|
2010-08-19
|
|
vbbuletin 4.0.4 - Multiple Vulnerabilities
|
7 |
WEB
|
mc2_s3lector
|
|
2010-08-18
|
|
Open-Realty 2.5.7 - Local File Disclosure
|
8 |
WEB
|
Nikola Petrov
|
|
2010-08-17
|
|
Free Simple Software 1.0 - Remote File Inclusion
|
9 |
WEB
|
Dr.$audi
|
|
2010-08-16
|
|
Joomla! Component com_ongallery - SQL Injection
|
8 |
WEB
|
al bayraqim
|
|
2010-08-16
|
|
Joomla! Component com_jgrid 1.0 - Local File Inclusion
|
8 |
WEB
|
Salvatore Fresta
|
|
2010-08-16
|
|
Joomla! Component com_equipment - SQL Injection
|
8 |
WEB
|
Forza-Dz
|
|
2010-08-15
|
|
CMSQLite 1.2 / CMySQLite 1.3.1 - Remote Code Execution
|
8 |
WEB
|
BlackHawk
|
|
2010-08-15
|
|
Zomplog 3.9 - Cross-Site Scripting / Cross-Site Request Forgery
|
8 |
WEB
|
10n1z3d
|
|
2010-08-15
|
|
Guestbook Script PHP - Cross-Site Scripting / HTML Injection
|
8 |
WEB
|
AnTi SeCuRe
|
|
2010-08-15
|
|
PHP-Fusion - Local File Inclusion
|
8 |
WEB
|
MoDaMeR
|
|
2010-08-14
|
|
Sports Accelerator Suite 2.0 - 'news_id' SQL Injection
|
7 |
WEB
|
LiquidWorm
|
|
2010-08-14
|
|
Saurus CMS Admin Panel - Multiple Cross-Site Request Forgery Vulnerabilities
|
8 |
WEB
|
Fady Mohammed Osman
|
|
2010-08-14
|
|
sFileManager 24a - Local File Inclusion
|
8 |
WEB
|
Pepelux
|
|
2010-08-14
|
|
ACollab - Multiple Vulnerabilities
|
8 |
WEB
|
AmnPardaz
|
|
2010-08-13
|
|
MailForm 1.2 - Remote File Inclusion
|
8 |
WEB
|
LoSt.HaCkEr
|
|
2010-08-13
|
|
Get Tube - SQL Injection
|
8 |
WEB
|
Mr.P3rfekT
|
|
2010-08-13
|
|
Plogger - Remote File Disclosure
|
7 |
WEB
|
Mr.tro0oqy
|
|
2010-08-12
|
|
Kleeja Upload - Cross-Site Request Forgery (Change Admin Password)
|
8 |
WEB
|
KOLTN S
|
|
2010-08-12
|
|
PHP-Nuke 8.1 SEO Arabic - Remote File Inclusion
|
8 |
WEB
|
LoSt.HaCkEr
|
|
2010-08-11
|
|
KnowledgeTree 3.5.2 Community Edition - Persistent Cross-Site Scripting
|
8 |
WEB
|
fdiskyou
|
|
2010-08-11
|
|
Saurus CMS 4.7.0 - Remote File Inclusion
|
8 |
WEB
|
LoSt.HaCkEr
|
|
2010-08-11
|
|
Apache JackRabbit 2.0.0 - webapp XPath Injection
|
8 |
WEB
|
ADEO Security
|
|
2010-08-11
|
|
phpMUR - Remote File Disclosure
|
7 |
WEB
|
Offensive
|
|
2010-08-11
|
|
clearBudget 0.9.8 - Remote File Inclusion
|
7 |
WEB
|
Offensive
|
|
2010-08-10
|
|
Zendesk - Multiple Vulnerabilities
|
8 |
WEB
|
Luis Santana
|
|
2010-08-10
|
|
Joomla! Component Teams - Multiple Blind SQL Injections
|
8 |
WEB
|
Salvatore Fresta
|
|
2010-08-10
|
|
Joomla! Component Amblog 1.0 - Multiple SQL Injections
|
8 |
WEB
|
Salvatore Fresta
|
|
2010-08-09
|
|
wizmall 6.4 - Cross-Site Request Forgery
|
8 |
WEB
|
pyw1414
|
|
2010-08-09
|
|
Joomla! Component com_yellowpages - SQL Injection
|
8 |
WEB
|
al bayraqim
|
|
2010-08-09
|
|
PHP-Nuke 8.x - Blind SQL Injection
|
8 |
WEB
|
ITSecTeam
|
|
2010-08-09
|
|
kleeja 1.0.0RC6 - Database Disclosure
|
8 |
WEB
|
indoushka
|
|
2010-08-08
