugin Gallery 3.06 - Arbitrary File Upload
|
18 |
WEB
|
Sammy FORGIT
|
|
2012-06-06
|
|
WordPress Plugin MM Forms Community 2.2.6 - Arbitrary File Upload
|
18 |
WEB
|
Sammy FORGIT
|
|
2012-06-06
|
|
WordPress Plugin Font Uploader 1.2.4 - Arbitrary File Upload
|
20 |
WEB
|
Sammy FORGIT
|
|
2012-06-05
|
|
WordPress Plugin Asset Manager 0.2 - Arbitrary File Upload
|
18 |
WEB
|
Sammy FORGIT
|
|
2012-06-05
|
|
WordPress Plugin Foxypress 0.4.1.1 < 0.4.2.1 - Arbitrary File Upload
|
20 |
WEB
|
Sammy FORGIT
|
|
2012-06-05
|
|
WordPress Plugin HTML5 AV Manager 0.2.7 - Arbitrary File Upload
|
19 |
WEB
|
Sammy FORGIT
|
|
2012-06-05
|
|
WordPress Plugin Google Maps via Store Locator 2.7.1 < 3.0.1 - Multiple Vulnerabilities
|
21 |
WEB
|
Sammy FORGIT
|
|
2012-06-05
|
|
WordPress Plugin Marketplace Plugin 1.5.0 < 1.6.1 - Arbitrary File Upload
|
21 |
WEB
|
Sammy FORGIT
|
|
2012-06-05
|
|
WordPress Plugin WP-Property 1.35.0 - Arbitrary File Upload
|
22 |
WEB
|
Sammy FORGIT
|
|
2012-06-05
|
|
pyrocms 2.1.1 - Multiple Vulnerabilities
|
25 |
WEB
|
LiquidWorm
|
|
2012-06-04
|
|
Mnews 1.1 - 'view.php' SQL Injection
|
22 |
WEB
|
WhiteCollarGroup
|
|
2012-06-04
|
|
Hexamail Server 4.4.5 - Persistent Cross-Site Scripting
|
24 |
WEB
|
modpr0be
|
|
2012-06-03
|
|
Vanilla Forums 2.0.18.4 - Tagging Persistent Cross-Site Scripting
|
19 |
WEB
|
Henry Hoggard
|
|
2012-06-03
|
|
vanilla forums poll plugin 0.9 - Persistent Cross-Site Scripting
|
17 |
WEB
|
Henry Hoggard
|
|
2012-06-03
|
|
Log1 CMS - 'writeInfo()' PHP Code Injection (Metasploit)
|
19 |
WEB
|
Metasploit
|
|
2012-06-02
|
|
Vanilla Forum Tagging Plugin Enchanced 1.0.1 - Persistent Cross-Site Scripting
|
18 |
WEB
|
Henry Hoggard
|
|
2012-06-01
|
|
Membris 2.0.1 - Multiple Vulnerabilities
|
21 |
WEB
|
Dr.abolalh
|
|
2012-06-01
|
|
4PSA VoIPNow Professional 2.5.3 - Multiple Vulnerabilities
|
20 |
WEB
|
Aboud-el
|
|
2012-05-31
|
|
Supernews 2.6.1 - 'noticias.php?cat' SQL Injection
|
17 |
WEB
|
Yakir Wizman
|
|
2012-05-31
|
|
NewsAdd 1.0 - 'lerNoticia.php?id' SQL Injection
|
18 |
WEB
|
Yakir Wizman
|
|
2012-05-31
|
|
PHP Volunteer Management System 1.0.2 - Arbitrary File Upload (Metasploit)
|
19 |
WEB
|
Metasploit
|
|
2012-05-30
|
|
Simple Web Content Management System 1.1 < 1.3 - Multiple SQL Injections
|
20 |
WEB
|
loneferret
|
|
2012-05-30
|
|
Ganesha Digital Library 4.0 - Multiple Vulnerabilities
|
21 |
WEB
|
X-Cisadane
|
|
2012-05-30
|
|
NewsAdd 1.0 - Multiple SQL Injections
|
20 |
WEB
|
WhiteCollarGroup
|
|
2012-05-29
|
|
PBBoard 2.1.4 - Multiple SQL Injections
|
19 |
WEB
|
loneferret
|
|
2012-05-28
|
|
PHP Volunteer Management System 1.0.2 - Multiple SQL Injections
|
17 |
WEB
|
loneferret
|
|
2012-05-28
|
|
PHP Volunteer Management System 1.0.2 - Multiple Vulnerabilities
|
19 |
WEB
|
Ashoo
|
|
2012-05-28
|
|
PBBoard 2.1.4 - Local File Inclusion
|
22 |
WEB
|
n4ss1m
|
|
2012-05-27
|
|
b2ePms 1.0 - Multiple SQL Injection Vulnerabilities
