|
2010-01-05
|
|
YP Portal MS-Pro Surumu 1.0 - Database Disclosure
|
10 |
WEB
|
indoushka
|
|
2010-01-04
|
|
KMSoft Guestbook 1.0 - Database Disclosure
|
10 |
WEB
|
LionTurk
|
|
2010-01-04
|
|
LightOpenCMS 0.1 - 'smarty.php' Remote File Inclusion
|
10 |
WEB
|
Zer0 Thunder
|
|
2010-01-04
|
|
ImagoScripts Deviant Art Clone - SQL Injection
|
11 |
WEB
|
alnjm33
|
|
2010-01-04
|
|
W-Agora 4.2.1 - Multiple Vulnerabilities
|
10 |
WEB
|
indoushka
|
|
2010-01-04
|
|
Ninja Blog 4.8 - Multiple Vulnerabilities
|
11 |
WEB
|
indoushka
|
|
2010-01-04
|
|
Joomla! Component com_j-projects - Blind SQL Injection
|
10 |
WEB
|
Pyske
|
|
2010-01-04
|
|
Gbook MX 4.1.0 (Arabic Version) - Remote File Inclusion
|
10 |
WEB
|
indoushka
|
|
2010-01-04
|
|
Joomla! Component com_cartikads 1.0 - Arbitrary File Upload
|
10 |
WEB
|
kaMtiEz
|
|
2010-01-04
|
|
Pay Per Minute Video Chat Script 2.0/2.1 - Multiple Vulnerabilities
|
11 |
WEB
|
R3d-D3V!L
|
|
2010-01-04
|
|
Smart Vision Script News - 'newsdetail.php' SQL Injection (2)
|
10 |
WEB
|
darkmasking
|
|
2010-01-03
|
|
Joomla! Component com_oziogallery2 / IMAGIN - Arbitrary File Write
|
11 |
WEB
|
Ubik & er
|
|
2010-01-03
|
|
Elite Gaming Ladders 3.0 - SQL Injection
|
10 |
WEB
|
Sora
|
|
2010-01-03
|
|
Smart Vision Script News - 'newsdetail.php' SQL Injection (1)
|
10 |
WEB
|
Err0R
|
|
2010-01-03
|
|
WorldPay Script Shop - 'productdetail' SQL Injection
|
13 |
WEB
|
Err0R
|
|
2010-01-03
|
|
Simple Portal 2.0 - Authentication Bypass
|
10 |
WEB
|
Red-D3v1L
|
|
2010-01-03
|
|
Acidcat CMS 3.5 - Multiple Vulnerabilities
|
9 |
WEB
|
LionTurk
|
|
2010-01-03
|
|
Joomla! Component Bamboo Simpla Admin Template - SQL Injection
|
9 |
WEB
|
R3d-D3V!L
|
|
2010-01-03
|
|
portal modulnet 1.0 - 'id' SQL Injection
|
10 |
WEB
|
Red-D3v1L
|
|
2010-01-03
|
|
Rezervi 3.0.2 - 'mail.inc.php' Remote File Inclusion
|
10 |
WEB
|
r00t.h4x0r
|
|
2010-01-03
|
|
Joomla! Component com_otzivi - Blind SQL Injection
|
11 |
WEB
|
Cyber_945
|
|
2010-01-03
|
|
Joomla! Component com_doqment - 'cid' SQL Injection
|
10 |
WEB
|
Gamoscu
|
|
2010-01-03
|
|
Joomla! Component Bridge of Hope Template - SQL Injection
|
10 |
WEB
|
R3d-D3V!L
|
|
2010-01-03
|
|
Live TV Script - SQL Injection
|
10 |
WEB
|
R3d-D3V!L
|
|
2010-01-03
|
|
MasterWeb Script 1.0 - 'details&newsID' SQL Injection
|
10 |
WEB
|
Red-D3v1L
|
|
2010-01-03
|
|
Joomla! Component com_hotbrackets - Blind SQL Injection
|
11 |
WEB
|
FL0RiX
|
|
2010-01-03
|
|
Joomla! Component com_alfresco - SQL Injection
|
10 |
WEB
|
FL0RiX
|
|
2010-01-03
|
|
Joomla! Component com_tpjobs - Blind SQL Injection
|
11 |
WEB
|
FL0RiX
|
|
2010-01-03
|
|
Joomla! Component com_countries - SQL Injection
|
12 |
WEB
|
FL0RiX
|
|
2010-01-03
|
|
Joomla! Component com_abbrev - Local File Inclusion