|
|
PHPKick 0.8 - 'Statistics.php' SQL Injection
|
8 |
WEB
|
garwga
|
|
2010-08-07
|
|
Tycoon CMS Record Script 1.0.9 - SQL Injection
|
8 |
WEB
|
Silic0n
|
|
2010-08-07
|
|
Joomla! Component NeoRecruit 1.4 - SQL Injection
|
8 |
WEB
|
v3n0m
|
|
2010-08-06
|
|
Joomla! Component com_cgtestimonial 2.2 - Multiple Vulnerabilities
|
9 |
WEB
|
Salvatore Fresta
|
|
2010-08-05
|
|
DiamondList 0.1.6 - Cross-Site Request Forgery
|
8 |
WEB
|
High-Tech Bridge SA
|
|
2010-08-05
|
|
Amethyst 0.1.5 - Cross-Site Scripting
|
8 |
WEB
|
High-Tech Bridge SA
|
|
2010-08-05
|
|
BXR 0.6.8 - Cross-Site Request Forgery
|
7 |
WEB
|
High-Tech Bridge SA
|
|
2010-08-05
|
|
Open Blog 1.2.1 - Cross-Site Request Forgery
|
8 |
WEB
|
High-Tech Bridge SA
|
|
2010-08-05
|
|
ccTiddly 1.7.6 - Multiple Remote File Inclusions
|
7 |
WEB
|
eidelweiss
|
|
2010-08-05
|
|
APBoard 2.1.0 - 'board.php?id' SQL Injection
|
8 |
WEB
|
secret
|
|
2010-08-05
|
|
sX-Shop - Multiple SQL Injections
|
8 |
WEB
|
CoBRa_21
|
|
2010-08-05
|
|
sX-Shop - 'view_image.php' SQL Injection
|
8 |
WEB
|
secret
|
|
2010-08-05
|
|
Nuked-klaN Module Partenaires NK 1.5 - Blind SQL Injection
|
8 |
WEB
|
Metropolis
|
|
2010-08-03
|
|
HP OpenView Network Node Manager (OV NNM) 7.53 - 'OvJavaLocale' Buffer Overflow
|
9 |
WEB
|
Nahuel Riva
|
|
2010-08-03
|
|
WordPress Plugin NextGEN Smooth Gallery 0.12 - Blind SQL Injection
|
7 |
WEB
|
kaMtiEz
|
|
2010-08-03
|
|
68KB 1.0.0rc4 - Remote File Inclusion
|
9 |
WEB
|
eidelweiss
|
|
2010-08-02
|
|
MyIT CRM - Multiple Cross-Site Scripting Vulnerabilities
|
8 |
WEB
|
Juan Manuel Garcia
|
|
2010-08-02
|
|
Joomla! Component CamelcityDB 2.2 - SQL Injection
|
8 |
WEB
|
Amine_92
|
|
2010-08-02
|
|
APT-WEBSHOP-SYSTEM - 'modules.php' SQL Injection
|
10 |
WEB
|
secret
|
|
2010-08-02
|
|
SnoGrafx - 'cat.php?cat' SQL Injection
|
9 |
WEB
|
CoBRa_21
|
|
2010-08-01
|
|
Intellinet IP Camera MNC-L10 - Authentication Bypass
|
8 |
WEB
|
Magnefikko
|
|
2010-07-31
|
|
Joomla! Component com_spielothek 1.6.9 - Multiple Blind SQL Injections
|
7 |
WEB
|
Salvatore Fresta
|
|
2010-07-31
|
|
Concept E-Commerce - SQL Injection
|
8 |
WEB
|
gendenk
|
|
2010-07-29
|
|
Joomla! Component com_beamospetition - SQL Injection
|
8 |
WEB
|
Forza-Dz
|
|
2010-07-29
|
|
Joomla! Component com_SimpleShop - SQL Injection
|
8 |
WEB
|
UnD3rGr0unD W4rri0rZ
|
|
2010-07-29
|
|
Whizzy CMS 10.02 - Local File Inclusion
|
8 |
WEB
|
Anarchy Angel
|
|
2010-07-29
|
|
Joomla! Component com_pbbooking 1.0.4_3 - Multiple Blind SQL Injections
|
8 |
WEB
|
Salvatore Fresta
|
|
2010-07-28
|
|
Joomla! Component com_photomapgallery 1.6.0 - Multiple Blind SQL Injections
|
8 |
WEB
|
Salvatore Fresta
|
|
2010-07-28
|
|
AV Arcade 3 - Cookie Authentication Bypass
|
8 |
WEB
|
saudi0hacker
|
|
2010-07-28
|
|
nuBuilder - Remote File Inclusion
|
8 |
