|
2008-07-21
|
|
MojoClassifieds 2.0 - Blind SQL Injection
|
21 |
WEB
|
Mr.SQL
|
|
2008-07-21
|
|
Interact 2.4.1 - 'help.php' Local File Inclusion
|
19 |
WEB
|
DSecRG
|
|
2008-07-21
|
|
HRS Multi - 'key' Blind SQL Injection
|
17 |
WEB
|
Mr.SQL
|
|
2008-07-21
|
|
DigiLeave 1.2 - 'book_id' Blind SQL Injection
|
15 |
WEB
|
Mr.SQL
|
|
2008-07-20
|
|
PHPFootball 1.6 - SQL Injection
|
18 |
WEB
|
Mr.SQL
|
|
2008-07-18
|
|
Siteframe CMS 3.2.3 - 'folder.php' SQL Injection
|
20 |
WEB
|
n0ne
|
|
2008-07-18
|
|
Aprox CMS Engine 5.1.0.4 - 'index.php' SQL Injection
|
17 |
WEB
|
Mr.SQL
|
|
2008-07-17
|
|
Arctic Issue Tracker 2.0.0 - 'filter' SQL Injection (1)
|
19 |
WEB
|
QTRinux
|
|
2008-07-17
|
|
preCMS 1 - 'index.php' SQL Injection
|
18 |
WEB
|
Mr.SQL
|
|
2008-07-17
|
|
Alstrasoft Article Manager Pro 1.6 - Blind SQL Injection
|
16 |
WEB
|
GoLd_M
|
|
2008-07-17
|
|
Alstrasoft Video Share Enterprise 4.5.1 - 'UID' SQL Injection
|
19 |
WEB
|
Hussin X
|
|
2008-07-17
|
|
PHPHoo3 < 5.2.6 - 'viewCat' SQL Injection
|
19 |
WEB
|
Mr.SQL
|
|
2008-07-16
|
|
tplSoccerSite 1.0 - Multiple SQL Injections
|
17 |
WEB
|
Mr.SQL
|
|
2008-07-16
|
|
Alstrasoft Affiliate Network Pro - 'pgm' SQL Injection
|
18 |
WEB
|
Hussin X
|
|
2008-07-16
|
|
Joomla! Component DT Register - SQL Injection
|
17 |
WEB
|
His0k4
|
|
2008-07-16
|
|
PHPizabi 0.848b C1 HFP1 - Remote Code Execution
|
15 |
WEB
|
Inphex
|
|
2008-07-15
|
|
HockeySTATS Online 2.0 - Multiple SQL Injections
|
15 |
WEB
|
Mr.SQL
|
|
2008-07-15
|
|
PhotoPost vBGallery 2.4.2 - Arbitrary File Upload
|
17 |
WEB
|
Cold Zero
|
|
2008-07-15
|
|
Galatolo Web Manager 1.3a - Insecure Cookie Handling
|
21 |
WEB
|
Virangar Security
|
|
2008-07-15
|
|
PHP Help Agent 1.1 - 'content' Local File Inclusion
|
18 |
WEB
|
BeyazKurt
|
|
2008-07-15
|
|
Comdev Web Blogger 4.1.3 - 'arcmonth' SQL Injection
|
17 |
WEB
|
K-159
|
|
2008-07-15
|
|
Pragyan CMS 2.6.2 - 'sourceFolder' Remote File Inclusion
|
19 |
WEB
|
N3TR00T3R
|
|
2008-07-15
|
|
pSys 0.7.0 Alpha - Multiple Remote File Inclusions
|
16 |
WEB
|
RoMaNcYxHaCkEr
|
|
2008-07-15
|
|
Galatolo Web Manager 1.3a - Cross-Site Scripting / SQL Injection
|
16 |
WEB
|
StAkeR
|
|
2008-07-14
|
|
Pluck CMS 4.5.1 (Windows) - 'blogpost' Local File Inclusion
|
18 |
WEB
|
BugReport.IR
|
|
2008-07-14
|
|
bilboblog 2.1 - Multiple Vulnerabilities
|
19 |
WEB
|
BlackH
|
|
2008-07-14
|
|
CodeDB 1.1.1 - 'list.php' Local File Inclusion
|
18 |
WEB
|
cOndemned
|
|
2008-07-13
|
|
Scripteen Free Image Hosting Script 1.2 - 'cookie' Pass Grabber
|
17 |
WEB
|
RMx
|
|
2008-07-13
|
|
ITechBids 7.0 gold - Cross-Site Scripting / SQL Injection
|
18 |
WEB
|
Encrypt3d.M!nd
|
|
2008-07-13
|
|
MFORUM 0.1a - Arbitrary Add Admin
|
21 |
WEB
|
CWH Underground
|
|
2008-07-13
|
|
Ultrastats 0.2.142 - 'players-detail.php' Blind SQL Injection
|
16 |
WEB
|
DNX
|
|
2008-07-13
|
|
Maian Search 1.1 - Insecure Cookie Handling
|
20 |
WEB
|
S.W.A.T.
