Blog RSSExploits RSSFacebook

WEB

Date D   Description Plat. Author
2009-01-28   Lore 1.5.6 - 'article.php' Blind SQL Injection 28 WEB OzX
2009-01-28   Gazelle CMS 1.0 - 'template' Local File Inclusion 29 WEB fuzion
2009-01-28   Chipmunk Blog - (Authentication Bypass) Add Admin 27 WEB x0r
2009-01-28   gamescript 4.6 - Cross-Site Scripting / SQL Injection / Local File Inclusion 28 WEB Encrypt3d.M!nd
2009-01-28   Community CMS 0.4 - 'id' Blind SQL Injection 31 WEB darkjoker
2009-01-27   Pixie CMS 1.0 - Multiple Local File Inclusions 28 WEB DSecRG
2009-01-27   Max.Blog 1.0.6 - 'show_post.php' SQL Injection 29 WEB Salvatore Fresta
2009-01-27   Flax Article Manager 1.1 - Remote PHP Script Upload 28 WEB S.W.A.T.
2009-01-26   OpenX 2.6.3 - 'MAX_type' Local File Inclusion 32 WEB Charlie Briggs
2009-01-26   Joomla! Component ElearningForce Flash Magazine Deluxe - SQL Injection 30 WEB TurkGuvenligi
2009-01-26   ClickAuction - Authentication Bypass 27 WEB R3d-D3V!L
2009-01-26   SiteXS CMS 0.1.1 - Local File Inclusion 31 WEB darkjoker
2009-01-26   Groone's GLink ORGanizer - 'index.php?cat' SQL Injection 30 WEB nuclear
2009-01-26   Wazzum Dating Software - 'userid' SQL Injection 28 WEB nuclear
2009-01-26   PHP-CMS 1 - 'Username' Blind SQL Injection 32 WEB darkjoker
2009-01-26   SHOP-INET 4 - 'grid' SQL Injection 32 WEB FeDeReR
2009-01-26   Script Toko Online 5.01 - SQL Injection 31 WEB k1n9k0ng
2009-01-26   E-ShopSystem - Authentication Bypass / SQL Injection 33 WEB InjEctOr5
2009-01-26   ITLPoll 2.7 Stable2 - Blind SQL Injection 29 WEB fuzion
2009-01-26   Simple Machines Forum (SMF) 1.1.7 - Cross-Site Request Forgery / Cross-Site Scripting / Package Uplo 28 WEB Xianur0
2009-01-25   EPOLL SYSTEM 3.1 - 'Password.dat' Disclosure 31 WEB Pouya_Server
2009-01-25   OpenGoo 1.1 - Local File Inclusion 30 WEB fuzion
2009-01-25   Flax Article Manager 1.1 - 'cat_id' SQL Injection 24 WEB JIKO
2009-01-25   Web-Calendar Lite 1.0 - Authentication Bypass 25 WEB ByALBAYX
2009-01-25   Mambo Component com_sim 0.8 - Blind SQL Injection 26 WEB Mehmet Ince
2009-01-25   MemHT Portal 4.0.1 - Remote Code Execution 31 WEB StAkeR
2009-01-22   Pardal CMS 0.2.0 - Blind SQL Injection 31 WEB darkjoker
2009-01-22   asp-project 1.0 - Insecure Cookie Method 31 WEB Khashayar Fereidani
2009-01-22   OwnRS Blog 1.2 - 'autor.php' SQL Injection 31 WEB nuclear
2009-01-21   Joomla! Component beamospetition 1.0.12 - SQL Injection / Cross-Site Scripting 30 WEB vds_s
2009-01-21   Joomla! Component com_pcchess - Blind SQL Injection 29 WEB InjEctOr5
2009-01-21   Sad Raven's Click Counter 1.0 - 'passwd.dat' File Disclosure 30 WEB Pouya_Server
2009-01-21   Mambo Component SOBI2 RC 2.8.2 - SQL Injection 29 WEB Br1ght D@rk
2009-01-21   Joomla! Component Com BazaarBuilder Shopping Cart 5.0 - SQL Injection 32 WEB XaDoS
2009-01-20   Dodo's Quiz Script 1.1 - Local File Inclusion 33 WEB Stack
2009-01-20   LinPHA Photo Gallery 2.0 - Remote Command Execution 31 WEB Osirys
2009-01-20   AJ Auction Pro OOPD 2.3 - 'id' SQL Injection 27 WEB snakespc
2009-01-20   Max.Blog 1.0.6 - Arbitrary Delete Post 30 WEB SirGod
2009-01-19   Ninja Blog 4.8 - Cross-Site Request Forgery/HTML Injection 26 WEB Danny Moules
2009-01-19   Joomla! Component com_waticketsystem - Blind SQL Injection 32 WEB InjEctOr5
