|
2010-03-22
|
|
Joomla! Component com_flash - SQL Injection
|
4 |
WEB
|
DevilZ TM
|
|
2010-03-22
|
|
New Advisore Stack 1.1 - Directory Traversal
|
4 |
WEB
|
R3VAN_BASTARD
|
|
2010-03-22
|
|
PowieSys 0.7.7 alpha - 'index.php' shownews SQL Injection
|
4 |
WEB
|
Easy Laster
|
|
2010-03-22
|
|
Uiga Fan Club - SQL Injection
|
3 |
WEB
|
Sioma Labs
|
|
2010-03-22
|
|
CMS Openpage - 'index.php' SQL Injection
|
3 |
WEB
|
Phenom
|
|
2010-03-22
|
|
Mini-CMS RibaFS 1.0 - Authentication Bypass
|
4 |
WEB
|
cr4wl3r
|
|
2010-03-21
|
|
4x CMS r26 - Authentication Bypass
|
4 |
WEB
|
cr4wl3r
|
|
2010-03-21
|
|
NotSopureEdit 1.4.1 - Remote File Inclusion
|
4 |
WEB
|
cr4wl3r
|
|
2010-03-21
|
|
WebMaid CMS 0.2-6 Beta - Multiple Remote File Inclusions
|
4 |
WEB
|
cr4wl3r
|
|
2010-03-21
|
|
Fw-BofF (oolime-resurrection) 1.5.3beta - Multiple Remote File Inclusions
|
4 |
WEB
|
cr4wl3r
|
|
2010-03-21
|
|
Woltlab Burning Board Lite Addon - 'lexikon.php' SQL Injection
|
5 |
WEB
|
n3w7u
|
|
2010-03-21
|
|
Jewelry Cart Software - 'product.php' SQL Injection
|
4 |
WEB
|
Asyraf
|
|
2010-03-21
|
|
Adult Video Site Script - Multiple Vulnerabilities
|
4 |
WEB
|
indoushka
|
|
2010-03-21
|
|
Woltlab Burning Board Teamsite Hack 3.0 - 'ts_other.php' SQL Injection
|
4 |
WEB
|
Easy Laster
|
|
2010-03-20
|
|
Trouble Ticket Software - 'ttx.cgi' Arbitrary File Download
|
4 |
WEB
|
n01d
|
|
2010-03-20
|
|
Pay Per Watch & Bid Auktions System - 'auktion.php?id_auk' Blind SQL Injection
|
3 |
WEB
|
Easy Laster
|
|
2010-03-20
|
|
Joomla! Component Gift Exchange com_giftexchange 1.0 Beta - 'pkg' SQL Injection
|
4 |
WEB
|
Chip d3 bi0s
|
|
2010-03-19
|
|
Joomla! Component & Plugin JE Tooltip 1.0 - Local File Inclusion
|
4 |
WEB
|
Chip d3 bi0s
|
|
2010-03-19
|
|
DirectAdmin 1.34.4 - Multiple Cross-Site Request Forgerys
|
3 |
WEB
|
K053
|
|
2010-03-19
|
|
PHPscripte24 Preisschlacht Liveshop System - 'index.php?aid' SQL Injection
|
4 |
WEB
|
Easy Laster
|
|
2010-03-19
|
|
quality point 1.0 newsfeed - SQL Injection / Cross-Site Scripting
|
4 |
WEB
|
Red-D3v1L
|
|
2010-03-18
|
|
SOFTSAURUS 2.01 - Multiple Remote File Inclusions
|
4 |
WEB
|
cr4wl3r
|
|
2010-03-18
|
|
nensor CMS 2.01 - Multiple Vulnerabilities
|
4 |
WEB
|
cr4wl3r
|
|
2010-03-18
|
|
phpscripte24 Niedrig Gebote Pro Auktions System II - Blind SQL Injection
|
5 |
WEB
|
Easy Laster
|
|
2010-03-18
|
|
philboard 1.02 - SQL Injection
|
4 |
WEB
|
ViRuS_HiMa
|
|
2010-03-18
|
|
phpAuthent 0.2.1 - SQL Injection
|
4 |
WEB
|
Gamoscu
|
|
2010-03-18
|
|
SiteDone Custom Edition 2.0 - SQL Injection / Cross-Site Scripting
|
4 |
WEB
|
d3v1l
|
|
2010-03-18
|
|
DewNewPHPLinks 2.1.0.1 - Local File Inclusion
|
4 |
WEB
|
ITSecTeam
|
|
2010-03-18
|
|
ManageEngine ServiceDesk Plus 7.6 - woID SQL Injection
|
4 |
WEB
|
Nahuel Grisolia
|
|
2010-03-17
|
|
Joomla! Component com_vxdate - Multiple Vulnerabilities
|
4 |
WEB
|
MustLive
|
|
2010-03-17
|
|
