|
2007-05-24
|
|
Dokeos 1.6.5 - 'courseLog.php?scormcontopen' SQL Injection
|
8 |
WEB
|
Silentz
|
|
2007-05-23
|
|
Dokeos 1.8.0 - 'my_progress.php?course' SQL Injection
|
8 |
WEB
|
Silentz
|
|
2007-05-23
|
|
Scallywag - 'template.php?path' Remote File Inclusion
|
8 |
WEB
|
Mehmet Ince
|
|
2007-05-23
|
|
NavBoard 2.6.0 - Remote Code Execution
|
8 |
WEB
|
Dj7xpl
|
|
2007-05-22
|
|
BtiTracker 1.4.1 - Become Admin SQL Injection
|
8 |
WEB
|
m@ge|ozz
|
|
2007-05-21
|
|
Ol BookMarks Manager 0.7.4 - SQL Injection
|
8 |
WEB
|
Mehmet Ince
|
|
2007-05-21
|
|
TutorialCMS 1.01 - Authentication Bypass
|
8 |
WEB
|
Silentz
|
|
2007-05-21
|
|
Ol BookMarks Manager 0.7.4 - 'root' Remote File Inclusion
|
8 |
WEB
|
ThE TiGeR
|
|
2007-05-21
|
|
WordPress Core 2.1.3 - 'admin-ajax.php' SQL Injection Blind Fishing
|
8 |
WEB
|
waraxe
|
|
2007-05-20
|
|
Alstrasoft Template Seller Pro 3.25 - Remote Code Execution
|
8 |
WEB
|
BlackHawk
|
|
2007-05-20
|
|
Alstrasoft Template Seller Pro 3.25 - Admin Password Change
|
8 |
WEB
|
BlackHawk
|
|
2007-05-20
|
|
Alstrasoft Live Support 1.21 - Admin Credential Retrieve
|
8 |
WEB
|
BlackHawk
|
|
2007-05-20
|
|
Alstrasoft e-Friends 4.21 - Admin Session Retrieve
|
8 |
WEB
|
BlackHawk
|
|
2007-05-20
|
|
Zomplog 3.8 - 'mp3playlist.php' SQL Injection
|
8 |
WEB
|
NeoMorphS
|
|
2007-05-19
|
|
SunLight CMS 5.3 - 'root' Remote File Inclusion
|
8 |
WEB
|
Mehmet Ince
|
|
2007-05-18
|
|
MolyX BOARD 2.5.0 - 'index.php?lang' Local File Inclusion
|
8 |
WEB
|
MurderSkillz
|
|
2007-05-18
|
|
Libstats 1.0.3 - 'template_csv.php' Remote File Inclusion
|
8 |
WEB
|
Mehmet Ince
|
|
2007-05-17
|
|
Build it Fast (bif3) 0.4.1 - Multiple Remote File Inclusions
|
8 |
WEB
|
Alkomandoz Hacker
|
|
2007-05-17
|
|
GeekLog 2.x - 'ImageImageMagick.php' Remote File Inclusion
|
8 |
WEB
|
diesl0w
|
|
2007-05-17
|
|
Mambo Component com_yanc 1.4 Beta - 'id' SQL Injection
|
8 |
WEB
|
Mehmet Ince
|
|
2007-05-16
|
|
FAQEngine 4.16.03 - 'question.php?questionref' SQL Injection
|
7 |
WEB
|
Silentz
|
|
2007-05-16
|
|
SimpNews 2.40.01 - 'newnr' SQL Injection
|
8 |
WEB
|
Silentz
|
|
2007-05-16
|
|
PHPGlossar 0.8 - 'format_menue' Remote File Inclusion
|
8 |
WEB
|
kezzap66345
|
|
2007-05-16
|
|
runawaysoft haber portal 1.0 - 'tr' Multiple Vulnerabilities
|
8 |
WEB
|
kerem125
|
|
2007-05-16
|
|
Glossword 1.8.1 - 'custom_vars.php' Remote File Inclusion
|
8 |
WEB
|
BeyazKurt
