|
2009-12-26
|
|
Squito Gallery 1.0 - Cross-Site Scripting
|
23 |
WEB
|
indoushka
|
|
2009-12-26
|
|
phpPowerCards 2.0 - Cross-Site Scripting
|
19 |
WEB
|
indoushka
|
|
2009-12-26
|
|
paFileDB 3.1 - Cross-Site Scripting
|
21 |
WEB
|
indoushka
|
|
2009-12-25
|
|
Simple PHP Guestbook - Remote Admin Access
|
18 |
WEB
|
Sora
|
|
2009-12-25
|
|
Jevonweb Guestbook - Remote Admin Access
|
22 |
WEB
|
Sora
|
|
2009-12-25
|
|
Ads Electronic Al-System - Cross-Site Scripting
|
23 |
WEB
|
indoushka
|
|
2009-12-25
|
|
barbo91 uploads - Arbitrary File Upload
|
20 |
WEB
|
indoushka
|
|
2009-12-25
|
|
caricatier 2.5 - Cross-Site Scripting
|
20 |
WEB
|
indoushka
|
|
2009-12-25
|
|
SoftBiz B2B trading Marketplace Script - SQL Injection
|
21 |
WEB
|
AnGrY BoY
|
|
2009-12-25
|
|
Best Top List - Cross-Site Scripting
|
21 |
WEB
|
indoushka
|
|
2009-12-25
|
|
APHP ImgList 1.2.2 - Cross-Site Scripting
|
21 |
WEB
|
indoushka
|
|
2009-12-25
|
|
Winn Guestbook 2.4 / Winn.ws - Cross-Site Scripting
|
18 |
WEB
|
indoushka
|
|
2009-12-25
|
|
asaher pro 1.0 - Remote File Inclusion
|
20 |
WEB
|
indoushka
|
|
2009-12-25
|
|
SoftCab Sound Converter - 'sndConverter.ocx' ActiveX Insecure Method
|
19 |
WEB
|
ThE g0bL!N
|
|
2009-12-25
|
|
cms -db 0.7.13 - Multiple Vulnerabilities
|
21 |
WEB
|
cp77fk4r
|
|
2009-12-24
|
|
VideoIsland - Arbitrary File Upload
|
22 |
WEB
|
RENO
|
|
2009-12-24
|
|
PBX Phone System 2.x - Multiple Vulnerabilities
|
19 |
WEB
|
Global-Evolution
|
|
2009-12-24
|
|
Joomla! Component com_schools - SQL Injection
|
20 |
WEB
|
Mr.tro0oqy
|
|
2009-12-24
|
|
Snitz Forums 2000 - Database Disclosure
|
22 |
WEB
|
ViRuSMaN
|
|
2009-12-24
|
|
Web Wiz Forums 9.64 - Database Disclosure
|
21 |
WEB
|
ViRuSMaN
|
|
2009-12-24
|
|
Web Wiz NewsPad - Database Disclosure
|
17 |
WEB
|
ViRuSMaN
|
|
2009-12-24
|
|
Pragyan CMS 2.6.4 - 'search.php' Remote File Inclusion
|
17 |
WEB
|
Mr.SeCreT
|
|
2009-12-24
|
|
Wbb3 - Blind SQL Injection
|
19 |
WEB
|
molli
|
|
2009-12-24
|
|
ImageVue 2.0 - Remote Admin Login
|
20 |
WEB
|
Sora
|
|
2009-12-24
|
|
Traidnt Gallery - Arbitrary Add Admin
|
22 |
WEB
|
wlhaan-hacker
|
|
2009-12-24
|
|
Jax Guestbook 3.50 - Admin Login
|
20 |
WEB
|
Sora
|
|
2009-12-24
|
|
Joomla! Component com_jeemaarticlecollection - SQL Injection
|
23 |
WEB
|
FL0RiX
|
|
2009-12-24
|
|
Joomla! Component com_carman - Cross-Site Scripting
|
22 |
WEB
|
FL0RiX
|
|
2009-12-23
|
|
XP Book 3.0 - login Admin
|
24 |
WEB
|
wlhaan hacker
|
|
2009-12-23
|
|
PHP-Nuke Module Emporium 2.3.0 - 'id_catg' SQL Injection
|
19 |
WEB
|
Hussin X
|
|
2009-12-23
|
|
35mm Slide Gallery - Directory Traversal
|
23 |
WEB
|
Mr.tro0oqy
|
|
2009-12-23
|
|
Add An Ad Script - Arbitrary File Upload
|
21 |
WEB
|
MR.Z
|
|
2009-12-23
