|
2010-06-22
|
|
The Uploader 2.0.4 - Remote File Disclosure
|
11 |
WEB
|
Xa7m3d
|
|
2010-06-21
|
|
Linker IMG 1.0 - Remote File Inclusion
|
11 |
WEB
|
Sn!pEr.S!Te Hacker
|
|
2010-06-21
|
|
Joomla! Component JomSocial 1.6.288 - Multiple Cross-Site Scripting Vulnerabilities
|
13 |
WEB
|
jdc
|
|
2010-06-21
|
|
Alpin CMS 1.0 - SQL Injection
|
14 |
WEB
|
Th3 RDX
|
|
2010-06-21
|
|
PHPWCMS 1.4.5 r398 - Cross-Site Request Forgery
|
10 |
WEB
|
Jeremiah Talamantes
|
|
2010-06-21
|
|
myUPB 2.2.6 - Multiple Vulnerabilities
|
9 |
WEB
|
ALTBTA
|
|
2010-06-21
|
|
Joomla! Component com_jomestate - Remote File Inclusion
|
14 |
WEB
|
Sid3^effects
|
|
2010-06-21
|
|
Joomla! Component com_community - Persistent Cross-Site Scripting
|
13 |
WEB
|
Sid3^effects
|
|
2010-06-21
|
|
G.CMS Generator - SQL Injection
|
12 |
WEB
|
Sid3^effects
|
|
2010-06-21
|
|
Saffa Tunes CMS - 'news.php' SQL Injection
|
12 |
WEB
|
Th3 RDX
|
|
2010-06-20
|
|
Joomla! Component com_eportfolio - Arbitrary File Upload
|
10 |
WEB
|
Sid3^effects
|
|
2010-06-20
|
|
Shareasale Script - SQL Injection
|
12 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-20
|
|
OroHYIP - SQL Injection
|
13 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-20
|
|
PHP Calendars Script - SQL Injection
|
11 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-20
|
|
Overstock Script - SQL Injection
|
12 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-20
|
|
iBoutique - 'page' SQL Injection / Cross-Site Scripting
|
13 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-20
|
|
SimpleAssets - Authentication Bypass / Cross-Site Scripting
|
10 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-19
|
|
WebsiteBaker 2.8.1 - Cross-Site Request Forgery
|
12 |
WEB
|
Luis Santana
|
|
2010-06-19
|
|
SnowCade 3.0 - SQL Injection
|
12 |
WEB
|
ahwak2000
|
|
2010-06-19
|
|
Elite Gaming Ladders 3.5 - 'ladder[id]' SQL Injection
|
13 |
WEB
|
ahwak2000
|
|
2010-06-19
|
|
Joomla! Component RSComments 1.0.0 - Persistent Cross-Site Scripting
|
10 |
WEB
|
jdc
|
|
2010-06-19
|
|
UK One Media CMS - 'id' Error-Based SQL Injection
|
12 |
WEB
|
LiquidWorm
|
|
2010-06-18
|
|
KubeLance 1.7.6 - 'profile.php' SQL Injection
|
12 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-18
|
|
Shopping Cart Script with Affiliate Program - SQL Injection
|
12 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-18
|
|
Banner Management Script - SQL Injection
|
12 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-18
|
|
MarketSaz - Arbitrary File Upload
|
16 |
WEB
|
NetQurd
|
|
2010-06-18
|
|
Joomla! Component com_listbingo 1.3 - Multiple Vulnerabilities
|
16 |
WEB
|
jdc
|
|
2010-06-18
|
|
Joomla! Component Ozio Gallery 2 - Multiple Vulnerabilities
|
12 |
WEB
|
jdc
|
|
2010-06-18
|
|
Joomla! Component Answers 2.3beta - Multiple Vulnerabilities
|
11 |
WEB
|
jdc
|
|
2010-06-18
|
|
Joomla! Component com_joomdocs - Cross-Site Scripting
|
12 |
WEB
|
Sid3^effects
|
|
2010-06-18
|
|
Spring Framework - Arbitrary code Execution
|
13 |
WEB
|
Meder Kydyraliev
|
|
2010-06-17
|
|
PHP-Nuke Module print 6.0 - 'print&sid' SQL Injection
|
11 |
WEB
|
Gamoscu
|
|
2010-06-17
|
|
Havij 1.10 - Persistent Cross-Site Scripting
|
11 |
WEB
|
hexon
|
|
2010-06-17
|
|
Live CMS - SQL Injection
|
11 |
WEB
|
ahwak2000
|
|
2010-06-17
|
|
Planet 1.1 - Cross-Site Request Forgery (Add Admin)
|
13 |
WEB
|
G0D-F4Th3r
|
|
2010-06-17
|
|
Ananda Image Gallery - SQL Injection
|
14 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-17
|
|
PenPals - Authentication Bypass
|
13 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-17
|
|
Easy Travel Portal - SQL Injection
|
13 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-17
|
|
Pithcms 0.9.5 - Local File Inclusion
|
11 |
WEB
|
sh00t0ut
|
|
2010-06-17
|
|
DMSEasy 0.9.7 - 'FCKeditor' Arbitrary File Upload
|
12 |
WEB
|
sh00t0ut
|
|
2010-06-16
|
|
Real Estate - SQL Injection
|
15 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-16
|
|
2DayBiz Online Classified System - SQL Injection / Cross-Site Scripting
|
14 |
WEB
|
Sid3^effects
|
|
2010-06-16
|
|
Nakid CMS 0.5.2 - 'FCKeditor' Arbitrary File Upload
