|
2010-04-04
|
|
Joomla! Component redTWITTER 1.0 - Local File Inclusion
|
4 |
WEB
|
NoGe
|
|
2010-04-04
|
|
Joomla! Component redSHOP 1.0 - Local File Inclusion
|
4 |
WEB
|
NoGe
|
|
2010-04-04
|
|
SAGU-PRO 1.0 - Multiple Remote File Inclusions
|
5 |
WEB
|
mat
|
|
2010-04-04
|
|
MassMirror Uploader - Multiple Remote File Inclusions
|
4 |
WEB
|
cr4wl3r
|
|
2010-04-04
|
|
Uiga Proxy - Remote File Inclusion
|
4 |
WEB
|
ITSecTeam
|
|
2010-04-04
|
|
ttCMS 5.0 - Remote File Inclusion
|
4 |
WEB
|
ITSecTeam
|
|
2010-04-04
|
|
nodesforum 1.033 - Remote File Inclusion
|
3 |
WEB
|
ITSecTeam
|
|
2010-04-04
|
|
MunkyScripts Simple Gallery - SQL Injection
|
3 |
WEB
|
ITSecTeam
|
|
2010-04-04
|
|
Prediction League 0.3.8 - Cross-Site Request Forgery (Add Admin)
|
4 |
WEB
|
indoushka
|
|
2010-04-04
|
|
x10 mirco blogging 121 - SQL Injection
|
4 |
WEB
|
ITSecTeam
|
|
2010-04-04
|
|
Solutive CMS - SQL Injection
|
3 |
WEB
|
Th3 RDX
|
|
2010-04-04
|
|
QuickEStore 6.1 - Backup Dump
|
3 |
WEB
|
indoushka
|
|
2010-04-04
|
|
Advanced Management For Services Sites - Bypass Create And Download SQL Backup
|
4 |
WEB
|
indoushka
|
|
2010-04-03
|
|
Joomla! Component JP Jobs 1.4.1 - SQL Injection
|
4 |
WEB
|
Valentin
|
|
2010-04-03
|
|
Edimax AR-7084GA Router - Cross-Site Request Forgery / Persistent Cross-Site Scripting
|
4 |
WEB
|
l3D
|
|
2010-04-03
|
|
Flatpress 0.909.1 - Persistent Cross-Site Scripting
|
4 |
WEB
|
ITSecTeam
|
|
2010-04-03
|
|
Advanced Management For Services Sites - Remote Add Admin
|
4 |
WEB
|
alnjm33
|
|
2010-04-03
|
|
SafeSHOP 1.5.6 - Cross-Site Scripting / Multiple Cross-Site Request Forgery Vulnerabilities
|
4 |
WEB
|
cp77fk4r
|
|
2010-04-03
|
|
PHP-fusion dsmsf Mod Downloads - SQL Injection
|
4 |
WEB
|
Inj3ct0r
|
|
2010-04-03
|
|
phpscripte24 Vor und Rückwärts Auktions System - Blind SQL Injection
|
4 |
WEB
|
Easy Laster
|
|
2010-04-02
|
|
68KB Knowledge Base 1.0.0rc3 - Cross-Site Request Forgery (Edit Main Settings)
|
4 |
WEB
|
Jelmer de Hen
|
|
2010-04-02
|
|
68kb 68KB Base 1.0.0rc3 - Cross-Site Request Forgery (Admin)
|
4 |
WEB
|
Jelmer de Hen
|
|
2010-04-02
|
|
Velhost Uploader Script 1.2 - Local File Inclusion
|
4 |
WEB
|
cr4wl3r
|
|
2010-04-02
|
|
DynPG CMS 4.1.0 - 'popup.php' / 'counter.php' Multiple Vulnerabilities
|
3 |
WEB
|
eidelweiss
|
|
2010-04-02
|
|
Joomla! Component com_football - SQL Injection
|
4 |
WEB
|
DevilZ TM
|
|
2010-04-02
|
|
Joomla! Component com_ops - SQL Injection
|
5 |
WEB
|
DevilZ TM
|
|
2010-04-02
|
|
Joomla! Component com_menu - SQL Injection
|
5 |
WEB
|
DevilZ TM
|
|
2010-04-02
|
|
CMS Made Simple 1.7 - Cross-Site Request Forgery
|
4 |
WEB
|
pratul agrawal
|
|
2010-04-01
|
|
SimpNews 2.16.2 - Multiple SQL Injections
|
5 |
WEB
|
NoGe
|
|
2010-04-01
|
|
Simple Calculator by Peter Rekdal Sunde - Arbitrary File Upload
