|
2010-06-17
|
|
Easy Travel Portal - SQL Injection
|
4 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-17
|
|
Pithcms 0.9.5 - Local File Inclusion
|
4 |
WEB
|
sh00t0ut
|
|
2010-06-17
|
|
DMSEasy 0.9.7 - 'FCKeditor' Arbitrary File Upload
|
3 |
WEB
|
sh00t0ut
|
|
2010-06-16
|
|
Real Estate - SQL Injection
|
5 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-16
|
|
2DayBiz Online Classified System - SQL Injection / Cross-Site Scripting
|
5 |
WEB
|
Sid3^effects
|
|
2010-06-16
|
|
Nakid CMS 0.5.2 - 'FCKeditor' Arbitrary File Upload
|
5 |
WEB
|
eidelweiss
|
|
2010-06-16
|
|
PHPAuctionSystem - Arbitrary File Upload
|
4 |
WEB
|
Sid3^effects
|
|
2010-06-16
|
|
AspTR EXtended - Cross-Site Request Forgery
|
4 |
WEB
|
FreWaL
|
|
2010-06-16
|
|
EZPX Photoblog 1.2 Beta - Remote File Inclusion
|
3 |
WEB
|
sh00t0ut
|
|
2010-06-16
|
|
Nakid CMS 0.5.2 - Remote File Inclusion
|
4 |
WEB
|
sh00t0ut
|
|
2010-06-15
|
|
IISWorks FileMan - fileman.mdb Remote User Database Disclosure
|
4 |
WEB
|
j0fer
|
|
2010-06-15
|
|
Acuity CMS 2.7.1 - SQL Injection
|
3 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-15
|
|
Restaurant Listing with Online Ordering - SQL Injection
|
3 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-15
|
|
Business Classified Listing - SQL Injection
|
4 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-15
|
|
SAS Hotel Management System - 'notfound' SQL Injection
|
5 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-15
|
|
Pre Job Board Pro - Authentication Bypass
|
4 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-15
|
|
Smart ASP Survey - Cross-Site Scripting / SQL Injection
|
4 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-14
|
|
E-Book Store - SQL Injection
|
3 |
WEB
|
Valentin
|
|
2010-06-14
|
|
Joke Website Script - SQL Injection / Cross-Site Scripting
|
4 |
WEB
|
Valentin
|
|
2010-06-14
|
|
Daily Inspirational Quotes Script - SQL Injection
|
4 |
WEB
|
Valentin
|
|
2010-06-14
|
|
Membership Site Script - SQL Injection
|
4 |
WEB
|
Valentin
|
|
2010-06-14
|
|
Lyrics Script - SQL Injection / Cross-Site Scripting
|
4 |
WEB
|
Valentin
|
|
2010-06-13
|
|
Pre Classified Listing - SQL Injection
|
5 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-13
|
|
Real-time ASP Calendar - SQL Injection
|
5 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-13
|
|
Digital Interchange Calendar - SQL Injection
|
4 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-13
|
|
Digital Interchange Document Library - SQL Injection
|
3 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-13
|
|
Eyeland Studio Inc. - 'game.php' SQL Injection
|
3 |
WEB
|
CoBRa_21
|
|
2010-06-13
|
|
Yamamah Photo Gallery 1.00 - 'calbums' SQL Injection
|
4 |
WEB
|
CoBRa_21
|
|
2010-06-13
|
|
Yamamah Photo Gallery 1.00 - 'download.php' Local File Disclosure
|
4 |
WEB
|
mat
|
|
2010-06-13
|
|
Eyeland Studio Inc. - SQL Injection
|
3 |
WEB
|
Mr.P3rfekT
|
|
2010-06-13
|
|
UTStats - Cross-Site Scripting / SQL Injection / Full Path Disclosure
