|
2010-01-28
|
|
Joomla! Component CCNewsLetter - Directory Traversal
|
8 |
WEB
|
B-HUNT3|2
|
|
2009-12-21
|
|
Woltlab Burningboard Addon Kleinanzeigenmarkt - SQL Injection
|
8 |
WEB
|
fred777
|
|
2010-01-27
|
|
Joomla! Component com_virtuemart - order_status_id SQL Injection
|
8 |
WEB
|
B-HUNT3|2
|
|
2010-01-27
|
|
Joomla! Component VirtueMart Module Customers_who_bought - SQL Injection
|
8 |
WEB
|
B-HUNT3|2
|
|
2010-01-26
|
|
Joomla! 1.5.12 - read/exec Remote files
|
8 |
WEB
|
Nikoal Petrov
|
|
2010-01-26
|
|
Joomla! 1.5.12 - Connect Back
|
8 |
WEB
|
Nikola Petrov
|
|
2010-01-26
|
|
UGiA PHP UPLOADER 0.2 - Arbitrary File Upload
|
8 |
WEB
|
indoushka
|
|
2010-01-25
|
|
Status2k - Remote Add Admin
|
8 |
WEB
|
alnjm33
|
|
2010-01-24
|
|
BoastMachine 3.1 - Arbitrary File Upload
|
7 |
WEB
|
alnjm33
|
|
2010-01-24
|
|
SilverStripe CMS 2.3.5 - Cross-Site Request Forgery / Open Redirection
|
7 |
WEB
|
cp77fk4r
|
|
2010-01-24
|
|
Joomla! Component com_mochigames - SQL Injection
|
8 |
WEB
|
B-HUNT3|2
|
|
2010-01-23
|
|
OpenDb 1.5.0.4 - Multiple Local File Inclusions
|
8 |
WEB
|
ViRuSMaN
|
|
2010-01-23
|
|
Joomla! Component JBDiary - Blind SQL Injection
|
9 |
WEB
|
B-HUNT3|2
|
|
2010-01-23
|
|
Joomla! Component com_jbpublishdownfp - SQL Injection
|
8 |
WEB
|
B-HUNT3|2
|
|
2010-01-23
|
|
Joomla! Component com_casino - SQL Injection
|
8 |
WEB
|
B-HUNT3|2
|
|
2010-01-23
|
|
Joomla! Component com_ContentBlogList - SQL Injection
|
8 |
WEB
|
B-HUNT3|2
|
|
2010-01-23
|
|
magic-portal 2.1 - SQL Injection
|
8 |
WEB
|
alnjm33
|
|
2010-01-22
|
|
Joomla! Component com_biographies - SQL Injection
|
7 |
WEB
|
snakespc
|
|
2010-01-22
|
|
Joomla! Component com_gurujibook - SQL Injection
|
8 |
WEB
|
snakespc
|
|
2010-01-22
|
|
KosmosBlog 0.9.3 - SQL Injection / Cross-Site Scripting / Cross-Site Request Forgery
|
9 |
WEB
|
Milos Zivanovic
|
|
2010-01-22
|
|
Joomla! Component com_avosbillets - SQL Injection
|
9 |
WEB
|
snakespc
|
|
2010-01-22
|
|
Joomla! Component com_gameserver - SQL Injection
|
8 |
WEB
|
B-HUNT3|2
|
|
2010-01-21
|
|
jQuery Uploadify 2.1.0 - Arbitrary File Upload
|
8 |
WEB
|
k4cp3r/Ablus
|
|
2010-01-21
|
|
Blog System 1.x - 'note' SQL Injection
|
7 |
WEB
|
h4ck3r
|
|
2010-01-21
|
|
SHOUTcast Server 1.9.8/Win32 - Cross-Site Request Forgery
|
8 |
WEB
|
cp77fk4r
|
|
2010-01-21
|
|
Joomla! Component com_book - SQL Injection
|
8 |
WEB
|
Evil-Cod3r
|
|
2010-01-21
|
|
eWebeditor - Directory Traversal
|
8 |
WEB
|
anonymous
|
|
2010-01-21
|
|
cPanel - HTTP Response Splitting
|
8 |
WEB
|
Trancer