2009-01-19   phpads 2.0 - Multiple Vulnerabilities 26 WEB Danny Moules
2009-01-19   Ninja Blog 4.8 - Remote Information Disclosure 29 WEB Danny Moules
2009-01-19   RCBlog 1.03 - Authentication Bypass 26 WEB Danny Moules
2009-01-19   Gallery Kys 1.0 - Admin Password Disclosure / Persistent Cross-Site Scripting 30 WEB Osirys
2009-01-19   Joomla! Component com_news - SQL Injection 31 WEB snakespc
2009-01-19   Joomla! Component com_pccookbook - 'recipe_id' Blind SQL Injection 30 WEB InjEctOr5
2009-01-19   Fhimage 1.2.1 - Remote Command Execution (mq = off) 28 WEB Osirys
2009-01-19   Fhimage 1.2.1 - Remote Index Change 26 WEB Osirys
2009-01-18   ESPG (Enhanced Simple PHP Gallery) 1.72 - File Disclosure 29 WEB bd0rk
2009-01-18   SCMS 1 - Local File Inclusion 26 WEB ahmadbady
2009-01-18   Click&Email - Authentication Bypass 29 WEB SuB-ZeRo
2009-01-18   DS-IPN.NET Digital Sales IPN - Database Disclosure 28 WEB Moudi
2009-01-18   Joomla! Component Gigcal 1.x - 'id' SQL Injection 28 WEB Lanti-Net
2009-01-16   BibCiter 1.4 - Multiple SQL Injections 27 WEB nuclear
2009-01-16   Simple PHP NewsLetter 1.5 - Local File Inclusion 31 WEB ahmadbady
2009-01-16   Aj Classifieds For Sale 3.0 - Arbitrary File Upload 25 WEB ZoRLu
2009-01-16   Aj Classifieds Personals 3.0 - Arbitrary File Upload 29 WEB ZoRLu
2009-01-16   Aj Classifieds Real Estate 3.0 - Arbitrary File Upload 31 WEB ZoRLu
2009-01-16   ASP ActionCalendar 1.3 - Authentication Bypass 31 WEB SuB-ZeRo
2009-01-16   blogit! - SQL Injection / File Disclosure / Cross-Site Scripting 30 WEB Pouya_Server
2009-01-16   Rankem - File Disclosure / Cross-Site Scripting / Cookie 30 WEB Pouya_Server
2009-01-16   Ping IP - Authentication Bypass 29 WEB ByALBAYX
2009-01-16   The Walking Club - Authentication Bypass 29 WEB ByALBAYX
2009-01-16   eReservations - Authentication Bypass 29 WEB ByALBAYX
2009-01-16   eFAQ - Authentication Bypass 28 WEB ByALBAYX
2009-01-15   Free Bible Search PHP Script - SQL Injection 31 WEB nuclear
2009-01-15   Blue Eye CMS 1.0.0 - 'clanek' Blind SQL Injection 30 WEB darkjoker
2009-01-15   MKPortal 1.2.1 - Multiple Vulnerabilities 27 WEB waraxe
2009-01-15   Joomla! Component RD-Autos 1.5.5 - SQL Injection 29 WEB H!tm@N
2009-01-15   Joomla! Component com_Eventing 1.6.x - Blind SQL Injection 29 WEB InjEctOr5
2009-01-15   GNUBoard 4.31.03 (08.12.29) - Local File Inclusion 28 WEB flyh4t
2009-01-15   DMXReady Billboard Manager 1.1 - Arbitrary File Upload 29 WEB ajann
2009-01-14   DMXReady SDK 1.1 - Arbitrary File Download 26 WEB ajann
2009-01-14   DMXReady BillboardManager 1.1 - Contents Change 26 WEB x0r
2009-01-14   DMXReady Secure Document Library 1.1 - SQL Injection 29 WEB ajann
2009-01-14   PHP Photo Album 0.8b - 'preview' Local File Inclusion 29 WEB Osirys
2009-01-14   DMXReady Registration Manager 1.1 - Contents Change 29 WEB ajann
2009-01-14   DMXReady Photo Gallery Manager 1.1 - Contents Change 27 WEB ajann
2009-01-14   DMXReady PayPal Store Manager 1.1 - Contents Change 32 WEB ajann
2009-01-14   phosheezy 2.0 - Remote Command Execution 30 WEB Osirys
2009-01-14   phpList 2.10.8 - Local File Inclusion 29 WEB BugReport.IR
2009-01-14   Joomla! Component Fantasytournament - SQL Injection 29 WEB H!tm@N
2009-01-14   Joomla! Component Camelcitydb2 2.2 - SQL Injection 29 WEB H!tm@N