|
4 |
WEB
|
LuM Member
|
|
2010-06-13
|
|
PHPplanner PHP Planner 0.4 - Multiple Vulnerabilities
|
4 |
WEB
|
cp77fk4r
|
|
2010-06-12
|
|
Yamamah 1.0 - SQL Injection
|
4 |
WEB
|
TheMaStEr
|
|
2010-06-12
|
|
Infront - SQL Injection
|
4 |
WEB
|
TheMaStEr
|
|
2010-06-12
|
|
phpplanner - Cross-Site Scripting / SQL Injection
|
4 |
WEB
|
anT!-Tr0J4n
|
|
2010-06-12
|
|
BDSMIS TraX with Payroll - SQL Injection
|
4 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-12
|
|
Yamamah - 'news' SQL Injection / Source Code Disclosure
|
3 |
WEB
|
anT!-Tr0J4n
|
|
2010-06-12
|
|
Collabtive 0.6.3 - Multiple Vulnerabilities
|
4 |
WEB
|
DNX
|
|
2010-06-12
|
|
BrightSuite Groupware - SQL Injection
|
4 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-12
|
|
VU Web Visitor Analyst - Authentication Bypass
|
4 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-12
|
|
VU Mass Mailer - Authentication Bypass
|
4 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-12
|
|
VU Case Manager - Authentication Bypass
|
4 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-11
|
|
DaLogin 2.2 - 'FCKeditor' Arbitrary File Upload
|
4 |
WEB
|
eidelweiss
|
|
2010-06-11
|
|
Parallels System Automation (PSA) - Local File Inclusion
|
4 |
WEB
|
Pouya Daneshmand
|
|
2010-06-11
|
|
ardeacore 2.2 - Remote File Inclusion
|
4 |
WEB
|
cr4wl3r
|
|
2010-06-11
|
|
Full Site for Restaurant - SQL Injection
|
4 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-11
|
|
DaLogin - Multiple Vulnerabilities
|
4 |
WEB
|
hc0
|
|
2010-06-11
|
|
Site to Store Automobile - Motorcycle Boat SQL Injection
|
4 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-11
|
|
Development Site Professional Liberal - Company Institutional SQL Injection
|
4 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-11
|
|
Site for Real Estate - Brokers SQL Injection
|
4 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-11
|
|
E-PHP B2B Marketplace - Multiple Vulnerabilities
|
5 |
WEB
|
MizoZ
|
|
2010-06-10
|
|
Miniweb 2.0 Business Portal and Social Networking Platform - SQL Injection
|
4 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-10
|
|
Netvolution CMS 2.x - SQL Injection Script
|
4 |
WEB
|
amquen & krumel
|
|
2010-06-10
|
|
Pars Design CMS - Arbitrary File Upload
|
4 |
WEB
|
Securitylab.ir
|
|
2010-06-10
|
|
Store Locator - Cross-Site Request Forgery (Add Admin)
|
5 |
WEB
|
JaMbA
|
|
2010-06-10
|
|
SchoolMation 2.3 - SQL Injection / Cross-Site Scripting
|
4 |
WEB
|
Sid3^effects
|
|
2010-06-10
|
|
AWCM CMS - Local File Inclusion
|
4 |
WEB
|
SwEET-DeViL
|
|
2010-06-09
|
|
BtiTracker 1.3.x < 1.4.x - SQL Injection
|
4 |
WEB
|
TinKode
|
|
2010-06-09
|
|
PHP Property Rental Script - SQL Injection / Cross-Site Scripting
|
5 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-09
|
|
Joomla! Component com_jnewsletter - SQL Injection
|
4 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
PHPAccess - SQL Injection
|
4 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-09
|
|
