|
2010-06-20
|
|
PHP Calendars Script - SQL Injection
|
7 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-20
|
|
Overstock Script - SQL Injection
|
7 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-20
|
|
iBoutique - 'page' SQL Injection / Cross-Site Scripting
|
8 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-20
|
|
SimpleAssets - Authentication Bypass / Cross-Site Scripting
|
7 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-19
|
|
WebsiteBaker 2.8.1 - Cross-Site Request Forgery
|
7 |
WEB
|
Luis Santana
|
|
2010-06-19
|
|
SnowCade 3.0 - SQL Injection
|
8 |
WEB
|
ahwak2000
|
|
2010-06-19
|
|
Elite Gaming Ladders 3.5 - 'ladder[id]' SQL Injection
|
8 |
WEB
|
ahwak2000
|
|
2010-06-19
|
|
Joomla! Component RSComments 1.0.0 - Persistent Cross-Site Scripting
|
7 |
WEB
|
jdc
|
|
2010-06-19
|
|
UK One Media CMS - 'id' Error-Based SQL Injection
|
8 |
WEB
|
LiquidWorm
|
|
2010-06-18
|
|
KubeLance 1.7.6 - 'profile.php' SQL Injection
|
8 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-18
|
|
Shopping Cart Script with Affiliate Program - SQL Injection
|
8 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-18
|
|
Banner Management Script - SQL Injection
|
8 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-18
|
|
MarketSaz - Arbitrary File Upload
|
8 |
WEB
|
NetQurd
|
|
2010-06-18
|
|
Joomla! Component com_listbingo 1.3 - Multiple Vulnerabilities
|
8 |
WEB
|
jdc
|
|
2010-06-18
|
|
Joomla! Component Ozio Gallery 2 - Multiple Vulnerabilities
|
8 |
WEB
|
jdc
|
|
2010-06-18
|
|
Joomla! Component Answers 2.3beta - Multiple Vulnerabilities
|
8 |
WEB
|
jdc
|
|
2010-06-18
|
|
Joomla! Component com_joomdocs - Cross-Site Scripting
|
8 |
WEB
|
Sid3^effects
|
|
2010-06-18
|
|
Spring Framework - Arbitrary code Execution
|
9 |
WEB
|
Meder Kydyraliev
|
|
2010-06-17
|
|
PHP-Nuke Module print 6.0 - 'print&sid' SQL Injection
|
10 |
WEB
|
Gamoscu
|
|
2010-06-17
|
|
Havij 1.10 - Persistent Cross-Site Scripting
|
9 |
WEB
|
hexon
|
|
2010-06-17
|
|
Live CMS - SQL Injection
|
9 |
WEB
|
ahwak2000
|
|
2010-06-17
|
|
Planet 1.1 - Cross-Site Request Forgery (Add Admin)
|
9 |
WEB
|
G0D-F4Th3r
|
|
2010-06-17
|
|
Ananda Image Gallery - SQL Injection
|
9 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-17
|
|
PenPals - Authentication Bypass
|
9 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-17
|
|
Easy Travel Portal - SQL Injection
|
9 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-17
|
|
Pithcms 0.9.5 - Local File Inclusion
|
8 |
WEB
|
sh00t0ut
|
|
2010-06-17
|
|
DMSEasy 0.9.7 - 'FCKeditor' Arbitrary File Upload
|
8 |
WEB
|
sh00t0ut
|
|
2010-06-16
|
|
Real Estate - SQL Injection
|
10 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-16
|
|
2DayBiz Online Classified System - SQL Injection / Cross-Site Scripting
|
11 |
WEB
|
Sid3^effects
|
|
2010-06-16
|
|
Nakid CMS 0.5.2 - 'FCKeditor' Arbitrary File Upload
|
11 |
WEB
|
eidelweiss
|
|
2010-06-16
|
|
PHPAuctionSystem - Arbitrary File Upload
|
10 |
WEB
|
Sid3^effects
|
|
2010-06-16
|
|
AspTR EXtended - Cross-Site Request Forgery
|
9 |
WEB
|
FreWaL
|
|
2010-06-16
|
|
EZPX Photoblog 1.2 Beta - Remote File Inclusion
|
10 |
WEB
|
sh00t0ut
|
|
2010-06-16
|
|
Nakid CMS 0.5.2 - Remote File Inclusion
|
9 |
WEB
|
sh00t0ut
|
|
2010-06-15
|
|
IISWorks FileMan - fileman.mdb Remote User Database Disclosure
|
8 |
WEB
|
j0fer
|
|
2010-06-15
|
|
Acuity CMS 2.7.1 - SQL Injection
|
8 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-15
|
|
Restaurant Listing with Online Ordering - SQL Injection
|
8 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-15
|
|
Business Classified Listing - SQL Injection
|
8 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-15
|
|
SAS Hotel Management System - 'notfound' SQL Injection
|
10 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-15
|
|
Pre Job Board Pro - Authentication Bypass
|
9 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-15
|
|
Smart ASP Survey - Cross-Site Scripting / SQL Injection
|
8 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-14
|
|
E-Book Store - SQL Injection
|
7 |
WEB
|
Valentin