|
4 |
WEB
|
indoushka
|
|
2010-04-01
|
|
Profi Einzelgebots Auktions System - Blind SQL Injection
|
4 |
WEB
|
Easy Laster
|
|
2010-04-01
|
|
PHP Jokesite 2.0 - exec Command
|
4 |
WEB
|
indoushka
|
|
2010-04-01
|
|
onepound Shop / CMS - Cross-Site Scripting / SQL Injection
|
4 |
WEB
|
Valentin
|
|
2010-04-01
|
|
MusicBox 3.3 - Arbitrary File Upload
|
4 |
WEB
|
indoushka
|
|
2010-04-01
|
|
Joomla! Component webERPcustomer - Local File Inclusion
|
3 |
WEB
|
Chip d3 bi0s
|
|
2010-04-01
|
|
Joomla! Component User Status - Local File Inclusion
|
4 |
WEB
|
Chip d3 bi0s
|
|
2010-04-01
|
|
Joomla! Component Jvehicles - Local File Inclusion
|
4 |
WEB
|
Chip d3 bi0s
|
|
2010-04-01
|
|
Joomla! Component EContent - Local File Inclusion
|
4 |
WEB
|
Chip d3 bi0s
|
|
2010-04-01
|
|
ALPHA CMS - Local File Inclusion
|
3 |
WEB
|
eidelweiss
|
|
2010-04-01
|
|
DynPG CMS 4.1.0 - Multiple Vulnerabilities
|
3 |
WEB
|
eidelweiss
|
|
2010-04-01
|
|
Simply Sites RGV - Local File Inclusion
|
3 |
WEB
|
DevilZ TM
|
|
2010-04-01
|
|
Joomla! Component com_trading - Blind SQL Injection
|
3 |
WEB
|
DevilZ TM
|
|
2010-04-01
|
|
Joomla! Component com_tour - SQL Injection
|
4 |
WEB
|
DevilZ TM
|
|
2010-04-01
|
|
Joomla! Component com_network - SQL Injection
|
4 |
WEB
|
DevilZ TM
|
|
2010-03-30
|
|
Faweb_2 - Multiple Vulnerabilities
|
5 |
WEB
|
indoushka
|
|
2010-03-31
|
|
Easy-Clanpage 2.2 - Multiple SQL Injections /
|
3 |
WEB
|
Easy Laster
|
|
2010-03-31
|
|
Centreon IT & Network Monitoring 2.1.5 - SQL Injection
|
4 |
WEB
|
Jonathan Salwan
|
|
2010-03-31
|
|
Joomla! Component DW Graph - Local File Inclusion
|
4 |
WEB
|
Chip d3 bi0s
|
|
2010-03-30
|
|
Hosting-PHP-dynamic - Authentication Bypass
|
4 |
WEB
|
indoushka
|
|
2010-03-30
|
|
Snipe Photo Gallery - Bypass Arbitrary File Upload
|
4 |
WEB
|
indoushka
|
|
2010-03-30
|
|
kora - Reinstall Admin Information
|
4 |
WEB
|
indoushka
|
|
2010-03-30
|
|
Easy-Clanpage 2.1 - SQL Injection
|
4 |
WEB
|
Easy Laster
|
|
2010-03-30
|
|
Huron CMS 8 11 2007 - Authentication Bypass
|
4 |
WEB
|
mat
|
|
2010-03-30
|
|
Satellite-X 4.0 - Authentication Bypass
|
4 |
WEB
|
indoushka
|
|
2010-03-30
|
|
KimsQ 040109 - Multiple Remote File Inclusions
|
4 |
WEB
|
mat
|
|
2010-03-30
|
|
Wazzum Dating Software - Multiple Vulnerabilities
|
4 |
WEB
|
EL-KAHINA
|
|
2010-03-30
|
|
Fa Home - Authentication Bypass
|
4 |
WEB
|
indoushka
|
|
2010-03-30
|
|
Fa-Ads - Authentication Bypass
|
4 |
WEB
|
indoushka
|
|
2010-03-30
|
|
Denapars Shop Script - Multiple Vulnerabilities
|
4 |
WEB
|
indoushka
|
|
2010-03-30
|
|
Yamamah 1.00 - Multiple Vulnerabilities
|
4 |
WEB
|
indoushka
|
|
2010-03-30
|
|
FaMarket 2 - Authentication Bypass
|
4 |
WEB
|
indoushka
|
|
2010-03-29
|
|
React software - Local File Inclusion
|
4 |
WEB
