|
2010-03-14
|
|
DZCP (deV!L_z Clanportal) 1.5.2 - Remote File Inclusion
|
17 |
WEB
|
cr4wl3r
|
|
2010-03-14
|
|
PHPpool media Domain Verkaufs und Auktions Portal - 'index.php' SQL Injection
|
16 |
WEB
|
Easy Laster
|
|
2010-03-14
|
|
PHP-Nuke - Local File Inclusion
|
19 |
WEB
|
ITSecTeam
|
|
2010-03-14
|
|
RogioBiz PHP Fle Manager 1.2 - Admin Bypass
|
22 |
WEB
|
ITSecTeam
|
|
2010-03-14
|
|
Joomla! Component com_nfnaddressbook - SQL Injection
|
17 |
WEB
|
snakespc
|
|
2010-03-14
|
|
DesktopOnNet 3 Beta9 - Local File Inclusion
|
18 |
WEB
|
cr4wl3r
|
|
2010-03-14
|
|
Front Door 0.4b - SQL Injection
|
18 |
WEB
|
blake
|
|
2010-03-14
|
|
PHP-Fusion 6.01.15.4 - 'downloads.php' SQL Injection
|
20 |
WEB
|
Inj3ct0r
|
|
2010-03-14
|
|
Joomla! Component com_org - SQL Injection
|
17 |
WEB
|
N2n-Hacker
|
|
2010-03-14
|
|
Trouble Ticket Express 3.01 - Remote Code Execution / Directory Traversal
|
18 |
WEB
|
zombiefx
|
|
2010-03-13
|
|
Ad Board Script 1.01 - Local File Inclusion
|
18 |
WEB
|
ITSecTeam
|
|
2010-03-13
|
|
GeekHelps ADMP 1.01 - Multiple Vulnerabilities
|
19 |
WEB
|
ITSecTeam
|
|
2010-03-13
|
|
Mambo Component MambAds - SQL Injection
|
20 |
WEB
|
Dreadful
|
|
2010-03-13
|
|
Xbtit 2.0.0 - SQL Injection
|
20 |
WEB
|
Ctacok
|
|
2010-03-13
|
|
systemsoftware Community Black - 'index.php' SQL Injection
|
20 |
WEB
|
Easy Laster
|
|
2010-03-13
|
|
Azeno CMS - SQL Injection
|
21 |
WEB
|
DevilZ TM
|
|
2010-03-13
|
|
Joomla! Component com_races - Blind SQL Injection
|
17 |
WEB
|
DevilZ TM
|
|
2010-03-13
|
|
Joomla! Component com_comp - SQL Injection
|
19 |
WEB
|
DevilZ TM
|
|
2010-03-13
|
|
Joomla! Component com_sbsfile - Local File Inclusion
|
35 |
WEB
|
DevilZ TM
|
|
2010-03-12
|
|
Joomla! Component com_juliaportfolio - Local File Inclusion
|
20 |
WEB
|
DevilZ TM
|
|
2010-03-12
|
|
dreamlive Auktionshaus script - 'news.php?id' SQL Injection
|
20 |
WEB
|
Easy Laster
|
|
2010-03-12
|
|
Invision Power Board Currency Mod 1.3 - 'edit' SQL Injection
|
19 |
WEB
|
Yakir Wizman
|
|
2010-03-12
|
|
Easynet Forum Host - 'topic.php' SQL Injection
|
20 |
WEB
|
Yakir Wizman
|
|
2010-03-12
|
|
Joomla! Component com_family - SQL Injection
|
17 |
WEB
|
DevilZ TM
|
|
2010-03-12
|
|
Joomla! Component com_leader - SQL Injection
|
18 |
WEB
|
DevilZ TM
|
|
2010-03-12
|
|
Joomla! Component com_start - SQL Injection
|
18 |
WEB
|
DevilZ TM
|
|
2010-03-11
|
|
Joomla! Component com_party - SQL Injection
|
17 |
WEB
|
DevilZ TM
|
|
2010-03-11
|
|
Joomla! Component com_color - SQL Injection
|
16 |
WEB
|
DevilZ TM
|
|
2010-03-11
|
|
Joomla! Component com_gigfe - SQL Injection
|
18 |
WEB
|
DevilZ TM
|
|
2010-03-11
|
|
Joomla! Component com_products - 'intCategoryId' SQL Injection
|
17 |
WEB
|
N2n-Hacker
|
|
2010-03-11
|
|
Eros Erotik Webkatalog - 'start.php?id' SQL Injection