|
18 |
WEB
|
loneferret
|
|
2012-05-27
|
|
WeBid - 'converter.php' Remote PHP Code Injection (Metasploit)
|
19 |
WEB
|
Metasploit
|
|
2012-05-26
|
|
Symantec Web Gateway 5.0.2 - Local/Remote File Inclusion / Remote Code Execution
|
23 |
WEB
|
muts
|
|
2012-05-25
|
|
SocialEngine 4.2.2 - Multiple Vulnerabilities
|
18 |
WEB
|
i4k
|
|
2012-05-25
|
|
appRain CMF - Arbitrary '.PHP' File Upload (Metasploit)
|
17 |
WEB
|
Metasploit
|
|
2012-05-24
|
|
Jaow 2.4.5 - Blind SQL Injection
|
18 |
WEB
|
kallimero
|
|
2012-05-21
|
|
Supernews 2.6.1 - SQL Injection
|
21 |
WEB
|
WhiteCollarGroup
|
|
2012-05-21
|
|
Vanilla FirstLastNames 1.3.2 Plugin - Persistent Cross-Site Scripting
|
18 |
WEB
|
Henry Hoggard
|
|
2012-05-21
|
|
Vanilla Forums About Me Plugin - Persistent Cross-Site Scripting
|
23 |
WEB
|
Henry Hoggard
|
|
2012-05-18
|
|
Vanilla Forums LatestComment 1.1 Plugin - Persistent Cross-Site Scripting
|
18 |
WEB
|
Henry Hoggard
|
|
2012-05-19
|
|
FreeNAC 3.02 - SQL Injection / Cross-Site Scripting
|
22 |
WEB
|
blake
|
|
2012-05-19
|
|
PHP Address Book 7.0.0 - Multiple Vulnerabilities
|
18 |
WEB
|
Stefan Schurtz
|
|
2012-05-16
|
|
Artiphp CMS 5.5.0 - Database Backup Disclosure
|
19 |
WEB
|
LiquidWorm
|
|
2012-01-03
|
|
OpenKM Document Management System 5.1.7 - Command Execution
|
24 |
WEB
|
Cyrill Brunschwiler
|
|
2012-05-16
|
|
Axous 1.1.1 - Cross-Site Request Forgery / Persistent Cross-Site Scripting
|
19 |
WEB
|
Ivano Binetti
|
|
2012-05-08
|
|
S9Y Serendipity 1.6 - 'Backend' Cross-Site Scripting / SQL Injection
|
19 |
WEB
|
Stefan Schurtz
|
|
2012-05-15
|
|
b2ePms 1.0 - Authentication Bypass
|
19 |
WEB
|
Jean Pascal Pereira
|
|
2012-05-13
|
|
Liferay Portal 6.0.x < 6.1 - Privilege Escalation
|
16 |
WEB
|
Jelmer Kuperus
|
|
2012-05-13
|
|
Galette - 'picture.php' SQL Injection
|
21 |
WEB
|
sbz
|
|
2012-05-13
|
|
Free Realty 3.1-0.6 - Multiple Vulnerabilities
|
20 |
WEB
|
Vulnerability-Lab
|
|
2012-05-13
|
|
Viscacha Forum CMS 0.8.1.1 - Multiple Vulnerabilities
|
19 |
WEB
|
Vulnerability-Lab
|
|
2012-05-13
|
|
Proman Xpress 5.0.1 - Multiple Vulnerabilities
|
20 |
WEB
|
Vulnerability-Lab
|
|
2012-05-13
|
|
Travelon Express CMS 6.2.2 - Multiple Vulnerabilities
|
18 |
WEB
|
Vulnerability-Lab
|
|
2012-05-12
|
|
Sockso 1.51 - Persistent Cross-Site Scripting
|
19 |
WEB
|
Ciaran McNally
|
|
2012-05-12
|
|
WikkaWiki 1.3.2 - Spam Logging PHP Injection (Metasploit)
|
19 |
WEB
|
Metasploit
|
|
2012-05-11
|
|
Belkin N150 Wireless Router - Password Disclosure
|
18 |
WEB
|
Avinash Tangirala
|
|
2012-05-10
|
|
eLearning server 4g - Multiple Vulnerabilities
|
21 |
WEB
|
Andrey Komarov
|
|
2012-05-10
|
|
Kerio WinRoute Firewall Web Server < 6 - Source Code Disclosure
|
20 |
WEB
|
Andrey Komarov
|
|
2012-05-09
|
|
X7 Chat 2.0.5.1 - Cross-Site Request Forgery (Add Admin)
|
19 |
WEB
|
DennSpec
|
|
2012-05-07
|
|
PHP Agenda 2.2.8 - SQL Injection
|
20 |
WEB
|
loneferret
|
