|
2010-01-03
|
|
Smart Vision Script News - 'newsdetail.php' SQL Injection (1)
|
7 |
WEB
|
Err0R
|
|
2010-01-03
|
|
WorldPay Script Shop - 'productdetail' SQL Injection
|
8 |
WEB
|
Err0R
|
|
2010-01-03
|
|
Simple Portal 2.0 - Authentication Bypass
|
8 |
WEB
|
Red-D3v1L
|
|
2010-01-03
|
|
Acidcat CMS 3.5 - Multiple Vulnerabilities
|
6 |
WEB
|
LionTurk
|
|
2010-01-03
|
|
Joomla! Component Bamboo Simpla Admin Template - SQL Injection
|
7 |
WEB
|
R3d-D3V!L
|
|
2010-01-03
|
|
portal modulnet 1.0 - 'id' SQL Injection
|
8 |
WEB
|
Red-D3v1L
|
|
2010-01-03
|
|
Rezervi 3.0.2 - 'mail.inc.php' Remote File Inclusion
|
8 |
WEB
|
r00t.h4x0r
|
|
2010-01-03
|
|
Joomla! Component com_otzivi - Blind SQL Injection
|
8 |
WEB
|
Cyber_945
|
|
2010-01-03
|
|
Joomla! Component com_doqment - 'cid' SQL Injection
|
8 |
WEB
|
Gamoscu
|
|
2010-01-03
|
|
Joomla! Component Bridge of Hope Template - SQL Injection
|
8 |
WEB
|
R3d-D3V!L
|
|
2010-01-03
|
|
Live TV Script - SQL Injection
|
8 |
WEB
|
R3d-D3V!L
|
|
2010-01-03
|
|
MasterWeb Script 1.0 - 'details&newsID' SQL Injection
|
8 |
WEB
|
Red-D3v1L
|
|
2010-01-03
|
|
Joomla! Component com_hotbrackets - Blind SQL Injection
|
8 |
WEB
|
FL0RiX
|
|
2010-01-03
|
|
Joomla! Component com_alfresco - SQL Injection
|
8 |
WEB
|
FL0RiX
|
|
2010-01-03
|
|
Joomla! Component com_tpjobs - Blind SQL Injection
|
9 |
WEB
|
FL0RiX
|
|
2010-01-03
|
|
Joomla! Component com_countries - SQL Injection
|
8 |
WEB
|
FL0RiX
|
|
2010-01-03
|
|
Joomla! Component com_abbrev - Local File Inclusion
|
8 |
WEB
|
FL0RiX
|
|
2010-01-03
|
|
Joomla! Component com_bfsurvey - Local File Inclusion
|
8 |
WEB
|
FL0RiX
|
|
2010-01-03
|
|
Joomla! Component com_bfsurvey_pro - 'catid' Blind SQL Injection
|
8 |
WEB
|
FL0RiX
|
|
2010-01-03
|
|
Joomla! Component com_bfsurvey_basic - SQL Injection
|
8 |
WEB
|
FL0RiX
|
|
2010-01-03
|
|
Joomla! Component com_biblestudy - Local File Inclusion
|
8 |
WEB
|
FL0RiX
|
|
2010-01-03
|
|
Joomla! Component com_cartweberp - Local File Inclusion
|
8 |
WEB
|
FL0RiX
|
|
2010-01-03
|
|
Joomla! Component com_aprice - Blind SQL Injection
|
8 |
WEB
|
FL0RiX
|
|
2010-01-03
|
|
Football Pool 3.1 - Database Disclosure
|
8 |
WEB
|
LionTurk
|
|
2010-01-03
|
|
Service d'upload 1.0.0 - Arbitrary File Upload
|
8 |
WEB
|
indoushka
|
|
2010-01-02
|
|
X7CHAT 1.3.6b - Arbitrary Add Admin
|
8 |
WEB
|
d4rk-h4ck3r
|
|
2010-01-02
|
|
Left 4 Dead Stats 1.1 - SQL Injection
|
8 |
WEB
|
Sora
|
|
2010-01-02
|
|
WordPress Plugin Events - SQL Injection
|
8 |
WEB
|
Red-D3v1L
|
|
2010-01-02
|
|
Joomla! Component com_dailymeals - Local File Inclusion
|
9 |
WEB
|
FL0RiX
|
|
2010-01-02
|
|
AL-Athkat.2.0 - Cross-Site Scripting
|
7 |
WEB
|
indoushka
|
|
2010-01-02
