|
2010-09-29
|
|
MyPhpAuction 2010 - 'id' SQL Injection
|
15 |
WEB
|
h4ck3r
|
|
2010-09-29
|
|
Webspell 4.x - safe_query Bypass
|
21 |
WEB
|
silent vapor
|
|
2010-09-29
|
|
Webspell wCMS-Clanscript4.01.02net - static Blind SQL Injection
|
20 |
WEB
|
Easy Laster
|
|
2010-09-29
|
|
Webspell 4.2.1 - 'asearch.php' SQL Injection
|
18 |
WEB
|
silent vapor
|
|
2010-09-28
|
|
Micro CMS 1.0 b1 - Persistent Cross-Site Scripting
|
16 |
WEB
|
SecPod Research
|
|
2010-09-28
|
|
Achievo 1.4.3 - Cross-Site Request Forgery
|
20 |
WEB
|
Pablo Milano
|
|
2010-09-28
|
|
Achievo 1.4.3 - Multiple Authorisation Vulnerabilities
|
22 |
WEB
|
Pablo Milano
|
|
2010-09-28
|
|
Aleza Portal 1.6 - Insecure SQL Injection / Cookie Handling
|
16 |
WEB
|
KnocKout
|
|
2010-09-28
|
|
e107 0.7.23 - SQL Injection
|
19 |
WEB
|
High-Tech Bridge SA
|
|
2010-09-28
|
|
JE CMS 1.0.0 - Authentication Bypass
|
18 |
WEB
|
Abysssec
|
|
2010-09-28
|
|
AtomatiCMS - Upload Arbitrary File
|
21 |
WEB
|
Abysssec
|
|
2010-09-27
|
|
Car Portal 2.0 - Blind SQL Injection
|
22 |
WEB
|
**RoAd_KiLlEr**
|
|
2010-09-27
|
|
Barracuda Networks Spam & Virus Firewall 4.1.1.021 - Remote Configuration Retrieval
|
18 |
WEB
|
ShadowHatesYou
|
|
2010-09-27
|
|
Allpc 2.5 osCommerce - SQL Injection / Cross-Site Scripting
|
18 |
WEB
|
**RoAd_KiLlEr**
|
|
2010-09-27
|
|
Entrans - SQL Injection
|
15 |
WEB
|
keracker
|
|
2010-09-27
|
|
ndCMS - SQL Injection
|
21 |
WEB
|
Abysssec
|
|
2010-09-27
|
|
pbboard 2.1.1 - Multiple Vulnerabilities
|
20 |
WEB
|
JIKO
|
|
2010-09-26
|
|
Blue River Mura CMS - Directory Traversal
|
20 |
WEB
|
mr_me
|
|
2010-09-26
|
|
PEEL Premium 5.71 - SQL Injection
|
22 |
WEB
|
KnocKout
|
|
2010-09-26
|
|
gokhun asp stok 1.0 - Multiple Vulnerabilities
|
18 |
WEB
|
KnocKout
|
|
2010-09-26
|
|
ZenPhoto - Config Update / Command Execution
|
21 |
WEB
|
Abysssec
|
|
2010-09-25
|
|
E-Xoopport Samsara 3.1 (eCal Module) - Blind SQL Injection
|
19 |
WEB
|
_mRkZ_
|
|
2010-09-25
|
|
VisualSite CMS 1.3 - Multiple Vulnerabilities
|
18 |
WEB
|
Abysssec
|
|
2010-09-24
|
|
Traidnt UP - Cross-Site Request Forgery (Add Admin)
|
18 |
WEB
|
John Johnz
|
|
2010-09-24
|
|
Joomla! Component Elite Experts - SQL Injection
|
22 |
WEB
|
**RoAd_KiLlEr**
|
|
2010-09-24
|
|
FreePBX 2.8.0 - Recordings Interface Allows Remote Code Execution
|
16 |
WEB
|
Trustwave's SpiderLabs
|
|
2010-09-24
|
|
Collaborative Passwords Manager 1.07 - Multiple Local File Inclusions
|
17 |
WEB
|
sh00t0ut
|
|
2010-09-23
|
|
OvBB 0.16a - Multiple Local File Inclusions
|
25 |
WEB
|
cOndemned
|
|
2010-09-23
|
|
GeekLog 1.3.8 (filemgmt) - SQL Injection
|
18 |
WEB
|
Gamoscu
|
|
2010-09-23
|
|
WAnewsletter 2.1.2 - SQL Injection
|
17 |
WEB
|
BrOx-Dz
|
|
2010-09-22
|
|
Joomla! Component Joostina - SQL Injection
|
19 |
WEB
|
Gamoscu
|
|
2010-09-22