|
SNK
|
|
2010-03-29
|
|
Joomla! Component com_actions - SQL Injection
|
4 |
WEB
|
DevilZ TM
|
|
2010-03-29
|
|
Joomla! Component com_items - SQL Injection
|
5 |
WEB
|
DevilZ TM
|
|
2010-03-29
|
|
Joomla! Component com_television - SQL Injection
|
3 |
WEB
|
DevilZ TM
|
|
2010-03-29
|
|
Joomla! Component com_spec - SQL Injection
|
4 |
WEB
|
DevilZ TM
|
|
2010-03-30
|
|
Pepsi CMS (Irmin cms) pepsi-0.6-BETA2 - Multiple Local File
|
24 |
WEB
|
eidelweiss
|
|
2010-03-30
|
|
Joomla! Component com_guide - SQL Injection
|
4 |
WEB
|
DevilZ TM
|
|
2010-03-29
|
|
Powie's PSCRIPT Gästebuch 2.09 - SQL Injection
|
4 |
WEB
|
Easy Laster
|
|
2010-03-29
|
|
Asp - comersus7F Shopping Cart Software Backup Dump
|
4 |
WEB
|
indoushka
|
|
2010-03-29
|
|
Joomla! Component com_radio - SQL Injection
|
4 |
WEB
|
DevilZ TM
|
|
2010-03-29
|
|
Joomla! Component com_business - SQL Injection
|
4 |
WEB
|
DevilZ TM
|
|
2010-03-29
|
|
Joomla! Component com_departments - SQL Injection
|
4 |
WEB
|
DevilZ TM
|
|
2010-03-28
|
|
68KB Knowledge Base Script 1.0.0rc2 - Search SQL Injection
|
4 |
WEB
|
Jelmer de Hen
|
|
2010-03-28
|
|
Joomla! Component com_units - SQL Injection
|
4 |
WEB
|
DevilZ TM
|
|
2010-03-28
|
|
TSOKA:CMS 1.1/1.9/2.0 - SQL Injection / Cross-Site Scripting
|
4 |
WEB
|
d3v1l
|
|
2010-03-28
|
|
Devana - SQL Injection
|
4 |
WEB
|
Valentin
|
|
2010-03-28
|
|
Joomla! Component com_personal - SQL Injection
|
3 |
WEB
|
DevilZ TM
|
|
2010-03-28
|
|
Joomla! Component com_topmenu - SQL Injection
|
4 |
WEB
|
DevilZ TM
|
|
2010-03-28
|
|
Joomla! Component com_science - SQL Injection
|
4 |
WEB
|
DevilZ TM
|
|
2010-03-28
|
|
Joomla! Component com_teacher - SQL Injection
|
3 |
WEB
|
DevilZ TM
|
|
2010-03-28
|
|
Joomla! Component com_agency - SQL Injection
|
3 |
WEB
|
DevilZ TM
|
|
2010-03-28
|
|
Joomla! Component com_tariff - SQL Injection
|
4 |
WEB
|
DevilZ TM
|
|
2010-03-28
|
|
Joomla! Component com_adds - Blind SQL Injection
|
4 |
WEB
|
DevilZ TM
|
|
2010-03-28
|
|
Multi Auktions Komplett System 2 - Blind SQL Injection
|
4 |
WEB
|
Easy Laster
|
|
2010-03-27
|
|
Joomla! Component com_solution - SQL Injection
|
4 |
WEB
|
DevilZ TM
|
|
2010-03-27
|
|
Uebimiau Webmail 2.7.2 - Multiple Vulnerabilities
|
4 |
WEB
|
cp77fk4r
|
|
2010-03-27
|
|
Simple Machines Forum (SMF) 1.1.8 - 'avatar' Remote PHP File Execute
|
4 |
WEB
|
JosS
|
|
2010-03-27
|
|
68KB - Multiple Remote File Inclusions
|
4 |
WEB
|
ITSecTeam
|
|
2010-03-27
|
|
Open Web Analytics 1.2.3 - Multiple File Inclusions
|
4 |
WEB
|
ITSecTeam
|
|
2010-03-27
|
|
MyOWNspace 8.2 - Multiple Local File Inclusions
|
4 |
WEB
|
ITSecTeam
|
|
2010-03-27
|
|
AdaptCMS Lite 1.5 - Arbitrary Add Admin
|
4 |
WEB
|
ITSecTeam
|
|
2010-03-27
|
|
Date & Sex Vor und Rückwärts Auktions System 2 - Blind SQL Injection
|
4 |
WEB