|
|
2008-07-13
|
|
Maian Uploader 4.0 - Insecure Cookie Handling
|
18 |
WEB
|
S.W.A.T.
|
|
2008-07-13
|
|
Maian Weblog 4.0 - Insecure Cookie Handling
|
18 |
WEB
|
S.W.A.T.
|
|
2008-07-13
|
|
Maian Recipe 1.2 - Insecure Cookie Handling
|
18 |
WEB
|
S.W.A.T.
|
|
2008-07-13
|
|
Maian Links 3.1 - Insecure Cookie Handling
|
18 |
WEB
|
S.W.A.T.
|
|
2008-07-13
|
|
Maian Guestbook 3.2 - Insecure Cookie Handling
|
17 |
WEB
|
S.W.A.T.
|
|
2008-07-13
|
|
Fuzzylime CMS 3.01 - 'commrss.php' Remote Code Execution
|
17 |
WEB
|
Charles Fol
|
|
2008-07-12
|
|
Avlc Forum - 'vlc_forum.php' SQL Injection
|
18 |
WEB
|
CWH Underground
|
|
2008-07-12
|
|
jsite 1.0 oe - SQL Injection / Local File Inclusion
|
18 |
WEB
|
S.W.A.T.
|
|
2008-07-12
|
|
WebCMS Portal Edition - 'id' SQL Injection
|
17 |
WEB
|
Mr.SQL
|
|
2008-07-12
|
|
Joomla! Component n-forms 1.01 - Blind SQL Injection
|
17 |
WEB
|
The Moorish
|
|
2008-07-12
|
|
Fuzzylime CMS 3.01 - 'poll' Remote Code Execution
|
17 |
WEB
|
Inphex & real
|
|
2008-07-12
|
|
Fuzzylime CMS 3.01 - 'poll' Remote Code Execution
|
18 |
WEB
|
Inphex & real
|
|
2008-07-12
|
|
Maian Music 1.0 - Insecure Cookie Handling
|
18 |
WEB
|
Saime
|
|
2008-07-12
|
|
Maian Greetings 2.1 - Insecure Cookie Handling
|
20 |
WEB
|
Saime
|
|
2008-07-12
|
|
Maian Gallery 2.0 - Insecure Cookie Handling
|
18 |
WEB
|
Saime
|
|
2008-07-12
|
|
Maian Events 2.0 - Insecure Cookie Handling
|
17 |
WEB
|
Saime
|
|
2008-07-12
|
|
Maian Cart 1.1 - Insecure Cookie Handling
|
18 |
WEB
|
Saime
|
|
2008-07-11
|
|
Million Pixels 3 - 'id_cat' SQL Injection
|
18 |
WEB
|
Hussin X
|
|
2008-10-20
|
|
Wysi Wiki Wyg 1.0 - Local File Inclusion / Cross-Site Scripting / PHPInfo
|
19 |
WEB
|
StAkeR
|
|
2008-07-11
|
|
facebook newsroom CMS 0.5.0 Beta 1 - Remote File Inclusion
|
16 |
WEB
|
Ciph3r
|
|
2008-07-11
|
|
File Store PRO 3.2 - Multiple Blind SQL Injections
|
18 |
WEB
|
Nu Am Bani
|
|
2008-07-10
|
|
phpDatingClub 3.7 - 'website.php' Local File Inclusion
|
18 |
WEB
|
S.W.A.T.