|
|
superlink script 1.0 - 'id' SQL Injection
|
7 |
WEB
|
Red-D3v1L
|
|
2010-01-02
|
|
eazyPortal 1.0.0 - Multiple Vulnerabilities
|
8 |
WEB
|
Milos Zivanovic
|
|
2010-01-02
|
|
Proxyroll.com Clone PHP Script - Insecure Cookie Handling
|
8 |
WEB
|
DigitALL
|
|
2010-01-02
|
|
HLstatsX Community Edition 1.6.5 - Cross-Site Scripting
|
8 |
WEB
|
Sora
|
|
2010-01-02
|
|
DZOIC ClipHouse - Authentication Bypass
|
7 |
WEB
|
R3d-D3V!L
|
|
2010-01-01
|
|
Joomla! Component com_avosbillets - Blind SQL Injection
|
8 |
WEB
|
Pyske
|
|
2010-01-01
|
|
Mini-NUKE 2.3 Freehost - Multiple Vulnerabilities
|
8 |
WEB
|
LionTurk
|
|
2010-01-01
|
|
DZOIC Handshakes - Authentication Bypass
|
8 |
WEB
|
R3d-D3V!L
|
|
2010-01-01
|
|
XlentCMS 1.0.4 - 'downloads.php?cat' SQL Injection
|
8 |
WEB
|
Gamoscu
|
|
2010-01-01
|
|
WD-CMS 3.0 - Multiple Vulnerabilities
|
8 |
WEB
|
Sora
|
|
2010-01-01
|
|
UCStats 1.1 - SQL Injection
|
8 |
WEB
|
Sora
|
|
2010-01-01
|
|
DS CMS 1.0 - 'NewsId' SQL Injection
|
8 |
WEB
|
Palyo34
|
|
2010-01-01
|
|
Cype CMS - SQL Injection
|
8 |
WEB
|
Sora
|
|
2010-01-01
|
|
ArticleLive 1.7.1.2 - 'blogs.php?Id' SQL Injection
|
8 |
WEB
|
BAYBORA
|
|
2010-01-01
|
|
BlogWorx 1.0 Blog - Database Disclosure
|
8 |
WEB
|
LionTurk
|
|
2009-12-31
|
|
Kayako eSupport 3.04.10 - Cross-Site Scripting / Cross-Site Request Forgery
|
8 |
WEB
|
D3V!L FUCKER
|
|
2009-12-31
|
|
bbScript 1.1.2.1 - 'id' Blind SQL Injection
|
7 |
WEB
|
cOndemned
|
|
2009-12-31
|
|
Invision Power Board (Trial) 2.0.4 - Backup
|
6 |
WEB
|
indoushka
|
|
2009-12-31
|
|
PHP-AddressBook 3.1.5 - 'edit.php' SQL Injection
|
8 |
WEB
|
Hussin X
|
|
2009-12-31
|
|
PHP-MySQL-Quiz - SQL Injection
|
8 |
WEB
|
Hussin X
|
|
2009-12-31
|
|
Pre News Manager - 'nid' SQL Injection
|
8 |
WEB
|
Hussin X
|
|
2009-12-31
|
|
EasyGallery - 'catid' Blind SQL Injection
|
8 |
WEB
|
Hussin X
|
|
2009-12-31
|
|
Pre ADS Portal - 'cid' SQL Injection
|
8 |
WEB
|
Hussin X
|
|
2009-12-31
|
|
Freewebscript'z Games - Authentication Bypass
|
7 |
WEB
|
Hussin X
|
|
2009-12-31
|
|
PhotoDiary 1.3 - 'lng' Local File Inclusion
|
8 |
WEB
|
cOndemned
|
|
2009-12-31
|
|
Discuz 1.03 - SQL Injection
|
8 |
WEB
|
indoushka
|
|
2009-12-31
|
|
HLstatsX 1.65 - SQL Injection
|
8 |
WEB
|
bnc
|
|
2009-12-31
|
|
Joomla! Component com_mdigg - SQL Injection
|
8 |
WEB
|
wlhaan hacker
|
|
2009-12-31
|
|
Weatimages - Directory Traversal / Local File Inclusion
|
8 |
WEB
|
e.wiZz
|
|
2009-12-31
|
|
fileNice PHP file browser - Local/Remote File Inclusion
|
8 |
WEB
|
e.wiZz
|
|
2009-12-31
|
|
Joomla! Component com_portfol - SQL Injection
|
8 |
WEB
|
wlhaan hacker
|
|
2009-12-31
|
|
pL-PHP Beta 0.9 - Local File Inclusion
|
8 |
WEB
|
cr4wl3r
|
|
2009-12-31
