|
2010-05-01
|
|
Opencimetiere 2.01 - Multiple Remote File Inclusions
|
8 |
WEB
|
cr4wl3r
|
|
2010-05-01
|
|
Opencatalogue 1.024 - Local File Inclusion
|
8 |
WEB
|
cr4wl3r
|
|
2010-05-01
|
|
Joomla! Component Card View JX - Cross-Site Scripting
|
7 |
WEB
|
Valentin
|
|
2010-05-01
|
|
Joomla! Component Table JX - Cross-Site Scripting
|
8 |
WEB
|
Valentin
|
|
2010-05-01
|
|
CF Image Host 1.1 - Remote File Inclusion
|
8 |
WEB
|
The.Morpheus
|
|
2010-05-01
|
|
Comersus 8 Shopping Cart - SQL Injection / Cross-Site Request Forgery
|
8 |
WEB
|
Sid3^effects
|
|
2010-04-30
|
|
Alibaba Clone Platinum - 'offers_buy.php' SQL Injection
|
8 |
WEB
|
v3n0m
|
|
2010-04-30
|
|
Webthaiapp - 'detail.php?cat' Blind SQL Injection
|
8 |
WEB
|
Xelenonz
|
|
2010-04-30
|
|
Puntal 2.1.0 - Remote File Inclusion
|
8 |
WEB
|
eidelweiss
|
|
2010-04-30
|
|
Joomla! Component Newsfeeds - SQL Injection
|
8 |
WEB
|
Archimonde
|
|
2010-04-30
|
|
ASPCode CMS 1.5.8 - Multiple Vulnerabilities
|
8 |
WEB
|
Dr. Alberto Fontanella
|
|
2010-04-30
|
|
New-CMS - Multiple Vulnerabilities
|
8 |
WEB
|
Dr. Alberto Fontanella
|
|
2010-04-30
|
|
AutoDealer 1.0/2.0 - MSSQL Injection
|
8 |
WEB
|
Sid3^effects
|
|
2010-04-30
|
|
JobPost - SQL Injection
|
7 |
WEB
|
Sid3^effects
|
|
2010-04-30
|
|
B2B Gold Script - 'id' SQL Injection
|
8 |
WEB
|
v3n0m
|
|
2010-04-30
|
|
ec21 clone 3.0 - 'id' SQL Injection
|
8 |
WEB
|
v3n0m
|
|
2010-04-29
|
|
Scratcher - SQL Injection / Cross-Site Scripting
|
8 |
WEB
|
cr4wl3r
|
|
2010-04-29
|
|
chCounter - indirect SQL Injection / Cross-Site Scripting
|
8 |
WEB
|
Valentin
|
|
2010-04-29
|
|
Ucenter Projekt 2.0 - Insecure crossdomain (Cross-Site Scripting)
|
8 |
WEB
|
indoushka
|
|
2010-04-29
|
|
Zyke CMS 1.0 - Arbitrary File Upload
|
8 |
WEB
|
indoushka
|
|
2010-04-29
|
|
Zyke CMS 1.1 - Bypass
|
8 |
WEB
|
indoushka
|
|
2010-04-29
|
|
TaskFreak 0.6.2 - SQL Injection
|
8 |
WEB
|
Justin C. Klein Keane
|
|
2010-04-29
|
|
iScripts VisualCaster - SQL Injection
|
8 |
WEB
|
Sid3^effects
|
|
2010-04-29
|
|
Microsoft SharePoint Server 2007 - Cross-Site Scripting
|
8 |
WEB
|
High-Tech Bridge SA
|
|
2010-04-29
|
|
DZCP (deV!L_z Clanportal) 1.5.3 - Multiple Vulnerabilities
|
7 |
WEB
|
indoushka
|
|
2010-04-29
|
|
Socialware 2.2 - Upload / Cross-Site Scripting
|
7 |
WEB
|
Sid3^effects
|
|
2010-04-29
|
|
XT-Commerce 1.0 Beta 1 - Pass / Create and Download Backup
|
6 |
WEB
|
indoushka
|
|
2010-04-29
|
|
TR Forum 1.5 - Multiple Vulnerabilities
|
7 |
WEB
|
indoushka
|
|
2010-04-29
|
|
Articles Directory - Authentication Bypass
|
7 |
WEB
|
Sid3^effects
|
|
2010-04-28
|
|
PHP Video Battle - SQL Injection
|
8 |
WEB
|
v3n0m
|
|
2010-04-28
|
|
Modelbook - 'casting_view.php' SQL Injection
|
7 |
WEB
|
v3n0m
|
|
2010-04-28
|
|
GeneShop 5.1.1 - SQL Injection
|
8 |
WEB
|
41.w4r10r
|
|
2010-04-28
|
|
gpEasy 1.6.1 - Cross-Site Request Forgery (Add Admin)
|
8 |
WEB
|
Giuseppe 'giudinvx' D'Inverno
|
|