|
|
Joomla! Component TimeTrack 1.2.4 - Multiple SQL Injections
|
18 |
WEB
|
Salvatore Fresta
|
|
2010-09-22
|
|
BSI Hotel Booking System Admin 1.4/2.0 - Authentication Bypass
|
20 |
WEB
|
K-159
|
|
2010-09-22
|
|
Skybluecanvas 1.1-r248 - Cross-Site Request Forgery
|
19 |
WEB
|
Sweet
|
|
2010-09-22
|
|
gausCMS - Multiple Vulnerabilities
|
20 |
WEB
|
Abysssec
|
|
2010-09-21
|
|
wpQuiz 2.7 - Authentication Bypass
|
16 |
WEB
|
KnocKout
|
|
2010-09-21
|
|
ibPhotohost 1.1.2 - SQL Injection
|
17 |
WEB
|
fred777
|
|
2010-09-21
|
|
Personal.Net Portal - Multiple Vulnerabilities
|
21 |
WEB
|
Abysssec
|
|
2010-09-20
|
|
primitive CMS 1.0.9 - Multiple Vulnerabilities
|
22 |
WEB
|
Stephan Sattler
|
|
2010-09-20
|
|
LightNEasy CMS 3.2.1 - Blind SQL Injection
|
19 |
WEB
|
Solidmedia
|
|
2010-09-20
|
|
VWD-CMS - Cross-Site Request Forgery
|
22 |
WEB
|
Abysssec
|
|
2010-09-19
|
|
Opencart 1.4.9.1 - Arbitrary File Upload
|
21 |
WEB
|
Net.Edit0r
|
|
2010-09-19
|
|
BoutikOne 1.0 - SQL Injection
|
20 |
WEB
|
BrOx-Dz
|
|
2010-09-19
|
|
Fashione E-Commerce Webshop - Multiple SQL Injections
|
20 |
WEB
|
secret
|
|
2010-09-19
|
|
jmd-cms - Multiple Vulnerabilities
|
19 |
WEB
|
Abysssec
|
|
2010-09-18
|
|
Maian Gallery 2 - Local File Download
|
16 |
WEB
|
mr_me
|
|
2010-09-18
|
|
Joomla! Component Restaurant Guide 1.0.0 - Multiple Vulnerabilities
|
20 |
WEB
|
Valentin
|
|
2010-09-18
|
|
xt:Commerce Gambio 2008 < 2010 - 'reviews.php' Error-Based SQL Injection
|
23 |
WEB
|
secret
|
|
2010-09-18
|
|
CMSimple - Cross-Site Request Forgery
|
18 |
WEB
|
Abysssec
|
|
2010-09-17
|
|
phpMyFamily - Multiple Vulnerabilities
|
22 |
WEB
|
Abysssec
|
|
2010-09-16
|
|
mojoportal - Multiple Vulnerabilities
|
18 |
WEB
|
Abysssec
|
|
2010-09-15
|
|
PixelPost 1.7.3 - Multiple Vulnerabilities
|
23 |
WEB
|
Sweet
|
|
2010-09-15
|
|
PHP microcms 1.0.1 - Multiple Vulnerabilities
|
21 |
WEB
|
Abysssec
|
|
2010-09-15
|
|
eNdonesia 8.4 - SQL Injection
|
19 |
WEB
|
vYc0d
|
|
2010-09-14
|
|
E-Xoopport Samsara 3.1 (Sections Module) - Blind SQL Injection
|
20 |
WEB
|
_mRkZ_
|
|
2010-09-14
|
|
freediscussionforums 1.0 - Multiple Vulnerabilities
|
20 |
WEB
|
Abysssec
|
|
2010-09-14
|
|
Joomla! Component JGen 0.9.33 - SQL Injection
|
24 |
WEB
|
**RoAd_KiLlEr**
|
|
2010-09-13
|
|
UCenter Home 2.0 - SQL Injection
|
24 |
WEB
|
KnocKout
|
|
2010-09-13
|
|
Storyteller CMS - 'var' Local File Inclusion
|
21 |
WEB
|
h4ck3r
|
|
2010-09-13
|
|
Joomla! Component com_mtree 2.1.5 - Arbitrary File Upload
|
28 |
WEB
|
jdc
|
|
2010-09-13
|
|
Luftguitar CMS - Upload Arbitrary File
|
22 |
WEB
|
Abysssec
|
|
2010-09-13
|
|
osDate - 'uploadvideos.php' Arbitrary File Upload
|
19 |
WEB
|
Xa7m3d
|
|
2010-09-13
|
|
Group Office 3.5.9 - SQL Injection
|
18 |
WEB
|
ViciOuS
|
|
2010-09-12
|
|