PHP-Nuke - ratedownload SQL Injection
|
5 |
WEB
|
ITSecTeam
|
|
2010-03-17
|
|
Joomla! Component com_ckforms - Multiple Vulnerabilities
|
3 |
WEB
|
ALTBTA
|
|
2010-03-17
|
|
PostNuke FormExpress Module - Blind SQL Injection
|
3 |
WEB
|
Ali Abbasi
|
|
2010-03-17
|
|
Preisschlacht Multi Liveshop System - 'index.php?aid' SQL Injection
|
4 |
WEB
|
Easy Laster
|
|
2010-03-17
|
|
Joomla! Component com_include - SQL Injection
|
3 |
WEB
|
DevilZ TM
|
|
2010-03-17
|
|
ChillyCMS - Cross-Site Request Forgery
|
5 |
WEB
|
pratul agrawal
|
|
2010-03-17
|
|
Clain_TIger_CMS - Cross-Site Request Forgery
|
5 |
WEB
|
pratul agrawal
|
|
2010-03-16
|
|
OSSIM 2.2 - Multiple Vulnerabilities
|
5 |
WEB
|
Nahuel Grisolia
|
|
2010-03-16
|
|
eGroupWare 1.6.002 and eGroupWare premium line 9.1 - Multiple Vulnerabilities
|
3 |
WEB
|
Nahuel Grisolia
|
|
2010-03-16
|
|
phpscripte24 Auktionshaus Community Standart System - Blind SQL Injection
|
4 |
WEB
|
Easy Laster
|
|
2010-03-16
|
|
Short URL 1.01 - Local File Inclusion
|
4 |
WEB
|
Pouya Daneshmand
|
|
2010-03-16
|
|
Online Community CMS by I-net - SQL Injection
|
4 |
WEB
|
Th3 RDX
|
|
2010-03-16
|
|
Free Real Estate Contact Form 1.09 - Local File Inclusion
|
4 |
WEB
|
Pouya Daneshmand
|
|
2010-03-16
|
|
Joomla! Component com_rwcards - Local File Inclusion
|
4 |
WEB
|
ALTBTA
|
|
2010-03-16
|
|
osCMax 2.0 - 'FCKeditor' Arbitrary File Upload
|
4 |
WEB
|
ITSecTeam
|
|
2010-03-15
|
|
Newbie CMS - File Disclosure
|
4 |
WEB
|
JIKO
|
|
2010-03-15
|
|
Joomla! Component com_route - SQL Injection
|
4 |
WEB
|
N2n-Hacker
|
|
2010-03-15
|
|
Joomla! Component com_bidding - SQL Injection
|
4 |
WEB
|
N2n-Hacker
|
|
2010-03-15
|
|
Preisschlacht 4.0 Flash System - 'index.php?aid' SQL Injection
|
4 |
WEB
|
Easy Laster
|
|
2010-03-15
|
|
Joomla! Component com_rokdownloads - Local File Inclusion
|
5 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2010-03-15
|
|
Joomla! Component com_sectionex - Local File Inclusion
|
4 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2010-03-15
|
|
Joomla! Component com_ganalytics - Local File Inclusion
|
4 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2010-03-15
|
|
Joomla! Component com_janews - Local File Inclusion
|
3 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2010-03-15
|
|
Joomla! Component com_linkr - Local File Inclusion
|
3 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2010-03-15
|
|
osDate 2.1.9 - Remote File Inclusion
|
4 |
WEB
|
NoGe
|
|
2010-03-15
|
|
Address Book Script 1.09 - Local File Inclusion
|
4 |
WEB
|
Pouya Daneshmand
|
|
2010-03-15
|
|
Joomla! Component com_org - 'letter' SQL Injection
|
4 |
WEB
|
kazuya
|
|
2010-03-15
|
|
Subdreamer 3.0.1 - CMS upload
|
3 |
WEB
|
indoushka
|
|
2010-03-15
|
|
Interspire SHOPPING CART 5.5.4 - Ultimate Edition backup dump
|
4 |
WEB
|
indoushka
|
|
2010-03-15
|
|
CH-CMS.ch 2 - Arbitrary File Upload
|
4 |
WEB
|
EL-KAHINA
