|
2010-02-28
|
|
Uiga Fan Club - 'index.php' SQL Injection
|
20 |
WEB
|
Easy Laster
|
|
2010-02-28
|
|
Uiga Personal Portal - 'index.php' SQL Injection
|
23 |
WEB
|
Easy Laster
|
|
2010-02-27
|
|
Slaed CMS 4.0 - Multiple Vulnerabilities
|
24 |
WEB
|
indoushka
|
|
2010-02-27
|
|
Joomla! Component com_paxgallery - Blind Injection
|
23 |
WEB
|
snakespc
|
|
2010-02-27
|
|
Uiga Fan Club 1.0 - Authentication Bypass
|
25 |
WEB
|
cr4wl3r
|
|
2010-02-27
|
|
Scripts Feed Business Directory - SQL Injection
|
22 |
WEB
|
Crux
|
|
2010-02-27
|
|
Pre Classified Listings - SQL Injection
|
22 |
WEB
|
Crux
|
|
2010-02-27
|
|
phpMySite - Cross-Site Scripting / SQL Injection
|
23 |
WEB
|
Crux
|
|
2010-02-27
|
|
ProMan 0.1.1 - Multiple File Inclusions
|
25 |
WEB
|
cr4wl3r
|
|
2010-02-27
|
|
phpRAINCHECK 1.0.1 - SQL Injection
|
23 |
WEB
|
cr4wl3r
|
|
2010-02-27
|
|
phpCDB 1.0 - Local File Inclusion
|
26 |
WEB
|
cr4wl3r
|
|
2010-02-27
|
|
Project Man 1.0 - Authentication Bypass
|
24 |
WEB
|
cr4wl3r
|
|
2010-02-27
|
|
Gravity Board X 2.0 Beta (Public Release 3) - SQL Injection
|
23 |
WEB
|
Ctacok
|
|
2010-02-27
|
|
DZ Erotik Auktionshaus 4.rgo - 'news.php' SQL Injection
|
22 |
WEB
|
Easy Laster
|
|
2010-02-26
|
|
FileExecutive 1 - Multiple Vulnerabilities
|
23 |
WEB
|
ViRuSMaN
|
|
2010-02-25
|
|
WebAdministrator Lite CMS - SQL Injection
|
23 |
WEB
|
Ariko-Security
|
|
2010-02-25
|
|
Joomla! Component com_Joomlaconnect_be - Blind Injection
|
25 |
WEB
|
snakespc
|
|
2010-02-25
|
|
GameScript 3.0 - SQL Injection
|
27 |
WEB
|
FormatXformat
|
|
2010-02-25
|
|
Softbiz Recipes Portal Script - 'showcats.php' SQL Injection
|
22 |
WEB
|
Easy Laster
|
|
2010-02-24
|
|
Softbiz Classifieds PLUS - Multiple SQL Injections
|
24 |
WEB
|
Easy Laster
|
|
2010-02-24
|
|
Maian Uploader 4.0 - Arbitrary File Upload
|
24 |
WEB
|
indoushka
|
|
2010-02-24
|
|
PBBoard 2.0.5 - Multiple Vulnerabilities
|
23 |
WEB
|
indoushka
|
|
2010-02-24
|
|
Web Server Creator Web Portal 0.1 - Multiple Vulnerabilities
|
23 |
WEB
|
indoushka
|
|
2010-02-24
|
|
Softbiz Auktios Script - Multiple SQL Injections
|
23 |
WEB
|
Easy Laster
|
|
2010-02-24
|
|
PHPCOIN 1.2.1 - 'mod.php' SQL Injection
|
24 |
WEB
|
BAYBORA
|
|
2010-02-24
|
|
ShortCMS 1.11F(B) (con) - SQL Injection
|
25 |
WEB
|
Gamoscu
|
|
2009-11-16
|
|
kalimat new system 1.0 - 'index.php' SQL Injection
|
27 |
WEB
|
ProF.Code
|
|
2010-02-24
|
|
WikyBlog 1.7.3rc2 - Multiple Vulnerabilities
|
23 |
WEB
|
indoushka
|
|
2010-02-24
|
|
Article Friendly - Cross-Site Request Forgery
|
24 |
WEB
|
pratul agrawal
|
|
2010-02-24
|
|
MySmartBB 1.0.0 - Cross-Site Scripting
|
24 |
WEB
|
indoushka
|
|
2010-02-24
|
|
Max's Photo Album - Arbitrary File Upload
|
25 |
WEB
|
indoushka
|
|
2010-02-23
|
|
bispage - Bypass
|
26 |
WEB
|
SaMir-BonD
|
|
2010-02-23
|
|
QuickDev 4 PHP - Database Disclosure