|
|
2007-05-15
|
|
XOOPS Module MyConference 1.0 - 'index.php' SQL Injection
|
8 |
WEB
|
ajann
|
|
2007-05-15
|
|
XOOPS Module Glossarie 1.7 - 'sid' SQL Injection
|
8 |
WEB
|
ajann
|
|
2007-05-15
|
|
XOOPS Module resmanager 1.21 - Blind SQL Injection
|
8 |
WEB
|
ajann
|
|
2007-05-15
|
|
Achievo 1.1.0 - 'config_atkroot' Remote File Inclusion
|
8 |
WEB
|
Katatafish
|
|
2007-05-14
|
|
Media Gallery for Geeklog 1.4.8a - Remote File Inclusion
|
8 |
WEB
|
ThE TiGeR
|
|
2007-05-14
|
|
linksnet newsfeed 1.0 - Remote File Inclusion
|
8 |
WEB
|
ThE TiGeR
|
|
2007-05-14
|
|
Feindt Computerservice News 2.0 - 'newsadmin.php?action' Remote File Inclusion
|
8 |
WEB
|
Mogatil
|
|
2007-05-14
|
|
NagiosQL 2005 2.00 - 'prepend_adm.php' Remote File Inclusion
|
8 |
WEB
|
ThE TiGeR
|
|
2007-05-13
|
|
phpAtm 1.30 - 'downloadfile' Remote File Disclosure
|
8 |
WEB
|
Ali.Mohajem
|
|
2007-05-13
|
|
CJG EXPLORER PRO 3.2 - 'g_pcltar_lib_dir' Remote File Inclusion
|
8 |
WEB
|
Mogatil
|
|
2007-05-13
|
|
BlogMe 3.0 - 'archshow.asp?var' SQL Injection
|
8 |
WEB
|
gsy
|
|
2007-05-14
|
|
EfesTECH Haber 5.0 - 'id' SQL Injection
|
10 |
WEB
|
CyberGhost
|
|
2007-05-12
|
|
Beacon 0.2.0 - 'splash.lang.php' Remote File Inclusion
|
8 |
WEB
|
ThE TiGeR
|
|
2007-05-12
|
|
YAAP 1.5 - '__autoload()' Remote File Inclusion
|
8 |
WEB
|
3l3ctric-Cracker
|
|
2007-05-12
|
|
iG Shop 1.4 - 'page.php' SQL Injection
|
8 |
WEB
|
gsy
|
|
2007-05-12
|
|
PHP FirstPost 0.1 - 'block.php?Include' Remote File Inclusion
|
8 |
WEB
|
Dj7xpl
|
|
2007-05-11
|
|
W1L3D4 philboard 0.2 - 'W1L3D4_bolum.asp' SQL Injection
|
8 |
WEB
|
gsy
|
|
2007-05-11
|
|
Monalbum 0.8.7 - Remote Code Execution
|
8 |
WEB
|
Dj7xpl
|
|
2007-05-11
|
|
R2K Gallery 1.7 - 'galeria.php?lang2' Local File Inclusion
|
8 |
WEB
|
Dj7xpl
|
|
2007-05-11
|
|
maGAZIn 2.0 - 'PHPThumb.php?src' Remote File Disclosure
|
8 |
WEB
|
Dj7xpl
|
|
2007-05-11
|
|
Snaps! Gallery 1.4.4 - Remote User Pass Change
|
8 |
WEB
|
Dj7xpl
|
|
2007-05-10
|
|
TaskDriver 1.2 - Authentication Bypass / SQL Injection
|
8 |
WEB
|
Silentz
|
|
2007-05-10
|
|
Thyme Calendar 1.3 - SQL Injection
|
8 |
WEB
|
warlord
|
|
2007-05-10
|
|
Original 0.11 - 'config.inc.php?x[1]' Remote File Inclusion
|
8 |
WEB
|
GoLd_M
|
|
2007-05-09
|
|
TutorialCMS 1.00 - 'search.php?search' SQL Injection
|
9 |
WEB
|
Silentz
|
|
2007-05-09
|
|
SimpleNews 1.0.0 FINAL - 'print.php?news_id' SQL Injection