|
|
2010-03-15
|
|
Torrent Hoster - Remount Upload
|
4 |
WEB
|
EL-KAHINA
|
|
2010-03-15
|
|
FreeHost 1.00 - Arbitrary File Upload
|
4 |
WEB
|
indoushka
|
|
2010-03-15
|
|
Duhok Forum 1.0 script - Cross-Site Scripting
|
3 |
WEB
|
indoushka
|
|
2010-03-15
|
|
Joomla! Component com_rpx Ulti RPX 2.1.0 - Local File Inclusion
|
4 |
WEB
|
jdc
|
|
2010-03-15
|
|
Phenix 3.5b - SQL Injection
|
4 |
WEB
|
ITSecTeam
|
|
2010-03-15
|
|
Ninja RSS Syndicator 1.0.8 - Local File Inclusion
|
4 |
WEB
|
jdc
|
|
2010-03-15
|
|
PHP Classifieds 7.5 - Blind SQL Injection
|
4 |
WEB
|
ITSecTeam
|
|
2010-03-15
|
|
Joomla! Component com_gcalendar Suite 2.1.5 - Local File Inclusion
|
4 |
WEB
|
jdc
|
|
2010-03-14
|
|
PhpMyLogon 2.0 - SQL Injection
|
4 |
WEB
|
blake
|
|
2010-03-14
|
|
DZCP (deV!L_z Clanportal) 1.5.2 - Remote File Inclusion
|
4 |
WEB
|
cr4wl3r
|
|
2010-03-14
|
|
PHPpool media Domain Verkaufs und Auktions Portal - 'index.php' SQL Injection
|
4 |
WEB
|
Easy Laster
|
|
2010-03-14
|
|
PHP-Nuke - Local File Inclusion
|
4 |
WEB
|
ITSecTeam
|
|
2010-03-14
|
|
RogioBiz PHP Fle Manager 1.2 - Admin Bypass
|
4 |
WEB
|
ITSecTeam
|
|
2010-03-14
|
|
Joomla! Component com_nfnaddressbook - SQL Injection
|
4 |
WEB
|
snakespc
|
|
2010-03-14
|
|
DesktopOnNet 3 Beta9 - Local File Inclusion
|
4 |
WEB
|
cr4wl3r
|
|
2010-03-14
|
|
Front Door 0.4b - SQL Injection
|
4 |
WEB
|
blake
|
|
2010-03-14
|
|
PHP-Fusion 6.01.15.4 - 'downloads.php' SQL Injection
|
4 |
WEB
|
Inj3ct0r
|
|
2010-03-14
|
|
Joomla! Component com_org - SQL Injection
|
4 |
WEB
|
N2n-Hacker
|
|
2010-03-14
|
|
Trouble Ticket Express 3.01 - Remote Code Execution / Directory Traversal
|
4 |
WEB
|
zombiefx
|
|
2010-03-13
|
|
Ad Board Script 1.01 - Local File Inclusion
|
4 |
WEB
|
ITSecTeam
|
|
2010-03-13
|
|
GeekHelps ADMP 1.01 - Multiple Vulnerabilities
|
4 |
WEB
|
ITSecTeam
|
|
2010-03-13
|
|
Mambo Component MambAds - SQL Injection
|
4 |
WEB
|
Dreadful
|
|
2010-03-13
|
|
Xbtit 2.0.0 - SQL Injection
|
4 |
WEB
|
Ctacok
|
|
2010-03-13
|
|
systemsoftware Community Black - 'index.php' SQL Injection
|
5 |
WEB
|
Easy Laster
|
|
2010-03-13
|
|
Azeno CMS - SQL Injection
|
5 |
WEB
|
DevilZ TM
|
|
2010-03-13
|
|
Joomla! Component com_races - Blind SQL Injection
|
4 |
WEB
|
DevilZ TM
|
|
2010-03-13
|
|
Joomla! Component com_comp - SQL Injection
|
4 |
WEB
|
DevilZ TM
|
|
2010-03-13
|
|
Joomla! Component com_sbsfile - Local File Inclusion
|
4 |
WEB
|
DevilZ TM
|
|
2010-03-12
|
|
Joomla! Component com_juliaportfolio - Local File Inclusion
|
3 |
WEB
|
DevilZ TM
|
|
2010-03-12
|
|
dreamlive Auktionshaus script - 'news.php?id' SQL Injection
|
4 |
WEB
|
Easy Laster
|
|
2010-03-12
|
|
Invision Power Board Currency Mod 1.3 - 'edit' SQL Injection
|
4 |
WEB
|
Yakir Wizman
|
|
2010-03-12
|
|
Easynet Forum Host - 'topic.php' SQL Injection
|
4 |
WEB
|
Yakir Wizman
|
|
2010-03-12
|
|
Joomla! Component com_family - SQL Injection
|
4 |
WEB
