|
2010-04-29
|
|
DZCP (deV!L_z Clanportal) 1.5.3 - Multiple Vulnerabilities
|
4 |
WEB
|
indoushka
|
|
2010-04-29
|
|
Socialware 2.2 - Upload / Cross-Site Scripting
|
4 |
WEB
|
Sid3^effects
|
|
2010-04-29
|
|
XT-Commerce 1.0 Beta 1 - Pass / Create and Download Backup
|
4 |
WEB
|
indoushka
|
|
2010-04-29
|
|
TR Forum 1.5 - Multiple Vulnerabilities
|
4 |
WEB
|
indoushka
|
|
2010-04-29
|
|
Articles Directory - Authentication Bypass
|
4 |
WEB
|
Sid3^effects
|
|
2010-04-28
|
|
PHP Video Battle - SQL Injection
|
4 |
WEB
|
v3n0m
|
|
2010-04-28
|
|
Modelbook - 'casting_view.php' SQL Injection
|
3 |
WEB
|
v3n0m
|
|
2010-04-28
|
|
GeneShop 5.1.1 - SQL Injection
|
4 |
WEB
|
41.w4r10r
|
|
2010-04-28
|
|
gpEasy 1.6.1 - Cross-Site Request Forgery (Add Admin)
|
4 |
WEB
|
Giuseppe 'giudinvx' D'Inverno
|
|
2010-04-28
|
|
Joomla! Component Wap4Joomla! - 'wapmain.php' SQL Injection
|
3 |
WEB
|
Manas58
|
|
2010-04-28
|
|
SoftBizScripts Hosting Script - SQL Injection
|
4 |
WEB
|
41.w4r10r
|
|
2010-04-28
|
|
SoftBizScripts Dating Script - SQL Injection
|
4 |
WEB
|
41.w4r10r
|
|
2010-04-28
|
|
Pligg CMS 1.0.4 - 'story.php' SQL Injection
|
4 |
WEB
|
Don Tukulesto
|
|
2010-04-01
|
|
Zabbix 1.8.1 - SQL Injection
|
4 |
WEB
|
Dawid Golunski
|
|
2010-04-28
|
|
NIBE heat pump - Local File Inclusion
|
4 |
WEB
|
Jelmer de Hen
|
|
2010-04-28
|
|
NIBE heat pump - Remote Code Execution
|
4 |
WEB
|
Jelmer de Hen
|
|
2010-04-28
|
|
Joomla! Component com_jesectionfinder - Arbitrary File Upload
|
4 |
WEB
|
Sid3^effects
|
|
2010-04-27
|
|
Joomla! Component Graphics 1.0.6 - Local File Inclusion
|
4 |
WEB
|
wishnusakti + inc0mp13te
|
|
2010-04-27
|
|
Joomla! Component ABC 1.1.7 - SQL Injection
|
4 |
WEB
|
AntiSecurity
|
|
2010-04-27
|
|
Joomla! Component SmartSite 1.0.0 - Local File Inclusion
|
4 |
WEB
|
AntiSecurity
|
|
2010-04-27
|
|
Joomla! Component NoticeBoard 1.3 - Local File Inclusion
|
4 |
WEB
|
AntiSecurity
|
|
2010-04-27
|
|
Joomla! Component Ultimate Portfolio 1.0 - Local File Inclusion
|
4 |
WEB
|
AntiSecurity
|
|
2010-04-27
|
|
Acart 2.0 Shopping Cart - Software Backup Dump
|
4 |
WEB
|
indoushka
|
|
2010-04-27
|
|
CLScript.com Classifieds Software - SQL Injection
|
4 |
WEB
|
41.w4r10
|
|
2010-04-27
|
|
Help Center Live 2.0.6 - 'module=helpcenter&file=' Local File Inclusion
|
4 |
WEB
|
41.w4r10r
|
|
2010-04-27
|
|
Portaneo Portal 2.2.3 - Arbitrary File Upload