PHP Real Estate Script - SQL Injection
|
4 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-09
|
|
Science Fair In A Box - SQL Injection / Cross-Site Scripting
|
4 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-09
|
|
Joomla! Component com_jsubscription - SQL Injection
|
4 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
Joomla! Component com_jmarket - SQL Injection
|
4 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
Joomla! Component com_jcommunity - SQL Injection
|
4 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
Joomla! Component com_jtickets - SQL Injection
|
5 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
Joomla! Component com_jstore - SQL Injection
|
3 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
Joomla! Component Jreservation 1.5 - SQL Injection / Cross-Site Scripting
|
4 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
Online Notebook Manager - SQL Injection
|
4 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-09
|
|
Joomla! Component cinema - SQL Injection
|
4 |
WEB
|
Sudden_death
|
|
2010-06-09
|
|
iClone - SQL Injection
|
4 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
Virtual Real Estate Manager 3.5 - SQL Injection
|
4 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
Web Wiz Forums 9.68 - SQL Injection
|
4 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
PGAUTOPro - SQL Injection / Cross-Site Scripting (1)
|
4 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
eLms Pro - SQL Injection / Cross-Site Scripting
|
4 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
HauntmAx CMS Haunted House - Directory Listing / SQL Injection
|
4 |
WEB
|
Sid3^effects
|
|
2010-06-09
|
|
GREEZLE - Global Real Estate Agent Site Auth SQL Injection
|
4 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-08
|
|
Image Store - Arbitrary File Upload
|
4 |
WEB
|
Mr.FireStormm
|
|
2010-06-08
|
|
phpList 2.8.11 - SQL Injection
|
4 |
WEB
|
d3v1l
|
|
2010-06-08
|
|
Pre Web Host - SQL Injection
|
4 |
WEB
|
Mr.Benladen
|
|
2010-06-08
|
|
Phreebooks 2.0 - Directory Traversal
|
4 |
WEB
|
Gustavo Sorondo
|
|
2010-06-08
|
|
Phreebooks 2.0 - Local File Inclusion
|
4 |
WEB
|
Gustavo Sorondo
|
|
2010-06-08
|
|
Phreebooks 2.0 - Multiple Persistent Cross-Site Scripting Vulnerabilities
|
4 |
WEB
|
Gustavo Sorondo
|
|
2010-06-08
|
|
Holiday Travel Portal - Arbitrary File Upload
|
4 |
WEB
|
Sid3^effects
|
|
2010-06-08
|
|
Rayzz Photoz - Arbitrary File Upload
|
4 |
WEB
|
Sid3^effects
|
|
2010-06-08
|
|
EMO Realty Manager - SQL Injection
|
5 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-08
|
|
Hotel / Resort Site Script with OnLine Reservation System - SQL Injection
|
4 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-08
|
|
CafeEngine 2.3 - SQL Injection
|
4 |
WEB
|
Sid3^effects
|
|
2010-06-08
|
|
Home of MCLogin System - Authentication Bypass
|
4 |
WEB
|
L0rd CrusAd3r
|
|
2010-06-07
|
|
CommonSense CMS - SQL Injection
|
5 |
WEB
|
Pokeng
|
|
2010-06-07
|
|
