|
2010-07-12
|
|
Joomla! Component EasyBlog - Persistent Cross-Site Scripting
|
3 |
WEB
|
Sid3^effects
|
|
2010-07-12
|
|
Joomla! Component healthstats - Persistent Cross-Site Scripting
|
4 |
WEB
|
Sid3^effects
|
|
2010-07-11
|
|
Orbis CMS 1.0.2 - Multiple Cross-Site Request Forgery Vulnerabilities
|
4 |
WEB
|
10n1z3d
|
|
2010-07-11
|
|
TomatoCMS 2.0.5 - Multiple Cross-Site Request Forgery Vulnerabilities
|
4 |
WEB
|
10n1z3d
|
|
2010-07-11
|
|
TomatoCart 1.0.1 - Multiple Cross-Site Request Forgery Vulnerabilities
|
4 |
WEB
|
10n1z3d
|
|
2010-07-11
|
|
Frog CMS 0.9.5 - Multiple Cross-Site Request Forgery Vulnerabilities
|
4 |
WEB
|
10n1z3d
|
|
2010-07-11
|
|
Macs CMS 1.1.4 - Cross-Site Scripting / Cross-Site Request Forgery
|
4 |
WEB
|
10n1z3d
|
|
2010-07-10
|
|
Joomla! Component Rapid-Recipe - Persistent Cross-Site Scripting
|
4 |
WEB
|
Sid3^effects
|
|
2010-07-10
|
|
My Kazaam Address & Contact ORGanizer - SQL Injection
|
4 |
WEB
|
v3n0m
|
|
2010-07-10
|
|
My Kazaam Notes Management System - Multiple Vulnerabilities
|
4 |
WEB
|
L0rd CrusAd3r
|
|
2010-07-10
|
|
Sillaj time tracking tool - Authentication Bypass
|
4 |
WEB
|
L0rd CrusAd3r
|
|
2010-07-10
|
|
Edgephp ClickBank Affiliate Marketplace Script - Multiple Vulnerabilities
|
3 |
WEB
|
L0rd CrusAd3r
|
|
2010-07-10
|
|
PHP-Nuke 8.1.0.3.5b (Your_Account Module) - Blind SQL Injection (Benchmark Mode)
|
4 |
WEB
|
yawn
|
|
2010-07-10
|
|
PHP-Nuke 8.1.0.3.5b - Remote Command Execution
|
4 |
WEB
|
yawn
|
|
2010-07-10
|
|
Elite CMS 1.01 - Multiple Cross-Site Scripting / Cross-Site Request Forgery Vulnerabilities
|
4 |
WEB
|
10n1z3d
|
|
2010-07-10
|
|
PHP-Nuke 8.0 -Web_Links Module - Blind SQL Injection
|
4 |
WEB
|
yawn
|
|
2010-07-10
|
|
Joomla! Component MySMS - Arbitrary File Upload
|
4 |
WEB
|
Sid3^effects
|
|
2010-07-10
|
|
Joomla! Component MyHome - Blind SQL Injection
|
4 |
WEB
|
Sid3^effects
|
|
2010-07-10
|
|
Joomla! Component redSHOP 1.0 - 'pid' SQL Injection
|
4 |
WEB
|
v3n0m
|
|
2010-07-09
|
|
dotDefender 3.8-5 - Remote Code Execution (via Cross-Site Scripting)
|
4 |
WEB
|
rAWjAW
|
|
2010-07-09
|
|
WordPress Plugin Firestats - Remote Configuration File Download
|
4 |
WEB
|
Jelmer de Hen
|
|
2010-07-09
|
|
HoloCMS 9.0.47 - 'news.php' SQL Injection
|
4 |
WEB
|
GlaDiaT0R
|
|
2010-07-09
|
|
CMS Contentia - 'news.php' SQL Injection
|
4 |
WEB
|
GlaDiaT0R
|
|
2010-07-09