|
8 |
WEB
|
Silentz
|
|
2007-05-09
|
|
telltarget 1.3.3 - 'tt_docroot' Remote File Inclusion
|
8 |
WEB
|
GoLd_M
|
|
2007-05-09
|
|
aForum 1.32 - 'CommonAbsDir' Remote File Inclusion
|
8 |
WEB
|
ThE TiGeR
|
|
2007-05-09
|
|
phpMyPortal 3.0.0 RC3 - GLOBALS[CHEMINMODULES] Remote File Inclusion
|
8 |
WEB
|
GoLd_M
|
|
2007-05-08
|
|
Miplex2 - 'SmartyFU.class.php' Remote File Inclusion
|
10 |
WEB
|
ThE TiGeR
|
|
2007-05-08
|
|
GNUEDU 1.3b2 - Multiple Remote File Inclusions
|
9 |
WEB
|
GoLd_M
|
|
2007-05-08
|
|
PHPLojaFacil 0.1.5 - 'path_local' Remote File Inclusion
|
8 |
WEB
|
GoLd_M
|
|
2007-05-08
|
|
CGX 20050314 - 'pathCGX' Remote File Inclusion
|
8 |
WEB
|
GoLd_M
|
|
2007-05-08
|
|
LaVague 0.3 - 'printbar.php?views_path' Remote File Inclusion
|
8 |
WEB
|
kezzap66345
|
|
2007-05-07
|
|
Berylium2 2003-08-18 - 'beryliumroot' Remote File Inclusion
|
8 |
WEB
|
ThE TiGeR
|
|
2007-05-07
|
|
DynamicPAD 1.02.18 - 'HomeDir' Remote File Inclusion
|
8 |
WEB
|
ThE TiGeR
|
|
2007-05-07
|
|
ACGVAnnu 1.3 - 'acgv.php?rubrik' Local File Inclusion
|
8 |
WEB
|
BeyazKurt
|
|
2007-05-07
|
|
Tropicalm Crowell Resource 4.5.2 - 'RESPATH' Remote File Inclusion
|
8 |
WEB
|
kezzap66345
|
|
2007-05-06
|
|
Friendly 1.0d1 - 'friendly_path' Remote File Inclusion
|
8 |
WEB
|
GoLd_M
|
|
2007-05-06
|
|
Wikivi5 - 'show.php?sous_rep' Remote File Inclusion
|
8 |
WEB
|
GoLd_M
|
|
2007-05-06
|
|
XOOPS Module wfquotes 1.0 - SQL Injection
|
8 |
WEB
|
Mehmet Ince
|
|
2007-05-06
|
|
NoAh 0.9 pre 1.2 - 'mfa_theme.php' Remote File Inclusion
|
8 |
WEB
|
kezzap66345
|
|
2007-05-05
|
|
PHPtree 1.3 - 'cms2.php?s_dir' Remote File Inclusion
|
8 |
WEB
|
ThE TiGeR
|
|
2007-05-05
|
|
Archangel Weblog 0.90.02 - Local File Inclusion / Authentication Bypass
|
8 |
WEB
|
Dj7xpl
|
|
2007-05-05
|
|
Nuked-klaN 1.7.6 - Remote Code Execution
|
8 |
WEB
|
DarkFig
|
|
2007-05-05
|
|
vm Watermark for Gallery 0.4.1 - Remote File Inclusion
|
8 |
WEB
|
ThE TiGeR
|
|
2007-05-04
|
|
Net Portal Dynamic System (NPDS) 5.10 - Remote Code Execution (2)
|
8 |
WEB
|
Gu1ll4um3r0m41n
|
|
2007-05-04
|
|
PHP TopTree BBS 2.0.1a - 'right_file' Remote File Inclusion
|
8 |
WEB
|
kezzap66345
|
|
2007-05-04
|
|
Persism CMS 0.9.2 - system[path] Remote File Inclusion
|
8 |
WEB
|
GoLd_M
|
|
2007-05-04
|
|
PMECMS 1.0 - config[pathMod] Remote File Inclusion
|
8 |
WEB
|
GoLd_M
|
|
2007-05-04
|
|
RunCMS 1.5.2 - 'debug_show.php' SQL Injection