2010-04-28
|
|
Joomla! Component Wap4Joomla! - 'wapmain.php' SQL Injection
|
7 |
WEB
|
Manas58
|
|
2010-04-28
|
|
SoftBizScripts Hosting Script - SQL Injection
|
8 |
WEB
|
41.w4r10r
|
|
2010-04-28
|
|
SoftBizScripts Dating Script - SQL Injection
|
8 |
WEB
|
41.w4r10r
|
|
2010-04-28
|
|
Pligg CMS 1.0.4 - 'story.php' SQL Injection
|
8 |
WEB
|
Don Tukulesto
|
|
2010-04-01
|
|
Zabbix 1.8.1 - SQL Injection
|
8 |
WEB
|
Dawid Golunski
|
|
2010-04-28
|
|
NIBE heat pump - Local File Inclusion
|
8 |
WEB
|
Jelmer de Hen
|
|
2010-04-28
|
|
NIBE heat pump - Remote Code Execution
|
8 |
WEB
|
Jelmer de Hen
|
|
2010-04-28
|
|
Joomla! Component com_jesectionfinder - Arbitrary File Upload
|
8 |
WEB
|
Sid3^effects
|
|
2010-04-27
|
|
Joomla! Component Graphics 1.0.6 - Local File Inclusion
|
8 |
WEB
|
wishnusakti + inc0mp13te
|
|
2010-04-27
|
|
Joomla! Component ABC 1.1.7 - SQL Injection
|
8 |
WEB
|
AntiSecurity
|
|
2010-04-27
|
|
Joomla! Component SmartSite 1.0.0 - Local File Inclusion
|
8 |
WEB
|
AntiSecurity
|
|
2010-04-27
|
|
Joomla! Component NoticeBoard 1.3 - Local File Inclusion
|
8 |
WEB
|
AntiSecurity
|
|
2010-04-27
|
|
Joomla! Component Ultimate Portfolio 1.0 - Local File Inclusion
|
7 |
WEB
|
AntiSecurity
|
|
2010-04-27
|
|
Acart 2.0 Shopping Cart - Software Backup Dump
|
7 |
WEB
|
indoushka
|
|
2010-04-27
|
|
CLScript.com Classifieds Software - SQL Injection
|
8 |
WEB
|
41.w4r10
|
|
2010-04-27
|
|
Help Center Live 2.0.6 - 'module=helpcenter&file=' Local File Inclusion
|
8 |
WEB
|
41.w4r10r
|
|
2010-04-27
|
|
Portaneo Portal 2.2.3 - Arbitrary File Upload
|
8 |
WEB
|
eidelweiss
|
|
2010-04-27
|
|
Boutique SudBox 1.2 - Cross-Site Request Forgery (Changer Login et Mot de Passe)
|
8 |
WEB
|
indoushka
|
|
2010-04-27
|
|
PHP Quick Arcade 3.0.21 - Multiple Vulnerabilities
|
8 |
WEB
|
ITSecTeam
|
|
2010-04-27
|
|
Infocus Real Estate Enterprise Edition Script - Authentication Bypass
|
8 |
WEB
|
Sid3^effects
|
|
2010-04-27
|
|
2DayBiz Auction Script - Authentication Bypass
|
8 |
WEB
|
Sid3^effects
|
|
2010-04-27
|
|
i-Net Online Community - Cross-Site Scripting / Authentication Bypass
|
8 |
WEB
|
Sid3^effects
|
|
2010-04-27
|
|
Ramaas Software CMS - SQL Injection
|
11 |
WEB
|
41.w4r10r
|
|
2010-04-27
|
|
FreeRealty(Free Real Estate Listing Software) - Authentication Bypass
|
8 |
WEB
|
Sid3^effects
|
|
2010-04-26
|
|
PostNuke 0.764 Module modload - SQL Injection
|
8 |
WEB
|
BILGE_KAGAN
|
|
2010-04-26
|
|
CMScout 2.08 - SQL Injection
|
8 |
WEB
|
Dr.0rYX & Cr3W-DZ
|
|
2010-04-26
|
|
Kasseler CMS 2.0.5 - Bypass / Download Backup
|
8 |
WEB
|
indoushka
|
|
2010-04-26
|
|
Joomla! Component JoomRadio 1.0 - SQL Injection
|
8 |
WEB
|
Mr.tro0oqy
|
|
2010-04-26
|
|
Uiga Personal Portal - 'index.php' 'view' SQL Injection
|
10 |
WEB
|
41.w4r10r
|
|
2010-04-26
|
|
Opencourrier 2.03beta - Local File Inclusion / Remote File Inclusion
|
9 |
WEB
|
cr4wl3r
|
|
2010-04-26
|
|