|
12 |
WEB
|
FL0RiX
|
|
2010-01-03
|
|
Joomla! Component com_bfsurvey - Local File Inclusion
|
10 |
WEB
|
FL0RiX
|
|
2010-01-03
|
|
Joomla! Component com_bfsurvey_pro - 'catid' Blind SQL Injection
|
10 |
WEB
|
FL0RiX
|
|
2010-01-03
|
|
Joomla! Component com_bfsurvey_basic - SQL Injection
|
10 |
WEB
|
FL0RiX
|
|
2010-01-03
|
|
Joomla! Component com_biblestudy - Local File Inclusion
|
10 |
WEB
|
FL0RiX
|
|
2010-01-03
|
|
Joomla! Component com_cartweberp - Local File Inclusion
|
10 |
WEB
|
FL0RiX
|
|
2010-01-03
|
|
Joomla! Component com_aprice - Blind SQL Injection
|
10 |
WEB
|
FL0RiX
|
|
2010-01-03
|
|
Football Pool 3.1 - Database Disclosure
|
10 |
WEB
|
LionTurk
|
|
2010-01-03
|
|
Service d'upload 1.0.0 - Arbitrary File Upload
|
10 |
WEB
|
indoushka
|
|
2010-01-02
|
|
X7CHAT 1.3.6b - Arbitrary Add Admin
|
11 |
WEB
|
d4rk-h4ck3r
|
|
2010-01-02
|
|
Left 4 Dead Stats 1.1 - SQL Injection
|
11 |
WEB
|
Sora
|
|
2010-01-02
|
|
WordPress Plugin Events - SQL Injection
|
12 |
WEB
|
Red-D3v1L
|
|
2010-01-02
|
|
Joomla! Component com_dailymeals - Local File Inclusion
|
11 |
WEB
|
FL0RiX
|
|
2010-01-02
|
|
AL-Athkat.2.0 - Cross-Site Scripting
|
9 |
WEB
|
indoushka
|
|
2010-01-02
|
|
superlink script 1.0 - 'id' SQL Injection
|
9 |
WEB
|
Red-D3v1L
|
|
2010-01-02
|
|
eazyPortal 1.0.0 - Multiple Vulnerabilities
|
12 |
WEB
|
Milos Zivanovic
|
|
2010-01-02
|
|
Proxyroll.com Clone PHP Script - Insecure Cookie Handling
|
12 |
WEB
|
DigitALL
|
|
2010-01-02
|
|
HLstatsX Community Edition 1.6.5 - Cross-Site Scripting
|
10 |
WEB
|
Sora
|
|
2010-01-02
|
|
DZOIC ClipHouse - Authentication Bypass
|
9 |
WEB
|
R3d-D3V!L
|
|
2010-01-01
|
|
Joomla! Component com_avosbillets - Blind SQL Injection
|
10 |
WEB
|
Pyske
|
|
2010-01-01
|
|
Mini-NUKE 2.3 Freehost - Multiple Vulnerabilities
|
10 |
WEB
|
LionTurk
|
|
2010-01-01
|
|
DZOIC Handshakes - Authentication Bypass
|
10 |
WEB
|
R3d-D3V!L
|
|
2010-01-01
|
|
XlentCMS 1.0.4 - 'downloads.php?cat' SQL Injection
|
10 |
WEB
|
Gamoscu
|
|
2010-01-01
|
|
WD-CMS 3.0 - Multiple Vulnerabilities
|
10 |
WEB
|
Sora
|
|
2010-01-01
|
|
UCStats 1.1 - SQL Injection
|
10 |
WEB
|
Sora
|
|
2010-01-01
|
|
DS CMS 1.0 - 'NewsId' SQL Injection
|
10 |
WEB
|
Palyo34
|
|
2010-01-01
|
|
Cype CMS - SQL Injection
|
10 |
WEB
|
Sora
|
|
2010-01-01
|
|
ArticleLive 1.7.1.2 - 'blogs.php?Id' SQL Injection
|
10 |
WEB
|
BAYBORA
|
|
2010-01-01
|
|
BlogWorx 1.0 Blog - Database Disclosure
|
10 |
WEB
|
LionTurk
|
|
2009-12-31
|
|
Kayako eSupport 3.04.10 - Cross-Site Scripting / Cross-Site Request Forgery
|
10 |
WEB
|
D3V!L FUCKER
|
|
2009-12-31
|
|
bbScript 1.1.2.1 - 'id' Blind SQL Injection
|
10 |
WEB
|
cOndemned
|
|
2009-12-31
|
|
Invision Power Board (Trial) 2.0.4 - Backup
|
8 |
WEB
|
indoushka