|
8 |
WEB
|
rgod
|
|
2007-05-04
|
|
XOOPS Flashgames Module 1.0.1 - SQL Injection
|
8 |
WEB
|
Mehmet Ince
|
|
2007-05-04
|
|
workbench 0.11 - 'header.php?path' Remote File Inclusion
|
8 |
WEB
|
kezzap66345
|
|
2007-05-04
|
|
Versado CMS 1.07 - 'ajax_listado.php?urlModulo' Remote File Inclusion
|
8 |
WEB
|
kezzap66345
|
|
2007-05-04
|
|
E-GADS! 2.2.6 - 'common.php?locale' Remote File Inclusion
|
8 |
WEB
|
kezzap66345
|
|
2007-05-03
|
|
Censura 1.15.04 - 'censura.php?vendorid' SQL Injection
|
8 |
WEB
|
Mehmet Ince
|
|
2007-05-03
|
|
Pre Shopping Mall 1.0 - SQL Injection
|
8 |
WEB
|
Mehmet Ince
|
|
2007-05-03
|
|
Pre News Manager 1.0 - SQL Injection
|
13 |
WEB
|
Mehmet Ince
|
|
2007-05-03
|
|
Pre Classifieds Listings 1.0 - SQL Injection
|
8 |
WEB
|
Mehmet Ince
|
|
2007-05-03
|
|
PHP Coupon Script 3.0 - 'bus' SQL Injection
|
8 |
WEB
|
Mehmet Ince
|
|
2007-05-03
|
|
Open Translation Engine (OTE) 0.7.8 - 'header.php?ote_home' Remote File Inclusion
|
8 |
WEB
|
GoLd_M
|
|
2007-05-03
|
|
phpChess Community Edition 2.0 - Multiple Remote File Inclusions
|
8 |
WEB
|
GoLd_M
|
|
2007-05-02
|
|
PostNuke Module v4bJournal - SQL Injection
|
8 |
WEB
|
Ali Abbasi
|
|
2007-05-02
|
|
YaPiG 0.95b - Remote Code Execution
|
8 |
WEB
|
Dj7xpl
|
|
2007-05-02
|
|
mxBB Module FAQ & RULES 2.0.0 - Remote File Inclusion
|
8 |
WEB
|
bd0rk
|
|
2007-05-02
|
|
1024 CMS 0.7 - 'download.php' Remote File Disclosure
|
8 |
WEB
|
Dj7xpl
|
|
2007-05-02
|
|
PStruh-CZ 1.3/1.5 - 'download.asp' File Disclosure
|
8 |
WEB
|
Dj7xpl
|
|
2007-05-01
|
|
WordPress Plugin myflash 1.00 - 'wppath' Remote File Inclusion
|
8 |
WEB
|
Crackers_Child
|
|
2007-05-01
|
|
Sendcard 3.4.1 - 'sendcard.php?form' Local File Inclusion
|
8 |
WEB
|
ettee
|
|
2007-05-01
|
|
WordPress Plugin wordTube 1.43 - 'wpPATH' Remote File Inclusion
|
8 |
WEB
|
K-159
|
|
2007-05-01
|
|
WordPress Plugin wp-Table 1.43 - 'inc_dir' Remote File Inclusion
|
9 |
WEB
|
K-159
|
|
2007-04-30
|
|
psipuss 1.0 - 'editusers.php' Remote Change Admin Password
|
9 |
WEB
|
Dj7xpl
|
|
2007-04-29
|
|
The Merchant 2.2.0 - 'index.php?show' Remote File Inclusion
|
8 |
WEB
|
kezzap66345
|
|
2007-04-29
|
|
Imageview 5.3 - 'fileview.php?album' Local File Inclusion
|
8 |
WEB
|
DNX
|
|
2007-04-29
|
|
TCExam 4.0.011 - 'SessionUserLang' Shell Injection
|
8 |
WEB
|
rgod
|
|
2007-04-29
|
|
WordPress Plugin mygallery 1.4b4 - Remote File Inclusion