|
|
2010-01-19
|
|
al3jeb script - Remote Authentication Bypass
|
9 |
WEB
|
cr4wl3r
|
|
2010-01-18
|
|
Soft Direct 1.05 - Multiple Vulnerabilities
|
7 |
WEB
|
indoushka
|
|
2010-01-18
|
|
Fatwiki (fwiki) 1.0 - Remote File Inclusion
|
9 |
WEB
|
kaMtiEz
|
|
2010-01-18
|
|
FreePBX 2.5.x - Information Disclosure
|
8 |
WEB
|
Ivan Huertas
|
|
2010-01-18
|
|
FreePBX 2.5.1 - SQL Injection
|
8 |
WEB
|
Ivan Huertas
|
|
2010-01-18
|
|
al3jeb script - Remote Change Password
|
8 |
WEB
|
alnjm33
|
|
2010-01-18
|
|
FreePBX 2.5.x < 2.6.0 - Persistent Cross-Site Scripting
|
9 |
WEB
|
Ivan Huertas
|
|
2010-01-18
|
|
Testlink TestManagement and Execution System 1.8.5 - Multiple Directory Traversal Vulnerabilities
|
8 |
WEB
|
Prashant Khandelwal
|
|
2010-01-17
|
|
Joomla! Component com_libros - SQL Injection
|
8 |
WEB
|
FL0RiX
|
|
2010-01-17
|
|
Joomla! Component com_prime - Directory Traversal
|
9 |
WEB
|
FL0RiX
|
|
2010-01-17
|
|
Max's Image Uploader - Arbitrary File Upload
|
10 |
WEB
|
indoushka
|
|
2010-01-17
|
|
Joomla! Component com_pc - Local File Inclusion
|
10 |
WEB
|
Pyske
|
|
2010-01-17
|
|
Uploader by CeleronDude 5.3.0 - Arbitrary File Upload (2)
|
8 |
WEB
|
Stink'
|
|
2010-01-16
|
|
Ebay Clone from clone2009 - SQL Injection
|
8 |
WEB
|
Hamza 'MizoZ' N.
|
|
2010-01-16
|
|
ITechSctipts Alibaba Clone - Multiple Vulnerabilities
|
8 |
WEB
|
Hamza 'MizoZ' N.
|
|
2010-01-16
|
|
CLONEBID B2B Marketplace - Multiple Vulnerabilities
|
8 |
WEB
|
Hamza 'MizoZ' N.
|
|
2010-01-16
|
|
DasForum - 'layout' Local File Inclusion
|
8 |
WEB
|
cr4wl3r
|
|
2010-01-16
|
|
RoseOnlineCMS 3 B1 - Remote Authentication Bypass
|
7 |
WEB
|
cr4wl3r
|
|
2010-01-16
|
|
MoME CMS 0.8.5 - Remote Authentication Bypass
|
9 |
WEB
|
cr4wl3r
|
|
2010-01-16
|
|
PHP-RESIDENCE 0.7.2 - Multiple Local File Inclusions
|
9 |
WEB
|
cr4wl3r
|
|
2010-01-16
|
|
Transload Script - Arbitrary File Upload
|
9 |
WEB
|
DigitALL
|
|
2010-01-15
|
|
PonVFTP - Bypass / Arbitrary File Upload
|
9 |
WEB
|
S2K9
|
|
2010-01-15
|
|
Max's File Uploader - Arbitrary File Upload
|
8 |
WEB
|
S2K9
|
|
2010-01-14
|
|
dokuwiki 2009-12-25 - Multiple Vulnerabilities
|
9 |
WEB
|
IHTeam
|
|
2010-01-14
|
|
Joomla! Component com_articlemanager - SQL Injection
|
10 |
WEB
|
FL0RiX
|
|
2010-01-13
|
|
Public Media Manager - SQL Injection
|
9 |
WEB
|
learn3r hacker
|
|
2010-01-13
|
|
PSI CMS 0.3.1 - SQL Injection
|
8 |
WEB
|
learn3r hacker
|
|
2010-01-13
|
|
Asp VevoCart Control System 3.0.4 - Database Disclosure
|
8 |
WEB
|
indoushka
|
|
2010-01-13
|
|