|
20 |
WEB
|
Easy Laster
|
|
2010-03-11
|
|
Joomla! Component com_blog - SQL Injection
|
18 |
WEB
|
DevilZ TM
|
|
2010-03-11
|
|
Ane CMS 1 - Persistent Cross-Site Scripting
|
17 |
WEB
|
pratul agrawal
|
|
2010-03-11
|
|
ANE CMD CRSF - Arbitrary Add Admin
|
20 |
WEB
|
pratul agrawal
|
|
2010-03-11
|
|
ATutor 1.6.4 - Multiple Cross-Site Scripting Vulnerabilities
|
20 |
WEB
|
ITSecTeam
|
|
2010-03-11
|
|
Joomla! Component com_about - SQL Injection
|
18 |
WEB
|
snakespc
|
|
2010-03-10
|
|
ispCP Omega 1.0.4 - Remote File Inclusion
|
21 |
WEB
|
cr4wl3r
|
|
2010-03-10
|
|
Gazelle CMS - Cross-Site Request Forgery
|
22 |
WEB
|
pratul agrawal
|
|
2010-03-10
|
|
Softbiz Jobs and Recruitment Script - 'search_result.php' SQL Injection
|
17 |
WEB
|
Easy Laster
|
|
2010-03-10
|
|
PhpCityPortal - Multiple Vulnerabilities
|
18 |
WEB
|
R3d-D3V!L
|
|
2010-03-10
|
|
Friendly-Tech FriendlyTR69 CPE Remote Management 2.8.9 - SQL Injection
|
17 |
WEB
|
Yaniv Miron
|
|
2010-03-10
|
|
Campsite 3.3.5 - Cross-Site Request Forgery
|
16 |
WEB
|
pratul agrawal
|
|
2010-03-09
|
|
nus newssystem 1.02 - 'id' SQL Injection
|
17 |
WEB
|
n3w7u
|
|
2010-03-09
|
|
Wild CMS - SQL Injection
|
19 |
WEB
|
Ariko-Security
|
|
2010-03-09
|
|
mhproducts Kleinanzeigenmarkt - 'search.php' SQL Injection
|
21 |
WEB
|
Easy Laster
|
|
2010-03-09
|
|
Joomla! Component com_hezacontent 1.0 - 'id' SQL Injection
|
22 |
WEB
|
kaMtiEz
|
|
2010-03-09
|
|
Uebimiau Webmail 3.2.0-2.0 - Email Disclosure
|
21 |
WEB
|
Z3r0c0re_ R4vax
|
|
2010-03-09
|
|
PHP File Sharing System 1.5.1 - Multiple Vulnerabilities
|
20 |
WEB
|
blake
|
|
2010-03-08
|
|
Chaton 1.5.2 - Local File Inclusion
|
18 |
WEB
|
cr4wl3r
|
|
2010-03-08
|
|
TRIBISUR 2.0 - Local File Inclusion
|
18 |
WEB
|
cr4wl3r
|
|
2010-03-08
|
|
DZ Auktionshaus 'V4.rgo' - 'id' news.php?SQL Injection
|
16 |
WEB
|
Easy Laster
|
|
2010-03-07
|
|
Bild Flirt System 2.0 - 'index.php?id' SQL Injection
|
19 |
WEB
|
Easy Laster
|
|
2010-03-07
|
|
BigForum 4.5 - SQL Injection
|
17 |
WEB
|
Ctacok
|
|
2010-03-06
|
|
dev4u CMS (Personenseiten) - 'go_target.php' SQL Injection
|
24 |
WEB
|
Easy Laster
|
|
2010-03-06
|
|
PHPCOIN 1.2.1 - 'mod.php' Local File Inclusion
|
20 |
WEB
|
_mlk_
|
|
2010-03-05
|
|
E-topbiz Link ADS 1 PHP script - 'linkid' Blind SQL Injection
|
19 |
WEB
|
JosS
|
|
2010-03-05
|
|
Auktionshaus 3.0.0.1 - 'news.php?id' SQL Injection
|
16 |
WEB
|
Easy Laster
|
|
2010-03-05
|
|
Kolang 4.3.10 < 5.3.0 - 'proc_open()' PHP 'safe_mode' Bypass
|
17 |
WEB
|
Hamid Ebadi
|
|
2010-03-05
|
|
OneCMS 2.5 - SQL Injection
|
18 |
WEB
|
Ctacok & .:[melkiy]:
|
|
2010-03-04
|
|
Sagem Routers - Remote Authentication Bypass
|
18 |
WEB
|
AlpHaNiX
|
|
2010-03-04
|
|
PHP-Nuke - 'user.php' SQL Injection
|
16 |
WEB
|
Easy Laster
|
|
2010-03-04
|
|