|
4 |
WEB
|
eidelweiss
|
|
2010-04-27
|
|
Boutique SudBox 1.2 - Cross-Site Request Forgery (Changer Login et Mot de Passe)
|
4 |
WEB
|
indoushka
|
|
2010-04-27
|
|
PHP Quick Arcade 3.0.21 - Multiple Vulnerabilities
|
4 |
WEB
|
ITSecTeam
|
|
2010-04-27
|
|
Infocus Real Estate Enterprise Edition Script - Authentication Bypass
|
4 |
WEB
|
Sid3^effects
|
|
2010-04-27
|
|
2DayBiz Auction Script - Authentication Bypass
|
3 |
WEB
|
Sid3^effects
|
|
2010-04-27
|
|
i-Net Online Community - Cross-Site Scripting / Authentication Bypass
|
4 |
WEB
|
Sid3^effects
|
|
2010-04-27
|
|
Ramaas Software CMS - SQL Injection
|
7 |
WEB
|
41.w4r10r
|
|
2010-04-27
|
|
FreeRealty(Free Real Estate Listing Software) - Authentication Bypass
|
3 |
WEB
|
Sid3^effects
|
|
2010-04-26
|
|
PostNuke 0.764 Module modload - SQL Injection
|
4 |
WEB
|
BILGE_KAGAN
|
|
2010-04-26
|
|
CMScout 2.08 - SQL Injection
|
4 |
WEB
|
Dr.0rYX & Cr3W-DZ
|
|
2010-04-26
|
|
Kasseler CMS 2.0.5 - Bypass / Download Backup
|
4 |
WEB
|
indoushka
|
|
2010-04-26
|
|
Joomla! Component JoomRadio 1.0 - SQL Injection
|
4 |
WEB
|
Mr.tro0oqy
|
|
2010-04-26
|
|
Uiga Personal Portal - 'index.php' 'view' SQL Injection
|
5 |
WEB
|
41.w4r10r
|
|
2010-04-26
|
|
Opencourrier 2.03beta - Local File Inclusion / Remote File Inclusion
|
5 |
WEB
|
cr4wl3r
|
|
2010-04-26
|
|
OpenCominterne 1.01 - Local File Inclusion
|
5 |
WEB
|
cr4wl3r
|
|
2010-04-26
|
|
2DayBiz Advanced Poll Script - Cross-Site Scripting / Authentication Bypass
|
4 |
WEB
|
Sid3^effects
|
|
2010-04-25
|
|
webessence 1.0.2 - Multiple Vulnerabilities
|
4 |
WEB
|
r00t
|
|
2010-04-25
|
|
PHP Classifieds 6.09 - E-mail Dump
|
4 |
WEB
|
indoushka
|
|
2010-04-25
|
|
TR Forum 1.5 - Cross-Site Request Forgery (Add Admin)
|
3 |
WEB
|
EL-KAHINA
|
|
2010-04-25
|
|
Powered by iNetScripts - Arbitrary File Upload
|
4 |
WEB
|
Sec-q8
|
|
2010-04-25
|
|
clipak - Arbitrary File Upload
|
4 |
WEB
|
indoushka
|
|
2010-04-25
|
|
phpegasus 0.1.2 - 'FCKeditor' Arbitrary File Upload
|
4 |
WEB
|
eidelweiss
|
|
2010-04-25
|
|
CMS Firebrand Tec - Local File Inclusion
|
5 |
WEB
|
R3VAN_BASTARD
|
|
2010-04-24
|
|
SmodCMS 4.07 (fckeditor) - Arbitrary File Upload
|
4 |
WEB
|
eidelweiss
|
|
2010-04-24
|
|
G5 Scripts Guestbook PHP 1.2.8 - Cross-Site Scripting
|
4 |
WEB
|
Valentin
|
|
2010-04-24
|
|
Sethi Family Guestbook 3.1.8 - Cross-Site Scripting
|
4 |