|
14 |
WEB
|
eidelweiss
|
|
2010-06-16
|
|
PHPAuctionSystem - Arbitrary File Upload
|
12 |
WEB
|
Sid3^effects
|
|
2010-06-16
|
|
AspTR EXtended - Cross-Site Request Forgery
|
13 |
WEB
|
FreWaL
|
|
2010-06-16
|
|
EZPX Photoblog 1.2 Beta - Remote File Inclusion
|
12 |
WEB
|
sh00t0ut
|
|
2010-06-16
|
|
Nakid CMS 0.5.2 - Remote File Inclusion
|
11 |
WEB
|
sh00t0ut
|
|
2010-06-15
|
|
IISWorks FileMan - fileman.mdb Remote User Database Disclosure
|
10 |
WEB
|
j0fer
|
|
2010-06-15
|
|
Acuity CMS 2.7.1 - SQL Injection
|
15 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-15
|
|
Restaurant Listing with Online Ordering - SQL Injection
|
12 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-15
|
|
Business Classified Listing - SQL Injection
|
12 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-15
|
|
SAS Hotel Management System - 'notfound' SQL Injection
|
15 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-15
|
|
Pre Job Board Pro - Authentication Bypass
|
12 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-15
|
|
Smart ASP Survey - Cross-Site Scripting / SQL Injection
|
11 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-14
|
|
E-Book Store - SQL Injection
|
11 |
WEB
|
Valentin
|
|
2010-06-14
|
|
Joke Website Script - SQL Injection / Cross-Site Scripting
|
15 |
WEB
|
Valentin
|
|
2010-06-14
|
|
Daily Inspirational Quotes Script - SQL Injection
|
12 |
WEB
|
Valentin
|
|
2010-06-14
|
|
Membership Site Script - SQL Injection
|
11 |
WEB
|
Valentin
|
|
2010-06-14
|
|
Lyrics Script - SQL Injection / Cross-Site Scripting
|
13 |
WEB
|
Valentin
|
|
2010-06-13
|
|
Pre Classified Listing - SQL Injection
|
13 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-13
|
|
Real-time ASP Calendar - SQL Injection
|
13 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-13
|
|
Digital Interchange Calendar - SQL Injection
|
9 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-13
|
|
Digital Interchange Document Library - SQL Injection
|
10 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-13
|
|
Eyeland Studio Inc. - 'game.php' SQL Injection
|
9 |
WEB
|
CoBRa_21
|
|
2010-06-13
|
|
Yamamah Photo Gallery 1.00 - 'calbums' SQL Injection
|
10 |
WEB
|
CoBRa_21
|
|
2010-06-13
|
|
Yamamah Photo Gallery 1.00 - 'download.php' Local File Disclosure
|
10 |
WEB
|
mat
|
|
2010-06-13
|
|
Eyeland Studio Inc. - SQL Injection
|
9 |
WEB
|
Mr.P3rfekT
|
|
2010-06-13
|
|
UTStats - Cross-Site Scripting / SQL Injection / Full Path Disclosure
|
10 |
WEB
|
LuM Member
|
|
2010-06-13
|
|
PHPplanner PHP Planner 0.4 - Multiple Vulnerabilities
|
10 |
WEB
|
cp77fk4r
|
|
2010-06-12
|
|
Yamamah 1.0 - SQL Injection
|
11 |
WEB
|
TheMaStEr
|
|
2010-06-12
|
|
Infront - SQL Injection
|
10 |
WEB
|
TheMaStEr
|
|
2010-06-12
|
|
phpplanner - Cross-Site Scripting / SQL Injection
|
10 |
WEB
|
anT!-Tr0J4n
|
|
2010-06-12
|
|
BDSMIS TraX with Payroll - SQL Injection
|
10 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-12
|
|
Yamamah - 'news' SQL Injection / Source Code Disclosure
|
9 |
WEB
|
anT!-Tr0J4n
|
|
2010-06-12
|
|
Collabtive 0.6.3 - Multiple Vulnerabilities
|
10 |
WEB
|
DNX
|
|
2010-06-12
|
|
BrightSuite Groupware - SQL Injection
|
13 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-12
|
|
VU Web Visitor Analyst - Authentication Bypass
|
12 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-12
|
|
VU Mass Mailer - Authentication Bypass
|
11 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-12
|
|
VU Case Manager - Authentication Bypass
|
11 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-11
|
|
DaLogin 2.2 - 'FCKeditor' Arbitrary File Upload
|
12 |
WEB
|
eidelweiss
|
|
2010-06-11
|
|
Parallels System Automation (PSA) - Local File Inclusion
|
11 |
WEB
|
Pouya Daneshmand
|
|
2010-06-11
|
|
ardeacore 2.2 - Remote File Inclusion
|
13 |
WEB
|
cr4wl3r
|
|
2010-06-11
|
|
Full Site for Restaurant - SQL Injection
|
12 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-11
|
|
DaLogin - Multiple Vulnerabilities
|
11 |
WEB
|
hc0
|
|
2010-06-11
|
|
Site to Store Automobile - Motorcycle Boat SQL Injection
|
12 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-11