Hesk Help Desk 2.1 - Cross-Site Request Forgery
|
8 |
WEB
|
The.Morpheus
|
|
2010-01-13
|
|
Populum 2.3 - SQL Injection
|
8 |
WEB
|
SiLeNtp0is0n
|
|
2010-01-13
|
|
CiviCRM 3.1 < Beta 5 - Multiple Cross-Site Scripting Vulnerabilities
|
8 |
WEB
|
h00die
|
|
2010-01-12
|
|
Layout CMS 1.0 - SQL Injection / Cross-Site Scripting
|
8 |
WEB
|
Red-D3v1L
|
|
2010-01-11
|
|
Alwjeez Script - Database Backup
|
8 |
WEB
|
alnjm33
|
|
2010-01-11
|
|
tincan ltd - 'section' SQL Injection
|
10 |
WEB
|
ALTBTA
|
|
2010-01-11
|
|
FAQEngine 4.24.00 - Remote File Inclusion
|
8 |
WEB
|
kaMtiEz
|
|
2010-01-11
|
|
Image Hosting Script - Arbitrary File Upload
|
8 |
WEB
|
R3d-D3V!L
|
|
2010-01-11
|
|
gridcc script 1.0 - SQL Injection / Cross-Site Scripting
|
7 |
WEB
|
Red-D3v1L
|
|
2010-01-11
|
|
CMScontrol 7.x - Arbitrary File Upload
|
7 |
WEB
|
Cyber_945
|
|
2010-01-10
|
|
D-Link Routers - Authentication Bypass (2)
|
8 |
WEB
|
SourceSec DevTeam
|
|
2010-01-10
|
|
E-membres 1.0 - Remote Database Disclosure
|
8 |
WEB
|
ViRuSMaN
|
|
2010-01-10
|
|
Egreetings 1.0b - Remote Database Disclosure
|
9 |
WEB
|
ViRuSMaN
|
|
2010-01-10
|
|
ABB 1.1 - Forum Remote Database Disclosure
|
9 |
WEB
|
ViRuSMaN
|
|
2010-01-10
|
|
Simply Classified 0.2 - Cross-Site Scripting / Cross-Site Request Forgery
|
9 |
WEB
|
mr_me
|
|
2010-01-10
|
|
Joomla! Component com_jashowcase - Directory Traversal
|
11 |
WEB
|
FL0RiX
|
|
2010-01-10
|
|
Joomla! Component com_jvideodirect - Directory Traversal
|
8 |
WEB
|
FL0RiX
|
|
2010-01-10
|
|
Joomla! Component com_jcollection - Directory Traversal
|
8 |
WEB
|
FL0RiX
|
|
2010-01-10
|
|
ZeeWays Script - SQL Injection
|
8 |
WEB
|
SyRiAn_34G13
|
|
2010-01-10
|
|
Joomla! Component com_dashboard - Directory Traversal
|
8 |
WEB
|
FL0RiX
|
|
2010-01-11
|
|
Alex Guestbook - Multiple Vulnerabilities
|
7 |
WEB
|
LionTurk
|
|
2010-01-10
|
|
phpMDJ 1.0.3 - SQL Injection
|
9 |
WEB
|
k4cp3r & Ablus
|
|
2010-01-10
|
|
PHPCalendars - Multiple Vulnerabilities
|
7 |
WEB
|
LionTurk
|
|
2010-01-10
|
|
TermiSBloG 1.0 - SQL Injections
|
8 |
WEB
|
Cyber_945
|
|
2010-01-10
|
|
ProArcadeScript to Game - SQL Injection
|
9 |
WEB
|
Err0R
|
|
2010-01-09
|
|
PPVChat - Multiple Vulnerabilities
|
8 |
WEB
|
andresg888
|
|
2010-01-09
|
|
ProfitCode Shopping Cart - Multiple Local/Remote File Inclusion Vulnerabilities
|
8 |
WEB
|
Zer0 Thunder
|
|
2010-01-08
|
|
DELTAScripts PHPClassifieds - 'rate.php' Blind SQL Injection
|
8 |
WEB
|
Hamza 'MizoZ' N.
|
|
2010-01-08
|
|
DELTAScripts PHPLinks - 'catid' SQL Injection
|
8 |
WEB
|
Hamza 'MizoZ' N.