|
|
Joomla! Component QuickFAQ 1.0.3 - Blind SQL Injection
|
4 |
WEB
|
RoAd_KiLlEr
|
|
2010-07-09
|
|
sphider 1.3.5 - Remote File Inclusion
|
4 |
WEB
|
Li0n-PaL
|
|
2010-07-09
|
|
Joomla! Component Minify4Joomla! - Arbitrary File Upload / Persistent Cross-Site Scripting
|
3 |
WEB
|
Sid3^effects
|
|
2010-07-09
|
|
Joomla! Component IXXO Cart - SQL Injection
|
4 |
WEB
|
Sid3^effects
|
|
2010-07-09
|
|
b2evolution 3.3.3 - Cross-Site Request Forgery
|
4 |
WEB
|
saudi0hacker
|
|
2010-07-08
|
|
Outlook Web Access 2007 - Cross-Site Request Forgery
|
4 |
WEB
|
Rosario Valotta
|
|
2010-07-08
|
|
i-Gallery - Multiple Vulnerabilities
|
3 |
WEB
|
SONIC
|
|
2010-07-08
|
|
ClickGallery Server - SQL Injection
|
4 |
WEB
|
SONIC
|
|
2010-07-08
|
|
KMSoft GB - SQL Injection
|
3 |
WEB
|
SONIC
|
|
2010-07-08
|
|
PG Social Networking - Arbitrary File Upload
|
3 |
WEB
|
SONIC
|
|
2010-07-08
|
|
Inout Ad server Ultimate - Arbitrary File Upload
|
4 |
WEB
|
SONIC
|
|
2010-07-08
|
|
Inout Article Base Ultimate - Arbitrary File Upload
|
5 |
WEB
|
SONIC
|
|
2010-07-08
|
|
Inout Music 1.0 - Arbitrary File Upload
|
4 |
WEB
|
SONIC
|
|
2010-07-08
|
|
Joomla! Component Music Manager - Local File Inclusion
|
4 |
WEB
|
Sid3^effects
|
|
2010-07-08
|
|
Pithcms - 'theme' Local/Remote File Inclusion
|
4 |
WEB
|
eidelweiss
|
|
2010-07-08
|
|
Zylone IT - Multiple Blind SQL Injections
|
4 |
WEB
|
Callo
|
|
2010-07-07
|
|
Joomla! Component PaymentsPlus 2.1.5 - Blind SQL Injection
|
3 |
WEB
|
Sid3^effects
|
|
2010-07-07
|
|
Harris Stratex StarMAX 2100 WIMAX Subscriber Station - Running Configuration Cross-Site Request Forg
|
4 |
WEB
|
kalyanakumar
|
|
2010-07-07
|
|
Joomla! Component ArtForms 2.1b7.2 rc2 - Multiple Vulnerabilities
|
4 |
WEB
|
Salvatore Fresta
|
|
2010-07-07
|
|
Simple Document Management System - SQL Injection
|
4 |
WEB
|
Sid3^effects
|
|
2010-07-07
|
|
Sijio Community Software - SQL Injection / Persistent Cross-Site Scripting
|
5 |
WEB
|
Sid3^effects
|
|
2010-07-07
|
|
Green Shop - SQL Injection
|
5 |
WEB
|
PrinceofHacking
|
|
2010-07-06
|
|
sandbox 2.0.3 - Multiple Vulnerabilities
|
5 |
WEB
|
Salvatore Fresta
|
|
2010-07-06
|
|
PsNews 1.3 - SQL Injection
|
4 |
WEB
|
S.W.T
|
|
2010-07-06
|
|
Joomla! Component NeoRecruit 1.6.4 - 'Itemid' Blind SQL Injection
|
4 |
WEB
|
Sid3^effects
|
|
2010-07-06
|
|
Joomla! Component AutarTimonial 1.0.8 - SQL Injection