|
|
35mm Slide Gallery - Cross-Site Scripting
|
22 |
WEB
|
indoushka
|
|
2009-12-22
|
|
Aurora CMS - SQL Injection
|
21 |
WEB
|
Sora
|
|
2009-12-22
|
|
weenCompany - SQL Injection
|
20 |
WEB
|
Gamoscu
|
|
2009-12-22
|
|
Simple PHP Blog 0.5.1 - Local File Inclusion
|
18 |
WEB
|
jgaliana
|
|
2009-12-22
|
|
Mini File Host 1.5 - Arbitrary File Upload
|
21 |
WEB
|
MR.Z
|
|
2009-12-22
|
|
mypage 0.4 - Local File Inclusion
|
20 |
WEB
|
BAYBORA
|
|
2009-12-22
|
|
The Uploader 2.0 - File Disclosure
|
21 |
WEB
|
Stack
|
|
2009-12-22
|
|
DeluxeBB 1.3 - Multiple Vulnerabilities
|
19 |
WEB
|
cp77fk4r
|
|
2009-12-22
|
|
Active PHP BookMarks 1.3 - SQL Injection
|
23 |
WEB
|
Mr.Elgaarh
|
|
2009-12-22
|
|
The Uploader 2.0 - Arbitrary File Upload
|
23 |
WEB
|
Master Mind
|
|
2009-12-21
|
|
PHPOPENCHAT 3.0.2 - Cross-Site Scripting AND/OR FPD
|
21 |
WEB
|
Dedalo
|
|
2009-12-21
|
|
Joomla! Component com_mediaslide - Directory Traversal
|
21 |
WEB
|
Mr.tro0oqy
|
|
2009-12-21
|
|
PHPhotoalbum 0.5 - SQL Injection
|
23 |
WEB
|
Stack
|
|
2009-12-21
|
|
PDQ Script 1.0 - 'listingid' SQL Injection
|
20 |
WEB
|
SecurityRules
|
|
2009-12-13
|
|
Joomla! Component com_jcalpro 1.5.3.6 - Remote File Inclusion
|
23 |
WEB
|
kaMtiEz
|
|
2009-12-21
|
|
VideoCMS 3.1 - SQL Injection
|
20 |
WEB
|
kaMtiEz
|
|
2009-12-21
|
|
webCocoon's simpleCMS - SQL Injection
|
22 |
WEB
|
_ÝNFAZCI_
|
|
2009-12-21
|
|
PHPhotoalbum - Arbitrary File Upload
|
24 |
WEB
|
wlhaan hacker
|
|
2009-12-21
|
|
social Web CMS Beta 2 - Multiple Vulnerabilities
|
19 |
WEB
|
cp77fk4r
|
|
2009-12-21
|
|
Absolute Shopping Cart - SQL Injection
|
20 |
WEB
|
Gamoscu
|
|
2009-12-21
|
|
Ultimate Uploader 1.3 - Arbitrary File Upload
|
21 |
WEB
|
Master Mind
|
|
2009-12-21
|
|
Angelo-emlak 1.0 - Database Disclosure
|
21 |
WEB
|
LionTurk
|
|
2009-12-21
|
|
Drumbeat CMS 1.0 - SQL Injection
|
18 |
WEB
|
Sora
|
|
2009-12-20
|
|
phUploader 2 - Arbitrary File Upload
|
20 |
WEB
|
wlhaan-hacker
|
|
2009-12-20
|
|
8Pixel.net 2009. - Database Disclosure
|
18 |
WEB
|
LionTurk
|
|
2009-12-20
|
|
4Images 1.7.1 - SQL Injection
|
17 |
WEB
|
Master Mind
|
|
2009-12-20
|
|
PacketFence Network Access Controller - Cross-Site Scripting
|
19 |
WEB
|
K053
|
|
2009-12-20
|
|
Pandora FMS Monitoring Application 2.1.x /3.x - SQL Injection
|
19 |
WEB
|
Global-Evolution
|
|
2009-12-20
|
|
Ignition 1.2 - Multiple Local File Inclusions
|
19 |
WEB
|
cOndemned
|
|
2009-12-20
|
|
Simplicity oF Upload 1.3.2 - Arbitrary File Upload
|
20 |
WEB
|
Master Mind
|
|
2009-12-20
|
|
Advance Biz Limited 1.0 - Authentication Bypass
|
20 |
WEB
|
PaL-D3v1L
|
|
2009-12-20
|
|
Explorer 7.20 - Cross-Site Scripting
|
21 |
WEB
|
Metropolis
|
|
2009-12-19
|
|
Saurus CMS 4.6.4 - Multiple Remote File Inclusions