WEB
|
Ahlspiess
|
|
2010-07-27
|
|
Joomla! Component com_appointinator 1.0.1 - Multiple Vulnerabilities
|
8 |
WEB
|
Salvatore Fresta
|
|
2010-07-27
|
|
nuBuilder 10.04.20 - Local File Inclusion
|
8 |
WEB
|
John Leitch
|
|
2010-07-27
|
|
PunBB 1.3.4 / Pun_PM 1.2.6 - Blind SQL Injection
|
8 |
WEB
|
Dante90
|
|
2010-07-27
|
|
Joomla! Component TTVideo 1.0 - SQL Injection
|
8 |
WEB
|
Salvatore Fresta
|
|
2010-07-26
|
|
Joomla! Component Visites 1.1 RC2 - Remote File Inclusion
|
8 |
WEB
|
Li0n-PaL
|
|
2010-07-26
|
|
Freeway CMS 1.4.3.210 - SQL Injection
|
8 |
WEB
|
**RoAd_KiLlEr**
|
|
2010-07-25
|
|
WhiteBoard 0.1.30 - Multiple Blind SQL Injections
|
8 |
WEB
|
Salvatore Fresta
|
|
2010-07-25
|
|
CMS Ignition - SQL Injection
|
8 |
WEB
|
neavorc
|
|
2010-07-25
|
|
Ballettin Forum - SQL Injection
|
8 |
WEB
|
3v0
|
|
2010-07-25
|
|
XAOS CMS - SQL Injection
|
8 |
WEB
|
H-SK33PY
|
|
2010-07-24
|
|
Joomla! Component YouTube 1.5 - SQL Injection
|
7 |
WEB
|
Forza-Dz
|
|
2010-07-24
|
|
Joomla! Component Joomdle 0.24 - SQL Injection
|
7 |
WEB
|
kaMtiEz
|
|
2010-07-24
|
|
sNews 1.7 - 'index.php?category' SQL Injection
|
8 |
WEB
|
CoBRa_21
|
|
2010-07-24
|
|
Joomla! Component com_itarmory - SQL Injection
|
8 |
WEB
|
Craw
|
|
2010-07-24
|
|
Joomla! Component Ozio Gallery - SQL Injection
|
8 |
WEB
|
ViRuS Qalaa
|
|
2010-07-24
|
|
AKY Blog - SQL Injection
|
8 |
WEB
|
v0calist
|
|
2010-07-24
|
|
Open Realty 2.x/3.x - Persistent Cross-Site Scripting
|
8 |
WEB
|
K053
|
|
2010-07-24
|
|
sNews - 'index.php' SQL Injection
|
8 |
WEB
|
MajoR
|
|
2010-07-24
|
|
DM FileManager 3.9.11 - Arbitrary File Upload
|
8 |
WEB
|
eidelweiss
|
|
2010-07-24
|
|
vBulletin 3.8.6 - 'faq.php' Information Disclosure
|
9 |
WEB
|
H-SK33PY
|
|
2010-07-23
|
|
ValidForm Builder script - Remote Command Execution
|
8 |
WEB
|
HaCkEr arar
|
|
2010-07-23
|
|
PhotoPost PHP 4.6.5 - 'ecard.php' SQL Injection
|
8 |
WEB
|
CoBRa_21
|
|
2010-07-23
|
|
Joomla! Component com_iproperty - SQL Injection
|
8 |
WEB
|
Amine_92
|
|
2010-07-23
|
|
Joomla! Component Huru Helpdesk - SQL Injection (2)
|
8 |
WEB
|
Amine_92
|
|
2010-07-23
|
|
Joomla! Component Golf Course Guide 0.9.6.0 - SQL Injection
|
8 |
WEB
|
Valentin
|
|
2010-07-23
|
|
PhotoPost - PHP SQL Injection
|
8 |
WEB
|
Cyber-sec
|
|
2010-07-23
|
|
ZeeMatri 3.x - Arbitrary File Upload
|
7 |
WEB
|
SONIC
|
|
2010-07-23
|
|
ZeeNetworking 1x - Arbitrary File Upload
|
8 |
WEB
|
SONIC
|
|
2010-07-23
|
|
LILDBI - Arbitrary File Upload
|
8 |
WEB
|
EraGoN
|
|
2010-07-23
|
|
ZeeAdbox 2.x - SQL Injection
|
8 |
WEB
|
SONIC
|
|
2010-07-22
|
|
WordPress Plugin myLDlinker - SQL Injection
|
8 |
WEB
|
H-SK33PY
|
|
2010-07-22
|
|
phpBB MOD 2.0.19 - Invitation Only (PassCode Bypass)
|
7 |
WEB
|
Silic0n
|
|
2010-07-22
|
|
phpBazar Admin - Information Disclosure
|
7 |
WEB
|