PHP-Nuke CMS (Survey and Poll) - SQL Injection
|
16 |
WEB
|
SENOT
|
|
2010-03-03
|
|
Joomla! Component com_blog - Directory Traversal
|
17 |
WEB
|
DevilZ TM
|
|
2010-03-03
|
|
MiNBank 1.5.0 - Remote Command Execution
|
20 |
WEB
|
JosS
|
|
2010-03-03
|
|
smartplugs 1.3 - 'showplugs.php' SQL Injection
|
18 |
WEB
|
Easy Laster
|
|
2010-03-03
|
|
Gnat-TGP 1.2.20 - Remote File Inclusion
|
18 |
WEB
|
cr4wl3r
|
|
2010-03-03
|
|
Dosya Yukle Scrtipi (DosyaYukle Scripti) 1.0 - Arbitrary File Upload
|
18 |
WEB
|
indoushka
|
|
2010-03-02
|
|
Uiga Church Portal - 'index.php' SQL Injection
|
19 |
WEB
|
Easy Laster
|
|
2010-03-02
|
|
My Little Forum - 'contact.php' SQL Injection
|
21 |
WEB
|
Easy Laster
|
|
2010-03-02
|
|
Uploadify Sample Collection - Arbitrary File Upload
|
19 |
WEB
|
indoushka
|
|
2010-03-02
|
|
PHP Advanced Transfer Manager 1.10 - Arbitrary File Upload
|
19 |
WEB
|
indoushka
|
|
2010-03-02
|
|
osCSS 1.2.1 - Database Backups Disclosure
|
16 |
WEB
|
indoushka
|
|
2010-03-02
|
|
Al Sat Scripti - Database Disclosure
|
19 |
WEB
|
indoushka
|
|
2010-03-01
|
|
CMS by MyWorks - Multiple Vulnerabilities
|
17 |
WEB
|
Palyo34
|
|
2010-03-01
|
|
phptroubleticket 2.0 - 'id' SQL Injection
|
15 |
WEB
|
kaMtiEz
|
|
2010-02-28
|
|
Majoda CMS - Authentication Bypass
|
18 |
WEB
|
Phenom
|
|
2010-02-28
|
|
Baykus Yemek Tarifleri 2.1 - SQL Injection
|
16 |
WEB
|
cr4wl3r
|
|
2010-02-28
|
|
Joomla! Component com_liveticker - Blind SQL Injection
|
20 |
WEB
|
snakespc
|
|
2010-02-28
|
|
Joomla! Component com_yanc - SQL Injection
|
18 |
WEB
|
snakespc
|
|
2010-02-28
|
|
HazelPress Lite 0.0.4 - Authentication Bypass
|
20 |
WEB
|
cr4wl3r
|
|
2010-02-28
|
|
Uiga Fan Club - 'index.php' SQL Injection
|
15 |
WEB
|
Easy Laster
|
|
2010-02-28
|
|
Uiga Personal Portal - 'index.php' SQL Injection
|
19 |
WEB
|
Easy Laster
|
|
2010-02-27
|
|
Slaed CMS 4.0 - Multiple Vulnerabilities
|
18 |
WEB
|
indoushka
|
|
2010-02-27
|
|
Joomla! Component com_paxgallery - Blind Injection
|
19 |
WEB
|
snakespc
|
|
2010-02-27
|
|
Uiga Fan Club 1.0 - Authentication Bypass
|
19 |
WEB
|
cr4wl3r
|
|
2010-02-27
|
|
Scripts Feed Business Directory - SQL Injection
|
17 |
WEB
|
Crux
|
|
2010-02-27
|
|
Pre Classified Listings - SQL Injection
|
19 |
WEB
|
Crux
|
|
2010-02-27
|
|
phpMySite - Cross-Site Scripting / SQL Injection
|
19 |
WEB
|
Crux
|
|
2010-02-27
|
|
ProMan 0.1.1 - Multiple File Inclusions
|
19 |
WEB
|
cr4wl3r
|
|
2010-02-27
|
|
phpRAINCHECK 1.0.1 - SQL Injection
|
18 |
WEB
|
cr4wl3r
|
|
2010-02-27
|
|
phpCDB 1.0 - Local File Inclusion
|
18 |
WEB
|
cr4wl3r
|
|
2010-02-27
|
|
Project Man 1.0 - Authentication Bypass
|
17 |
WEB
|
cr4wl3r
|
|
2010-02-27
|
|
Gravity Board X 2.0 Beta (Public Release 3) - SQL Injection
|
19 |
WEB
|
Ctacok
|
|
2010-02-27
|
|