|
24 |
WEB
|
ViRuSMaN
|
|
2010-02-23
|
|
Tinypug 0.9.5 - Cross-Site Request Forgery (Password Change)
|
21 |
WEB
|
AmnPardaz
|
|
2010-02-23
|
|
Softbiz Jobs - Multiple SQL Injections
|
24 |
WEB
|
Easy Laster
|
|
2010-02-23
|
|
WorkSimple 1.3.2 - Multiple Vulnerabilities
|
28 |
WEB
|
JIKO
|
|
2010-02-23
|
|
Joomla! Component user_id com_sqlreport - Blind SQL Injection
|
24 |
WEB
|
snakespc
|
|
2010-02-23
|
|
Top Auktion - 'news.php' SQL Injection
|
22 |
WEB
|
Easy Laster
|
|
2010-02-23
|
|
PHP Auktion Pro SQL - 'news.php' SQL Injection
|
23 |
WEB
|
Easy Laster
|
|
2010-02-23
|
|
Joomla! Component com_ice - Blind SQL Injection
|
24 |
WEB
|
snakespc
|
|
2010-02-23
|
|
Softbiz Jobs - Cross-Site Request Forgery
|
24 |
WEB
|
pratul agrawal
|
|
2010-02-22
|
|
Article Friendly - SQL Injection
|
24 |
WEB
|
SkuLL-HackeR
|
|
2010-02-22
|
|
phpBugTracker 1.0.1 - File Disclosure
|
22 |
WEB
|
ViRuSMaN
|
|
2010-02-22
|
|
cPanel - Multiple Cross-Site Request Forgery Vulnerabilities
|
23 |
WEB
|
SecurityRules
|
|
2010-02-22
|
|
vBSEO 3.1.0 - Local File Inclusion
|
22 |
WEB
|
ViRuSMaN
|
|
2010-02-22
|
|
Arab Cart 1.0.2.0 - Multiple Vulnerabilities
|
24 |
WEB
|
indoushka
|
|
2010-02-22
|
|
Galerie Dezign-Box France - Multiple Vulnerabilities
|
28 |
WEB
|
indoushka
|
|
2010-02-22
|
|
Ero Auktion 2010 - 'news.php' SQL Injection
|
25 |
WEB
|
Easy Laster
|
|
2010-02-22
|
|
Ero Auktion 2.0 - 'news.php' SQL Injection
|
22 |
WEB
|
Easy Laster
|
|
2010-02-22
|
|
Ac4p.com Gallery 1.0 - Multiple Vulnerabilities
|
26 |
WEB
|
indoushka
|
|
2010-02-22
|
|
Softbiz Jobs - 'news_desc' SQL Injection
|
23 |
WEB
|
BAYBORA
|
|
2010-02-20
|
|
Netzbrett - Database Disclosure
|
23 |
WEB
|
ViRuSMaN
|
|
2010-02-20
|
|
TimeClock 0.99 - Cross-Site Request Forgery (Add Admin)
|
23 |
WEB
|
ViRuSMaN
|
|
2010-02-20
|
|
FlatFile Login System - Remote Password Disclosure
|
23 |
WEB
|
ViRuSMaN
|
|
2010-02-19
|
|
Joomla! Component com_communitypolls 1.5.2 - Local File Inclusion
|
23 |
WEB
|
kaMtiEz
|
|
2010-02-19
|
|
PHPKit 1.6.1 - 'mailer.php' SQL Injection
|
22 |
WEB
|
Easy Laster
|
|
2010-02-19
|
|
Fonality trixbox 2.2.4 - 'PhonecDirectory.php' SQL Injection
|
21 |
WEB
|
NorSlacker
|
|
2010-02-19
|
|
WSC CMS - Authentication Bypass
|
22 |
WEB
|
Phenom
|
|
2010-02-19
|
|
Amelia CMS - SQL Injection
|
24 |
WEB
|
Ariko-Security
|
|
2010-02-19
|
|
Litespeed Web Server 4.0.12 - Cross-Site Request Forgery (Add Admin) / Cross-Site Scripting
|
26 |
WEB
|
d1dn0t
|
|
2010-02-19
|
|
phpAutoVideo - Cross-Site Request Forgery
|
23 |
WEB
|
GoLdeN-z3r0
|
|
2010-02-18
|
|
Joomla! Plugin Core Design Scriptegrator - Local File Inclusion
|
22 |
WEB
|
S2 Crew
|
|
2010-02-18
|
|
Open Source Classifieds 1.1.0 Alpha (OSClassi) - SQL Injection / Cross-Site Scripting / Arbitrary Ad
|
23 |
WEB
|
Sioma Labs
|