|
|
2008-07-10
|
|
gapicms 9.0.2 - 'dirDepth' Remote File Inclusion
|
18 |
WEB
|
Ghost Hacker
|
|
2008-07-10
|
|
DreamNews Manager - 'id' SQL Injection
|
20 |
WEB
|
Hussin X
|
|
2008-07-09
|
|
DreamPics Builder - 'page' SQL Injection
|
19 |
WEB
|
Hussin X
|
|
2008-07-09
|
|
AuraCMS 2.2.2 - '/pages_data.php' Arbitrary Edit/Add/Delete
|
17 |
WEB
|
k1tk4t
|
|
2008-07-08
|
|
BoonEx Ray 3.5 - 'sIncPath' Remote File Inclusion
|
18 |
WEB
|
RoMaNcYxHaCkEr
|
|
2008-07-08
|
|
Mole Group Last Minute Script 4.0 - SQL Injection
|
17 |
WEB
|
t0pP8uZz
|
|
2008-07-09
|
|
Fonality trixbox - 'langChoice' Local File Inclusion (connect-back) (2)
|
17 |
WEB
|
Jean-Michel BESNARD
|
|
2008-07-08
|
|
Joomla! Component Content 1.0.0 - 'itemID' SQL Injection
|
17 |
WEB
|
unknown_styler
|
|
2008-07-08
|
|
Boonex Dolphin 6.1.2 - Multiple Remote File Inclusions
|
18 |
WEB
|
RoMaNcYxHaCkEr
|
|
2008-07-08
|
|
BrewBlogger 2.1.0.1 - Arbitrary Add Admin
|
19 |
WEB
|
CWH Underground
|
|
2008-07-08
|
|
Mole Group Real Estate Script 1.1 - SQL Injection
|
19 |
WEB
|
t0pP8uZz
|
|
2008-07-08
|
|
Mole Group Hotel Script 1.0 - SQL Injection
|
18 |
WEB
|
t0pP8uZz
|
|
2008-07-07
|
|
SmartPPC Pay Per Click Script - 'idDirectory' Blind SQL Injection (2)
|
20 |
WEB
|
ka0x
|
|
2008-07-07
|
|
QNX Neutrino 0.8.4 Atomic Edition - Remote Code Execution
|
18 |
WEB
|
Ams
|
|
2008-07-07
|
|
Triton CMS Pro 1.06 - 'x-forwarded-for' Blind SQL Injection
|
19 |
WEB
|
girex
|
|
2008-07-07
|
|
Fuzzylime CMS 3.01a - 'file' Local File Inclusion
|
16 |
WEB
|
Cod3rZ
|
|
2008-07-07
|
|
WebXell Editor 0.1.3 - Arbitrary File Upload
|
17 |
WEB
|
CWH Underground
|
|
2008-07-07
|
|
SmartPPC Pay Per Click Script - 'idDirectory' Blind SQL Injection (1)
|
17 |
WEB
|
Hamtaro
|
|
2008-07-06
|
|
ContentNow 1.4.1 - Arbitrary File Upload / Cross-Site Scripting
|
18 |
WEB
|
CWH Underground
|
|
2008-07-06
|
|
XPOZE Pro 3.06 - 'uid' SQL Injection
|
18 |
WEB
|
HIva Team
|
|
2008-07-05
|
|
Fuzzylime CMS 3.01 - Remote Command Execution
|
19 |
WEB
|
Ams
|
|
2008-07-05
|
|
ImperialBB 2.3.5 - Arbitrary File Upload
|
18 |
WEB
|
PHPLizardo
|
|
2008-07-05
|
|
Kasseler CMS 1.3.0 - Local File Inclusion / Cross-Site Scripting
|
18 |
WEB
|
Cr@zy_King
|
|
2008-07-05
|
|