WEB
|
Valentin
|
|
2010-04-24
|
|
Alstrasoft AskMe Pro 2.1 - 'que_id' SQL Injection
|
3 |
WEB
|
v3n0m
|
|
2010-04-24
|
|
WHMCompleteSolution (WHMCS) control (WHMCompleteSolution) - SQL Injection
|
4 |
WEB
|
Islam DefenDers
|
|
2010-04-24
|
|
NCT Jobs Portal Script - Cross-Site Scripting / Authentication Bypass
|
4 |
WEB
|
Sid3^effects
|
|
2010-04-24
|
|
Madirish Webmail 2.01 - 'baseDir' Local/Remote File Inclusion
|
4 |
WEB
|
eidelweiss
|
|
2010-04-24
|
|
Openfoncier 2.00 - Local File Inclusion / Remote File Inclusion
|
4 |
WEB
|
cr4wl3r
|
|
2010-04-24
|
|
Openplanning 1.00 - Local File Inclusion / Remote File Inclusion
|
5 |
WEB
|
cr4wl3r
|
|
2010-04-24
|
|
Openpresse 1.01 - Local File Inclusion
|
4 |
WEB
|
cr4wl3r
|
|
2010-04-23
|
|
lanewsfactory - Multiple Vulnerabilities
|
3 |
WEB
|
Salvatore Fresta
|
|
2010-04-23
|
|
Template Seller Pro 3.25 - 'tempid' SQL Injection
|
4 |
WEB
|
v3n0m
|
|
2010-04-23
|
|
Memorial Web Site Script - Multiple Arbitrary Delete Vulnerabilities
|
4 |
WEB
|
Chip d3 bi0s
|
|
2010-04-23
|
|
Memorial Web Site Script - Reset Password / Insecure Cookie Handling
|
5 |
WEB
|
Chip d3 bi0s
|
|
2010-04-23
|
|
Excitemedia CMS - SQL Injection
|
4 |
WEB
|
Dr.0rYX & Cr3W-DZ
|
|
2010-04-23
|
|
NKINFOWEB - SQL Injection
|
4 |
WEB
|
d4rk-h4ck3r
|
|
2010-04-23
|
|
EPay Enterprise 4.13 - 'cid' SQL Injection
|
4 |
WEB
|
v3n0m
|
|
2010-04-23
|
|
memorial Web site script - 'id' SQL Injection
|
3 |
WEB
|
v3n0m
|
|
2010-04-23
|
|
In-portal 5.0.3 - Arbitrary File Upload
|
3 |
WEB
|
eidelweiss
|
|
2010-04-22
|
|
AJ Shopping Cart 1.0 (maincatid) - SQL Injection
|
4 |
WEB
|
v3n0m
|
|
2010-04-22
|
|
AJ Matrix 3.1 - 'id' Multiple SQL Injections
|
4 |
WEB
|
v3n0m
|
|
2010-04-22
|
|
phpGreetCards 3.7 - Cross-Site Scripting
|
4 |
WEB
|
Valentin
|
|
2010-04-22
|
|
Cacti 0.8.7e - OS Command Injection
|
5 |
WEB
|
Nahuel Grisolia
|
|
2010-04-22
|
|
Cacti 0.8.7e - SQL Injection
|
4 |
WEB
|
Nahuel Grisolia
|
|
2010-04-22
|
|
cms (id) 5.0 - SQL Injection
|
4 |
WEB
|
spykit
|
|
2010-04-21
|
|
Apache OFBiz - Multiple Cross-Site Scripting Vulnerabilities
|
4 |
WEB
|
Lucas Apa
|
|
2010-04-21
|
|
CactuShop - User Invoices Persistent Cross-Site Scripting
|
5 |
WEB
|
7Safe
|
|
2010-04-21
|
|
Joomla! Component com_portfolio - Local File Disclosure
|
5 |
WEB
|
Mr.tro0oqy
|
|
2010-04-21
|
|
wb news (webmobo) 2.3.3 - Persistent Cross-Site Scripting