|
19 |
WEB
|
cr4wl3r
|
|
2009-12-19
|
|
Ptag 4.0.0 - Multiple Remote File Inclusions
|
23 |
WEB
|
cr4wl3r
|
|
2009-12-19
|
|
CFAGCMS - SQL Injection
|
21 |
WEB
|
cr4wl3r
|
|
2009-12-19
|
|
Lizard Cart - Multiple SQL Injections
|
23 |
WEB
|
cr4wl3r
|
|
2009-12-19
|
|
Toast Forums 1.8 - Database Disclosure
|
22 |
WEB
|
ViRuSMaN
|
|
2009-12-19
|
|
Barracuda Web Firewall 660 Firmware 7.3.1.007 - Multiple Vulnerabilities
|
20 |
WEB
|
Global-Evolution
|
|
2009-12-19
|
|
FestOs 2.2.1 - Multiple Remote File Inclusions
|
19 |
WEB
|
cr4wl3r
|
|
2009-12-18
|
|
Joomla! Component City Portal - Blind SQL Injection
|
20 |
WEB
|
FL0RiX
|
|
2009-12-18
|
|
Joomla! Component Event Manager - Blind SQL Injection
|
20 |
WEB
|
FL0RiX
|
|
2009-12-18
|
|
Joomla! Component com_zcalendar - Blind SQL Injection
|
18 |
WEB
|
FL0RiX
|
|
2009-12-18
|
|
Joomla! Component com_acmisc - SQL Injection
|
19 |
WEB
|
FL0RiX
|
|
2009-12-18
|
|
Joomla! Component com_digistore - SQL Injection
|
22 |
WEB
|
FL0RiX
|
|
2009-12-18
|
|
Joomla! Component com_jbook - Blind SQL Injection
|
23 |
WEB
|
FL0RiX
|
|
2009-12-18
|
|
Schweizer NISADA Communication CMS - SQL Injection
|
18 |
WEB
|
Dr.0rYX & Cr3W-DZ
|
|
2009-12-18
|
|
E-Smart Cart - SQL Injection
|
24 |
WEB
|
R3d-D3V!L
|
|
2009-12-18
|
|
gpEasy 1.5RC3 - Remote File Inclusion
|
20 |
WEB
|
cr4wl3r
|
|
2009-12-18
|
|
WordPress Plugin Pyrmont 2.x - SQL Injection
|
19 |
WEB
|
Gamoscu
|
|
2009-12-17
|
|
Rumba XM - Cross-Site Scripting
|
21 |
WEB
|
Hadi Kiamarsi
|
|
2009-12-17
|
|
VirtueMart - 'Product_ID' SQL Injection
|
21 |
WEB
|
Neo-GabrieL
|
|
2009-12-17
|
|
Piwik Open Flash Chart - Remote Code Execution
|
21 |
WEB
|
Braeden Thomas
|
|
2009-12-17
|
|
jCore CMS - Cross-Site Scripting
|
22 |
WEB
|
loneferret
|
|
2009-12-17
|
|
eWebquiz 8 - Blind SQL Injection
|
21 |
WEB
|
R3d-D3V!L
|
|
2009-12-17
|
|
V.H.S. Booking - 'hotel_habitaciones.php?HotelID' SQL Injection
|
22 |
WEB
|
R3d-D3V!L
|
|
2009-12-17
|
|
ReVou Software - SQL Injection
|
22 |
WEB
|
R3d-D3V!L
|
|
2009-12-17
|
|
ActiveBuyandSell 6.2 - 'buyersend.asp?catid' Blind SQL Injection
|
25 |
WEB
|
R3d-D3V!L
|
|
2009-12-17
|
|
Pre Jobo .NET - Authentication Bypass
|
24 |
WEB
|
bi0
|
|
2009-12-17
|
|
Uploader by CeleronDude 5.3.0 - Arbitrary File Upload (1)
|
23 |
WEB
|
Stink
|
|
2009-12-17
|
|
Pre Job Board 1.0 - Authentication Bypass
|
24 |
WEB
|
bi0
|
|
2009-12-17
|
|
Active Auction House 3.6 - Blind SQL Injection
|
22 |
WEB
|
R3d-D3V!L
|
|
2009-12-17
|
|
Matrimony Script - Cross-Site Request Forgery
|
27 |
WEB
|
bi0
|
|
2009-12-17
|
|
Jobscript4Web 3.5 - Multiple Cross-Site Request Forgery Vulnerabilities
|
22 |
WEB
|
bi0
|
|
2009-12-17
|
|
Basic PHP Events Lister 2 - Arbitrary Add Admin