|
|
2010-06-14
|
|
Joke Website Script - SQL Injection / Cross-Site Scripting
|
8 |
WEB
|
Valentin
|
|
2010-06-14
|
|
Daily Inspirational Quotes Script - SQL Injection
|
8 |
WEB
|
Valentin
|
|
2010-06-14
|
|
Membership Site Script - SQL Injection
|
7 |
WEB
|
Valentin
|
|
2010-06-14
|
|
Lyrics Script - SQL Injection / Cross-Site Scripting
|
8 |
WEB
|
Valentin
|
|
2010-06-13
|
|
Pre Classified Listing - SQL Injection
|
9 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-13
|
|
Real-time ASP Calendar - SQL Injection
|
9 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-13
|
|
Digital Interchange Calendar - SQL Injection
|
7 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-13
|
|
Digital Interchange Document Library - SQL Injection
|
7 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-13
|
|
Eyeland Studio Inc. - 'game.php' SQL Injection
|
7 |
WEB
|
CoBRa_21
|
|
2010-06-13
|
|
Yamamah Photo Gallery 1.00 - 'calbums' SQL Injection
|
8 |
WEB
|
CoBRa_21
|
|
2010-06-13
|
|
Yamamah Photo Gallery 1.00 - 'download.php' Local File Disclosure
|
8 |
WEB
|
mat
|
|
2010-06-13
|
|
Eyeland Studio Inc. - SQL Injection
|
7 |
WEB
|
Mr.P3rfekT
|
|
2010-06-13
|
|
UTStats - Cross-Site Scripting / SQL Injection / Full Path Disclosure
|
8 |
WEB
|
LuM Member
|
|
2010-06-13
|
|
PHPplanner PHP Planner 0.4 - Multiple Vulnerabilities
|
8 |
WEB
|
cp77fk4r
|
|
2010-06-12
|
|
Yamamah 1.0 - SQL Injection
|
8 |
WEB
|
TheMaStEr
|
|
2010-06-12
|
|
Infront - SQL Injection
|
8 |
WEB
|
TheMaStEr
|
|
2010-06-12
|
|
phpplanner - Cross-Site Scripting / SQL Injection
|
8 |
WEB
|
anT!-Tr0J4n
|
|
2010-06-12
|
|
BDSMIS TraX with Payroll - SQL Injection
|
8 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-12
|
|
Yamamah - 'news' SQL Injection / Source Code Disclosure
|
7 |
WEB
|
anT!-Tr0J4n
|
|
2010-06-12
|
|
Collabtive 0.6.3 - Multiple Vulnerabilities
|
8 |
WEB
|
DNX
|
|
2010-06-12
|
|
BrightSuite Groupware - SQL Injection
|
8 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-12
|
|
VU Web Visitor Analyst - Authentication Bypass
|
8 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-12
|
|
VU Mass Mailer - Authentication Bypass
|
8 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-12
|
|
VU Case Manager - Authentication Bypass
|
7 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-11
|
|
DaLogin 2.2 - 'FCKeditor' Arbitrary File Upload
|
8 |
WEB
|
eidelweiss
|
|
2010-06-11
|
|
Parallels System Automation (PSA) - Local File Inclusion
|
8 |
WEB
|
Pouya Daneshmand
|
|
2010-06-11
|
|
ardeacore 2.2 - Remote File Inclusion
|
9 |
WEB
|
cr4wl3r
|
|
2010-06-11
|
|
Full Site for Restaurant - SQL Injection
|
8 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-11
|
|
DaLogin - Multiple Vulnerabilities
|
9 |
WEB
|
hc0
|
|
2010-06-11
|
|
Site to Store Automobile - Motorcycle Boat SQL Injection
|
10 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-11
|
|
Development Site Professional Liberal - Company Institutional SQL Injection
|
10 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-11
|
|
Site for Real Estate - Brokers SQL Injection
|
8 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-11
|
|
E-PHP B2B Marketplace - Multiple Vulnerabilities
|
10 |
WEB
|
MizoZ
|
|
2010-06-10
|
|
Miniweb 2.0 Business Portal and Social Networking Platform - SQL Injection
|
8 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-10
|
|
Netvolution CMS 2.x - SQL Injection Script
|
9 |
WEB
|
amquen & krumel
|
|
2010-06-10
|
|
Pars Design CMS - Arbitrary File Upload
|
8 |
WEB
|
Securitylab.ir
|
|
2010-06-10
|
|
Store Locator - Cross-Site Request Forgery (Add Admin)
|
10 |
WEB
|
JaMbA
|
|
2010-06-10
|
|
SchoolMation 2.3 - SQL Injection / Cross-Site Scripting
|
10 |
WEB
|
Sid3^effects
|
|
2010-06-10
|
|
AWCM CMS - Local File Inclusion
|
9 |
WEB
|
SwEET-DeViL
|
|
2010-06-09
|
|
BtiTracker 1.3.x < 1.4.x - SQL Injection
|
9 |
WEB
|
TinKode
|
|
2010-06-09
|
|
PHP Property Rental Script - SQL Injection / Cross-Site Scripting
|
10 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-09
|
|
Joomla! Component com_jnewsletter - SQL Injection
|