|
4 |
WEB
|
ITSecTeam
|
|
2010-04-21
|
|
LightNEasy 3.1.x - Multiple Vulnerabilities
|
4 |
WEB
|
ITSecTeam
|
|
2010-04-21
|
|
e107 CMS 0.7.19 - Cross-Site Request Forgery
|
4 |
WEB
|
High-Tech Bridge SA
|
|
2010-04-21
|
|
Joomla! Component MMS Blog 2.3.0 - Local File Inclusion
|
4 |
WEB
|
AntiSecurity
|
|
2010-04-21
|
|
Joomla! Component OrgChart 1.0.0 - Local File Inclusion
|
4 |
WEB
|
AntiSecurity
|
|
2010-04-21
|
|
Joomla! Component WMI 1.5.0 - Local File Inclusion
|
4 |
WEB
|
wishnusakti + inc0mp13te
|
|
2010-04-21
|
|
v2marketplacescript Upload_images Script (-7777) - Arbitrary File Upload
|
4 |
WEB
|
cyberlog
|
|
2010-04-20
|
|
Openregistrecil 1.02 - Local File Inclusion / Remote File Inclusion
|
4 |
WEB
|
cr4wl3r
|
|
2010-04-20
|
|
Joomla! Component JTM Reseller 1.9 Beta - SQL Injection
|
3 |
WEB
|
kaMtiEz
|
|
2010-04-20
|
|
Joomla! Component Online News Paper Manager 1.0 - 'cid' SQL Injection
|
4 |
WEB
|
Don Tukulesto
|
|
2010-04-20
|
|
MusicBox 3.3 - SQL Injection
|
4 |
WEB
|
Ctacok
|
|
2010-04-19
|
|
CMS Ariadna 2009 - SQL Injection
|
4 |
WEB
|
Andrés Gómez
|
|
2010-04-19
|
|
Joomla! Component GBU Facebook 1.0.5 - SQL Injection
|
4 |
WEB
|
kaMtiEz
|
|
2010-04-19
|
|
Openreglement 1.04 - Local File Inclusion / Remote File Inclusion
|
4 |
WEB
|
cr4wl3r
|
|
2010-04-19
|
|
N/X Web CMS (N/X WCMS 4.5) - Multiple Vulnerabilities
|
5 |
WEB
|
eidelweiss
|
|
2010-04-19
|
|
Flex File Manager - Arbitrary File Upload
|
4 |
WEB
|
Mr.MLL
|
|
2010-04-18
|
|
Joomla! Component iF surfALERT 1.2 - Local File Inclusion
|
5 |
WEB
|
AntiSecurity
|
|
2010-04-18
|
|
Joomla! Component com_google - Local File Inclusion
|
4 |
WEB
|
AntiSecurity
|
|
2010-04-18
|
|
Joomla! Component iNetLanka Contact Us Draw Root Map 1.1 - Local File Inclusion
|
3 |
WEB
|
AntiSecurity
|
|
2010-04-18
|
|
Joomla! Component iNetLanka Multiple Map 1.0 - Local File Inclusion
|
3 |
WEB
|
AntiSecurity
|
|
2010-04-18
|
|
Joomla! Component iNetLanka Multiple root 1.0 - Local File Inclusion
|
3 |
WEB
|
AntiSecurity
|
|
2010-04-18
|
|
Joomla! Component Matamko 1.01 - Local File Inclusion
|
4 |
WEB
|
AntiSecurity
|
|
2010-04-18
|
|
Joomla! Component Gadget Factory 1.0.0 - Local File Inclusion
|
4 |
WEB
|
AntiSecurity
|
|
2010-04-18
|
|
Joomla! Component ZiMBCore 0.1 - Local File Inclusion
|
4 |
WEB
|
AntiSecurity
|
|
2010-04-18
|
|