Net_Spy
|
|
2010-07-22
|
|
Free PHP Photo Gallery Script - Remote File Inclusion
|
7 |
WEB
|
ViRuS Qalaa
|
|
2010-07-22
|
|
Free PHP photo Gallery script - Remote Command Execution
|
7 |
WEB
|
ViRuS Qalaa
|
|
2010-07-22
|
|
AJ HYIP MERIDIAN - 'news.php?id' Blind SQL Injection
|
8 |
WEB
|
JosS
|
|
2010-07-22
|
|
AJ HYIP PRIME - 'welcome.php?id' Blind SQL Injection
|
7 |
WEB
|
JosS
|
|
2010-07-22
|
|
Joomla! Component com_jomtube - 'user_id' Blind SQL Injection
|
7 |
WEB
|
SixP4ck3r
|
|
2010-07-21
|
|
OpenX - 'phpAdsNew' Remote File Inclusion
|
8 |
WEB
|
ViRuS Qalaa
|
|
2010-07-21
|
|
RapidLeech Scripts - Arbitrary File Upload
|
8 |
WEB
|
H-SK33PY
|
|
2010-07-21
|
|
Outlook Web Access 2003 - Cross-Site Request Forgery
|
8 |
WEB
|
anonymous
|
|
2010-07-21
|
|
Imagine-cms 2.50 - SQL Injection
|
7 |
WEB
|
Metropolis
|
|
2010-07-20
|
|
PHP Chat for 123 Flash Chat - Remote File Inclusion
|
8 |
WEB
|
HaCkEr arar
|
|
2010-07-20
|
|
Joomla! Component com_spa - SQL Injection (1)
|
8 |
WEB
|
ALTBTA
|
|
2010-07-20
|
|
Mayasan Portal 2.0 - 'haberdetay.asp' SQL Injection
|
8 |
WEB
|
CoBRa_21
|
|
2010-07-20
|
|
Mayasan Portal 2.0 - 'makaledetay.asp' SQL Injection
|
8 |
WEB
|
v0calist
|
|
2010-07-20
|
|
Caner Hikaye Script - SQL Injection
|
8 |
WEB
|
v0calist
|
|
2010-07-20
|
|
EZ-osCommerce 3.1 - Arbitrary File Upload
|
8 |
WEB
|
indoushka
|
|
2010-07-18
|
|
rapidCMS 2.0 - Authentication Bypass
|
8 |
WEB
|
Mahjong
|
|
2010-07-18
|
|
PHP-Fusion - Remote Command Execution
|
9 |
WEB
|
ViRuS Qalaa
|
|
2010-07-18
|
|
Kayako eSupport 3.70.02 - 'functions.php' SQL Injection
|
8 |
WEB
|
ScOrPiOn
|
|
2010-07-18
|
|
ClickAndRank Script - Authentication Bypass
|
9 |
WEB
|
walid
|
|
2010-07-17
|
|
Joomla! Component StaticXT - SQL Injection
|
8 |
WEB
|
Palyo34 & KroNicKq
|
|
2010-07-17
|
|
Joomla! Component com_spa - SQL Injection (2)
|
8 |
WEB
|
Palyo34 & KroNicKq
|
|
2010-07-17
|
|
Calendarix - 'cal_cat.php' SQL Injection
|
8 |
WEB
|
SixP4ck3r
|
|
2010-07-17
|
|
Kayako eSupport 3.70.02 - SQL Injection
|
7 |
WEB
|
Sid3^effects
|
|
2010-07-17
|
|
Subrion Auto Classifieds - Persistent Cross-Site Scripting
|
8 |
WEB
|
Sid3^effects
|
|
2010-07-17
|
|
Freelancer Marketplace Script - Arbitrary File Upload
|
8 |
WEB
|
Sid3^effects
|
|
2010-07-17
|
|
Freelancers Marketplace Script - Persistent Cross-Site Scripting
|
8 |
WEB
|
Sid3^effects
|
|
2010-07-16
|
|
Group Office - 'comment_id' SQL Injection
|
8 |
WEB
|
Canberk BOLAT
|
|
2010-07-16
|
|
ActiTime 2.0-MA - Cross-Site Request Forgery
|
9 |
WEB
|
Markot
|
|
2010-07-16
|
|
Group Office - Remote Command Execution
|
7 |
WEB
|
ADEO Security
|
|
2010-07-16
|
|
Pre Podcast Portal - Authentication Bypass
|
7 |
WEB
|
D4rk357
|
|
2010-07-16
|
|
Pre SoftClones Marketing Management System - Authentication Bypass
|
7 |
WEB
|
D4rk357
|