|
2010-02-18
|
|
CubeCart - 'index.php' SQL Injection
|
25 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2010-02-18
|
|
Joomla! Component com_otzivi - Local File Inclusion
|
23 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2010-02-17
|
|
PunBBAnnuaire 0.4 - Blind SQL Injection
|
23 |
WEB
|
Metropolis
|
|
2010-02-17
|
|
Erotik Auktionshaus - 'news.php' SQL Injection
|
21 |
WEB
|
Easy Laster
|
|
2010-02-17
|
|
Auktionshaus Gelb 3 - 'news.php' SQL Injection
|
24 |
WEB
|
Easy Laster
|
|
2010-02-17
|
|
Auktionshaus 4 - 'news.php' SQL Injection
|
23 |
WEB
|
Easy Laster
|
|
2010-02-17
|
|
PHPIDS 0.4 - Remote File Inclusion
|
21 |
WEB
|
eidelweiss
|
|
2010-02-17
|
|
Multiple File Attachments Mail Form Pro 2.0 - Arbitrary File Upload
|
25 |
WEB
|
EgoPL
|
|
2010-02-17
|
|
uGround 1.0b - SQL Injection
|
20 |
WEB
|
Easy Laster
|
|
2010-02-17
|
|
Joomla! Component com_acteammember - SQL Injection
|
25 |
WEB
|
ALTBTA
|
|
2010-02-17
|
|
Nabernet - 'articles.php' SQL Injection
|
22 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2010-02-17
|
|
intuitive - 'form.php' SQL Injection
|
23 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2010-02-17
|
|
Joomla! Component com_acprojects - SQL Injection
|
21 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2010-02-17
|
|
Joomla! Component com_acstartseite - SQL Injection
|
22 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2010-02-16
|
|
Limny 2.0 - Cross-Site Request Forgery (Create Admin User)
|
24 |
WEB
|
Luis Santana
|
|
2010-02-16
|
|
Limny 2.0 - Cross-Site Request Forgery (Change Email and Password)
|
23 |
WEB
|
Luis Santana
|
|
2010-02-16
|
|
SongForever.com Clone - Arbitrary File Upload
|
25 |
WEB
|
indoushka
|
|
2010-02-16
|
|
Mambo Component 'com_acnews' - 'id' SQL Injection
|
25 |
WEB
|
Zero Bits & Xzit3
|
|
2010-02-16
|
|
Pogodny CMS - SQL Injection
|
24 |
WEB
|
Ariko-Security
|
|
2010-02-15
|
|
microUpload - Arbitrary File Upload
|
24 |
WEB
|
Phenom
|
|
2010-02-15
|
|
Joomla! Component com_hdvideoshare - SQL Injection
|
25 |
WEB
|
snakespc
|
|
2010-02-15
|
|
Joomla! Component com_joomportfolio - Blind Injection
|
22 |
WEB
|
snakespc
|
|
2010-02-15
|
|
blog ink - Bypass Setting
|
28 |
WEB
|
indoushka
|
|
2010-02-15
|
|
CoffieNet CMS - Admin Bypass
|
24 |
WEB
|
indoushka
|
|
2010-02-15
|
|
Dodo Upload 1.3 - Arbitrary File Upload (Bypass)
|
21 |
WEB
|
indoushka
|
|
2010-02-15
|
|
WordPress Plugin Copperleaf Photolog 0.16 - SQL Injection
|
26 |
WEB
|
kaMtiEz
|
|
2010-02-15
|
|
superengine CMS (Custom Pack) - SQL Injection
|
22 |
WEB
|
10n1z3d
|
|
2010-02-15
|
|
Généré par KDPics 1.18 - Remote Add Admin
|
23 |
WEB
|
snakespc
|
|
2010-02-14
|
|
Katalog Stron Hurricane 1.3.5 - Remote File Inclusion / SQL Injection
|
22 |
WEB
|
kaMtiEz
|
|
2010-02-14
|
|
File Upload Manager 1.3 - Web Shell File Upload