|
5 |
WEB
|
Sid3^effects
|
|
2010-07-06
|
|
Auction_Software Script - Admin Authentication Bypass
|
4 |
WEB
|
ALTBTA
|
|
2010-07-06
|
|
PreProject Multi-Vendor Shopping Malls - SQL Injection / Authentication Bypass
|
5 |
WEB
|
**RoAd_KiLlEr**
|
|
2010-07-06
|
|
Lyrics 3.0 - Engine SQL Injection
|
4 |
WEB
|
Sid3^effects
|
|
2010-07-06
|
|
BS Events Directory - 'articlesdetails.php' SQL Injection
|
4 |
WEB
|
Easy Laster
|
|
2010-07-06
|
|
BS Classifieds Ads - 'articlesdetails.php' SQL Injection
|
4 |
WEB
|
Easy Laster
|
|
2010-07-06
|
|
BS Business Directory - 'articlesdetails.php' SQL Injection
|
4 |
WEB
|
Easy Laster
|
|
2010-07-06
|
|
BS Auto Classifieds - 'info.php' SQL Injection
|
4 |
WEB
|
Easy Laster
|
|
2010-07-06
|
|
Auto Dealer - SQL Injection
|
3 |
WEB
|
Easy Laster
|
|
2010-07-06
|
|
BS Auction - SQL Injection
|
4 |
WEB
|
Easy Laster
|
|
2010-07-06
|
|
IBM Bladecenter Management - Multiple Web Application Vulnerabilities
|
4 |
WEB
|
Alexey Sintsov
|
|
2010-07-05
|
|
Bs Auction Script - SQL Injection
|
4 |
WEB
|
Sid3^effects
|
|
2010-07-05
|
|
Joomla! Component JPodium 2.7.3 - SQL Injection
|
4 |
WEB
|
RoAd_KiLlEr
|
|
2010-07-05
|
|
Bs Business_Directory Script - SQL Injection / Authentication Bypass
|
4 |
WEB
|
Sid3^effects
|
|
2010-07-05
|
|
Bs Auto_Classifieds Script - 'articlesdetails.php' SQL Injection
|
4 |
WEB
|
Sid3^effects
|
|
2010-07-05
|
|
Bs General_Classifieds Script - SQL Injection
|
4 |
WEB
|
Sid3^effects
|
|
2010-07-05
|
|
Bs Events_Locator Script - SQL Injection
|
4 |
WEB
|
Sid3^effects
|
|
2010-07-05
|
|
Bs Home_Classifieds Script - SQL Injection
|
4 |
WEB
|
Sid3^effects
|
|
2010-07-05
|
|
Bs Realtor_Web Script - SQL Injection
|
4 |
WEB
|
Sid3^effects
|
|
2010-07-05
|
|
Bs Recipes_Website Script - SQL Injection / Authentication Bypass
|
4 |
WEB
|
Sid3^effects
|
|
2010-07-05
|
|
Bs Scripts_Directory - SQL Injection / Authentication Bypass
|
3 |
WEB
|
Sid3^effects
|
|
2010-07-05
|
|
WikiWebHelp 0.28 - SQL Injection
|
5 |
WEB
|
ADEO Security
|
|
2010-07-05
|
|
bbPress 1.0.2 - Cross-Site Request Forgery (Change Admin Password)
|
4 |
WEB
|
saudi0hacker
|
|
2010-07-05
|
|
Joomla! Component com_sef - Local File Inclusion
|
5 |
WEB
|
_mlk_
|
|
2010-07-04
|
|
Joomla! Component NinjaMonials - Blind SQL Injection
|
4 |
WEB
|
Sid3^effects
|
|
2010-07-04
|
|
Joomla! Component Address Book - Blind SQL Injection