Alstrasoft AskMe Pro 2.1 - 'profile.php' SQL Injection
|
18 |
WEB
|
CoBRa_21
|
|
2010-09-12
|
|
System Shop - 'Module aktka' SQL Injection
|
22 |
WEB
|
secret
|
|
2010-09-12
|
|
eshtery CMS - SQL Injection
|
18 |
WEB
|
Abysssec
|
|
2010-09-12
|
|
MyHobbySite 1.01 - SQL Injection / Authentication Bypass
|
18 |
WEB
|
YuGj VN
|
|
2010-09-11
|
|
piwigo-2.1.2 - Multiple Vulnerabilities
|
19 |
WEB
|
Sweet
|
|
2010-09-11
|
|
ASP Nuke - SQL Injection
|
20 |
WEB
|
Abysssec
|
|
2010-09-10
|
|
symphony 2.0.7 - Multiple Vulnerabilities
|
19 |
WEB
|
JosS
|
|
2010-09-10
|
|
fcms 2.2.3 - Remote File Inclusion
|
19 |
WEB
|
LoSt.HaCkEr
|
|
2010-09-10
|
|
Joomla! Component Jphone 1.0 Alpha 3 - Local File Inclusion
|
16 |
WEB
|
Chip d3 bi0s
|
|
2010-09-09
|
|
CS-Cart 1.3.3 - 'install.php' Cross-Site Scripting
|
19 |
WEB
|
crmpays
|
|
2010-09-09
|
|
ES Simple Download 1.0. - Local File Inclusion
|
20 |
WEB
|
Kazza
|
|
2010-09-09
|
|
aradblog - Multiple Vulnerabilities
|
20 |
WEB
|
Abysssec
|
|
2010-09-09
|
|
Visitors Google Map Lite 1.0.1 Free mod_visitorsgooglemap Module - SQL Injection
|
22 |
WEB
|
Chip d3 bi0s
|
|
2010-09-09
|
|
festos CMS 2.3b - Multiple Vulnerabilities
|
20 |
WEB
|
Abysssec
|
|
2010-09-08
|
|
sirang web-based d-control - Multiple Vulnerabilities
|
24 |
WEB
|
Abysssec
|
|
2010-09-07
|
|
1024 CMS 2.1.1 - Blind SQL Injection
|
21 |
WEB
|
Stephan Sattler
|
|
2010-09-07
|
|
ColdUserGroup 1.06 - Blind SQL Injection
|
18 |
WEB
|
mr_me
|
|
2010-09-07
|
|
ColdOfficeView 2.04 - Multiple Blind SQL Injections
|
21 |
WEB
|
mr_me
|
|
2010-09-07
|
|
ColdBookmarks 1.22 - SQL Injection
|
17 |
WEB
|
mr_me
|
|
2010-09-07
|
|
ColdCalendar 2.06 - SQL Injection
|
21 |
WEB
|
mr_me
|
|
2010-09-07
|
|
java Bridge 5.5 - Directory Traversal
|
20 |
WEB
|
Saxtor
|
|
2010-09-07
|
|
dynpage 1.0 - Multiple Vulnerabilities
|
19 |
WEB
|
Abysssec
|
|
2010-09-06
|
|
WordPress Plugin Events Manager Extended - Persistent Cross-Site Scripting
|
24 |
WEB
|
Craw
|
|
2010-09-06
|
|
Joomla! Component Aardvertiser 2.1 - Blind SQL Injection
|
23 |
WEB
|
Stephan Sattler
|
|
2010-09-06
|
|
Micronetsoft Rental Property Management Website - SQL Injection
|
20 |
WEB
|
L0rd CrusAd3r
|
|
2010-09-06
|
|
InterPhoto Gallery - Multiple Vulnerabilities
|
20 |
WEB
|
Abysssec
|
|
2010-09-06
|
|
Micronetsoft RV Dealer Website - SQL Injection
|
20 |
WEB
|
L0rd CrusAd3r
|
|
2010-09-06
|
|
DMXReady Members Area Manager - Persistent Cross-Site Scripting
|
18 |
WEB
|
L0rd CrusAd3r
|
|
2010-09-05
|
|
Joomla! Component Gantry 3.0.10 - Blind SQL Injection
|
24 |
WEB
|
jdc
|
|
2010-09-05
|
|
Softbiz Article Directory Script - 'sbiz_id' Blind SQL Injection
|
21 |
WEB
|
h4ck3r
|
|
2010-09-05
|
|
DMXready Polling Booth Manager - SQL Injection
|
21 |
WEB
|
L0rd CrusAd3r
|
|
2010-09-05
|
|