|
|
Classified Ads Scrip - 'store_info.php?id' SQL Injection
|
8 |
WEB
|
Hussin X
|
|
2009-12-31
|
|
list Web - 'addlink.php?id' SQL Injection
|
7 |
WEB
|
Hussin X
|
|
2009-12-31
|
|
Quick Poll - 'code.php?id' SQL Injection
|
8 |
WEB
|
Hussin X
|
|
2009-12-30
|
|
Elkagroup - 'pid' SQL Injection
|
8 |
WEB
|
Hussin X
|
|
2009-12-30
|
|
Jax Calendar 1.34 - Remote Admin Access
|
8 |
WEB
|
Sora
|
|
2009-12-30
|
|
Classifieds Script - 'type' SQL Injection
|
8 |
WEB
|
Hussin X
|
|
2009-12-30
|
|
e-topbiz Slide Popups 1 PHP - Authentication Bypass
|
8 |
WEB
|
Hussin X
|
|
2009-12-30
|
|
e-topbiz banner exchange PHP - Authentication Bypass
|
8 |
WEB
|
Hussin X
|
|
2009-12-30
|
|
Azadi Network - 'page' SQL Injection
|
8 |
WEB
|
Hussin X
|
|
2009-12-30
|
|
vBulletin ads_saed 1.5 - 'bnnr.php' SQL Injection
|
8 |
WEB
|
Hussin X
|
|
2009-12-30
|
|
K-Rate - SQL Injection
|
10 |
WEB
|
e.wiZz
|
|
2009-12-30
|
|
UranyumSoft Ýlan Servisi - Database Disclosure
|
7 |
WEB
|
LionTurk
|
|
2009-12-30
|
|
Joomla! Component com_rd_download - Local File Disclosure
|
8 |
WEB
|
FL0RiX
|
|
2009-12-30
|
|
Wing FTP Server 3.2.4 - Cross-Site Request Forgery
|
7 |
WEB
|
Ams
|
|
2009-12-30
|
|
gallery_show.asp - GID Blind SQL Injection
|
8 |
WEB
|
R3d-D3V!L
|
|
2009-12-30
|
|
Joomla! Component com_airmonoblock - Blind SQL Injection
|
7 |
WEB
|
Pyske
|
|
2009-12-30
|
|
Aptgp.1.3.0c - Cross-Site Scripting
|
8 |
WEB
|
indoushka
|
|
2009-12-30
|
|
ArticleLive PHP 2005.0.0 - Cross-Site Scripting
|
8 |
WEB
|
indoushka
|
|
2009-12-30
|
|
WHOISCART - Scripting
|
8 |
WEB
|
HAQIQ20
|
|
2009-12-30
|
|
Joomla! Component com_intuit - Apache Directory listing Download
|
8 |
WEB
|
indoushka
|
|
2009-12-30
|
|
FlashChat 3.9.3.1 - PHP info
|
8 |
WEB
|
indoushka
|
|
2009-12-30
|
|
I-Escorts Directory - 'country_escorts.php?country_id' SQL Injection
|
8 |
WEB
|
R3d-D3V!L
|
|
2009-12-30
|
|
PHP-Fusion Mod avatar_studio - Local File Inclusion
|
8 |
WEB
|
bonobug
|
|
2009-12-30
|
|
XOOPS Module dictionary 2.0.18 - 'detail.php' SQL Injection
|
8 |
WEB
|
Palyo34
|
|
2009-12-30
|
|
LiveZilla 3.1.8.3 - Cross-Site Scripting
|
8 |
WEB
|
MaXe
|
|
2009-12-30
|
|
Diesel Job Site 1.4 - Multiple Vulnerabilities
|
8 |
WEB
|
indoushka
|
|
2009-12-30
|
|
UBBCentral UBB.Threads 6.0 - Remote File Inclusion
|
7 |
WEB
|
indoushka
|
|
2009-12-30
|
|
PicMe 2.1.0 - Arbitrary File Upload
|
9 |
WEB
|
indoushka
|
|
2009-12-30
|
|
I-RATER Basic - Arbitrary File Upload
|
7 |
WEB
|
indoushka
|
|
2009-12-30
|
|
iDevAffiliate 4.0 - Backup
|
9 |
WEB
|
indoushka
|
|
2009-12-30
|
|
ezscheduler - Remote Database Disclosure
|
10 |
WEB
|
RENO
|
|
2009-12-30
|
|
ezguestbook - Remote Database Disclosure
|
8 |
WEB
|
RENO