|
|
2010-01-08
|
|
Joomla! Component com_ksadvertiser - SQL Injection
|
8 |
WEB
|
FL0RiX
|
|
2010-01-08
|
|
CU Village CMS Site 1.0 - 'print_view' Blind SQL Injection
|
7 |
WEB
|
Red-D3v1L
|
|
2010-01-07
|
|
Joomla! Component Regional Booking - 'id' Blind SQL Injection
|
7 |
WEB
|
Hussin X
|
|
2010-01-07
|
|
Drupal 6.15 - Multiple Persistent Cross-Site Scripting Vulnerabilities
|
8 |
WEB
|
emgent
|
|
2010-01-07
|
|
Read Excel Script 1.1 - Arbitrary File Upload
|
8 |
WEB
|
Yozgat.Us
|
|
2010-01-07
|
|
AutoIndex PHP Script - 'index.php' Directory Traversal
|
8 |
WEB
|
Red-D3v1L
|
|
2010-01-07
|
|
Ulisse's Scripts 2.6.1 - 'ladder.php' SQL Injection
|
8 |
WEB
|
Sora
|
|
2010-01-07
|
|
Zeeways Technology - 'product_desc.php' SQL Injection
|
9 |
WEB
|
Gamoscu
|
|
2010-01-06
|
|
SpawCMS Editor - Arbitrary File Upload
|
10 |
WEB
|
j4ck
|
|
2010-01-06
|
|
Roundcube Webmail - Multiple Vulnerabilities
|
7 |
WEB
|
j4ck & Globus
|
|
2010-01-06
|
|
Joomla! Component com_king - Blind SQL Injection
|
7 |
WEB
|
Pyske
|
|
2010-01-06
|
|
Joomla! Component com_kk - Blind SQL Injection
|
7 |
WEB
|
Pyske
|
|
2010-01-06
|
|
Milonic News - 'viewnews' SQL Injection
|
8 |
WEB
|
Err0R
|
|
2010-01-06
|
|
D-Link DKVM-IP8 - Cross-Site Scripting
|
9 |
WEB
|
POPCORN
|
|
2010-01-06
|
|
Docebo 3.6.0.2 (stable) - Local File Inclusion
|
9 |
WEB
|
Zer0 Thunder
|
|
2010-01-06
|
|
com_jembed - 'catid' Blind SQL Injection
|
8 |
WEB
|
FL0RiX
|
|
2010-01-06
|
|
AWCM - Database Disclosure
|
8 |
WEB
|
alnjm33
|
|
2010-01-06
|
|
Joomla! Component com_perchagallery - SQL Injection
|
8 |
WEB
|
FL0RiX
|
|
2010-01-06
|
|
Erolife AjxGaleri VT - Database Disclosure
|
8 |
WEB
|
LionTurk
|
|
2010-01-06
|
|
MobPartner Counter - Arbitrary File Upload
|
8 |
WEB
|
wlhaan hacker
|
|
2010-01-06
|
|
VP-ASP Shopping Cart 7.0 - Database Disclosure
|
8 |
WEB
|
indoushka
|
|
2010-01-06
|
|
PHPDug 2.0.0 - Cross-Site Scripting
|
8 |
WEB
|
indoushka
|
|
2010-01-06
|
|
Net Gitar Shop 1.0 - Database Disclosure
|
8 |
WEB
|
indoushka
|
|
2010-01-06
|
|
Lebi soft Ziyaretci Defteri 7.5 - Database Disclosure
|
8 |
WEB
|
indoushka
|
|
2010-01-06
|
|
Myuploader - Arbitrary File Upload
|
8 |
WEB
|
S2K9
|
|
2010-01-06
|
|
PHPDirector Game Edition 0.1 - Local File Inclusion / SQL Injection / Cross-Site Scripting
|
9 |
WEB
|
Zer0 Thunder
|
|
2010-01-06
|
|
ITaco Group ITaco.biz - 'view_news' SQL Injection
|
7 |
WEB
|
Err0R
|
|
2010-01-05
|
|
YP Portal MS-Pro Surumu 1.0 - Database Disclosure
|
8 |
WEB
|
indoushka
|
|
2010-01-04
|
|
KMSoft Guestbook 1.0 - Database Disclosure
|
8 |
WEB
|
LionTurk
|
|
2010-01-04
|
|
LightOpenCMS 0.1 - 'smarty.php' Remote File Inclusion
|
8 |
WEB
|
Zer0 Thunder
|
|
2010-01-04
|
|
ImagoScripts Deviant Art Clone - SQL Injection
|
8 |
WEB
|
alnjm33
|
|
2010-01-04
|
|
W-Agora 4.2.1 - Multiple Vulnerabilities
|
8 |
WEB
|
indoushka
|
|
2010-01-04
|
|
Ninja Blog 4.8 - Multiple Vulnerabilities
|
8 |
WEB
|
indoushka
|
|
2010-01-04
|
|
Joomla! Component com_j-projects - Blind SQL Injection
|
8 |
WEB
|
Pyske
|
|
2010-01-04
|
|
Gbook MX 4.1.0 (Arabic Version) - Remote File Inclusion
|
8 |
WEB
|
indoushka
|
|
2010-01-04
|
|
Joomla! Component com_cartikads 1.0 - Arbitrary File Upload
|
8 |
WEB
|
kaMtiEz
|
|
2010-01-04
|
|
Pay Per Minute Video Chat Script 2.0/2.1 - Multiple Vulnerabilities
|
8 |
WEB
|
R3d-D3V!L
|
|
2010-01-04
|
|
Smart Vision Script News - 'newsdetail.php' SQL Injection (2)
|
7 |
WEB
|
darkmasking
|
|
2010-01-03
|
|
Joomla! Component com_oziogallery2 / IMAGIN - Arbitrary File Write
|
7 |
WEB
|
Ubik & er
|
|
2010-01-03
|
|
Elite Gaming Ladders 3.0 - SQL Injection
|
7 |
WEB
|
Sora
|