Joomla! Component ZiMB Comment 0.8.1 - Local File Inclusion
|
4 |
WEB
|
AntiSecurity
|
|
2010-04-18
|
|
Joomla! Component Archery Scores 1.0.6 - Local File Inclusion
|
4 |
WEB
|
wishnusakti + inc0mp13te
|
|
2010-04-18
|
|
dl_stats - Multiple Vulnerabilities
|
4 |
WEB
|
Valentin Hoebel
|
|
2010-04-18
|
|
eclime 1.1 - Bypass / Create and Download Backup
|
4 |
WEB
|
indoushka
|
|
2010-04-18
|
|
Alegro 1.2.1 - SQL Injection
|
4 |
WEB
|
indoushka
|
|
2010-04-18
|
|
Openscrutin 1.03 - Local File Inclusion / Remote File Inclusion
|
4 |
WEB
|
cr4wl3r
|
|
2010-04-18
|
|
Redaxo 4.2.1 - Remote File Inclusion
|
4 |
WEB
|
eidelweiss
|
|
2010-04-17
|
|
PHP RapidKill Pro 5.x - Arbitrary File Upload
|
4 |
WEB
|
DigitALL
|
|
2010-04-16
|
|
Joomla! Component com_pandafminigames - SQL Injection
|
4 |
WEB
|
Valentin
|
|
2010-04-16
|
|
Joomla! Component JoltCard 1.2.1 - SQL Injection
|
4 |
WEB
|
Valentin
|
|
2010-04-16
|
|
Uploader 0.7 - Arbitrary File Upload
|
4 |
WEB
|
DigitALL
|
|
2010-04-16
|
|
WebAdmin - Arbitrary File Upload
|
4 |
WEB
|
DigitALL
|
|
2010-04-16
|
|
60 cycleCMS 2.5.2 - Cross-Site Request Forgery (Change Username and Password)
|
3 |
WEB
|
EL-KAHINA
|
|
2010-04-16
|
|
Zyke CMS 1.1 - Authentication Bypass
|
5 |
WEB
|
Giuseppe 'giudinvx' D'Inverno
|
|
2010-04-16
|
|
SIESTTA 2.0 - Local File Inclusion / Cross-Site Scripting
|
5 |
WEB
|
JosS
|
|
2010-04-16
|
|
Joomla! Component com_manager 1.5.3 - 'id' SQL Injection
|
4 |
WEB
|
Islam DefenDers Mr.HaMaDa
|
|
2010-04-16
|
|
ilchClan 1.0.5B - SQL Injection
|
5 |
WEB
|
Easy Laster
|
|
2010-04-16
|
|
FCKEditor Core - 'FileManager test.html' Arbitrary File Upload (1)
|
4 |
WEB
|
Mr.MLL
|
|
2010-04-15
|
|
Camiro-CMS_beta-0.1 - 'FCKeditor' Arbitrary File Upload
|
4 |
WEB
|
eidelweiss
|
|
2010-04-15
|
|
60cycleCMS 2.5.2 - 'DOCUMENT_ROOT' Multiple Local File Inclusions
|
4 |
WEB
|
eidelweiss
|
|
2010-04-15
|
|
Joomla! Component Intellectual Property 1.5.3 - 'id' SQL Injection
|
4 |
WEB
|
v3n0m
|
|
2010-04-15
|
|
Softbiz B2B trading Marketplace Script - buyers_subcategories SQL Injection
|
4 |
WEB
|
AnGrY BoY
|
|
2010-04-14
|
|
RJ-iTop Network Vulnerability Scanner System - Multiple SQL Injections
|
4 |
WEB
|
wsn1983
|
|
2010-04-14
|
|
Nucleus CMS 3.51 (DIR_LIBS) - Multiple Vulnerabilities
|
3 |
WEB
|
eidelweiss
|
|
2010-04-14
|
|
Joomla! Component BeeHeard 1.0 - Local File Inclusion
|
4 |
WEB
|
AntiSecurity
|