|
|
2009-12-31
|
|
PHP-AddressBook 3.1.5 - 'edit.php' SQL Injection
|
10 |
WEB
|
Hussin X
|
|
2009-12-31
|
|
PHP-MySQL-Quiz - SQL Injection
|
10 |
WEB
|
Hussin X
|
|
2009-12-31
|
|
Pre News Manager - 'nid' SQL Injection
|
10 |
WEB
|
Hussin X
|
|
2009-12-31
|
|
EasyGallery - 'catid' Blind SQL Injection
|
12 |
WEB
|
Hussin X
|
|
2009-12-31
|
|
Pre ADS Portal - 'cid' SQL Injection
|
10 |
WEB
|
Hussin X
|
|
2009-12-31
|
|
Freewebscript'z Games - Authentication Bypass
|
9 |
WEB
|
Hussin X
|
|
2009-12-31
|
|
PhotoDiary 1.3 - 'lng' Local File Inclusion
|
12 |
WEB
|
cOndemned
|
|
2009-12-31
|
|
Discuz 1.03 - SQL Injection
|
10 |
WEB
|
indoushka
|
|
2009-12-31
|
|
HLstatsX 1.65 - SQL Injection
|
10 |
WEB
|
bnc
|
|
2009-12-31
|
|
Joomla! Component com_mdigg - SQL Injection
|
13 |
WEB
|
wlhaan hacker
|
|
2009-12-31
|
|
Weatimages - Directory Traversal / Local File Inclusion
|
11 |
WEB
|
e.wiZz
|
|
2009-12-31
|
|
fileNice PHP file browser - Local/Remote File Inclusion
|
10 |
WEB
|
e.wiZz
|
|
2009-12-31
|
|
Joomla! Component com_portfol - SQL Injection
|
12 |
WEB
|
wlhaan hacker
|
|
2009-12-31
|
|
pL-PHP Beta 0.9 - Local File Inclusion
|
12 |
WEB
|
cr4wl3r
|
|
2009-12-31
|
|
Classified Ads Scrip - 'store_info.php?id' SQL Injection
|
12 |
WEB
|
Hussin X
|
|
2009-12-31
|
|
list Web - 'addlink.php?id' SQL Injection
|
9 |
WEB
|
Hussin X
|
|
2009-12-31
|
|
Quick Poll - 'code.php?id' SQL Injection
|
11 |
WEB
|
Hussin X
|
|
2009-12-30
|
|
Elkagroup - 'pid' SQL Injection
|
12 |
WEB
|
Hussin X
|
|
2009-12-30
|
|
Jax Calendar 1.34 - Remote Admin Access
|
10 |
WEB
|
Sora
|
|
2009-12-30
|
|
Classifieds Script - 'type' SQL Injection
|
10 |
WEB
|
Hussin X
|
|
2009-12-30
|
|
e-topbiz Slide Popups 1 PHP - Authentication Bypass
|
11 |
WEB
|
Hussin X
|
|
2009-12-30
|
|
e-topbiz banner exchange PHP - Authentication Bypass
|
10 |
WEB
|
Hussin X
|
|
2009-12-30
|
|
Azadi Network - 'page' SQL Injection
|
10 |
WEB
|
Hussin X
|
|
2009-12-30
|
|
vBulletin ads_saed 1.5 - 'bnnr.php' SQL Injection
|
10 |
WEB
|
Hussin X
|
|
2009-12-30
|
|
K-Rate - SQL Injection
|
12 |
WEB
|
e.wiZz
|
|
2009-12-30
|
|
UranyumSoft Ýlan Servisi - Database Disclosure
|
10 |
WEB
|
LionTurk
|
|
2009-12-30
|
|
Joomla! Component com_rd_download - Local File Disclosure
|
10 |
WEB
|
FL0RiX
|
|
2009-12-30
|
|
Wing FTP Server 3.2.4 - Cross-Site Request Forgery
|
10 |
WEB
|
Ams
|
|
2009-12-30
|
|
gallery_show.asp - GID Blind SQL Injection
|
12 |
WEB
|
R3d-D3V!L
|
|
2009-12-30
|
|
Joomla! Component com_airmonoblock - Blind SQL Injection
|
9 |
WEB
|
Pyske
|
|
2009-12-30
|
|
Aptgp.1.3.0c - Cross-Site Scripting
|
11 |
WEB
|
indoushka
|
|
2009-12-30
|
|
ArticleLive PHP 2005.0.0 - Cross-Site Scripting
|
10 |
WEB
|
indoushka
|
|
2009-12-30
|
|
WHOISCART - Scripting