|
8 |
WEB
|
GoLd_M
|
|
2007-04-28
|
|
PostNuke pnFlashGames Module 1.5 - SQL Injection
|
8 |
WEB
|
Mehmet Ince
|
|
2007-04-27
|
|
burnCMS 0.2 - 'root' Remote File Inclusion
|
8 |
WEB
|
GoLd_M
|
|
2007-04-26
|
|
EsForum 3.0 - 'forum.php?idsalon' SQL Injection
|
8 |
WEB
|
ilker Kandemir
|
|
2007-04-26
|
|
Firefly 1.1.01 - 'doc_root' Remote File Inclusion
|
8 |
WEB
|
Alkomandoz Hacker
|
|
2007-04-26
|
|
PHPOracleView - 'include_all.inc.php?page_dir' Remote File Inclusion
|
8 |
WEB
|
Alkomandoz Hacker
|
|
2007-04-26
|
|
PHPBandManager 0.8 - 'index.php?pg' Remote File Inclusion
|
9 |
WEB
|
koray
|
|
2007-04-25
|
|
Ext 1.0 - 'feed-proxy.php?feed' Remote File Disclosure
|
8 |
WEB
|
Alkomandoz Hacker
|
|
2007-04-25
|
|
JulmaCMS 1.4 - 'file.php' Remote File Disclosure
|
8 |
WEB
|
GoLd_M
|
|
2007-04-24
|
|
wavewoo 0.1.1 - 'loading.php?path_include' Remote File Inclusion
|
8 |
WEB
|
kezzap66345
|
|
2007-04-24
|
|
Advanced Webhost Billing System (AWBS) 2.4.0 - 'cart2.php' Remote File Inclusion
|
8 |
WEB
|
DamaR
|
|
2007-04-24
|
|
USP FOSS Distribution 1.01 - 'dnld' Remote File Disclosure
|
8 |
WEB
|
GoLd_M
|
|
2007-04-24
|
|
GPB Bulletin Board - Multiple Remote File Inclusions
|
8 |
WEB
|
ThE TiGeR
|
|
2007-04-23
|
|
Post REvolution 0.7.0 RC 2 - 'dir' Remote File Inclusion
|
8 |
WEB
|
InyeXion
|
|
2007-04-23
|
|
Pagode 0.5.8 - 'navigator_ok.php?asolute' Remote File Disclosure
|
8 |
WEB
|
GoLd_M
|
|
2007-04-23
|
|
Joomla! 1.5.0 Beta - 'pcltar.php' Remote File Inclusion
|
9 |
WEB
|
Omid
|
|
2007-04-23
|
|
MyBulletinBoard (MyBB) 1.2.5 - 'calendar.php' Blind SQL Injection
|
8 |
WEB
|
0x86
|
|
2007-04-23
|
|
WEBInsta FM 0.1.4 - 'login.php' absolute_path Remote File Inclusion
|
8 |
WEB
|
g00ns
|
|
2007-04-22
|
|
Maran PHP Forum - 'forum_write.php' Remote Code Execution
|
8 |
WEB
|
Dj7xpl
|
|
2007-04-22
|
|
PHP-Ring Webring System 0.9 - SQL Injection
|
8 |
WEB
|
Dj7xpl
|
|
2007-04-22
|
|
JChit counter 1.0.0 - 'imgsrv.php?ac' Remote File Disclosure
|
8 |
WEB
|
Dj7xpl
|
|
2007-04-21
|
|
Supasite 1.23b - Multiple Remote File Inclusions
|
8 |
WEB
|
GoLd_M
|
|
2007-04-19
|
|
CreaDirectory 1.2 - 'error.asp?id' SQL Injection
|
8 |
WEB
|
CyberGhost
|
|
2007-04-19
|
|
Mx Module Smartor Album FAP 2.0 RC 1 - Remote File Inclusion
|
8 |
WEB
|
bd0rk
|
|
2007-04-18
|
|
opensurveypilot 1.2.1 - Remote File Inclusion
|
8 |
WEB
|
Alkomandoz Hacker
|