OpenCominterne 1.01 - Local File Inclusion
|
9 |
WEB
|
cr4wl3r
|
|
2010-04-26
|
|
2DayBiz Advanced Poll Script - Cross-Site Scripting / Authentication Bypass
|
8 |
WEB
|
Sid3^effects
|
|
2010-04-25
|
|
webessence 1.0.2 - Multiple Vulnerabilities
|
8 |
WEB
|
r00t
|
|
2010-04-25
|
|
PHP Classifieds 6.09 - E-mail Dump
|
8 |
WEB
|
indoushka
|
|
2010-04-25
|
|
TR Forum 1.5 - Cross-Site Request Forgery (Add Admin)
|
7 |
WEB
|
EL-KAHINA
|
|
2010-04-25
|
|
Powered by iNetScripts - Arbitrary File Upload
|
7 |
WEB
|
Sec-q8
|
|
2010-04-25
|
|
clipak - Arbitrary File Upload
|
7 |
WEB
|
indoushka
|
|
2010-04-25
|
|
phpegasus 0.1.2 - 'FCKeditor' Arbitrary File Upload
|
7 |
WEB
|
eidelweiss
|
|
2010-04-25
|
|
CMS Firebrand Tec - Local File Inclusion
|
8 |
WEB
|
R3VAN_BASTARD
|
|
2010-04-24
|
|
SmodCMS 4.07 (fckeditor) - Arbitrary File Upload
|
7 |
WEB
|
eidelweiss
|
|
2010-04-24
|
|
G5 Scripts Guestbook PHP 1.2.8 - Cross-Site Scripting
|
8 |
WEB
|
Valentin
|
|
2010-04-24
|
|
Sethi Family Guestbook 3.1.8 - Cross-Site Scripting
|
8 |
WEB
|
Valentin
|
|
2010-04-24
|
|
Alstrasoft AskMe Pro 2.1 - 'que_id' SQL Injection
|
8 |
WEB
|
v3n0m
|
|
2010-04-24
|
|
WHMCompleteSolution (WHMCS) control (WHMCompleteSolution) - SQL Injection
|
8 |
WEB
|
Islam DefenDers
|
|
2010-04-24
|
|
NCT Jobs Portal Script - Cross-Site Scripting / Authentication Bypass
|
8 |
WEB
|
Sid3^effects
|
|
2010-04-24
|
|
Madirish Webmail 2.01 - 'baseDir' Local/Remote File Inclusion
|
8 |
WEB
|
eidelweiss
|
|
2010-04-24
|
|
Openfoncier 2.00 - Local File Inclusion / Remote File Inclusion
|
8 |
WEB
|
cr4wl3r
|
|
2010-04-24
|
|
Openplanning 1.00 - Local File Inclusion / Remote File Inclusion
|
8 |
WEB
|
cr4wl3r
|
|
2010-04-24
|
|
Openpresse 1.01 - Local File Inclusion
|
7 |
WEB
|
cr4wl3r
|
|
2010-04-23
|
|
lanewsfactory - Multiple Vulnerabilities
|
7 |
WEB
|
Salvatore Fresta
|
|
2010-04-23
|
|
Template Seller Pro 3.25 - 'tempid' SQL Injection
|
7 |
WEB
|
v3n0m
|
|
2010-04-23
|
|
Memorial Web Site Script - Multiple Arbitrary Delete Vulnerabilities
|
7 |
WEB
|
Chip d3 bi0s
|
|
2010-04-23
|
|
Memorial Web Site Script - Reset Password / Insecure Cookie Handling
|
9 |
WEB
|
Chip d3 bi0s
|
|
2010-04-23
|
|
Excitemedia CMS - SQL Injection
|
8 |
WEB
|
Dr.0rYX & Cr3W-DZ
|
|
2010-04-23
|
|
NKINFOWEB - SQL Injection
|
7 |
WEB
|
d4rk-h4ck3r
|
|
2010-04-23
|
|
EPay Enterprise 4.13 - 'cid' SQL Injection
|
7 |
WEB
|
v3n0m
|
|
2010-04-23
|
|
memorial Web site script - 'id' SQL Injection
|
6 |
WEB
|
v3n0m
|
|
2010-04-23
|
|
In-portal 5.0.3 - Arbitrary File Upload
|
6 |
WEB
|
eidelweiss
|
|
2010-04-22
|
|
AJ Shopping Cart 1.0 (maincatid) - SQL Injection
|
7 |
WEB
|
v3n0m
|
|
2010-04-22
|
|
AJ Matrix 3.1 - 'id' Multiple SQL Injections
|
7 |
WEB
|
v3n0m
|
|
2010-04-22
|
|
phpGreetCards 3.7 - Cross-Site Scripting
|
7 |
WEB
|
Valentin
|
|
2010-04-22
|
|
Cacti 0.8.7e - OS Command Injection
|
8 |
WEB
|
Nahuel Grisolia
|
|
2010-04-22
|
|