Joomla! Component Clantools 1.2.3 - Multiple Blind SQL Injections
|
19 |
WEB
|
Solidmedia
|
|
2010-09-05
|
|
Joomla! Component Clantools 1.5 - Blind SQL Injection
|
17 |
WEB
|
Solidmedia
|
|
2010-09-05
|
|
ifnuke - Multiple Vulnerabilities
|
24 |
WEB
|
Abysssec
|
|
2010-09-05
|
|
ChillyCMS 1.1.3 - Multiple Vulnerabilities
|
16 |
WEB
|
AmnPardaz
|
|
2010-09-05
|
|
Joomla! Component iJoomla! Magazine 3.0.1 - Remote File Inclusion
|
17 |
WEB
|
LoSt.HaCkEr
|
|
2010-09-05
|
|
A-Blog 2.0 - '/sources/search.php' SQL Injection
|
21 |
WEB
|
Ptrace Security
|
|
2010-09-04
|
|
PHP Classifieds 7.3 - Remote File Inclusion
|
20 |
WEB
|
alsa7r
|
|
2010-09-04
|
|
PHP Classifieds ADS - 'sid' Blind SQL Injection
|
18 |
WEB
|
h4ck3r
|
|
2010-09-04
|
|
mBlogger 1.0.04 - 'addcomment.php' Persistent Cross-Site Scripting
|
21 |
WEB
|
Ptrace Security
|
|
2010-09-04
|
|
SyndeoCMS 2.8.02 - Multiple Vulnerabilities (1)
|
22 |
WEB
|
Abysssec
|
|
2010-09-03
|
|
smbind 0.4.7 - SQL Injection
|
18 |
WEB
|
r00t
|
|
2010-09-03
|
|
visinia 1.3 - Multiple Vulnerabilities
|
19 |
WEB
|
Abysssec
|
|
2010-09-02
|
|
Shop a la Cart - Multiple Vulnerabilities
|
19 |
WEB
|
Ariko-Security
|
|
2010-09-02
|
|
rainbowportal - Multiple Vulnerabilities
|
19 |
WEB
|
Abysssec
|
|
2010-09-02
|
|
vbShout 5.2.2 - Local/Remote File Inclusion
|
18 |
WEB
|
fred777
|
|
2010-09-01
|
|
PHP Joke Site Software - 'sbjoke_id' SQL Injection
|
16 |
WEB
|
h4ck3r
|
|
2010-09-01
|
|
Cpanel PHP - Restriction Bypass
|
18 |
WEB
|
Abysssec
|
|
2010-09-01
|
|
dompdf 0.6.0 beta1 - Remote File Inclusion
|
18 |
WEB
|
Andre_Corleone
|
|
2010-08-31
|
|
mBlogger 1.0.04 - 'viewpost.php' SQL Injection
|
18 |
WEB
|
Ptrace Security
|
|
2010-08-31
|
|
Web-Ideas Web Shop Standard - SQL Injection
|
17 |
WEB
|
Ariko-Security
|
|
2010-08-31
|
|
Joomla! Component JE FAQ Pro 1.5.0 - Multiple Blind SQL Injections
|
14 |
WEB
|
Chip d3 bi0s
|
|
2010-08-30
|
|
Joomla! Component PicSell 1.0 - Local File Disclosure
|
16 |
WEB
|
Craw
|
|
2010-08-30
|
|
seagull 0.6.7 - Remote File Inclusion
|
15 |
WEB
|
FoX HaCkEr
|
|
2010-08-29
|
|
GuestBookPlus - HTML Injection / Bypass Comments Limit
|
19 |
WEB
|
MiND C0re
|
|
2010-08-29
|
|
Seagull 0.6.7 - SQL Injection
|
19 |
WEB
|
Sweet
|
|
2010-08-29
|
|
CF Image Hosting Script 1.3.8 - Remote File Inclusion
|
16 |
WEB
|
FoX HaCkEr
|
|
2010-08-29
|
|
Multi-lingual E-Commerce System 0.2 - Multiple Remote File Inclusions
|
19 |
WEB
|
JosS
|
|
2010-08-29
|
|
Max's Guestbook - HTML Injection / Cross-Site Scripting
|
20 |
WEB
|
MiND C0re
|
|
2010-08-29
|
|
vBulletin 3.8.4/3.8.5 - Registration Bypass
|
17 |
WEB
|
Immortal Boy
|
|
2010-08-28
|
|
CF Image Hosting Script 1.3 - 'settings.cdb' Information Disclosure
|
16 |
WEB
|
Dr.$audi
|
|
2010-08-28
|
|
XOOPS 2.0.14 - 'article.php' SQL Injection
|
18 |
WEB
|
[]0iZy5
|