DZ Erotik Auktionshaus 4.rgo - 'news.php' SQL Injection
|
16 |
WEB
|
Easy Laster
|
|
2010-02-26
|
|
FileExecutive 1 - Multiple Vulnerabilities
|
18 |
WEB
|
ViRuSMaN
|
|
2010-02-25
|
|
WebAdministrator Lite CMS - SQL Injection
|
18 |
WEB
|
Ariko-Security
|
|
2010-02-25
|
|
Joomla! Component com_Joomlaconnect_be - Blind Injection
|
21 |
WEB
|
snakespc
|
|
2010-02-25
|
|
GameScript 3.0 - SQL Injection
|
22 |
WEB
|
FormatXformat
|
|
2010-02-25
|
|
Softbiz Recipes Portal Script - 'showcats.php' SQL Injection
|
18 |
WEB
|
Easy Laster
|
|
2010-02-24
|
|
Softbiz Classifieds PLUS - Multiple SQL Injections
|
19 |
WEB
|
Easy Laster
|
|
2010-02-24
|
|
Maian Uploader 4.0 - Arbitrary File Upload
|
19 |
WEB
|
indoushka
|
|
2010-02-24
|
|
PBBoard 2.0.5 - Multiple Vulnerabilities
|
19 |
WEB
|
indoushka
|
|
2010-02-24
|
|
Web Server Creator Web Portal 0.1 - Multiple Vulnerabilities
|
17 |
WEB
|
indoushka
|
|
2010-02-24
|
|
Softbiz Auktios Script - Multiple SQL Injections
|
17 |
WEB
|
Easy Laster
|
|
2010-02-24
|
|
PHPCOIN 1.2.1 - 'mod.php' SQL Injection
|
17 |
WEB
|
BAYBORA
|
|
2010-02-24
|
|
ShortCMS 1.11F(B) (con) - SQL Injection
|
21 |
WEB
|
Gamoscu
|
|
2009-11-16
|
|
kalimat new system 1.0 - 'index.php' SQL Injection
|
23 |
WEB
|
ProF.Code
|
|
2010-02-24
|
|
WikyBlog 1.7.3rc2 - Multiple Vulnerabilities
|
19 |
WEB
|
indoushka
|
|
2010-02-24
|
|
Article Friendly - Cross-Site Request Forgery
|
19 |
WEB
|
pratul agrawal
|
|
2010-02-24
|
|
MySmartBB 1.0.0 - Cross-Site Scripting
|
20 |
WEB
|
indoushka
|
|
2010-02-24
|
|
Max's Photo Album - Arbitrary File Upload
|
20 |
WEB
|
indoushka
|
|
2010-02-23
|
|
bispage - Bypass
|
19 |
WEB
|
SaMir-BonD
|
|
2010-02-23
|
|
QuickDev 4 PHP - Database Disclosure
|
16 |
WEB
|
ViRuSMaN
|
|
2010-02-23
|
|
Tinypug 0.9.5 - Cross-Site Request Forgery (Password Change)
|
17 |
WEB
|
AmnPardaz
|
|
2010-02-23
|
|
Softbiz Jobs - Multiple SQL Injections
|
20 |
WEB
|
Easy Laster
|
|
2010-02-23
|
|
WorkSimple 1.3.2 - Multiple Vulnerabilities
|
22 |
WEB
|
JIKO
|
|
2010-02-23
|
|
Joomla! Component user_id com_sqlreport - Blind SQL Injection
|
19 |
WEB
|
snakespc
|
|
2010-02-23
|
|
Top Auktion - 'news.php' SQL Injection
|
17 |
WEB
|
Easy Laster
|
|
2010-02-23
|
|
PHP Auktion Pro SQL - 'news.php' SQL Injection
|
17 |
WEB
|
Easy Laster
|
|
2010-02-23
|
|
Joomla! Component com_ice - Blind SQL Injection
|
18 |
WEB
|
snakespc
|
|
2010-02-23
|
|
Softbiz Jobs - Cross-Site Request Forgery
|
20 |
WEB
|
pratul agrawal
|
|
2010-02-22
|
|
Article Friendly - SQL Injection
|
17 |
WEB
|
SkuLL-HackeR
|
|
2010-02-22
|
|
phpBugTracker 1.0.1 - File Disclosure
|
18 |
WEB
|
ViRuSMaN
|
|
2010-02-22
|
|
cPanel - Multiple Cross-Site Request Forgery Vulnerabilities
|
19 |
WEB
|
SecurityRules
|
|
2010-02-22
|
|
vBSEO 3.1.0 - Local File Inclusion
|
17 |
WEB
|
ViRuSMaN
|