Cacti 0.8.7e - SQL Injection
|
7 |
WEB
|
Nahuel Grisolia
|
|
2010-04-22
|
|
cms (id) 5.0 - SQL Injection
|
8 |
WEB
|
spykit
|
|
2010-04-21
|
|
Apache OFBiz - Multiple Cross-Site Scripting Vulnerabilities
|
8 |
WEB
|
Lucas Apa
|
|
2010-04-21
|
|
CactuShop - User Invoices Persistent Cross-Site Scripting
|
9 |
WEB
|
7Safe
|
|
2010-04-21
|
|
Joomla! Component com_portfolio - Local File Disclosure
|
9 |
WEB
|
Mr.tro0oqy
|
|
2010-04-21
|
|
wb news (webmobo) 2.3.3 - Persistent Cross-Site Scripting
|
8 |
WEB
|
ITSecTeam
|
|
2010-04-21
|
|
LightNEasy 3.1.x - Multiple Vulnerabilities
|
8 |
WEB
|
ITSecTeam
|
|
2010-04-21
|
|
e107 CMS 0.7.19 - Cross-Site Request Forgery
|
8 |
WEB
|
High-Tech Bridge SA
|
|
2010-04-21
|
|
Joomla! Component MMS Blog 2.3.0 - Local File Inclusion
|
8 |
WEB
|
AntiSecurity
|
|
2010-04-21
|
|
Joomla! Component OrgChart 1.0.0 - Local File Inclusion
|
8 |
WEB
|
AntiSecurity
|
|
2010-04-21
|
|
Joomla! Component WMI 1.5.0 - Local File Inclusion
|
8 |
WEB
|
wishnusakti + inc0mp13te
|
|
2010-04-21
|
|
v2marketplacescript Upload_images Script (-7777) - Arbitrary File Upload
|
8 |
WEB
|
cyberlog
|
|
2010-04-20
|
|
Openregistrecil 1.02 - Local File Inclusion / Remote File Inclusion
|
8 |
WEB
|
cr4wl3r
|
|
2010-04-20
|
|
Joomla! Component JTM Reseller 1.9 Beta - SQL Injection
|
7 |
WEB
|
kaMtiEz
|
|
2010-04-20
|
|
Joomla! Component Online News Paper Manager 1.0 - 'cid' SQL Injection
|
9 |
WEB
|
Don Tukulesto
|
|
2010-04-20
|
|
MusicBox 3.3 - SQL Injection
|
8 |
WEB
|
Ctacok
|
|
2010-04-19
|
|
CMS Ariadna 2009 - SQL Injection
|
8 |
WEB
|
Andrés Gómez
|
|
2010-04-19
|
|
Joomla! Component GBU Facebook 1.0.5 - SQL Injection
|
8 |
WEB
|
kaMtiEz
|
|
2010-04-19
|
|
Openreglement 1.04 - Local File Inclusion / Remote File Inclusion
|
7 |
WEB
|
cr4wl3r
|
|
2010-04-19
|
|
N/X Web CMS (N/X WCMS 4.5) - Multiple Vulnerabilities
|
8 |
WEB
|
eidelweiss
|
|
2010-04-19
|
|
Flex File Manager - Arbitrary File Upload
|
7 |
WEB
|
Mr.MLL
|
|
2010-04-18
|
|
Joomla! Component iF surfALERT 1.2 - Local File Inclusion
|
8 |
WEB
|
AntiSecurity
|
|
2010-04-18
|
|
Joomla! Component com_google - Local File Inclusion
|
7 |
WEB
|
AntiSecurity
|
|
2010-04-18
|
|
Joomla! Component iNetLanka Contact Us Draw Root Map 1.1 - Local File Inclusion
|
6 |
WEB
|
AntiSecurity
|
|
2010-04-18
|
|
Joomla! Component iNetLanka Multiple Map 1.0 - Local File Inclusion
|
7 |
WEB
|
AntiSecurity
|
|
2010-04-18
|
|
Joomla! Component iNetLanka Multiple root 1.0 - Local File Inclusion
|
6 |
WEB
|
AntiSecurity
|
|
2010-04-18
|
|
Joomla! Component Matamko 1.01 - Local File Inclusion
|
7 |
WEB
|
AntiSecurity
|
|
2010-04-18
|
|
Joomla! Component Gadget Factory 1.0.0 - Local File Inclusion
|
7 |
WEB
|
AntiSecurity
|
|
2010-04-18
|
|
Joomla! Component ZiMBCore 0.1 - Local File Inclusion
|
7 |
WEB
|
AntiSecurity
|
|
2010-04-18
|
|
Joomla! Component ZiMB Comment 0.8.1 - Local File Inclusion
|
7 |
WEB
|
AntiSecurity
|