|
3 |
WEB
|
Sid3^effects
|
|
2010-07-04
|
|
Joomla! Component Front-End Article Manager System - Arbitrary File Upload
|
4 |
WEB
|
Sid3^effects
|
|
2010-07-04
|
|
Sandbox 2.0.2 - Local File Inclusion
|
5 |
WEB
|
saudi0hacker
|
|
2010-07-04
|
|
Joomla! Component Phoca Gallery 2.7.3 - SQL Injection
|
4 |
WEB
|
RoAd_KiLlEr
|
|
2010-07-04
|
|
Esoftpro Online Contact Manager - Multiple Vulnerabilities
|
4 |
WEB
|
L0rd CrusAd3r
|
|
2010-07-04
|
|
Esoftpro Online Photo Pro 2 - Multiple Vulnerabilities
|
4 |
WEB
|
L0rd CrusAd3r
|
|
2010-07-04
|
|
Esoftpro Online Guestbook Pro - Multiple Vulnerabilities
|
3 |
WEB
|
L0rd CrusAd3r
|
|
2010-07-04
|
|
TCW PHP Album - Multiple Vulnerabilities
|
4 |
WEB
|
L0rd CrusAd3r
|
|
2010-07-04
|
|
iLister Listing Software - Local File Inclusion
|
4 |
WEB
|
Sid3^effects
|
|
2010-07-04
|
|
PHPaaCMS - 'list.php?id' SQL Injection
|
4 |
WEB
|
CoBRa_21
|
|
2010-07-04
|
|
PHPaaCMS 0.3.1 - 'show.php?id' SQL Injection
|
3 |
WEB
|
Shafiq-Ur-Rehman
|
|
2010-07-04
|
|
WordPress Plugin Simple:Press 4.3.0 - SQL Injection
|
4 |
WEB
|
ADEO Security
|
|
2010-07-03
|
|
iScripts MultiCart 2.2 - Multiple SQL Injections
|
3 |
WEB
|
Salvatore Fresta
|
|
2010-07-03
|
|
Joomla! Component Techjoomla SocialAds - Persistent Cross-Site Scripting
|
5 |
WEB
|
Sid3^effects
|
|
2010-07-03
|
|
iscripts Socialware 2.2.x - Multiple Vulnerabilities
|
3 |
WEB
|
Salvatore Fresta
|
|
2010-07-03
|
|
Ziggurat Farsi CMS - SQL Injection
|
4 |
WEB
|
Arash Saadatfar
|
|
2010-07-03
|
|
cPanel 11.25 - Cross-Site Request Forgery (Add FTP Account)
|
6 |
WEB
|
G0D-F4Th3r
|
|
2010-07-03
|
|
Joomla! Component eventCal 1.6.4 - Blind SQL Injection
|
5 |
WEB
|
RoAd_KiLlEr
|
|
2010-07-03
|
|
Family Connections Who is Chatting AddOn - Remote File Inclusion
|
4 |
WEB
|
lumut--
|
|
2010-07-03
|
|
SweetRice < 0.6.4 - 'FCKeditor' Arbitrary File Upload
|
4 |
WEB
|
ITSecTeam
|
|
2010-07-03
|
|
Joomla! Component com_seyret - Local File Inclusion
|
4 |
WEB
|
Cooler_ unix
|
|
2010-07-02
|
|
Xplico 0.5.7 - 'add.ctp' Cross-Site Scripting (1)
|
5 |
WEB
|
Marcos Garcia & Maximiliano Soler
|
|
2010-07-02
|
|
iScripts Socialware 2.2.x - Arbitrary File Upload
|
4 |
WEB
|
Salvatore Fresta
|
|
2010-07-02
|
|
Joomla! Component com_seyret - Blind SQL Injection
|
4 |
WEB
|
RoAd_KiLlEr
|
|
2010-07-02
|
|
Iphone Pointter Social Network - Local File Inclusion
|