|
|
Development Site Professional Liberal - Company Institutional SQL Injection
|
12 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-11
|
|
Site for Real Estate - Brokers SQL Injection
|
11 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-11
|
|
E-PHP B2B Marketplace - Multiple Vulnerabilities
|
14 |
WEB
|
MizoZ
|
|
2010-06-10
|
|
Miniweb 2.0 Business Portal and Social Networking Platform - SQL Injection
|
12 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-10
|
|
Netvolution CMS 2.x - SQL Injection Script
|
11 |
WEB
|
amquen & krumel
|
|
2010-06-10
|
|
Pars Design CMS - Arbitrary File Upload
|
11 |
WEB
|
Securitylab.ir
|
|
2010-06-10
|
|
Store Locator - Cross-Site Request Forgery (Add Admin)
|
12 |
WEB
|
JaMbA
|
|
2010-06-10
|
|
SchoolMation 2.3 - SQL Injection / Cross-Site Scripting
|
14 |
WEB
|
Sid3^effects
|
|
2010-06-10
|
|
AWCM CMS - Local File Inclusion
|
12 |
WEB
|
SwEET-DeViL
|
|
2010-06-09
|
|
BtiTracker 1.3.x < 1.4.x - SQL Injection
|
12 |
WEB
|
TinKode
|
|
2010-06-09
|
|
PHP Property Rental Script - SQL Injection / Cross-Site Scripting
|
14 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-09
|
|
Joomla! Component com_jnewsletter - SQL Injection
|
12 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
PHPAccess - SQL Injection
|
11 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-09
|
|
PHP Real Estate Script - SQL Injection
|
12 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-09
|
|
Science Fair In A Box - SQL Injection / Cross-Site Scripting
|
12 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-09
|
|
Joomla! Component com_jsubscription - SQL Injection
|
13 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
Joomla! Component com_jmarket - SQL Injection
|
13 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
Joomla! Component com_jcommunity - SQL Injection
|
13 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
Joomla! Component com_jtickets - SQL Injection
|
14 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
Joomla! Component com_jstore - SQL Injection
|
11 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
Joomla! Component Jreservation 1.5 - SQL Injection / Cross-Site Scripting
|
10 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
Online Notebook Manager - SQL Injection
|
14 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-09
|
|
Joomla! Component cinema - SQL Injection
|
10 |
WEB
|
Sudden_death
|
|
2010-06-09
|
|
iClone - SQL Injection
|
12 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
Virtual Real Estate Manager 3.5 - SQL Injection
|
11 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
Web Wiz Forums 9.68 - SQL Injection
|
11 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
PGAUTOPro - SQL Injection / Cross-Site Scripting (1)
|
10 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
eLms Pro - SQL Injection / Cross-Site Scripting
|
10 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
HauntmAx CMS Haunted House - Directory Listing / SQL Injection
|
11 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
GREEZLE - Global Real Estate Agent Site Auth SQL Injection
|
12 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-08
|
|
Image Store - Arbitrary File Upload
|
12 |
WEB
|
Mr.FireStormm
|
|
2010-06-08
|
|
phpList 2.8.11 - SQL Injection
|
12 |
WEB
|
d3v1l
|
|
2010-06-08
|
|
Pre Web Host - SQL Injection
|
12 |
WEB
|
Mr.Benladen
|
|
2010-06-08
|
|
Phreebooks 2.0 - Directory Traversal
|
11 |
WEB
|
Gustavo Sorondo
|
|
2010-06-08
|
|
Phreebooks 2.0 - Local File Inclusion
|
11 |
WEB
|
Gustavo Sorondo
|
|
2010-06-08
|
|
Phreebooks 2.0 - Multiple Persistent Cross-Site Scripting Vulnerabilities
|
10 |
WEB
|
Gustavo Sorondo
|
|
2010-06-08
|
|
Holiday Travel Portal - Arbitrary File Upload
|
11 |
WEB
|
Sid3^effects
|
|
2010-06-08
|
|
Rayzz Photoz - Arbitrary File Upload
|
12 |
WEB
|
Sid3^effects
|
|
2010-06-08
|
|
EMO Realty Manager - SQL Injection
|
12 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-08
|
|
Hotel / Resort Site Script with OnLine Reservation System - SQL Injection
|
11 |
WEB
|
L0rd CrusAd3r
|