2009-01-14   DMXReady Members Area Manager 1.2 - SQL Injection 29 WEB ajann
2009-01-14   DMXReady Member Directory Manager 1.1 - SQL Injection 27 WEB ajann
2009-01-14   DMXReady Links Manager 1.1 - Remote Contents Change 29 WEB ajann
2009-01-14   DMXReady Job Listing 1.1 - Remote Contents Change 28 WEB ajann
2009-01-14   DMXReady Faqs Manager 1.1 - Remote Contents Change 25 WEB ajann
2009-01-14   DMXReady Document Library Manager 1.1 - Contents Change 29 WEB ajann
2009-01-14   DMXReady Contact Us Manager 1.1 - Remote Contents Change 27 WEB ajann
2009-01-14   DMXReady Classified Listings Manager 1.1 - SQL Injection 30 WEB ajann
2009-01-14   DMXReady Catalog Manager 1.1 - Remote Contents Change 29 WEB ajann
2009-01-14   DMXReady Blog Manager 1.1 - Remote File Delete 32 WEB ajann
2009-01-14   Netvolution CMS 1.0 - Cross-Site Scripting / SQL Injection 32 WEB Ellinas
2009-01-14   Syzygy CMS 0.3 - Authentication Bypass 27 WEB darkjoker
2009-01-13   Dark Age CMS 0.2c Beta - Authentication Bypass 32 WEB darkjoker
2009-01-13   DMXReady Account List Manager 1.1 - Contents Change 29 WEB ajann
2009-01-13   HSPell 1.1 - 'cilla.cgi' Remote Command Execution 25 WEB ZeN
2009-01-13   DMXReady News Manager 1.1 - Arbitrary Category Change 29 WEB ajann
2009-01-13   Joomla! Component gigCalendar 1.0 - SQL Injection 33 WEB boom3rang
2009-01-13   Virtual Guestbook 2.1 - Remote Database Disclosure 29 WEB Moudi
2009-01-12   Realtor 747 - 'define.php?INC_DIR' Remote File Inclusion 30 WEB ahmadbady
2009-01-12   dMx READ - Remote Database Disclosure 28 WEB Cyber-Zone
2009-01-12   PWP Wiki Processor 1-5-1 - Arbitrary File Upload 32 WEB ahmadbady
2009-01-12   WordPress Plugin WP-Forum 1.7.8 - SQL Injection 29 WEB seomafia
2009-01-12   Comersus Shopping Cart 6.0 - Remote User Pass 30 WEB ajann
2009-01-12   Simple Machines Forum (SMF) 1.0.13/1.1.5 - 'Destroyer 0.1' Password Reset Security Bypass 32 WEB Xianur0
2009-01-12   Joomla! Component Portfol 1.2 - 'vcatid' SQL Injection 28 WEB H!tm@N
2009-01-11   Photobase 1.2 - 'Language' Local File Inclusion 29 WEB Osirys
2009-01-11   Silentum Uploader 1.4.0 - Remote File Deletion 31 WEB Danny Moules
2009-01-11   fttss 2.0 - Remote Command Execution 29 WEB dun
2009-01-11   Social Engine - SQL Injection 33 WEB snakespc
2009-01-11   PHP-Fusion Mod the_kroax - SQL Injection 30 WEB FasTWORM
2009-01-11   Weight Loss Recipe Book 3.1 - Authentication Bypass 30 WEB x0r
2009-01-11   BKWorks ProPHP 0.50b1 - Authentication Bypass 29 WEB SirGod
2009-01-11   XOOPS Module tadbook2 - SQL Injection 32 WEB stylextra
2009-01-11   phpMDJ 1.0.3 - 'id_animateur' Blind SQL Injection 27 WEB darkjoker
2009-01-11   Seo4SMF for SMF forums - Multiple Vulnerabilities 24 WEB WHK
2009-01-11   DZcms 3.1 - SQL Injection 29 WEB Glafkos Charalambous
2009-01-11   Fast Guest Book - Authentication Bypass 28 WEB Moudi
2009-01-11   Joomla! Component com_newsflash - 'id' SQL Injection 29 WEB EcHoLL
2009-01-11   Joomla! Component com_jashowcase - 'catid' SQL Injection 28 WEB EcHoLL
2009-01-11   Joomla! Component com_xevidmegahd - SQL Injection 29 WEB EcHoLL
2009-01-09   Fast FAQs System - Authentication Bypass 30 WEB x0r
2009-01-08   XOOPS 2.3.2 - 'mydirname' PHP Remote Code Execution 29 WEB StAkeR