|
|
2009-12-30
|
|
Web Calendar - Remote Database Disclosure
|
8 |
WEB
|
RENO
|
|
2009-12-30
|
|
RoseOnlineCMS 3 B1 - 'admin' Local File Inclusion
|
8 |
WEB
|
cr4wl3r
|
|
2009-12-30
|
|
My Book World Edition NAS - Multiple Vulnerabilities
|
8 |
WEB
|
emgent
|
|
2009-12-29
|
|
Joomla! Component com_kkcontent - Blind SQL Injection
|
7 |
WEB
|
Pyske
|
|
2009-12-29
|
|
Joomla! Component com_noticia - Cross-Site Scripting
|
8 |
WEB
|
Mr.tro0oqy
|
|
2009-12-29
|
|
Helpdesk Pilot Knowledge Base 4.4.0 - SQL Injection
|
7 |
WEB
|
kaMtiEz
|
|
2009-12-29
|
|
eStore 1.0.2 - SQL Injection
|
8 |
WEB
|
R3VAN_BASTARD
|
|
2009-12-29
|
|
ActiveKB - Remote File Inclusion
|
7 |
WEB
|
indoushka
|
|
2009-12-29
|
|
ASP Battle Blog - Database Disclosure
|
7 |
WEB
|
indoushka
|
|
2009-12-29
|
|
DirectAdmin 1.34.0 - Cross-Site Request Forgery (Add Admin)
|
7 |
WEB
|
SecurityRules
|
|
2009-12-29
|
|
makit news/blog poster 3.1 - Database Disclosure
|
7 |
WEB
|
indoushka
|
|
2009-12-29
|
|
Fully Functional ASP Forum 1.0 - Database Disclosure
|
7 |
WEB
|
indoushka
|
|
2009-12-29
|
|
BaalASP 2.0 - Database Disclosure
|
7 |
WEB
|
indoushka
|
|
2009-12-29
|
|
Uguestbook - Database Disclosure
|
7 |
WEB
|
indoushka
|
|
2009-12-29
|
|
htmlArea 2.03 - Database Disclosure
|
7 |
WEB
|
indoushka
|
|
2009-12-29
|
|
Futility Forum 1.0 Revamp - Database Disclosure
|
7 |
WEB
|
indoushka
|
|
2009-12-29
|
|
AspBB - Active Server Page Bulletin Board Database Disclosure
|
7 |
WEB
|
indoushka
|
|
2009-12-29
|
|
QuickEStore 7.9 - SQL Injection / Full Path Disclosure Download
|
7 |
WEB
|
indoushka
|
|
2009-12-29
|
|
PSnews - Database Disclosure
|
7 |
WEB
|
indoushka
|
|
2009-12-29
|
|
jgbbs-3.0beta1 - Database Disclosure
|
7 |
WEB
|
indoushka
|
|
2009-12-28
|
|
Dren's PHP Uploader - Arbitrary File Upload
|
7 |
WEB
|
Cyb3r IntRue
|
|
2009-12-28
|
|
Sunbyte e-Flower - SQL Injection
|
7 |
WEB
|
Don Tukulesto
|
|
2009-12-28
|
|
Joomla! Component com_calendario - Blind SQL Injection
|
7 |
WEB
|
Mr.tro0oqy
|
|
2009-12-28
|
|
Calendar Express 2.0 - SQL Injection
|
7 |
WEB
|
BAYBORA
|
|
2009-12-28
|
|
PHP Forum ohne My SQL - Arbitrary File Upload
|
8 |
WEB
|
wlhaan hacker
|
|
2009-12-28
|
|
MySimpleFileUploader 1.6 - Arbitrary File Upload
|
7 |
WEB
|
FormatXformat
|
|
2009-12-28
|
|
egegen turkish script - SQL Injection
|
7 |
WEB
|
FormatXformat
|
|
2009-12-28
|
|
Joomla! Component com_if_nexus - Remote File Inclusion
|
7 |
WEB
|
FL0RiX
|
|
2009-12-28
|
|
ASP Simple Blog 3.0 - Arbitrary File Upload
|
6 |
WEB
|
indoushka
|
|
2009-12-28
|
|
Yonja - Arbitrary File Upload
|
6 |
WEB
|
indoushka
|
|
2009-12-27
|
|
Dream4 Koobi Pro 6.1 Gallery - 'img_id' SQL Injection
|
7 |
WEB
|
BILGE_KAGAN
|