|
22 |
WEB
|
ROOT_EGY
|
|
2010-02-14
|
|
Joomla! Component com_videos - SQL Injection
|
24 |
WEB
|
snakespc
|
|
2010-02-14
|
|
Joomla! Component Jw_allVideos - Arbitrary File Download
|
24 |
WEB
|
Pouya Daneshmand
|
|
2010-02-14
|
|
Mambo Component AkoGallery - SQL Injection
|
22 |
WEB
|
snakespc
|
|
2010-02-14
|
|
JTL-Shop 2 - 'druckansicht.php' SQL Injection
|
20 |
WEB
|
Lo$T
|
|
2010-02-14
|
|
ShortCMS 1.2.0 - SQL Injection
|
25 |
WEB
|
Thibow
|
|
2010-02-14
|
|
Calendarix 0.8.20071118 - SQL Injection
|
24 |
WEB
|
Thibow
|
|
2010-02-14
|
|
PHP PEAR 1.9.0 - Multiple Remote File Inclusions
|
24 |
WEB
|
eidelweiss
|
|
2010-02-13
|
|
WordPress Core 2.9 - Failure to Restrict URL Access
|
24 |
WEB
|
tmacuk
|
|
2010-02-13
|
|
InterTech Co 1.0 - SQL Injection
|
24 |
WEB
|
Red-D3v1L
|
|
2010-02-13
|
|
ZeusCMS 0.2 - Database Backup Dump / Local File Inclusion
|
25 |
WEB
|
ViRuSMaN
|
|
2010-02-13
|
|
WSN Guest 1.02 - 'orderlinks' SQL Injection
|
24 |
WEB
|
Gamoscu
|
|
2010-02-13
|
|
statcountex 3.1 - Multiple Vulnerabilities
|
24 |
WEB
|
Phenom
|
|
2010-02-13
|
|
MRW PHP Upload - Arbitrary File Upload
|
23 |
WEB
|
Phenom
|
|
2010-02-13
|
|
southburn Web - 'products.php' SQL Injection
|
23 |
WEB
|
AtT4CKxT3rR0r1ST
|
|
2010-02-13
|
|
Vito CMS - SQL Injection
|
22 |
WEB
|
hacker@sr.gov.yu
|
|
2010-02-12
|
|
daChooch - SQL Injection
|
24 |
WEB
|
snakespc
|
|
2010-02-12
|
|
CMS Made Simple 1.6.6 - Multiple Vulnerabilities
|
22 |
WEB
|
Beenu Arora
|
|
2010-02-12
|
|
Alqatari Group 1.0 - Blind SQL Injection
|
19 |
WEB
|
Red-D3v1L
|
|
2010-02-12
|
|
Izumi 1.1.0 - Multiple Local File Inclusion / Remote File Inclusions
|
23 |
WEB
|
cr4wl3r
|
|
2010-02-12
|
|
Infragistics WebHtmlEditor 7.1 - Multiple Vulnerabilities
|
23 |
WEB
|
SpeeDr00t
|
|
2010-02-11
|
|
Trade Manager Script - SQL Injection
|
22 |
WEB
|
JaMbA
|
|
2010-02-11
|
|
apemCMS - SQL Injection
|
21 |
WEB
|
Ariko-Security
|
|
2010-02-11
|
|
Vacation Rental Script - SQL Injection
|
24 |
WEB
|
JaMbA
|
|
2010-02-11
|
|
Video Games Rentals Script - SQL Injection
|
23 |
WEB
|
JaMbA
|
|
2010-02-11
|
|
J.A.G (Just Another Guestbook) 1.14 - Database Disclosure
|
23 |
WEB
|
Phenom
|
|
2010-02-11
|
|
RSA - SecurID Cross-Site Scripting
|
25 |
WEB
|
s4squatch
|
|
2010-02-11
|
|
X-Cart Pro 4.0.13 - SQL Injection
|
21 |
WEB
|
s4squatch
|
|
2010-02-11
|
|
Cisco Collaboration Server 5 - Cross-Site Scripting / Source Code Disclosure
|
22 |
WEB
|
s4squatch
|
|
2010-02-11
|
|
Books/eBooks Rental Software - SQL Injection
|
23 |
WEB
|
Don Tukulesto
|
|
2010-02-11
|
|
CD Rentals Script - SQL Injection
|
25 |
WEB
|
Don Tukulesto
|
|
2010-02-11
|
|
myPHP Guestbook 2.0.4 - Database Backup Dump
|
21 |
WEB
|
ViRuSMaN
|
|
2010-02-11
|
|
GameRoom Script - Authentication Bypass / Arbitrary File Upload
|
23 |
WEB
|
JIKO
|