|
Easy Laster
|
|
2010-03-26
|
|
Kasseler CMS 1.4.x lite Module Jokes - SQL Injection
|
4 |
WEB
|
Sc0rpi0n
|
|
2010-03-26
|
|
BPTutors Tutoring site script - Cross-Site Request Forgery (Add Admin)
|
4 |
WEB
|
bi0
|
|
2010-03-26
|
|
CyberCMS - SQL Injection
|
4 |
WEB
|
hc0de
|
|
2010-03-26
|
|
CmsFaethon 2.2.0 (ultimate.7z) - Multiple Vulnerabilities
|
4 |
WEB
|
eidelweiss
|
|
2010-03-26
|
|
post Card - 'catid' SQL Injection
|
4 |
WEB
|
Hussin X
|
|
2010-03-26
|
|
leaftec CMS - Multiple Vulnerabilities
|
4 |
WEB
|
Valentin
|
|
2010-03-26
|
|
DaFun Spirit 2.2.5 - Multiple Remote File Inclusions
|
4 |
WEB
|
2010-03-26
|
|
2010-03-26
|
|
Flirt Matching Sms System - SQL Injection
|
4 |
WEB
|
Easy Laster
|
|
2010-03-26
|
|
Joomla! Component dcsFlashGames 2.0RC1 - 'catid' SQL Injection
|
3 |
WEB
|
kaMtiEz
|
|
2010-03-25
|
|
WebsiteBaker 2.8.1 - DataBase Backup Disclosure
|
4 |
WEB
|
Tr0y-x
|
|
2010-03-25
|
|
Direct News 4.10.2 - Multiple Remote File Inclusions
|
4 |
WEB
|
mat
|
|
2010-03-25
|
|
SiteX CMS 0.7.4 Beta - 'photo.php' SQL Injection
|
4 |
WEB
|
Sc0rpi0n
|
|
2010-03-25
|
|
justVisual 2.0 - 'index.php' Local File Inclusion
|
4 |
WEB
|
eidelweiss
|
|
2010-03-25
|
|
Easy-Clanpage 2.01 - SQL Injection
|
4 |
WEB
|
Easy Laster
|
|
2010-03-25
|
|
INVOhost - SQL Injection
|
4 |
WEB
|
Andrés Gómez
|
|
2010-03-25
|
|
Interactivefx.ie CMS - SQL Injection
|
4 |
WEB
|
Inj3ct0r
|
|
2010-03-24
|
|
vBulletin Blog 4.0.2 - Title Cross-Site Scripting
|
4 |
WEB
|
FormatXformat
|
|
2010-03-24
|
|
Joomla! Component com_software - SQL Injection
|
4 |
WEB
|
DevilZ TM
|
|
2010-03-24
|
|
Joomla! Component com_wallpapers - SQL Injection
|
4 |
WEB
|
DevilZ TM
|
|
2010-03-24
|
|
New-CMS - Local File Inclusion
|
2 |
WEB
|
Xash
|
|
2010-03-24
|
|
Joomla! Component com_universal - Remote File Inclusion
|
4 |
WEB
|
eidelweiss
|
|
2010-03-24
|
|
E-PHP CMS - SQL Injection
|
4 |
WEB
|
Th3 RDX
|
|
2010-03-24
|
|
CMS By SoftnSolv - 'index.php' SQL Injection
|
4 |
WEB
|
Th3 RDX
|
|
2010-03-24
|
|
Easy-Clanpage 2.0 - Blind SQL Injection
|
4 |
WEB
|
Easy Laster
|
|
2010-03-23
|
|
Joomla! Component SMEStorage - Local File Inclusion
|
4 |
WEB
|
Chip d3 bi0s
|
|
2010-03-23
|
|
Xataface - Admin Authentication Bypass
|
3 |
WEB
|
Xinapse
|
|
2010-03-23
|
|
Joomla! Component Property - Local File Inclusion
|
4 |
WEB
|
Chip d3 bi0s
|
|
2010-03-23
|
|
Zephyrus CMS - 'index.php' SQL Injection
|
4 |
WEB
|
Phenom
|
|
2010-03-23
|
|
Insky CMS 006-0111 - Multiple Remote File Inclusions
|
4 |
WEB
|
mat
|
|
2010-03-23
|
|
Joomla! Component com_gds - SQL Injection
|
4 |
WEB
|
DevilZ TM
|
|
2010-03-23
|
|
Uiga Business Portal - 'index.php' SQL Injection
|
4 |
WEB
|
Easy Laster
|
|
2010-03-23
|
|
Joomla! Component com_jwmmxtd - Remote File Inclusion
|
3 |
WEB
|
eidelweiss
|