|
18 |
WEB
|
RENO
|
|
2009-12-17
|
|
dblog - 'dblog.mdb' Remote Database Disclosure
|
21 |
WEB
|
AnTi SeCuRe
|
|
2009-12-17
|
|
Sitecore Staging Module 5.4.0 - Authentication Bypass / File Manipulation
|
22 |
WEB
|
L. Weichselbaum
|
|
2009-12-17
|
|
Horde 3.3.5 - 'PHP_SELF' Cross-Site Scripting
|
24 |
WEB
|
Juan Galiana Lara
|
|
2009-12-17
|
|
PHP F1 Upload - Arbitrary File Upload
|
19 |
WEB
|
wlhaan hacker
|
|
2009-12-17
|
|
Charon Cart 3.0 - 'ContentID' Blind SQL Injection
|
25 |
WEB
|
R3d-D3V!L
|
|
2009-12-17
|
|
Multi-Lingual Application - Blind SQL Injection
|
20 |
WEB
|
R3d-D3V!L
|
|
2009-12-16
|
|
Smart ASPad - 'campaignEdit.asp?CCam' Blind SQL Injection
|
20 |
WEB
|
R3d-D3V!L
|
|
2009-12-16
|
|
ASPGuest - 'edit.asp?ID' Blind SQL Injection
|
20 |
WEB
|
R3d-D3V!L
|
|
2009-12-16
|
|
Pre Hotels&Resorts Management System - Authentication Bypass
|
21 |
WEB
|
R3d-D3V!L
|
|
2009-12-16
|
|
Texas Rankem - 'player_id' SQL Injection
|
19 |
WEB
|
R3d-D3V!L
|
|
2009-12-16
|
|
Omnistar Affiliate - Authentication Bypass
|
19 |
WEB
|
R3d-D3V!L
|
|
2009-12-16
|
|
eUploader PRO 3.1.1 - Cross-Site Request Forgery / Cross-Site Scripting
|
22 |
WEB
|
Milos Zivanovic
|
|
2009-12-16
|
|
Pre Hospital Management System - 'department.php?id' SQL Injection
|
17 |
WEB
|
R3d-D3V!L
|
|
2009-12-16
|
|
File Share 1.0 - SQL Injection
|
19 |
WEB
|
TOP SAT 13
|
|
2009-12-16
|
|
Digiappz Freekot - Authentication Bypass
|
19 |
WEB
|
R3d-D3V!L
|
|
2009-12-16
|
|
PhpLinkExchange 1.02 - Cross-Site Scripting / Upload
|
20 |
WEB
|
Stink'
|
|
2009-12-16
|
|
D-Tendencia Bt 2008 - SQL Injection
|
21 |
WEB
|
Dr.0rYX & Cr3W-DZ
|
|
2009-12-16
|
|
WHMCompleteSolution CMS - SQL Injection
|
19 |
WEB
|
Dr.0rYX & Cr3W-DZ
|
|
2009-12-16
|
|
Pre Hospital Management System - Authentication Bypass
|
17 |
WEB
|
R3d-D3V!L
|
|
2009-12-16
|
|
WordPress Plugin WP-Forum 2.3 - SQL Injection / Blind SQL Injection
|
24 |
WEB
|
Juan Galiana Lara
|
|
2009-12-16
|
|
Drupal Module Sections - Cross-Site Scripting
|
18 |
WEB
|
Justin C. Klein Keane
|
|
2009-12-16
|
|
GuestBookPro Script - Remote Database Disclosure
|
20 |
WEB
|
ViRuSMaN
|
|
2009-12-16
|
|
Codefixer Membership - Remote Database Disclosure
|
22 |
WEB
|
ViRuSMaN
|
|
2009-12-16
|
|
OSSIM 2.1.5 - Arbitrary File Upload
|
20 |
WEB
|
Nahuel Grisolia
|
|
2009-12-16
|
|
OSSIM 2.1.5 - Remote Command Execution
|
22 |
WEB
|
Nahuel Grisolia
|
|
2009-12-16
|
|
OSSIM 2.1.5 - SQL Injection
|
21 |
WEB
|
Nahuel Grisolia
|
|
2009-12-16
|
|
iSupport 1.8 - Cross-Site Scripting / Local File Inclusion
|
20 |
WEB
|
Stink & Essandre
|
|
2009-12-16
|
|
RecipePal 1.0 - SQL Injection
|
21 |
WEB
|
R3d-D3V!L
|
|
2009-12-16
|
|
Article Directory - SQL Injection
|
20 |
WEB
|
R3d-D3V!L
|