Thelia 1.3.5 - Multiple Vulnerabilities
|
18 |
WEB
|
BlackH
|
|
2008-07-04
|
|
Site@School 2.4.10 - 'FCKeditor' Session Hijacking / Arbitrary File Upload
|
19 |
WEB
|
EgiX
|
|
2008-07-04
|
|
Joomla! Component DBQuery 1.4.1.1 - Remote File Inclusion
|
17 |
WEB
|
SsEs
|
|
2008-07-04
|
|
Joomla! Component altas 1.0 - Multiple SQL Injections
|
17 |
WEB
|
Houssamix
|
|
2008-07-04
|
|
1024 CMS 1.4.4 - Multiple Local/Remote File Inclusions
|
18 |
WEB
|
DSecRG
|
|
2008-07-03
|
|
pHNews CMS Alpha 1 - Local File Inclusion
|
20 |
WEB
|
CraCkEr
|
|
2008-07-03
|
|
PHPwebnews 0.2 MySQL Edition - 'det' SQL Injection
|
17 |
WEB
|
Virangar Security
|
|
2008-07-03
|
|
PHPwebnews 0.2 MySQL Edition - 'id_kat' SQL Injection
|
16 |
WEB
|
storm
|
|
2008-07-03
|
|
CMS WebBlizzard - 'index.php' Blind SQL Injection
|
20 |
WEB
|
Bl@ckbe@rD
|
|
2008-07-02
|
|
PHPortal 1.2 - Multiple Remote File Inclusions
|
18 |
WEB
|
Ciph3r
|
|
2008-07-02
|
|
Joomla! Component is 1.0.1 - Multiple SQL Injections
|
19 |
WEB
|
Houssamix
|
|
2008-07-02
|
|
Joomla! Component QuickTime VR 0.1 - SQL Injection
|
18 |
WEB
|
Houssamix
|
|
2008-07-02
|
|
Joomla! Component Brightcode Weblinks - 'catid' SQL Injection
|
18 |
WEB
|
His0k4
|
|
2008-07-02
|
|
CMS little 0.0.1 - 'template' Local File Inclusion
|
20 |
WEB
|
CWH Underground
|
|
2008-07-02
|
|
XchangeBoard 1.70 - 'boardID' SQL Injection
|
16 |
WEB
|
haZl0oh
|
|
2008-07-01
|
|
Joomla! Component mygallery - 'cid' SQL Injection
|
16 |
WEB
|
Houssamix
|
|
2008-07-01
|
|
Joomla! Component versioning 1.0.2 - 'id' SQL Injection
|
15 |
WEB
|
DarkMatter Crew
|
|
2008-07-01
|
|
plx Ad Trader 3.2 - 'adid' SQL Injection
|
16 |
WEB
|
Hussin X
|
|
2008-07-01
|
|
Efestech Shop 2.0 - 'cat_id' SQL Injection
|
16 |
WEB
|
Kacak
|
|
2008-07-01
|
|
PHP-Nuke Platinium 7.6.b.5 - Remote Code Execution
|
24 |
WEB
|
Charles Fol
|
|
2008-07-01
|
|
VanGogh Web CMS 0.9 - 'article_ID' SQL Injection
|
16 |
WEB
|
CWH Underground
|
|
2008-07-01
|
|
Sisplet CMS 2008-01-24 - 'id' SQL Injection
|
16 |
WEB
|
CWH Underground
|
|
2008-07-01
|
|
CAT2 - 'spaw_root' Local File Inclusion
|
16 |
WEB
|
StAkeR
|
|
2008-07-01
|
|
PHP-Agenda 2.2.4 - 'index.php' Local File Inclusion
|
19 |
WEB
|
StAkeR
|
|
2008-06-30
|
|