|
DevilZ TM
|
|
2010-03-12
|
|
Joomla! Component com_leader - SQL Injection
|
3 |
WEB
|
DevilZ TM
|
|
2010-03-12
|
|
Joomla! Component com_start - SQL Injection
|
3 |
WEB
|
DevilZ TM
|
|
2010-03-11
|
|
Joomla! Component com_party - SQL Injection
|
4 |
WEB
|
DevilZ TM
|
|
2010-03-11
|
|
Joomla! Component com_color - SQL Injection
|
4 |
WEB
|
DevilZ TM
|
|
2010-03-11
|
|
Joomla! Component com_gigfe - SQL Injection
|
4 |
WEB
|
DevilZ TM
|
|
2010-03-11
|
|
Joomla! Component com_products - 'intCategoryId' SQL Injection
|
4 |
WEB
|
N2n-Hacker
|
|
2010-03-11
|
|
Eros Erotik Webkatalog - 'start.php?id' SQL Injection
|
4 |
WEB
|
Easy Laster
|
|
2010-03-11
|
|
Joomla! Component com_blog - SQL Injection
|
3 |
WEB
|
DevilZ TM
|
|
2010-03-11
|
|
Ane CMS 1 - Persistent Cross-Site Scripting
|
3 |
WEB
|
pratul agrawal
|
|
2010-03-11
|
|
ANE CMD CRSF - Arbitrary Add Admin
|
5 |
WEB
|
pratul agrawal
|
|
2010-03-11
|
|
ATutor 1.6.4 - Multiple Cross-Site Scripting Vulnerabilities
|
4 |
WEB
|
ITSecTeam
|
|
2010-03-11
|
|
Joomla! Component com_about - SQL Injection
|
4 |
WEB
|
snakespc
|
|
2010-03-10
|
|
ispCP Omega 1.0.4 - Remote File Inclusion
|
5 |
WEB
|
cr4wl3r
|
|
2010-03-10
|
|
Gazelle CMS - Cross-Site Request Forgery
|
4 |
WEB
|
pratul agrawal
|
|
2010-03-10
|
|
Softbiz Jobs and Recruitment Script - 'search_result.php' SQL Injection
|
4 |
WEB
|
Easy Laster
|
|
2010-03-10
|
|
PhpCityPortal - Multiple Vulnerabilities
|
3 |
WEB
|
R3d-D3V!L
|
|
2010-03-10
|
|
Friendly-Tech FriendlyTR69 CPE Remote Management 2.8.9 - SQL Injection
|
3 |
WEB
|
Yaniv Miron
|
|
2010-03-10
|
|
Campsite 3.3.5 - Cross-Site Request Forgery
|
4 |
WEB
|
pratul agrawal
|
|
2010-03-09
|
|
nus newssystem 1.02 - 'id' SQL Injection
|
4 |
WEB
|
n3w7u
|
|
2010-03-09
|
|
Wild CMS - SQL Injection
|
4 |
WEB
|
Ariko-Security
|
|
2010-03-09
|
|
mhproducts Kleinanzeigenmarkt - 'search.php' SQL Injection
|
4 |
WEB
|
Easy Laster
|
|
2010-03-09
|
|
Joomla! Component com_hezacontent 1.0 - 'id' SQL Injection
|
4 |
WEB
|
kaMtiEz
|
|
2010-03-09
|
|
Uebimiau Webmail 3.2.0-2.0 - Email Disclosure
|
5 |
WEB
|
Z3r0c0re_ R4vax
|
|
2010-03-09
|
|
PHP File Sharing System 1.5.1 - Multiple Vulnerabilities
|
4 |
WEB
|
blake
|
|
2010-03-08
|
|
Chaton 1.5.2 - Local File Inclusion
|
4 |
WEB
|
cr4wl3r
|
|
2010-03-08
|
|
TRIBISUR 2.0 - Local File Inclusion
|
4 |
WEB
|
cr4wl3r
|
|
2010-03-08
|
|
DZ Auktionshaus 'V4.rgo' - 'id' news.php?SQL Injection
|
4 |
WEB
|
Easy Laster
|
|
2010-03-07
|
|
Bild Flirt System 2.0 - 'index.php?id' SQL Injection
|
5 |
WEB
|
Easy Laster
|
|
2010-03-07
|
|
BigForum 4.5 - SQL Injection
|
5 |
WEB
|
Ctacok
|
|
2010-03-06
|
|
dev4u CMS (Personenseiten) - 'go_target.php' SQL Injection
|
5 |
WEB
|
Easy Laster
|
|
2010-03-06
|
|
PHPCOIN 1.2.1 - 'mod.php' Local File Inclusion
|
3 |
WEB
|
_mlk_
|
|
2010-03-05
|
|
E-topbiz Link ADS 1 PHP script - 'linkid' Blind SQL Injection
|
4 |
WEB
|
JosS
|