|
10 |
WEB
|
HAQIQ20
|
|
2009-12-30
|
|
Joomla! Component com_intuit - Apache Directory listing Download
|
10 |
WEB
|
indoushka
|
|
2009-12-30
|
|
FlashChat 3.9.3.1 - PHP info
|
10 |
WEB
|
indoushka
|
|
2009-12-30
|
|
I-Escorts Directory - 'country_escorts.php?country_id' SQL Injection
|
10 |
WEB
|
R3d-D3V!L
|
|
2009-12-30
|
|
PHP-Fusion Mod avatar_studio - Local File Inclusion
|
10 |
WEB
|
bonobug
|
|
2009-12-30
|
|
XOOPS Module dictionary 2.0.18 - 'detail.php' SQL Injection
|
10 |
WEB
|
Palyo34
|
|
2009-12-30
|
|
LiveZilla 3.1.8.3 - Cross-Site Scripting
|
10 |
WEB
|
MaXe
|
|
2009-12-30
|
|
Diesel Job Site 1.4 - Multiple Vulnerabilities
|
10 |
WEB
|
indoushka
|
|
2009-12-30
|
|
UBBCentral UBB.Threads 6.0 - Remote File Inclusion
|
9 |
WEB
|
indoushka
|
|
2009-12-30
|
|
PicMe 2.1.0 - Arbitrary File Upload
|
13 |
WEB
|
indoushka
|
|
2009-12-30
|
|
I-RATER Basic - Arbitrary File Upload
|
9 |
WEB
|
indoushka
|
|
2009-12-30
|
|
iDevAffiliate 4.0 - Backup
|
11 |
WEB
|
indoushka
|
|
2009-12-30
|
|
ezscheduler - Remote Database Disclosure
|
12 |
WEB
|
RENO
|
|
2009-12-30
|
|
ezguestbook - Remote Database Disclosure
|
10 |
WEB
|
RENO
|
|
2009-12-30
|
|
Web Calendar - Remote Database Disclosure
|
10 |
WEB
|
RENO
|
|
2009-12-30
|
|
RoseOnlineCMS 3 B1 - 'admin' Local File Inclusion
|
10 |
WEB
|
cr4wl3r
|
|
2009-12-30
|
|
My Book World Edition NAS - Multiple Vulnerabilities
|
12 |
WEB
|
emgent
|
|
2009-12-29
|
|
Joomla! Component com_kkcontent - Blind SQL Injection
|
9 |
WEB
|
Pyske
|
|
2009-12-29
|
|
Joomla! Component com_noticia - Cross-Site Scripting
|
10 |
WEB
|
Mr.tro0oqy
|
|
2009-12-29
|
|
Helpdesk Pilot Knowledge Base 4.4.0 - SQL Injection
|
9 |
WEB
|
kaMtiEz
|
|
2009-12-29
|
|
eStore 1.0.2 - SQL Injection
|
10 |
WEB
|
R3VAN_BASTARD
|
|
2009-12-29
|
|
ActiveKB - Remote File Inclusion
|
9 |
WEB
|
indoushka
|
|
2009-12-29
|
|
ASP Battle Blog - Database Disclosure
|
9 |
WEB
|
indoushka
|
|
2009-12-29
|
|
DirectAdmin 1.34.0 - Cross-Site Request Forgery (Add Admin)
|
9 |
WEB
|
SecurityRules
|
|
2009-12-29
|
|
makit news/blog poster 3.1 - Database Disclosure
|
10 |
WEB
|
indoushka
|
|
2009-12-29
|
|
Fully Functional ASP Forum 1.0 - Database Disclosure
|
9 |
WEB
|
indoushka
|
|
2009-12-29
|
|
BaalASP 2.0 - Database Disclosure
|
10 |
WEB
|
indoushka
|
|
2009-12-29
|
|
Uguestbook - Database Disclosure
|
9 |
WEB
|
indoushka
|
|
2009-12-29
|
|
htmlArea 2.03 - Database Disclosure
|
9 |
WEB
|
indoushka
|
|
2009-12-29
|
|
Futility Forum 1.0 Revamp - Database Disclosure
|
9 |
WEB
|
indoushka
|
|
2009-12-29
|
|
AspBB - Active Server Page Bulletin Board Database Disclosure
|
9 |
WEB
|
indoushka
|
|
2009-12-29
|
|
QuickEStore 7.9 - SQL Injection / Full Path Disclosure Download
|
9 |
WEB
|
indoushka
|