HIOX Banner Rotator 1.3 - 'hm' Remote File Inclusion
|
20 |
WEB
|
Ghost Hacker
|
|
2008-06-30
|
|
Mambo Component N-Gallery - Multiple SQL Injections
|
14 |
WEB
|
AlbaniaN-[H]
|
|
2008-06-30
|
|
pSys 0.7.0 Alpha - 'chatbox.php' SQL Injection
|
21 |
WEB
|
DNX
|
|
2008-06-30
|
|
AShop Deluxe 4.x - 'catalogue.php' SQL Injection
|
19 |
WEB
|
n0c0py
|
|
2008-06-30
|
|
MyBloggie 2.1.6 - Multiple SQL Injections
|
17 |
WEB
|
Jesper Jurcenoks
|
|
2008-06-30
|
|
Catviz 0.4.0 beta1 - Multiple SQL Injections
|
17 |
WEB
|
anonymous
|
|
2008-06-30
|
|
Pivot 1.40.5 - Dreamwind 'load_template()' Credentials Disclosure
|
16 |
WEB
|
Nine:Situations:Group
|
|
2008-06-30
|
|
RCM Revision Web Development - 'products.php' SQL Injection
|
20 |
WEB
|
Niiub
|
|
2008-06-30
|
|
BareNuked CMS 1.1.0 - Arbitrary Add Admin
|
15 |
WEB
|
CWH Underground
|
|
2008-06-30
|
|
eSHOP100 - 'SUB' SQL Injection
|
18 |
WEB
|
JuDge
|
|
2008-06-30
|
|
AcmlmBoard 1.A2 - 'pow' SQL Injection
|
15 |
WEB
|
anonymous
|
|
2008-06-28
|
|
SebracCMS 0.4 - Multiple SQL Injections
|
16 |
WEB
|
shinmai
|
|
2008-06-28
|
|
Joomla! Component Xe webtv - 'id' Blind SQL Injection
|
18 |
WEB
|
His0k4
|
|
2008-06-28
|
|
Joomla! Component beamospetition - SQL Injection
|
16 |
WEB
|
His0k4
|
|
2008-06-28
|
|
Online Booking Manager 2.2 - 'id' SQL Injection
|
20 |
WEB
|
Hussin X
|
|
2008-06-28
|
|
Joomla! Component jabode - 'id' SQL Injection
|
19 |
WEB
|
His0k4
|
|
2008-06-28
|
|
poweraward 1.1.0 rc1 - Local File Inclusion / Cross-Site Scripting
|
19 |
WEB
|
CraCkEr
|
|
2008-06-27
|
|
PHP-Fusion Mod Classifieds - 'lid' SQL Injection
|
16 |
WEB
|
boom3rang
|
|
2008-06-27
|
|
SePortal 2.4 - 'poll_id' SQL Injection
|
20 |
WEB
|
Mr.SQL
|
|
2008-06-27
|
|
OTManager CMS 2.4 - Insecure Cookie Handling
|
17 |
WEB
|
Virangar Security
|
|
2008-06-27
|
|
W1L3D4 philboard 1.2 - Blind SQL Injection / Cross-Site Scripting
|
23 |
WEB
|
Bl@ckbe@rD
|
|
2008-06-27
|
|
OTManager CMS 24a - Local File Inclusion / Cross-Site Scripting
|
16 |
WEB
|
CWH Underground
|
|
2008-06-26
|
|
Keller Web Admin CMS 0.94 Pro - Local File Inclusion (2)
|
22 |
WEB
|
StAkeR
|
|
2008-06-26
|
|
Orca 2.0/2.0.2 - 'params.php?gConf[dir][layouts]' Remote File Inclusion
|
17 |
WEB
|
Ciph3r
|