10 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
PHPAccess - SQL Injection
|
9 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-09
|
|
PHP Real Estate Script - SQL Injection
|
9 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-09
|
|
Science Fair In A Box - SQL Injection / Cross-Site Scripting
|
9 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-09
|
|
Joomla! Component com_jsubscription - SQL Injection
|
10 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
Joomla! Component com_jmarket - SQL Injection
|
9 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
Joomla! Component com_jcommunity - SQL Injection
|
9 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
Joomla! Component com_jtickets - SQL Injection
|
11 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
Joomla! Component com_jstore - SQL Injection
|
9 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
Joomla! Component Jreservation 1.5 - SQL Injection / Cross-Site Scripting
|
8 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
Online Notebook Manager - SQL Injection
|
8 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-09
|
|
Joomla! Component cinema - SQL Injection
|
8 |
WEB
|
Sudden_death
|
|
2010-06-09
|
|
iClone - SQL Injection
|
9 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
Virtual Real Estate Manager 3.5 - SQL Injection
|
9 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
Web Wiz Forums 9.68 - SQL Injection
|
9 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
PGAUTOPro - SQL Injection / Cross-Site Scripting (1)
|
8 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
eLms Pro - SQL Injection / Cross-Site Scripting
|
8 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
HauntmAx CMS Haunted House - Directory Listing / SQL Injection
|
9 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
GREEZLE - Global Real Estate Agent Site Auth SQL Injection
|
9 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-08
|
|
Image Store - Arbitrary File Upload
|
9 |
WEB
|
Mr.FireStormm
|
|
2010-06-08
|
|
phpList 2.8.11 - SQL Injection
|
10 |
WEB
|
d3v1l
|
|
2010-06-08
|
|
Pre Web Host - SQL Injection
|
10 |
WEB
|
Mr.Benladen
|
|
2010-06-08
|
|
Phreebooks 2.0 - Directory Traversal
|
9 |
WEB
|
Gustavo Sorondo
|
|
2010-06-08
|
|
Phreebooks 2.0 - Local File Inclusion
|
9 |
WEB
|
Gustavo Sorondo
|
|
2010-06-08
|
|
Phreebooks 2.0 - Multiple Persistent Cross-Site Scripting Vulnerabilities
|
8 |
WEB
|
Gustavo Sorondo
|
|
2010-06-08
|
|
Holiday Travel Portal - Arbitrary File Upload
|
8 |
WEB
|
Sid3^effects
|
|
2010-06-08
|
|
Rayzz Photoz - Arbitrary File Upload
|
10 |
WEB
|
Sid3^effects
|
|
2010-06-08
|
|
EMO Realty Manager - SQL Injection
|
10 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-08
|
|
Hotel / Resort Site Script with OnLine Reservation System - SQL Injection
|
9 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-08
|
|
CafeEngine 2.3 - SQL Injection
|
9 |
WEB
|
Sid3^effects
|
|
2010-06-08
|
|
Home of MCLogin System - Authentication Bypass
|
9 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-07
|
|
CommonSense CMS - SQL Injection
|
10 |
WEB
|
Pokeng
|
|
2010-06-07
|
|
JForum 2.1.8 BookMarks - Cross-Site Request Forgery / Cross-Site Scripting
|
10 |
WEB
|
Adam Baldwin
|
|
2010-06-06
|
|
ReVou Twitter Clone 2.0 Beta - SQL Injection / Cross-Site Scripting
|
8 |
WEB
|
Sid3^effects
|
|
2010-06-06
|
|
greeting card - Arbitrary File Upload
|
9 |
WEB
|
Mr.Benladen
|
|
2010-06-06
|
|
WebBiblio Subject Gateway System - Local File Inclusion
|
9 |
WEB
|
AntiSecurity
|
|
2010-06-06
|
|
idevspot Text ads 2.08 - SQL Injection
|
8 |
WEB
|
Sid3^effects
|
|
2010-06-06
|
|
Joomla! Component com_annonces - Arbitrary File Upload
|
8 |
WEB
|
Sid3^effects
|
|
2010-06-06
|
|
PHP Car Rental Complete System 1.2 - SQL Injection
|
9 |
WEB
|
Sid3^effects
|
|
2010-06-06
|
|
Joomla! Component Search Log 3.1.0 - SQL Injection
|
9 |
WEB
|
d0lc3
|
|
2010-06-06
|
|
Sphider Script - Remote Code Execution
|
8 |
WEB
|
XroGuE
|
|
2010-06-06
|
|
RTRandomImage - Remote File Inclusion
|
10 |
WEB
|
Sn!pEr.S!Te Hacker
|