JForum 2.1.8 BookMarks - Cross-Site Request Forgery / Cross-Site Scripting
|
4 |
WEB
|
Adam Baldwin
|
|
2010-06-06
|
|
ReVou Twitter Clone 2.0 Beta - SQL Injection / Cross-Site Scripting
|
4 |
WEB
|
Sid3^effects
|
|
2010-06-06
|
|
greeting card - Arbitrary File Upload
|
5 |
WEB
|
Mr.Benladen
|
|
2010-06-06
|
|
WebBiblio Subject Gateway System - Local File Inclusion
|
3 |
WEB
|
AntiSecurity
|
|
2010-06-06
|
|
idevspot Text ads 2.08 - SQL Injection
|
4 |
WEB
|
Sid3^effects
|
|
2010-06-06
|
|
Joomla! Component com_annonces - Arbitrary File Upload
|
4 |
WEB
|
Sid3^effects
|
|
2010-06-06
|
|
PHP Car Rental Complete System 1.2 - SQL Injection
|
5 |
WEB
|
Sid3^effects
|
|
2010-06-06
|
|
Joomla! Component Search Log 3.1.0 - SQL Injection
|
5 |
WEB
|
d0lc3
|
|
2010-06-06
|
|
Sphider Script - Remote Code Execution
|
4 |
WEB
|
XroGuE
|
|
2010-06-06
|
|
RTRandomImage - Remote File Inclusion
|
4 |
WEB
|
Sn!pEr.S!Te Hacker
|
|
2010-06-06
|
|
iScripts easybiller 1.1 - SQL Injection
|
4 |
WEB
|
Sid3^effects
|
|
2010-06-06
|
|
iScripts eSwap 2.0 - SQL Injection / Cross-Site Scripting
|
3 |
WEB
|
Sid3^effects
|
|
2010-06-06
|
|
WmsCMS - Cross-Site Scripting / SQL Injection
|
4 |
WEB
|
Ariko-Security
|
|
2010-06-06
|
|
PHP Director 0.2 - SQL Injection
|
3 |
WEB
|
Mr.Rat
|
|
2010-06-06
|
|
Joomla! Component DJ-ArtGallery 0.9.1 - Multiple Vulnerabilities
|
4 |
WEB
|
d0lc3
|
|
2010-06-06
|
|
DDLCMS 2.1 - 'skin' Remote File Inclusion
|
4 |
WEB
|
eidelweiss
|
|
2010-06-03
|
|
Joomla! Component com_lead - SQL Injection
|
5 |
WEB
|
ByEge
|
|
2010-06-03
|
|
clickartweb Design - SQL Injection
|
4 |
WEB
|
cyberlog
|
|
2010-06-03
|
|
K9 Kreativity Design - 'pages.php' SQL Injection
|
3 |
WEB
|
Newbie_Campuz
|
|
2010-06-03
|
|
PHP SETI@home Web monitor - 'PHPsetimon' Local/Remote File Inclusion
|
4 |
WEB
|
eidelweiss
|
|
2010-06-03
|
|
Advneced Management For Services Sites - File Disclosure
|
4 |
WEB
|
indoushka
|
|
2010-06-03
|
|
Article Management System 2.1.2 - Reinstall
|
4 |
WEB
|
indoushka
|
|
2010-06-03
|
|
E-book Store - Multiple Vulnerabilities
|
4 |
WEB
|
indoushka
|
|
2010-06-03
|
|
osCSS 1.2.1 - Arbitrary File Upload
|
4 |
WEB
|
indoushka
|
|
2010-06-03
|
|
phpBazar 2.1.1 stable - Remote File Inclusion
|
4 |
WEB
|
Sid3^effects
|
|
2010-06-03
|
|
Member ID The Fish Index PHP - SQL Injection
|
4 |
WEB
|
v4lc0m87
|
|
2010-06-03
|
|
slogan design Script - SQL Injection
|
4 |
WEB
|
Mr.P3rfekT
|
|
2010-06-02
|
|
SIMM Management System (SMS) - Local File Inclusion
|
4 |
WEB
|
AntiSecurity
|
|
2010-06-02
|
|
Vastal I-Tech - SQL Injection
|
4 |
WEB
|
HELLBOY
|
|
2010-06-02
|
|
Joomla! Component ChronoForms - Blind SQL Injection
|
4 |
WEB
|
_mlk_
|
|
2010-06-02
|
|
Joomla! Component ChronoConnectivity - Blind SQL Injection
|
4 |
WEB
|
_mlk_
|
|
2010-06-01
|
|
Ticimax E-Ticaret - SQL Injection
|
2 |
WEB
|
Neuromancer
|
|
2010-06-01
|
|
Delivering Digital Media CMS - SQL Injection
|
4 |
WEB
|
Dr.0rYX & Cr3W-DZ
|
|
2010-06-01
|
|
Hexjector 1.0.7.2 - Persistent Cross-Site Scripting
|
4 |
WEB
|
hexon
|