4 |
WEB
|
Sid3^effects
|
|
2010-07-02
|
|
Pointter Social Network - Local File Inclusion
|
4 |
WEB
|
Sid3^effects
|
|
2010-07-02
|
|
MooreAdvice - 'productlist.asp' SQL Injection
|
4 |
WEB
|
Th3 RDX
|
|
2010-07-02
|
|
VGM Forbin - 'article.asp' SQL Injection
|
4 |
WEB
|
Th3 RDX
|
|
2010-07-02
|
|
Bit Weaver 2.7 - Local File Inclusion
|
4 |
WEB
|
John Leitch
|
|
2010-07-02
|
|
iScripts EasyBiller - Cross-Site Scripting
|
3 |
WEB
|
Sangteamtham
|
|
2010-07-02
|
|
iScripts CyberMatch 1.0 - Blind SQL Injection
|
5 |
WEB
|
Salvatore Fresta
|
|
2010-07-01
|
|
iScripts ReserveLogic 1.0 - SQL Injection
|
4 |
WEB
|
Salvatore Fresta
|
|
2010-07-01
|
|
iScripts EasySnaps 2.0 - Multiple SQL Injections
|
4 |
WEB
|
Salvatore Fresta
|
|
2010-07-01
|
|
Interscan Web Security 5.0 - Persistent Cross-Site Scripting
|
4 |
WEB
|
Ivan Huertas
|
|
2010-07-01
|
|
SIDA University System - SQL Injection
|
4 |
WEB
|
K053
|
|
2010-07-01
|
|
Joomla! Component com_dateconverter 0.1 - SQL Injection
|
4 |
WEB
|
RoAd_KiLlEr
|
|
2010-07-01
|
|
Oxygen2PHP 1.1.3 - 'forumdisplay.php' Blind SQL Injection
|
4 |
WEB
|
Dante90
|
|
2010-07-01
|
|
Oxygen2PHP 1.1.3 - 'post.php' Blind SQL Injection
|
5 |
WEB
|
Dante90
|
|
2010-07-01
|
|
Setiran CMS - Blind SQL Injection
|
3 |
WEB
|
Th3 RDX
|
|
2010-07-01
|
|
NinkoBB - Cross-Site Request Forgery
|
4 |
WEB
|
ADEO Security
|
|
2010-06-30
|
|
Ubiquity Nanostation5 (Air OS) - Remote Command Execution
|
4 |
WEB
|
emgent
|
|
2010-06-30
|
|
Golf Club Site - SQL Injection
|
4 |
WEB
|
JaMbA
|
|
2010-06-30
|
|
Specialist Bed and Breakfast Website - SQL Injection
|
4 |
WEB
|
JaMbA
|
|
2010-06-30
|
|
Oxygen2PHP 1.1.3 - 'member.php' SQL Injection
|
4 |
WEB
|
Dante90
|
|
2010-06-30
|
|
webERP 3.11.4 - Multiple Vulnerabilities
|
4 |
WEB
|
ADEO Security
|
|
2010-06-30
|
|
Joomla! Component com_wmtpic 1.0 - SQL Injection
|
4 |
WEB
|
RoAd_KiLlEr
|
|
2010-06-30
|
|
Joomla! Component Joomanager - SQL Injection
|
4 |
WEB
|
Sid3^effects
|
|
2010-06-30
|
|
Joomla! Component Gamesbox 1.0.2 - 'id' SQL Injection
|
4 |
WEB
|
v3n0m
|
|
2010-06-30
|
|
ShopCartDx 4.30 - 'products.php' Blind SQL Injection
|
4 |
WEB
|
Dante90
|
|
2010-06-30
|
|
PHP-Nuke 8.0 - SQL Injection
|
3 |
WEB
|
Dante90
|
|
2010-06-29
|
|
WebDM CMS - SQL Injection
|
4 |
WEB
|
Dr.0rYX & Cr3W-DZ
|
|
2010-06-29
|
|
LIOOSYS CMS - 'news.php' SQL Injection
|
4 |
WEB
|
GlaDiaT0R
|
